Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Axity

Group: rhysida

Discovered by ransomware.live: 2023-07-22

Estimated attack date: 2023-07-22

Description:

Axity Axity is one of the leading IT companies in Latin America and home to the best talent.


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • mx2.hc5496-5.iphmx.com.
  • mx1.hc5496-5.iphmx.com.
TXT Records
  • DirectFedAuthUrl=https://axity.okta.com/app/office365/exkrhbe0pfXXhVY27697/sso/wsfed/passive
  • amazonses:sWSEvjhKM9opt4oCSmXqZVgsYLV0BPVRXNDnb0gEtc0=
  • apple-domain-verification=1FQa9vwHgqmeAIaB
  • cisco-ci-domain-verification=11de543f262406384af22cad4cac8c2befe47b41a71fecfbc41ba9c810dd5cd6
  • ciscocidomainverification=472f47806996b4ad59b9ae2000710004d6d89d9795a3e0fabbe3994ad0be05b5
  • uo105qb1qn7mk11svo9faen446
  • v=spf1 ip4:148.244.94.3 ip4:20.186.108.149 ip4:201.159.82.62 ip4:52.186.168.195 include:spf.masterbase.com include:spf.protection.outlook.com exists:%{i}.spf.hc5496-5.iphmx.com -all
  • 5ip3hkaro8q12a1g3899gk37bi
Cloud / SaaS Services Detected
Apple Amazon SES/WorkMail Cisco