Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo CONSOLENERGY.COM

Group: clop

Discovered by ransomware.live: 2023-07-11

Estimated attack date: 2023-07-11

Description:

Home - CONSOL Energy Inc.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 3

Third Party Employee Credentials: 1

External Attack Surface: 3


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domainabuse tucows.com
MX Records
  • mxb-00321402.gslb.pphosted.com.
  • mxa-00321402.gslb.pphosted.com.
TXT Records
  • _74jr0iw2vbmb839hjumj68af539sy15
  • _p5ulukkjqdg7lsaz8kfossin2byw1gd
  • wzr37cztb68hfs70yg16djgtg3hw76vz
  • 7f6kg42sk0hq9zzzb69g6lyfj027lh6v
  • _bb0mo432pzjpx2zodfot3kjehki24qq
  • docusign=09e100ea-e279-4fb9-b159-4520f7321c76
  • _nc5orww9b3vjfcg1g0r7pups2crmxan
  • 0t2h648mrbdpjrsy3xtqqn9vd6r2w08b
  • bw=PU7avhE3o2WAdG9o9xvKUEdSleSC8JjQC+1ldDjTF68b
  • 9e07b382a76693374d702d5139e21b414aa73c67cb79fdf302
  • MS=ms83958901
  • eykP93HDzczdhVSTDYsxkql9ePH4tkbQlph9N/l6IoRZ0LbHCCHpz477Hrq4GUjfOcS0eAG+wy8DzgfKzBjwFw==
  • QpGZtWR9cLUAG4RlpX1Qs0TMkAAej+2BsZ/4vSkqAR4/OubO9yEIJcOQBd2wf3fZZu18n2UG+oJlBLuNBjHD+Q==
  • MS=ms33299551
  • p5mws2rwhz0tvznpf85n2hffg41lmj5v
  • wdvdxlbkgy21j29mbqwpt5rv559tgstt
  • atlassian-domain-verification=9uXzJTSRjAqCrOm2maqNmkiuoZGSXkzZ49zJI3j8m3WZvwetkwch3PIzaQ9kBCEb
  • v=spf1 include:spf.protection.outlook.com include:spf1.consolenergy.com include:spf2.consolenergy.com -all
Cloud / SaaS Services Detected
Atlassian Microsoft 365 DocuSign

Leak Screenshot:

Leak Screenshot