From the DDoSecrets wiki page:

According to the hackers, the contents include:

Domain purchases

Domain transfers

WHOIS history

DNS changes

Email forwards, catch-alls, etc.

Payment history

Account credentials

Over 500,000 private keys

An employee’s mailbox

Git repositories

/home/ and /root/ directories of a core system