Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Ethypharm

Group: underground

Discovered by ransomware.live: 2024-07-01

Estimated attack date: 2024-06-20

Country: FR

Description:

Revenue:$ 670M - Country :France


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse iptwins.com
  • info domain-contact.org
MX Records
  • ethypharm.in.tmes.trendmicro.eu.
TXT Records
  • tmes=0cfe68c47844a24ead44f225f72306f4
  • v=spf1 include:spf.tmes.trendmicro.com include:spf.protection.outlook.com ip4:195.137.188.65 ip4:217.167.104.78 ip4:217.167.104.78 ip4:195.25.21.254 ip4:195.171.66.14 ip4:195.171.66.5" " ip4:195.59.49.162 ip4:212.139.247.194 include:spf.sindup.net include:spf.mailjet.com -all
  • /0QABBTbyoyO8l5zj3wncmVo43C8NzLtUWdxXErbGMHdEGhl02P5EvbQOqWaDLbmMhKOrm9EktV/xvZUi65jNQ==
  • docusign=fec36cbf-382b-47d0-be68-f05b8a6e51a9
  • MS=ms79521450
  • docusign=63cea3a1-312f-4ae2-a02b-e2f6301d0a4f
  • vxyzrfrmtktf6rwbr2kwqmjf1x75xh0w
Cloud / SaaS Services Detected
Microsoft 365 Mailjet DocuSign

Leak Screenshot:

Leak Screenshot