Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Pennvet.com

Group: cloak

Discovered by ransomware.live: 2024-09-25

Estimated attack date: 2024-09-25

Country: US

Description:

Country: USA

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 1

Compromised Users: 3

Third Party Employee Credentials: 1

External Attack Surface: 17


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
  • kn8sv9z63re networksolutionsprivateregistration.com
MX Records
  • mx0a-007f7901.pphosted.com.
  • mx0b-007f7901.pphosted.com.
TXT Records
  • ap0ofiqsvlhjlvob0l9una37jl
  • google-site-verification=Wk93t9ZaN1Ia3nuKayFoY7bGn_N6EWluG1isvRI2Jj4
  • google-site-verification=czeGtJJpmx6eRBdI3c4o1uLVCZ5loT3h88wmeKULt64
  • solarwinds-service0desk-verification=51d7bddd68695d7038b95d292d83815f
  • v=spf1 mx ip4:50.120.213.69 ip4:50.120.213.66 ip4:50.217.182.194 ip4:50.217.182.206 ip4:52.190.40.209 ip4:149.72.147.186 ip4:167.89.101.239 ip4:67.231.145.142 ip4:67.231.153.102 include:us-k1.o365.crossware.co.nz include:_spf.samanage.com include:spf.prot" "ection.outlook.com -all
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.