Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

DiVal Safety Equipment, Inc.

divalsafety.com

Group Hunters
Discovered 2024-03-04 20:53 UTC
Est. attack date 2024-03-04
Country US

Description:

Country : United States of America - Exfiltraded data : yes - Encrypted data : yes

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operationsweb.com
MX Records
  • gw16210.fortimail.com.
TXT Records
  • 8tbf7jus64isf2c58ffalmv4ip
  • v=spf1 include:_spf.divalsafety_com._d.easydmarc.pro -all
  • MS=939F71B48A2BA4799E9F2025280E6E5579CE1FE9
  • MS=9D256638635F4CCD41F67313B303664920F8CC5F
  • duo_sso_verification=uEguJyJ13Ua1gSXDCJDJcWgzmButS3ue7XgFKCYozeU9XRHobqjtbXdq0MKdRkuU
  • juottdi8ch95hsqlla6c939ck3
  • MS=ms97762996
  • 68hdip68nn5br83ibkstjaruh0
  • MS=ms67975985
  • Oce8Vfo+B5rmRqKCjBXIjUuZz73+Ig1/rNcDV1mg9B33F8DiagbSHeozsjDZlZoUTIm/5Hh7j4vmJyyE+MXLnQ==
  • lbc341mikl5v1m61ehuecccm5k
  • MS=ms69835763
Cloud / SaaS Services Detected
Microsoft 365 Cisco Duo

Leak Screenshot:

Leak Screenshot