Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo premi#####

Group: clop

Discovered by ransomware.live: 2024-12-24

Estimated attack date: 2024-12-24

Country: US

Description:

Presumed victim name: Premier Inc. - Cl0p announcement. We have data of many companies who use cleo. Our teams are reaching and calling your company and provide your special secret chat.


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • mxa-00259101.gslb.pphosted.com.
  • mxb-00259101.gslb.pphosted.com.
TXT Records
  • TAILSCALE-XRW0sBgrUVzsGysqqUKV
  • include:49692548.spf03.hubspotemail.net
  • npzf59npr6q7ldrjbxxqxh3mz958v3vf
  • nitro-verification-code=NTMzNjQxMTgzNjk5NDE2NDQ2Ng==
  • _in2pv641vpilb4qyxasvplmwborktkv
  • dropbox-domain-verification=jmmt7x5dqwsm
  • smartsheet-site-validation=7K1gdXfds1mmhCR_rxi-oZZCxFeo9dQC
  • teamviewer-sso-verification=170874d9401c4edc8cf64a5b52b6500e
  • cisco-ci-domain-verification=31ab17aacf7b4aa10cd176a3cecf92c75390bdc9a9a82c3d4916944801f23b20
  • wiz-domain-verification=0ca229da4a4f44dacf64cce912fba343a489968c8d460dc17e18d888da21e02c
  • apple-domain-verification=qKgkSZqd1L1Gmaka
  • v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com ~all
  • atlassian-sending-domain-verification=ad1da59a-ef59-4d01-b448-ccf42818954a
  • ZOOM_verify_dQjVNoVUEnu68J7awEx0Zw
  • d365mktkey=exIFqPTx2Cep2lLZVCcxOPxdLvni70cYjfV21zunsxgx
  • SFMC-_DCbMIMIaj7MgGa3F54HvA1Axa_DbV1D7vI4XMfI
  • SFMC-EPoMcfUR7lq8zQAD7KCSP3z1TIqQLEO9CVMYbdQ1
  • google-site-verification=RftQpAH4GNcGo6I6GxQcz_ZFYZdjmLIzLMNp-LoZzsQ
  • MS=ms82406305
  • atlassian-domain-verification=DUYLzumUJmZzwp6NaUT4QtdwhLC0yFw5R8swwjK8sbROrUQe6eCEqmozRDEGVVuM
  • miro-verification=39182be832f3acb9086f024c6065e82f2b60f773
  • site24x7-signals-domain-verification=62458beb2b9f27e541998a3e5e66b3fc
  • google-site-verification=gXWtaR66BEA6yc0Yju2nGlZ6uIs7lq7xbMmY369nSlo
  • smartsheet-site-validation=ZJoDzfNdaEhzkfIL5hHOe7iGAwoMMjL0
  • zoho-verification=zb37928570.zmverify.zoho.com
  • docusign=f4050eb5-0011-4e21-8e40-e40c7e727b60
  • bZ0fXOePoO+O/8JIubSJSm64qLzTI2isjuBae9KJfQG/KHx8HTcDWIIBiBRJ6rfQc2+UZyHgFTPiN9m2I1S6Gw==
Cloud / SaaS Services Detected
Apple Atlassian Box Dropbox HubSpot Microsoft 365 Miro Teamviewer Zoho Campaigns Cisco DocuSign Proofpoint Zoom

Leak Screenshot:

Leak Screenshot