Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo HE2B

Group: fog

Discovered by ransomware.live: 2025-02-04

Estimated attack date: 2025-01-30

Country: BE

Description:

Extract from Gitlabs: Prasaga, HE2B, Kombinat

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 1

Compromised Users: 50

Third Party Employee Credentials: 44

External Attack Surface: 2


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • alt2.aspmx.l.google.com.
  • alt1.aspmx.l.google.com.
  • aspmx.l.google.com.
  • aspmx2.googlemail.com.
  • aspmx3.googlemail.com.
TXT Records
  • google-site-verification=l4ZUwfxZCEhKR2a_T5LPw-iUP7f0t3N6BUbJCh78HKA
  • v=spf1 ip4:193.190.147.81 include:_spf.google.com ~all
  • brevo-code:fde2c753a1c7836189d05eddf5c858de
  • google-site-verification=LxxbSrAg66goM5ewCmvtkwudKTKKRl6Sxj9MjrEMi-g
  • google-site-verification=i9yneEq26HN5-OWltKOT-xYCLxrK3CM0r2ao1HIZJPQ
  • google-site-verification=vsXkUqNB-8HlO23MmSuJXYw7fIi1qMZ4zDxGLzB2fmM
  • MS=ms76941324
Cloud / SaaS Services Detected
Microsoft 365

Leak Screenshot:

Leak Screenshot