Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Sysmex

Group: hunters

Discovered by ransomware.live: 2024-03-29

Estimated attack date: 2024-03-29

Country: JP

Description:

Country : Japan - Exfiltraded data : yes - Encrypted data : no

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 10

Compromised Users: 72

Third Party Employee Credentials: 11

External Attack Surface: 48


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • mxb-00055f01.gslb.pphosted.com.
  • mxa-00055f01.gslb.pphosted.com.
TXT Records
  • amazonses:nmSDacLiZp5TMyQLu7PPJrTB8Xvn9O6tapjKJ463kWM=
  • docusign=cd9f5619-1bd8-4148-b132-f0ab2cb35d4d
  • notion-domain-verification=28P69vcFGZu2IoBTjCuNwUyLkCR4WzYe06dZXy8mQIR
  • rca7c2kp5flvt00f551vbd55uk
  • C9AC-A07F-4EB9-C9DD-4E3E-0B50-999C-B832
  • ibmid=b3264fc6-5dce-4824-a89e-3f2fe1187a51
  • kq27hi6a05cp9d9nt848a4ns3t
  • amazonses:wNKzlJ/5d6/lMzdy/zAWzdp36R+RoUDa/uIReqGzHFQ=
  • docusign=91d1da62-45cc-4335-b8d1-8543ab3ddff4
  • v=spf1 include:%{ir}.%{v}.%{d}.spf.has.pphosted.com include:spf.protection.outlook.com include:mail.zendesk.com include:mktomail.com ~all
Cloud / SaaS Services Detected
Amazon SES/WorkMail Zendesk Marketo DocuSign Proofpoint

Leak Screenshot:

Leak Screenshot