Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo SUMITOMOTOOL

Group: nightspire

Discovered by ransomware.live: 2025-04-13

Estimated attack date: 2025-03-23

Country: TR

Data exfiltrated: 50 GB

Description:

SUMITOMOTOOL(TURKEY)


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • sece.leitstellenservice telekom.de
MX Records
  • mail.sumitomotool.com.
TXT Records
  • apple-domain-verification=Qr3Ntv8kPDiWhN7i
  • google-site-verification=Qtj-wiNpgt3G0qBjp9yHXep3QxJrbKTRb87YuzAlxVs
  • v=spf1 mx ptr ip4:62.153.243.131 ip4:91.106.2.46 ip4:91.106.2.78 ip4:62.153.243.130 include:27194539.spf07.hubspotemail.net -all
Cloud / SaaS Services Detected
Apple HubSpot