Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo INTERNAL.ROCKYMOUNTAINGASTRO.COM

Group: trinity

Discovered by ransomware.live: 2024-09-15

Estimated attack date: 2024-09-15

Country: US

Description:

330Gb - Revenue: $60.3 Million - Publication date: 2024-10-16

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 1

Compromised Users: 0

Third Party Employee Credentials: 0

External Attack Surface: 1


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • rockymountaingastro-com.mail.protection.outlook.com.
  • mx1-us1.ppe-hosted.com.
  • mx2-us1.ppe-hosted.com.
TXT Records
  • zoho-verification=zb07719370.zmverify.zoho.com
  • v=spf1 a:Mail.rockymountaingastro.com ip4:199.189.169.16/28 ip4:199.189.168.0/27 include:spf.protection.outlook.com include:_spf.psm.knowbe4.com a:dispatch-us.ppe-hosted.com ~all
  • 7ijrCnbKgRv0swnRq3iwAwLww0FpBx2chLMFLmD6b4KvHlAjhpudq7NpJyGJ1pPgmvJUo3MRB6Z+KKSow4IBNg==
  • is0h38kr66u2l9e4dd9jg4fgfd
  • 4bdnvde44duftm4nr3g5je68l0
  • ppe-aca953b89534c9c786fdd1e642645ef96a056b6e
Cloud / SaaS Services Detected
Zoho Campaigns KnowBe4 Proofpoint Essentials

Leak Screenshot:

Leak Screenshot