thompsoncreek.com_wa
thompsoncreek.com_wa
Group: blackbasta
Discovered by ransomware.live: 2024-07-15
Estimated attack date: 2024-06-10
Description:
Thompson Creek® Window Company is the Mid-Atlantic region’s premier home improvement replacement products company. We have been customizing and manufacturing replacement windows, doors, gutters, siding and roofing in the Mid-Atlantic region since 1980.SITE: www.thompsoncreek.com Address : 4200 Parliament Place Suite 600 Lanham, MD 20706 USAALL DATA SIZE: ≈750gb 1. Corporate data 2. Financial data, Accounting… 3. Human Resources, Hire data… 4. Payroll, personal Tax forms, Agreements… 5. Personal docs employees, clients… & etc…
DNS Records:
The following DNS records were found for the victim's domain.
- domain.operations web.com
- mx1-us1.ppe-hosted.com.
- mx2-us1.ppe-hosted.com.
- ppe-d5f9687d8a233beeeb502ad563e63917da9cfc0a
- facebook-domain-verification=8rx0pu4sctfd98aq7aqmcnvjfn9p1x
- bw=l/P1+kYgg/60mYAxNzIZRPCasEKJzZajHxRntaPiUQ5X
- 2huomhokkq5pt8cag1nkmkturg
- 895lmsubp0p3qrfu95rvq3u13e
- MS=CABE0B3F11FDE77F3697C3F6E9294EF0F9F899B0
- google-site-verification=8lM-2of46qPeyyn1YNsQPwXrtJ0cW8AOgU6CkHKPlbw
- google-site-verification=FYXWJkOqsq_ndRCYjIt35CfclbS28kLvZFVet9bwmis
- MS=ms55944709
- asv=bd42f683d5700af6fd2bf755f868a95e
- hj-ownership=r62WeSoj8JAt1RJauQbm
- google-site-verification=b3MJcQ3vBUPCXbQz964Y2mLCep_PEaogBEUoei7QTLA
- apple-domain-verification=jHPD5sCP9zoCV5w2
- kqt1qi6nk7vpbo5boks86q39ln
- anqsbebjdmmnecd32sgd9o02m8
- xtJe/CA6JCSDw/e+K6W4OBSzJqnpxlfq9+M+IdExrKOoVRJ367IFg8Q2CDQjSQRQXAqAzXgXHYwQ7EbDHvg6Iw==
- v=spf1 ip4:208.212.200.165 ip4:208.212.200.168 ip4:71.114.20.53 ip4:68.233.77.140 ip4:68.233.76.38 ip4:68.233.77.18 ip4:147.154.97.253 a:dispatch-us.ppe-hosted.com include:spf.protection.outlook.com include:docebosaas.com include:infusionmail.com -all
- 49bfdj5thsliu04ha9eubeac8p
- Sl4TM5uDRo+JfzDZW4/SE+tTyat5o2HC/AIlGO0GDGSg7EzCW8cTyPn2fHyumkEMdyTPVYwgzMXpStphUql+Gg==
Leak Screenshot:
