Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Groupe Delcourt

Group: hunters

Discovered by ransomware.live: 2025-04-06

Estimated attack date: 2025-04-06

Country: FR

Description:

Exfiltraded data : yes - Encrypted data : yes

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 1

Compromised Users: 0

Third Party Employee Credentials: 0

External Attack Surface: 1


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse support.gandi.net
  • bb38c916142d3eda20ca075d82f5ed79-28981091 contact.gandi.net
MX Records
  • groupedelcourt-com.mail.protection.outlook.com.
TXT Records
  • Sendinblue-code:5a6d13b2c3e280d2c9f3a095c638fbe4
  • v=spf1 include:spf.protection.outlook.com include:spf.mailjet.com include:spf.sendinblue.com ip4:92.173.172.49 ip4:194.250.59.178 ip4:80.74.69.176" " ip4:213.41.75.42 ip4:80.74.69.106 ip4:149.72.203.251 ip4:80.74.69.131 ip4:194.250.59.160/27 ip4:92.173.172.48/28 -all
  • apple-domain-verification=73Zap8XFcEeP48Yq
Cloud / SaaS Services Detected
Apple Mailjet Sendinblue

Leak Screenshot:

Leak Screenshot