Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Sting AD

Group: hunters

Discovered by ransomware.live: 2024-03-19

Estimated attack date: 2024-03-19

Country: BG

Description:

Country : Bulgaria - Exfiltraded data : yes - Encrypted data : yes

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 5

Compromised Users: 32

Third Party Employee Credentials: 0

External Attack Surface: 14


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse enom.com
MX Records
  • kg-2.stingpharma.com.
  • kg-1.stingpharma.com.
  • kg2.stingpharma.com.
  • stingpharma-com.mail.protection.outlook.com.
TXT Records
  • MS=88EBC9B3E65585468741032CC0AB976A3C409F28
  • v=spf1 mx a:kg2.stingpharma.com a:kg-2.stingpharma.com a:kg-1.stingpharma.com ip4:84.242.167.154 ip4:84.242.167.136 ip4:84.242.167.137 include:spf.protection.outlook.com -all
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot