Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo INNOVATION COLLABORATION SYNERGY

Group: royal

Discovered by ransomware.live: 2023-02-06

Estimated attack date: 2023-02-06

Description:

ICS Nett delivers innovative solutions to critical challenges facing the nation and the world. As a premier provider of integrated services and solutions for the U. S. Government, it supports the Department of Defense, Cyber & Intelligence community.Pass archive: UwxKnTbZ5LsrPSxqSPKNsTjVKWWU9jRzgTS


🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 1

Compromised Users: 12

Third Party Employee Credentials: 0


External Attack Surface: 3


Infostealer Distribution


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • smtp1.emailprotection.us.xcitium.com.
  • smtp2.emailprotection.us.xcitium.com.
TXT Records
  • v=spf1 ip4:3.19.220.157 include:spf.protection.outlook.com -all
  • MS=2A61FB465BB6AA7D5AD255A19CCDD93410C58937
  • glams237p8qpagae70plkupvs3
  • google-site-verification=__mW7s9CQe-_QKdtEbmphC11afNhE7ogmFSgBZ8b2Lc
  • v=verifydomain MS=9081670
Cloud / SaaS Services Detected
Microsoft 365