Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo GRUPO mh

Group: blackbasta

Discovered by ransomware.live: 2022-06-21

Estimated attack date: 2022-06-21


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse acens.net
MX Records
  • mhsoluciones-com-2.fortimailcloud.com.
  • mhsoluciones-com-1.fortimailcloud.com.
TXT Records
  • 6rnalqlgqpovjoqr93q9ig54cf
  • WcS7DA+Q/3QKQiHIaR7ZPc7lYed2//FrpsEo36rgth5xRZfu6vsIVLYOrKt+twjrlpAOYMo6EIBoTXxET86mQg==
  • v=spf1 mx a:mail.grupmh.com include:_spf.fortimailcloud.com ip4:212.170.218.236 include:spf.protection.outlook.com ip4:217.111.219.18 include:spf.turbo-smtp.com -all
  • MDAyMzE1NzFncnVwbWgu
  • \"MS=ms20429547\
  • sp14raps67ujfgab2nbbabl2sa
Cloud / SaaS Services Detected
Microsoft 365 Fortinet