Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Mantinga

Group: hunters

Discovered by ransomware.live: 2024-11-18

Estimated attack date: 2024-11-17

Country: LT

Description:

Country : Lithuania - Exfiltraded data : yes - Encrypted data : yes

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 2

Compromised Users: 3

Third Party Employee Credentials: 4

External Attack Surface: 30


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • mantinga-lt.mail.protection.outlook.com.
TXT Records
  • nordpass-domain-verification=4b38f486b4d51acbe3300f7dc132ab0a2aad01b138f0825f550e15fc0ca66912
  • MS=ms58835991
  • ac6483db75b5826ce110aa64ff2b0913
  • have-i-been-pwned-verification=dweb_dxtp6v3rif28kr4mr00egaz1
  • atlassian-sending-domain-verification=4e114aca-42ca-47fc-bc66-e0553b3769e9
  • atlassian-sending-domain-verification=82719e8e-1816-48bf-b2e7-8f4a86bd19a2
  • atlassian-domain-verification=xEYD2RzS7TnvZUfPpTI/DR75d8roawJn5OpBGx8AGfGS0NbLaZAcBRDsIn5F4vc3
  • v=spf1 include:_spf.mlsend.com a mx ip4:88.119.128.25 ip4:81.7.118.170 ip4:81.7.118.169 ip4:185.58.65.33 include:spf.protection.outlook.com -all
  • atlassian-domain-verification=CZeW7WIbozEyqBn47WKTJa5f/c097Ni1E1WhpOugD0oMeHgOvCXmVfKykglKtift
Cloud / SaaS Services Detected
Atlassian Microsoft 365 Have I Been Pwned

Leak Screenshot:

Leak Screenshot