Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Sunrise Express

Group: play

Discovered by ransomware.live: 2024-10-30

Estimated attack date: 2024-10-08

Country: US

Description:

United States

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 1

Third Party Employee Credentials: 0

External Attack Surface: 1


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • registrar-abuse cloudflare.com
MX Records
  • mx2-us1.ppe-hosted.com.
  • mx1-us1.ppe-hosted.com.
TXT Records
  • ppe-a1749bf26b94c9f33be86bc092d494b46aa3ad40
  • v=spf1 include:spf.protection.outlook.com include:_spf-us.ppe-hosted.com ip4:35.130.1.10 -all
  • flywheel-domain-verification.www d1d2aed9-fb30-4a2e-975f-0029a3f06e93
  • mscid=lKLjQMHF7y12HicUxHR24Dzr9c56MTG24TeovWYcsVIAo3ayl0OR7gw3kHObEmwQOetqSyfYD+FC9yY7WKfTww==
Cloud / SaaS Services Detected
Proofpoint Essentials

Leak Screenshot:

Leak Screenshot