Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo PCTEL

Group: dragonforce

Discovered by ransomware.live: 2023-12-13

Estimated attack date: 2023-12-13

Description:

PCTEL, Inc., together with its subsidiaries, delivers performance critical telecom solutions in the Asia Pacific, Europe, the Middle East, Africa, and the Ameri...


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • pctel-com.mail.protection.outlook.com.
TXT Records
  • docusign=0789166e-d49a-4816-86b7-1b5b248ee7ca
  • v=spf1 ip4:69.16.249.223 ip4:207.106.234.17 ip4:18.233.252.182 ip4:52.204.69.66 include:spf.protection.outlook.com include:aspmx.pardot.com include:_spf.salesforce.com include:spf.emailsignatures365.com -all
  • logmein-verification-code=df230e0e-5271-4ba9-8580-13c75d23f794
  • MS=ms28131313
  • pardot859663=9f617082f624322dd3cbb362d86696a2d74a67f11093a827380ef96cd4fc2910;
  • amazonses:sjOpLl/1WdnL1omHaey1/TFJy4W0NFvnagRKxU77Cm4=
  • amazon-business-verification=e017ab449a0091e60728f3adac3d5c19cdcba840884658f8b26f6a2aeb1c45b1
Cloud / SaaS Services Detected
Amazon SES/WorkMail Microsoft 365 Salesforce LogMeIn DocuSign