Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo NCheng

Group: SilentRansomGroup

Discovered by ransomware.live: 2025-05-06

Estimated attack date: 2025-03-20

Country: US

Description:

NCheng LLP was founded in 1989 in New York City. Our practice is dedicated entirely to serve the not-f…

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 1

Third Party Employee Credentials: 3

External Attack Surface: 1

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • compliance domain-inc.net
MX Records
  • d341995a.ess.barracudanetworks.com.
  • d341995b.ess.barracudanetworks.com.
TXT Records
  • MS=ms72195677
  • intacct-esk=18AB01173CC0EDD9E0636106690A2D1C
  • intacct-esk=4FED1A4351655282E053D206A8C00558
  • k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDcteF8Zi2NdDSv7NEkWr+R5BHLLX/EsadPrxbrDcUL1Mm+5v4iJ7Rgvtcl7NZLy1pbY53pVfGKhVZHaUYTbT8xHNEQ5965xjjq9/BMEzPeGWDKYy5ZSHMCuCLfG8Ovc87n3qxzvPCwY9VuVJ3NPiPA7KWYk/6ZWH+JrYV4PRDTDwIDAQAB
  • t7fo4v9vm8q6ldhp7bdk3k6jjr
  • v=spf1 include:spf.protection.outlook.com include:spf.us.exclaimer.net include:_spf.intacct.com include:spf.ess.barracudanetworks.com -all
Cloud / SaaS Services Detected
Microsoft 365