Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Microf

Group: qilin

Discovered by ransomware.live: 2025-07-09

Estimated attack date: 2025-07-09

Country: US

Description:

Microf specializes in HVAC and water heater financing solutions with lease-to-own options, particularly catering to homeowners with challenged credit. The company offers a simple application process, quick approvals, and flexible payment plan ...

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 20

Third Party Employee Credentials: 0

External Attack Surface: 7

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • mx4.mtaroutes.com.
  • mx1.mtaroutes.com.
  • mx1.mtaroutes.com.
  • mx2.mtaroutes.com.
  • mx3.mtaroutes.com.
TXT Records
  • sending_domain1017862=25083e4ba85c78ede3fe7936b8c1467e4b97da9d4dcbcabd67c5f0ad0c4654fc
  • v=spf1 include:spf.protection.outlook.com include:_spf.salesforce.com include:spf.mtaroutes.com include:aspmx.pardot.com include:email-od.com ~all
  • MS=33C69257BBBF19F76E442ADE2EE10687DD508AC0
  • MS=ms18680615
  • MS=ms27481784
  • MS=ms53952826
  • MS=ms55887474
  • pardot1016182=7b15496f3073703423c165e15349378b1f96fc06bb4db1680797ea556d4b1886
  • pardot1017862=a6c270fdfc6ea75ea68729663e1b7c1ee348972761bd5844506b4ce55373614f
Cloud / SaaS Services Detected
Microsoft 365 Salesforce

Leak Screenshot:

Leak Screenshot