Ocuco
Ocuco
Group: killsec
Discovered by ransomware.live: 2025-04-01
Estimated attack date: 2025-04-01
Country:
Description:
N/A
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 4
Compromised Users: 19
Third Party Employee Credentials: 2
External Attack Surface: 14
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse instra.com
- info domain-contact.org
MX Records
- ocuco-com.mail.protection.outlook.com.
TXT Records
- apple-domain-verification=KEJOWTMZETcGpAJk
- cursor-domain-verification-gk4ka3=jeNszhE6nSPe2wf1spFCjax6u
- t41rpsdqtyjyhvhqrq92g11ggb905r08
- kizg+MMNjwdDitH5AqpDgmOMEPS+00YYhCjvAbuOry+YCVQYWq0glMT/0TtKeuenQkVnnGfOIcEpFlawDheB9A==
- atlassian-sending-domain-verification=ed3b2451-5ff9-454a-aee1-65a9680e4709
- mandrill_verify.WVN90Qyb5BdKm7kommcAew
- cassidy-verification=9a4805b6163c476caa40c0d868a12bc2
- monday-com-verification=uHPPjm5p9pOyoPYCSKwt9uSPhWV09e4tfZLPHa6YFJE
- sendinblue-code:069c9fe031f2843ce34890d5b5d877cf
- FVIJDLFQB
- MS=ms96626410
- google-site-verification=bfHXFfJlTRPKpKtDDTFkznL190ZiarGxPewyqKk7Ef8
- google-site-verification=H5UEWzHtgmZMwxQH2FMifLHg6tQ__Jsb7gnb0LA0UMM
- v=spf1 ip4:208.98.208.16 ip4:51.141.40.57 ip4:40.81.120.87 ip4:92.51.244.100 ip4:67.226.180.229 ip4:66.11.85.194 ip4:38.88.67.34 ip4:167.89.1.26 ip4:82.201.109.162 ip4:168.245.44.30 ip4:168.245.26.6 include:et._spf.pardot.com include:_spf.salesforce.com i" "nclude:cust-spf.exacttarget.com include:mailsenders.netsuite.com include:spf.emailsignatures365.com include:spf.protection.outlook.com include:spf.interconnect.nl include:139670173.spf05.hubspotemail.net ~all
- duo_sso_verification=mY4XYy2xUHRCctepNT89fu39Yirz1Ic2eoQFjngpM2ylhsnS5BomYv8lNEvIglhI
- atlassian-domain-verification=lfi1Rt2oby/ggbyEahsMolJR8xX2/Ma3kdJHtDoi1se4PqoHuETJjxTit9I7qGR3
- google-site-verification=ld8f3Ty9GyV5Htp99nRkGbCQMYDemVR1HV8CK7OfQ0M
Cloud / SaaS Services Detected
Apple
Atlassian
HubSpot
Mailchimp
Microsoft 365
Salesforce
Cisco Duo
Leak Screenshot:
