Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Intermed Hospital Mongolia

Group: spacebears

Discovered by ransomware.live: 2024-11-08

Estimated attack date: 2024-10-30

Country: MN

Description:

Largest medical center in Mongolia: - Databases,- Personal data - Other valuable information- dcm, xls, jpg, txt... ect. http://www.intermed.mn

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 344

Third Party Employee Credentials: 11

External Attack Surface: 9


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse datacom.mn
  • radnaabazar.ch intermed.mn
MX Records
  • intermed-mn.mail.protection.outlook.com.
TXT Records
  • v=spf1 include:spf.protection.outlook.com -all
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot