Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Avianor Aircraft

Group: hunters

Discovered by ransomware.live: 2024-02-10

Estimated attack date: 2024-02-10

Country: CA

Description:

Country : Canada - Exfiltraded data : yes - Encrypted data : no


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • mx-cluster-ca-fallback.hornetsecurity.com.
  • mx-cluster-ca01.hornetsecurity.com.
  • mx-cluster-ca02.hornetsecurity.com.
  • mx-cluster-ca03.hornetsecurity.com.
TXT Records
  • 1dlr12lpt31g3pkn9po1bfqijc
  • 4dK60xFFzlSznXWS4cqVluFHC7qOG3C7MEzNlirxQEChedrm2VrFGEGE+WEVC7cmYRYyTEm2kRtvyI7hkTSbow==
  • 95ig4d3n0p5g29972sr8rfdvkp
  • MS=ms35129678
  • duo_sso_verification=0e8ZlkWJ8r54TPZ7lVh4uKPoTyAMjpB03B3CFKvtstioYKQL5cefJTtNYlqfhPLi
  • icekng6p885pa1dviqhojjt4mj
  • o4qe897345vb6374p8eferq6r2
  • oldiq7k1v50tgguuion8ufga3i
  • qjvucejag5i0o5hc9j72vcbej9
  • v=spf1 ip4:207.96.251.33/29 ip4:207.96.251.37 ip4:99.209.245.58 mx:mail.avianor.com include:spf.myconnectwise.net include:spf.hornetsecurity.com include:zcsend.net -all
Cloud / SaaS Services Detected
Microsoft 365 Cisco Duo

Leak Screenshot:

Leak Screenshot