Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Hunt Guillot & Associates

Group: snatch

Discovered by ransomware.live: 2023-11-29

Estimated attack date: 2023-11-27

Description:

HGA is a multi-disciplined project management and engineering services company providing professional services to an extensive portfolio of customers throughout numerous industries for more than 20 years.


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • mx2.hc3640-35.iphmx.com.
  • mx1.hc3640-35.iphmx.com.
TXT Records
  • ocahtd91oqb5bhnl24d6erfmb1
  • MS=ms70229676
  • 5C89Ux6EdwVXmqqDvZWyIlkCIhhuFc1ajSptRFRYA7BXMsfBFxAAg8qeMU6SMEW29UvdSwQtGmp1wWwt1Upy/Q==
  • k7o93bof0h8af1h1fvla7e73l
  • fortinet-fortiphish-site-verification=A6KWv9dsvrUh2iadewZvhU
  • v=spf1 ip4:208.46.188.212 include:spf.protection.outlook.com include:_spf.bullhornmail.com -all
  • lc83tk31nm36bp0tlcddg07f62
  • var41tu2187g0aljc2l16i2l84
Cloud / SaaS Services Detected
Microsoft 365 Fortinet

Leak Screenshot:

Leak Screenshot