Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo GIGATRON.RS

Group: qilin

Discovered by ransomware.live: 2023-02-20

Estimated attack date: 2023-02-20

Country: RS

Description:

Gigatron downloaded data overview: From 172.31.244.50: DB backups of shops: G1-G69, G88, G89 From 172.31.248.10: DB backups: CTRetail_backup CTRetailWSRepl_backup GigatronWMS_Sync_backup From 192.168.2.144: employee disability ...


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • inbound-smtp.eu-west-1.amazonaws.com.
TXT Records
  • google-site-verification=fDn53oEUEflQxHyZyjTK-EipeBx1G5f457asn2OZB98
  • v=spf1 ip4:109.94.103.102 ip4:109.94.103.104 include:amazonses.com include:_spf.ha.rs a mx -all
Cloud / SaaS Services Detected
Amazon SES/WorkMail

Leak Screenshot:

Leak Screenshot