Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Crimson Interactive

Group: hunters

Discovered by ransomware.live: 2024-08-23

Estimated attack date: 2024-08-23

Country: US

Description:

Country : United States of America - Exfiltraded data : yes - Encrypted data : yes

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 3

Compromised Users: 27

Third Party Employee Credentials: 7

External Attack Surface: 9


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • hostvps01.logix.in.
  • hostvps02.logix.in.
  • hostvps03.logix.in.
TXT Records
  • google-site-verification=pH489uLi-npjz7alXVtjqwb1o7LwG2e7bHK2TxIImG8
  • q57ogprkq86rqqot0emphse77q
  • v=spf1 mx ip4:13.126.94.72 ip4:13.55.204.127 ip4:52.144.52.4 ip4:13.210.44.220 include:_spfnew.logix.in include:relay.pair.com include:pairlist.com a:crimosoniint.pairserver.com include:79190925.ppspf.net ~all
  • 82eis9n6vrba0ln30j03ftovps
  • MS=B702937C80C76A36E48E939C55FB5F612D26FA19
  • MS=ms89847691
  • _h3l02ckghdbw9bughqw8gkczwg3xmrt
  • google-site-verification=obD-Yfw7FmUNW_K2joh5p_SLZlFI0uG5unsY-WBRxJ0
Cloud / SaaS Services Detected
Microsoft 365

Leak Screenshot:

Leak Screenshot