Eversendai
Eversendai
Group: nightspire
Discovered by ransomware.live: 2025-07-01
Estimated attack date: 2025-07-01
Country:
Data exfiltrated: 10TB
Description:
Eversendai
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 6
Compromised Users: 14
Third Party Employee Credentials: 6
External Attack Surface: 6
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- eversendai-com.mail.protection.outlook.com.
TXT Records
- MS=ms76401079
- MS=ms91453017
- mefqu3r2fk2943ljg6f4lm7shk
- teamviewer-sso-verification=97b1c7a4e45b4a9192df12a79e16c004
- v=spf1 ip4:40.68.171.247 include:spf.protection.outlook.com ~all
Cloud / SaaS Services Detected
Microsoft 365
Teamviewer