Auxis
Auxis
Group: apos
Discovered by ransomware.live: 2025-01-04
Estimated attack date: 2025-01-04
Country:
Description:
🌐 www.auxis.com💲 162500000📍 United States
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 6
Compromised Users: 8
Third Party Employee Credentials: 10
External Attack Surface: 18
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domain.operations web.com
MX Records
- mxa-004f2301.gslb.pphosted.com.
- mxb-004f2301.gslb.pphosted.com.
TXT Records
- duo_sso_verification=PXj1gdGa390Cn5bchEvOy0ZRYMCb0Gr2Xbhq85QzuzoKqc7tfHUv6UcSgmaVgQek
- google-site-verification=G5kG4IhjnyMG2fhspJb69rJeUhUZJgvkNXGDBs1OwqU
- teamviewer-sso-verification=081c4ebd3cd249649977b88afbf62653
- atlassian-domain-verification=e6eQEjleTN/u/zelf9HtKvrUgb5GwIUWraivECaPOsteUYEwaHOHkLZES1SulUxy
- ms-domain-verification=f32facb5-35f0-4696-8b3a-e82526042787
- bw=28Z2wqQLSsT0bb2RELgfUUSOqRVyvTfhmmXQdoFv38gD
- atlassian-sending-domain-verification=b1cc5fea-c7d0-4357-afc1-6fc185f54eee
- MS=ms87761759
- v=spf1 include:spf.protection.outlook.com include:1936453.spf03.hubspotemail.net include:spf-004f2301.pphosted.com include:_spf.atlassian.net -all
Cloud / SaaS Services Detected
Atlassian
HubSpot
Microsoft 365
Teamviewer
Cisco Duo
Proofpoint
Leak Screenshot:
