Prasaga
Prasaga
Group: fog
Discovered by ransomware.live: 2025-02-04
Estimated attack date: 2025-01-30
Country:
Description:
Extract from Gitlabs: Prasaga, HE2B, Kombinat
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 1
Third Party Employee Credentials: 0
External Attack Surface: 1
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- registrar-abuse cloudflare.com
MX Records
- prasaga-com.mail.protection.outlook.com.
TXT Records
- k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDeMVIzrCa3T14JsNY0IRv5/2V1/v2itlviLQBwXsa7shBD6TrBkswsFUToPyMRWC9tbR/5ey0nRBH0ZVxp+lsmTxid2Y2z+FApQ6ra2VsXfbJP3HE6wAO0YTVEJt1TmeczhEd2Jiz/fcabIISgXEdSpTYJhb0ct0VJRxcg4c8c7wIDAQAB
- mailerlite-domain-verification=d2e78115cb382419200a787161d3b1e3d44874ea
- v=DMARC1; p=none; sp=none; rua=mailto:dmarc@mailinblue.com!10m; ruf=mailto:dmarc@mailinblue.com!10m; rf=afrf; pct=100; ri=86400
- v=spf1 include:spf.protection.outlook.com a mx include:_spf.mlsend.com ~all
- zapier-domain-verification-challenge=86ddc302-b364-4c0c-9537-8d2277f208f6
- 4defd5cb-f3b6-4ee7-923e-1d3b9e8e5d0e=dd3704f5d37010ef28b05738b56a6c1fb055f7fb95c5a9b1e0279f929f415765
- MS=ms56568173
- Sendinblue-code:27cfc6c7f975fc807a97a2a762f4929e
- ZOOM_verify_MuXANHnEUitMwlaNQOL44u
- atlassian-domain-verification=ENSqU6Zy4UHVCh40mjzQRLAvxAtpOA3aglycccqVYp1bGtL/MHVy2G73sdu5jt78
Cloud / SaaS Services Detected
Atlassian
Microsoft 365
Zoom
Leak Screenshot:
