Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo www.drillmex.com

Group: toufan

Discovered by ransomware.live: 2023-12-19

Estimated attack date: 2023-12-19


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • alt1.aspmx.l.google.com.
  • alt2.aspmx.l.google.com.
  • aspmx.l.google.com.
  • alt3.aspmx.l.google.com.
  • alt4.aspmx.l.google.com.
TXT Records
  • infor-cloudsuite-domain-verification=57A5CTQE7Z2M8R5UMXGZSQR282P3V3TZ5HXWH282FXP2L4WXGYLJ7M74GBGB4QZC
  • v=spf1 a:smtp-service.hector.solutions include:_spf.google.com include:email.peopleanswers.com include:sendgrid.net include:spf.mandrillapp.com ip4:192.254.115.42 ip4:168.245.115.227 ip4:135.19.0.24/30 ip4:70.80.0.72/30 ip4:24.53.0.20/30 ip4:23.233.128.28" "/30 ~all
  • google-site-verification=9D6r-NoXspQCPqfeAsZgORAdBqYbZyoHLf-hrmnEWEE
  • google-site-verification=UcXUiCg8OxoXhDumWZpk9j6SXS2cCU9ZEv9VyIvSeio
Cloud / SaaS Services Detected
Mandrill SendGrid