Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Extra

Group: lynx

Discovered by ransomware.live: 2024-11-25

Estimated attack date: 2024-11-23

Country: BE

Description:

https://www.extrashop.be/

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 32

Third Party Employee Credentials: 0

External Attack Surface: 3


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • extrashop-be.mail.protection.outlook.com.
TXT Records
  • knjdvk0l90sgd38ys7g3gmnx3hdfl8kh
  • 9obfhq9sq5khmmjlpq1430lhhh
  • v=spf1 a ip4:188.118.13.49 ip4:81.244.244.226 ip4:188.118.13.51 ip4:82.143.85.230 ip4:94.140.175.137 mx include:spf.protection.outlook.com include:spf.mandrillapp.com ~all
  • MS=ms73339751
  • google-site-verification=vRa49F3VavcmWMTv-JaADOkuuvV9YkP6_35aYhEj6Ho
  • msfbp6uts6upnpp4u61a6cgkp4
Cloud / SaaS Services Detected
Microsoft 365 Mandrill

Leak Screenshot:

Leak Screenshot