Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Pamrya.de

Group: fog

Discovered by ransomware.live: 2025-02-16

Estimated attack date: 2025-02-16

Country: DE

Description:

Extract from Gitlabs: Acqua development, QBurst, Pamyra.de- Pamyra.de is a platform that allows users to compare prices and book shipping services with over 600 verified freight companies.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 50

Third Party Employee Credentials: 0

External Attack Surface: 4


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • alt3.aspmx.l.google.com.
  • alt2.aspmx.l.google.com.
  • alt1.aspmx.l.google.com.
  • aspmx.l.google.com.
  • mxlb.ispgateway.de.
  • alt4.aspmx.l.google.com.
TXT Records
  • atlassian-domain-verification=HOU90H511CZTyg9sfZSlW3PDXcLnDGzk5GemerBpBrbHxzhtg1t4nHck4D48fR58
  • brevo-code:cf8595cdd4299c705cc6d60e1bc8b0f6
  • atlassian-sending-domain-verification=96a12741-3f04-4425-b211-9053f7c3f78d
  • have-i-been-pwned-verification=1734630bf3a87046efaf2970fa75ebbb
  • seobility=7a8c93a9d57acde93ddd7b9257943ae7
  • google-site-verification=ziuG6YD4mPWYCc0DqLNhxnmAAud6wOL3LeguBsvbqx8
  • v=spf1 a mx ip4:192.67.64.0/24 ip4:80.67.16.0/20 ip4:77.91.232.0/21 ip4:62.67.200.0/24 ip4:93.187.232.0/21 ip4:188.93.8.0/21 ip4:185.21.100.0/22 ip4:93.180.152.0/21 ip4:37.200.96.0/21 ip4:176.221.40.0/21 ip4:141.0.16.0/21 ip4:46.252.16.0/20 ip4:109.239.48" ".0/20 ip4:134.119.228.0 include:spf-0.secureserver.net include:_spf.google.com include:_spf.mailgun.org include:_spf.eu.mailgun.org include:secureserver.net -all
Cloud / SaaS Services Detected
Atlassian Mailgun Have I Been Pwned

Leak Screenshot:

Leak Screenshot