Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Hanon Systems

Group: snatch

Discovered by ransomware.live: 2022-01-13

Estimated attack date: 2022-01-13

Country: KR

Description:

Hanon Systems manufactures a variety of automotive air control equipment. The Company's products include air conditioners, heaters, cooling modules, compressors, radiators, fans, evaporators, and condensers. Hanon Systems distributes its products on an original equipment manufacturing (OEM) basis.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 18

Compromised Users: 90

Third Party Employee Credentials: 77

External Attack Surface: 55


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse gabia.com
MX Records
  • us-smtp-inbound-1.mimecast.com.
  • us-smtp-inbound-2.mimecast.com.
TXT Records
  • MS=ms85841844
  • docusign=73c821fd-c810-41b7-89c4-61126fe2febd
  • v=spf1 ip4:136.16.65.141 ip4:169.62.132.141 ip4:169.62.132.142 ip4:169.62.128.24 ip4:121.153.23.162 ip4:121.153.23.186 ip4:203.251.21.73 " "ip4:203.251.21.79 ip4:209.151.136.204 ip4:211.32.1.68 include:us._netblocks.mimecast.com include:spf.protection.outlook.com -all
Cloud / SaaS Services Detected
Microsoft 365 Mimecast DocuSign