restargp.com
restargp.com
Group: lockbit3
Discovered by ransomware.live: 2023-12-05
Estimated attack date: 2023-12-05
Country:
Description:
Restar Holdings Corporation operates as an electronics trading company in Japan and internationally. The company offers semiconductor and electronic components, system engineering, and reliability test services; and electronic and measuring equipment...
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- gtld-abuse jprs.jp
- shotaro.okumura restargp.com
MX Records
- restargp-com.mail.protection.outlook.com.
TXT Records
- MS=ms49139608
- pardot971703=e81dcab5575daa7a952fefbd8c0884a39c206ca39b644d098d7c320b6772b746
- v=spf1 include:spf.protection.outlook.com include:spf.mta.hdems.com +ip4:61.121.80.166/24 include:spf.eco-serv.jp include:spf.q-send.jp include:spf.ecbeing.co.jp ip4:172.16.218.81 ip4:172.16.204.57 ~all
- nulab-verification-code=g0PYMD5kQwLxQJxfjGVfR70NQMT1rnmfcpwWCUpeferX5hm1AKIYAjmNdzSSfmv1
- k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDGoQCNwAQdJBy23MrShs1EuHqK/dtDC33QrTqgWd9CJmtM3CK2ZiTYugkhcxnkEtGbzg+IJqcDRNkZHyoRezTf6QbinBB2dbyANEuwKI5DVRBFowQOj9zvM3IvxAEboMlb0szUjAoML94HOkKuGuCkdZ1gbVEi3GcVwrIQphal1QIDAQAB;
- docusign=e28107b2-87cf-4752-a31b-55be02078266
- docusign=a45ebad4-1565-41ee-b584-ed98985a32b4
- sending_domain971703=e1f0a8842574a96b3bfda7b44b9eeed435d8085cd2458e91d194d5c372544d85
Cloud / SaaS Services Detected
Microsoft 365
Salesforce
DocuSign
Leak Screenshot:
