Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo H&H Group

Group: medusa

Discovered by ransomware.live: 2024-07-23

Estimated attack date: 2024-07-16

Country: US

Description:

The H&H Group is full-service printing and sign shop. The H&H Group corporate office is located in 854 N Prince St, Lancaster, Pennsylvania, 17603, United States and has 40 employees. The total amount of data leakage is 395.8 GB


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • hh-global.mail.protection.outlook.com.
TXT Records
  • MS=ms40836833
  • v=spf1 ip4:13.69.68.15 ip4:203.176.100.42 ip4:172.188.122.108 ip4:121.91.105.66 ip4:121.91.105.67 ip4:35.242.247.107 include:shops.shopify.com include:spf.protection.outlook.com include:spf.mandrillapp.com include:eumail.docusign.net include:_spf.psm.know" "be4.com -all
  • v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCrLHiExVd55zd/IQ/J/mRwSRMAocV/hMB3jXwaHH36d9NaVynQFYV8NaWi69c1veUtRzGt7yAioXqLj7Z4TeEUoOLgrKsn8YnckGs9i3B3tVFB+Ch/4mPhXWiNfNdynHWBcPcbJ8kjEQ2U8y78dHZj1YeRXXVvWob2OaKynO8/lQIDAQAB;
  • successfactors-site-verification=NmY3ZTYyNzQ0MGJkNTMxMWVkNzlhNzI0NjhkNTA0ZTQ0MjZkY2ExZmZjMWEyZGJlOGUyOWVhNWVmZmQ1N2FhOQ==
  • successfactors-site-verification=MTljNWUyY2ZjYmExNmZlYWQ1NmJmOWI5NjdmYTczZmRlZTkwNmM5YTg0ZGYxMGE2MmFlODE3NGUxNjc3OWRiNg==
  • shopify-verification-code=GmnpK9AD4U3IvpdVHeD9hSE2mbicna
  • docusign=5190d16f-fa5d-41fc-a0f6-0e7fc2987c86
  • amazonses:LgFUk/Cw2TaT0ImV3gXENeAD1mhaAH1wmQ7HPK5kdzA
Cloud / SaaS Services Detected
Amazon SES/WorkMail Microsoft 365 Shopify Mandrill DocuSign

Leak Screenshot:

Leak Screenshot