Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Sansone Group

Group: hunters

Discovered by ransomware.live: 2025-04-04

Estimated attack date: 2025-04-04

Country: US

Description:

Exfiltraded data : yes - Encrypted data : yes


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • sansonegroup-com.mail.protection.outlook.com.
TXT Records
  • apple-domain-verification=qbCbyhYQPsMIGp7U
  • duo_sso_verification=c0C9uDCrMLoWhvN5QrEw7L5igldnF7ExIdCHcdp2KvSSRSUBHLvCIRTlRpJuGXqF
  • google-site-verification=PEtF0INUNGbJN1Y4MTNZB-bVS9Tgj0w2mh4TJHl37kk
  • k4b8q127u9r3r2fl3lshl0pv5j
  • le55i0nnnl89f627khp8lu3u0h
  • rbn4ohiij28a6n9a12961r1uo6
  • sophos-domain-verification=e79842dda04a3b1d318440859614bd79befe3aa7d240d672a375d6687c547c4b
  • v=spf1 ip4:35.134.180.50 ip4:76.231.243.140 include:spf.ess.barracudanetworks.com include:spf.protection.outlook.com include:spf.US.exclaimer.net
  • vpnvn1gm16p4m3s29di7u8eqan
  • zyKxVroo
  • 35j3294qcol39bkp2palbovj2g
  • MS=5EA571A694BE819DCF508282F50A9D3970750EF8
Cloud / SaaS Services Detected
Apple Cisco Duo Sophos

Leak Screenshot:

Leak Screenshot