Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

Logo

thelawrencegroup.com_privat

thelawrencegroup.com

Group: Blackbasta

Discovered by ransomware.live: 2024-04-27

Estimated attack date: 2024-04-27

Country: US

Description:

Lawrence Group is a building design, development, and project delivery firm headquartered in St. Louis. Recently named a “Hospitality Giant” by Interior Design Magazine, Lawrence Group offers architecture, interior design, a retail furniture showroom. In 1983, three University of Kansas design school graduates – Steve Smith, David Ohlemeyer and Paul Doerner – started Lawrence Group with the vision of becoming a design and construction super firm. They named the firm Lawrence Group after Lawrence, Kansas, the home of their alma mater. They envisioned the firm becoming generational in its pursuit of realizing clients’ dreams. Today, the core principle of realizing dreams is a cornerstone of the firm and an inspiration for succeeding generations.SITE: www.thelawrencegroup.com Address : 319 N 4th St Ste 1000, St. Louis, Missouri, 63102, United StatesALL DATA SIZE: 505gb 1. Personal documents 2. Users folders 3. Driver License and passports 4. Projects and etc…

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain-abuse@dreamhost.com
MX Records
  • thelawrencegroup-com-2.fortimailcloud.com.
  • thelawrencegroup-com-1.fortimailcloud.com.
TXT Records
  • MS=ms99695224
  • 0ed1fe018af1d96bb25f5f4971ac5fc0f3c68b8092
  • v=spf1 mx a ip4:12.203.23.242 ip4:12.187.181.145 ip4:12.187.181.144 ip4:12.187.181.151 ip4:12.187.181.153 include:spf.protection.outlook.com include:spf.us.signature365.net include:servers.mcsv.net ~all
  • autodesk-domain-verification=dNlqxYYcRVKWM7dOOZLz
  • u7cqZhypVHYqHH1ksRobttU6sg9FreF2Zb6GHI5kIsSB7ISXDyBYzTzPJNLWYGUp0bxCF47zVUCtpQPW/eaBqw==
  • duo_sso_verification=dxLycRGfWVqmSY0VxlupJEr0nvP4RLCBJJEteyKlqVqKrJSAxYlljc5kkGtRB9bG
Cloud / SaaS Services Detected
Mailchimp Microsoft 365 Autodesk Fortinet Cisco Duo

Leak Screenshot:

Leak Screenshot

Legal Disclaimer: Ransomware.live does not engage in the acquisition, exfiltration, downloading, possession, hosting, access, consultation, redistribution, or disclosure of unlawfully obtained data. This platform indexes only publicly visible information posted by ransomware operators and open web sources without accessing or obtaining the underlying stolen content. The service is provided to support public awareness, legitimate research, and cyber-resilience. No stolen personal or confidential data is collected or distributed via this site.