Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks


Group Killsec
Discovered 2025-09-22 09:25 UTC
Est. attack date 2025-09-22
Country GB

Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 3

Third Party Employee Credentials: 8


External Attack Surface: 4


Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • 9649cfa443a0c4e0e04cc2e495704aeef20afd3d49f4b1dddf7983970afe0868fractalite.com.whoisproxy.org
  • 2e695eb3ffe2a61ac56a4620ed78ce8c1ebb696c0e16deaef591cb1edcf2deadfractalite.com.whoisproxy.org
  • 9649cfa443a0c4e0e04cc2e495704aee064ca5c841c880214a7a4597b3cdebeffractalite.com.whoisproxy.org
  • trustandsafetysupport.aws.com
  • 2e695eb3ffe2a61ac56a4620ed78ce8ccdd052008b4d7fb7705b4613c0acb1c3fractalite.com.whoisproxy.org
MX Records
  • aspmx3.googlemail.com. Google Workspace
  • aspmx4.googlemail.com. Google Workspace
  • aspmx5.googlemail.com. Google Workspace
  • aspmx.l.google.com. Google Workspace
  • alt1.aspmx.l.google.com. Google Workspace
  • alt2.aspmx.l.google.com. Google Workspace
  • aspmx2.googlemail.com. Google Workspace
TXT Records
  • brevo-code:02afa3bb6fe6137eb6973dc38d7d5c8e
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot