Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Bayu Buana Travel

Group: Crypto24

Discovered by ransomware.live: 2025-10-27

Estimated attack date: 2025-10-27

Country: ID

Description:

...

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 7

Compromised Users: 5

Third Party Employee Credentials: 3

External Attack Surface: 5

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse directnic.com
  • bayubuanatravel.com dnic.JewellaPrivacy.com
MX Records
  • bayubuanatravel-com.mail.protection.outlook.com.
TXT Records
  • MS=ms32378349
  • MS=ms26029857
  • google-site-verification=0YF4ykxmSOTWZknq2aSwXNU8oMTcio9UQZRKsGwtbDc
  • google-site-verification=6u9nM2lVqhV-8TX_Sg0krbayJTvpXueCuwYtHkWVW0Y
  • Sendinblue-code:e16bc5368669f5e8da626710c1911a71
  • v=spf1 mx a ip4:202.129.224.0/22 ip4:103.86.154.117/32 a:mail.bayubuanatravel.com include:spf.sendinblue.com include:spf.kirim.email include:spf.protection.outlook.com ~all
Cloud / SaaS Services Detected
Microsoft 365 Sendinblue