www.invisio.com
www.invisio.com
Group: ransomhub
Discovered by ransomware.live: 2024-06-19
Estimated attack date: 2024-06-19
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse joker.com
MX Records
- mx1-eu1.ppe-hosted.com.
- mx2-eu1.ppe-hosted.com.
TXT Records
- google-site-verification=lVdvg2N2K05VhSZCGS56Fo7bUzjkrneNvpsyO9gwaSg
- MS=ms13856933
- l1Z/8Cq5nUhri+ifF5nASjvzN/BXQZjRkytPU5xvSvrdfL+LKMaZ3Y1MtkeW1UFABJ0co/bFAUTxejNXVsiI5g==
- apple-domain-verification=zXt4TmCKXnBa8bYu
- v=spf1 include:spf.protection.outlook.com include:servers.mcsv.net include:spf.kontainer.com a:dispatch-eu.ppe-hosted.com a:dispatchb-eu1.ppe-hosted.com a:hmail.jitbit.com a:hmail2.jitbit.com ip4:52.186.121.110 ip4:23.21.109.197 ip4:23.21.109.212 ip4:147." "160.167.0/26 -all
Cloud / SaaS Services Detected
Apple
Microsoft 365
Proofpoint Essentials
Leak Screenshot:
