Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Homeland Inc.

Group: Hunters

Discovered by ransomware.live: 2023-11-13

Estimated attack date: 2023-11-13

Country: US

Description:

Country : United States of America - Exfiltraded data : yes - Encrypted data : yes


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse namecheap.com
  • 6676511ce5e84867b7d3bb1a687e99f6.protect withheldforprivacy.com
MX Records
  • homelandinc-com.p10.mxthunder.com.
  • homelandinc-com.p40.mxthunder.net.
  • homelandinc-com.p30.mxthunder.net.
  • homelandinc-com.p20.mxthunder.net.
TXT Records
  • v=spf1 ip4:209.202.229.74 ip4:23.21.134.184 ip4:66.38.124.21 include:spf.protection.outlook.com include:spf.mxthunder.com include:spf.myconnectwise.net -all
  • MS=320C9B10C16FAB7C43C51AB86DB31A0287719522
  • duo_sso_verification=UNUU1FNjKR4pPAE4mZu7klbOOdhskwxvXayZXhur2Z6BmrRHmRHrX1YQ5yhOzcV4
Cloud / SaaS Services Detected
Cisco Duo

Leak Screenshot:

Leak Screenshot