Mafi
Mafi
Group: hunters
Discovered by ransomware.live: 2025-04-23
Estimated attack date: 2025-04-23
Country:
Description:
Exfiltraded data : yes - Encrypted data : yes
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 6
Third Party Employee Credentials: 0
External Attack Surface: 4
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse ledl.net
MX Records
- mx19c.antispameurope.com.
- mx19d.antispameurope.com.
- mx19a.antispameurope.com.
- mx19b.antispameurope.com.
TXT Records
- google-site-verification=LWCJUH1FXgUFoYVv1zDvGUKHRR-JGFQg3vP0ERXDHQY
- MS=ms41637487
- AnP77dHw08oWFZpvP+ovE5n7/baCQNMyII0Cq1+AvVC7rLjkot3u5TTMhzQKW7hE51HKq3IbnrkRjuslGbLIwg==
- v=spf1 include:spf.hornetsecurity.com include:spf.protection.outlook.com include:spf.mandrillapp.com include:mail.mafi.at ~all
Cloud / SaaS Services Detected
Microsoft 365
Mandrill
Leak Screenshot:
