Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Corantioquia

Group: hunters

Discovered by ransomware.live: 2025-05-27

Estimated attack date: 2025-05-27

Country: CO

Description:

Exfiltraded data : yes - Encrypted data : yes

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 12

Compromised Users: 110

Third Party Employee Credentials: 14

External Attack Surface: 33

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • soporte cointernet.com.co
MX Records
  • mx-01-us-east-2.prod.hydra.sophos.com.
  • mx-02-us-east-2.prod.hydra.sophos.com.
TXT Records
  • sophos-domain-verification=f76036d9f510e4b861d4654800e147e9481c5ec1
  • google-site-verification=UqTIAAEpn9WwFt1dau6h2wUx_x-WooI8awx5q6BPdx0
  • MS=ms40471836
  • nA87pChc+GcLVdw9duoAAc4lP5/6E9lVa+jeemVL+Vnu3sfTKHUA3dWL/nUJJ9iEX3Wfm04+Sdu/3az95wD3Tw==
  • ueppq58taj4na8v912phvu7tt7
  • v=spf1 ip4:200.35.34.160/27 include:_spf.prod.hydra.sophos.com ~all
Cloud / SaaS Services Detected
Microsoft 365 Sophos

Leak Screenshot:

Leak Screenshot