Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Octapharma Plasma

Group: Blacksuit

Discovered by ransomware.live: 2024-04-23

Estimated attack date: 2024-04-23

Country: US

Description:

What kind of data was taken from Octapharma Plasma network:

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 1

Third Party Employee Credentials: 1

External Attack Surface: 0


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abusecomplaints markmonitor.com
  • whoisrequest markmonitor.com
MX Records
  • mxa-005e3e01.gslb.pphosted.com.
  • mxb-005e3e01.gslb.pphosted.com.
TXT Records
  • QDM04qZpmEriXp23EntG3auDutfEaiDkQCGk5u+o5nmbQ52ulK0BTmcbfGNAfAAixivR+fKuAq19q+2A/haMVw==
  • google-site-verification=t19QMw6T6fPJpFivhMGW4jvEzMFv_SvGKu4ItSEiU18
  • _9cdirayqm1w8tmtmtfief39t64ma1ay
  • ff0e777b8f914d239cd5dec1f87f217a
  • google-site-verification=sUw2spYPnyhZHyBCaUj0mW-OAIPd0BhtUbZNe6xIvnA
  • v=spf1 ip4:94.230.213.50 ip4:216.81.144.165 include:spf-005e3e01.pphosted.com -all
  • xjm1l5607lphq0xglkcqymk99g4bzg6f
Cloud / SaaS Services Detected
Proofpoint

Leak Screenshot:

Leak Screenshot