Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks


Group Killsec
Discovered 2025-09-22 09:25 UTC
Est. attack date 2025-09-22
Country GB

Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 3

Third Party Employee Credentials: 8


External Attack Surface: 4


Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • c76d38a5ceba4df5809a613e9303934027be6dacd9ae1a3da79dbfa61040ee85fractalite.com.whoisproxy.org
  • c76d38a5ceba4df5809a613e93039340413a49700d535dd4853a4fde241dbc8efractalite.com.whoisproxy.org
  • c76d38a5ceba4df5809a613e930393400b03db3f3b84a20a2c5be3eef51d16a8fractalite.com.whoisproxy.org
  • c76d38a5ceba4df5809a613e9303934090bde7d9a86da2770b7eaa74ef37d7fffractalite.com.whoisproxy.org
  • trustandsafetysupport.aws.com
MX Records
  • alt1.aspmx.l.google.com. Google Workspace
  • alt2.aspmx.l.google.com. Google Workspace
  • aspmx2.googlemail.com. Google Workspace
  • aspmx3.googlemail.com. Google Workspace
  • aspmx4.googlemail.com. Google Workspace
  • aspmx5.googlemail.com. Google Workspace
  • aspmx.l.google.com. Google Workspace
TXT Records
  • brevo-code:02afa3bb6fe6137eb6973dc38d7d5c8e
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot