Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Chowtaifook

Group: vendetta

Discovered by ransomware.live: 2023-02-27

Estimated attack date: 2023-02-27

Description:

Chow Tai Fook “Lodestar” CollectionCelebrate a Lustrous Love Story2023-01-26This Valentine's Day, let the “Lodestar” Collection shine upon your journey to everlasting love, commemorated by the traceable T...


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • DomainAbuse service.aliyun.com
MX Records
  • chowtaifook-com.mail.protection.outlook.com.
TXT Records
  • atlassian-domain-verification=s9XwJYzlboh9TM885IThoURN7cZIHzOZ699PbZ7Lq3EFxpjUYC3WQ0lK00bWU5s/
  • google-site-verification=wSOsLEgc4TdJ7dxmDCLZ1YFZhuuYuF-IrRb_Rhkzbs8
  • apple-domain-verification=ON0ArPimBnUeZ9p3
  • amazonses:18vR9kARrP2Mr7n0zAbMCqbsfE87DqoDsOb3mdKDDoI=
  • bAgNgRCXLeb68qXyVMaHgBc0KSAf7o1UlsIimj1ol+VpJatM3J8kiHj/XizE4vZv/4AiRQP2ijKg4M843/OnDw==
  • google-site-verification=pa_KzHakUHlFdI2KHZ1_vgqUQEy5CpaN2E5W1cUpgt0
  • _globalsign-domain-verification=PZVK9sR4I3irWqb_dNs0ebBXtmr5uQhlCENBtmjWjE
  • MS=BD529307093AD153116B0E6AE0FE1F270D5A01A1
  • v=spf1 mx ip4:203.198.63.60 ip4:203.198.63.61 ip4:203.198.63.65 ip4:203.198.63.84" " ip4:58.60.229.45 ip4:58.60.229.132 ip4:58.254.204.131 ip4:58.64.145.104 ip4:23.251.233.145 ip4:23.251.233.146 include:amazonses.com " " include:spf.protection.outlook.com -all
Cloud / SaaS Services Detected
Apple Atlassian Amazon SES/WorkMail