AutohausMalin
AutohausMalin
Group: Chaos
Discovered by ransomware.live: 2025-10-07
Estimated attack date: 2025-10-07
Country:
Data exfiltrated: 200 GB
Description:
Since 1957, Autohaus Malin has been a proud partner of the Renault brand and, since 2006, a partner of the Dacia brand. Located in Sulz, Vorarlberg, they are known for reliability and customer friendliness, thanks to their competent team and many years of experience.
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 64
Compromised Users: 7503
Third Party Employee Credentials: 35
External Attack Surface: 122
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abusecomplaints markmonitor.com
- whoisrequest markmonitor.com
MX Records
- dnb-com.mail.protection.outlook.com.
TXT Records
- v=spf1 ip4:159.137.80.91 ip4:208.226.214.236 ip4:72.19.252.170 ip4:220.130.152.173 ip4:204.92.22.200/30 ip4:12.129.29.143 ip4:158.151.208.120/24 ip4:158.151.214.66/28 ip4:165.193.97.93" " ip4:72.14.161.10/31 ip4:158.106.68.11 ip4:205.216.45.11 ip4:209.112.4.10/31 ip4:209.66.117.11 ip4:209.123.45.224 include:spf.protection.outlook.com include:sendgrid.net include:_spf.salesforce.com -all
- _hp7c20ah0ikfywn17wamfjh8p6786ox
- ibmid=a9def6cf-843c-4d36-8eca-2c307149bd63
- _bvsecjccauqilzo2plgsj9vbrqpp1yw
- _hc2sn83etkc85jlw447nruu9dhbpdy5
- atlassian-domain-verification=owQCWYzgP3scaCY15u2L4MqN2a/Lda353UApAv4cEJPKscnJmVDwKlOkdpSAKnXa
- google-site-verification=ZVX3kiXRYyT5I8hIXfdxiVrgjftqr5S-waWjRxNXL0c
Cloud / SaaS Services Detected
Atlassian
Salesforce
SendGrid
Leak Screenshot:
