Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo treves-group.com

Group: Lockbit3

Discovered by ransomware.live: 2023-02-21

Estimated attack date: 2023-02-21

Description:

Trèves est un groupe industriel spécialisé dans la fourniture d'équipements pour l'industrie automobile.250 GB DATAexample creds ESXIhttps://10.230.1.11/ui/ root:oel28&CPhttps://10.230.1.21/ui/ root:oel28&CPhttps://10.230.1.15/ui/ root:oel2...


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse support.gandi.net
  • 94af1a9696366b57bb5053460d4e6a47-38612889 contact.gandi.net
  • fb14aa4cf83bcd44d69f91fd636f0816-34588218 contact.gandi.net
  • a2d8c7822c5a49eae304a0087587bee5-34588224 contact.gandi.net
MX Records
  • alt3.aspmx.l.google.com.
  • alt2.aspmx.l.google.com.
  • aspmx.l.google.com.
  • alt1.aspmx.l.google.com.
  • alt4.aspmx.l.google.com.
TXT Records
  • atlassian-sending-domain-verification=e99ee6f9-255b-4503-bfe9-8328c150b43f
  • v=spf1 ip4:81.23.33.100/32 ip4:81.23.33.110/32 ip4:81.23.33.105/32 ip4:81.23.33.96/28 ip4:80.64.33.1/29 ip4:207.126.144.0/20 ip4:64.18.0.0/20 ip4:74.125.148.0/22 include:_spf.atlassian.net include:_spf.google.com ~all
  • MS=8C0CC4299BFA44878DFCBCA05669CA879CEB7562
  • google-site-verification=7BQmlkXSLEFyAY-EaG2iWVR8HC64HLggA3sgpQIGljU
  • google-site-verification=KGq6af4qsil3c0ymdfvhFkwS9J80a4pJIsLGAJtHL8k
  • google-site-verification=EInNnpVp-AlWtQv9LpAKd4M8x44dH2H__DofdJoI-cs
  • P2A_24268_7
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.