Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo GrammaTech

Group: Play

Discovered by ransomware.live: 2025-09-22

Estimated attack date: 2025-09-22

Country: US

Description:

United States

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 1

Third Party Employee Credentials: 0

External Attack Surface: 1

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • grammatechinc.mail.protection.office365.us.
TXT Records
  • OSSRH-74989
  • sending_domain1033153=2534e4d83a9928d0b467e5a6f3263a83e24b6aee26ea660640296b69d4e1a51b
  • atlassian-domain-verification=olehRoOge5BesnkF0JO5aZz7qI64ejjF3C2PrfcdoXjOS4c1HV7jA6mv82FPgjcg
  • MS=ms51054108
  • google-site-verification=suuNMXk1LCaAxe_CrbpenaRVR5zxugzMAxVQKXzKWG4
  • khd05stord1fjv9v0no4hljv43
  • ZOOM_verify_zfhpqSvWTIiaH9_6TT5MZA
  • jlu9lgpvv5bu5fgkvuqsjj1hjm
  • auv1dktbbrd503bhvtqvnlhvf7
  • j70pq95cvvutpgvilsf00aeuro
  • krisp-domain-verification=eU6oEslhFOusMG0QOXEGIKUuJr5vWnLe
  • v=spf1 mx ip4:216.59.66.160/28 include:_spf.salesforce.com include:582328.spf07.hubspotemail.net include:spf.protection.office365.us include:mail.zendesk.com -all
  • e302eegpjbq4rv4s9qnumvug8a
  • MS=F0A5F6F8B11FFD088DEFD482D15DEAC2B93B5352
  • tkatoremc7sk6io6h0v3c2agil
Cloud / SaaS Services Detected
Atlassian HubSpot Microsoft 365 Salesforce Zendesk Zoom

Leak Screenshot:

Leak Screenshot