Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Jangho Group

Group: hunters

Discovered by ransomware.live: 2024-08-02

Estimated attack date: 2024-08-02

Country: CN

Description:

Country : China - Exfiltraded data : yes - Encrypted data : yes

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 9

Compromised Users: 7

Third Party Employee Credentials: 8

External Attack Surface: 9


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • DomainAbuse service.aliyun.com
MX Records
  • mail.jangho.com.
TXT Records
  • apple-domain-verification=M15orT5JHaXPEOIz
  • v=spf1 ip4:210.87.247.25 ip4:218.205.146.135 ip4:218.205.146.136 ip4:218.205.146.130 ip4:42.99.128.101 ip4:223.197.179.226 ip4:202.66.31.34 ip4:119.73.176.22 ip4:218.205.146.153 ip4:218.205.146.157 include:spf.icoremail.net -all
Cloud / SaaS Services Detected
Apple

Leak Screenshot:

Leak Screenshot