Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Herrs

Group: alphv

Discovered by ransomware.live: 2024-02-13

Estimated attack date: 2024-02-13

Country: US

Description:

Herr's is an American brand of potato chips and other snack foods produced and marketed by eponymous private American company Herr Foods Inc. based in Nottingham, Pennsylvania. While their products are sold primarily throughout the Eastern United States and Canada, their stronghold is the Mid-Atlantic region.


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • herrs-com.mail.protection.outlook.com.
TXT Records
  • syCyPOzxILuF/imxL3HRxdYhTpAQHfhjfNAHHeUX8mfHFwsHrOAEW19FSH8sWFe7Atz7txlyQG38PZv0Pbiyyw==
  • 4eseaibgufu4vapl0n7504jj5h
  • M1MIRmk0ri6Ch9gKYzac0hTLy8sF8eE+zrBy0u77jdY=
  • klaviyo-site-verification=WhCW4G
  • smartsheet-site-validation=Vp3830Ck_9HTG4mzYoSLFqqeHgT-GOWb
  • apple-domain-verification=5le0UwcClQ3uth0V
  • vHb5cShbac3cEQfi4q5D34hOG1GjDwrucZhmh+IyfSs=
  • v=DMARC1; p=quarantine; pct=100; sp=quarantine; fo=1; ri=43200; rua=mailto:citrixadmins@herrs.com; ruf=mailto:citrixadmins@herrs.com; aspf=r; adkim=r;
  • v=spf1 include:spf.protection.outlook.com a:mail.herrs.com ip4:146.145.244.131 ip6:2603:1000::/24 ip4:65.151.33.74 ~all
  • 8clv74rksoh9guhtis2p8rlcv3
Cloud / SaaS Services Detected
Apple

Leak Screenshot:

Leak Screenshot