Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Quálitas México

Group: hunters

Discovered by ransomware.live: 2024-09-01

Estimated attack date: 2024-09-01

Country: MX

Description:

Country : Mexico - Exfiltraded data : yes - Encrypted data : yes

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 19

Compromised Users: 1196

Third Party Employee Credentials: 43

External Attack Surface: 106


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • mx02.hornetsecurity.com.
  • mx01.hornetsecurity.com.
  • mx04.hornetsecurity.com.
  • mx03.hornetsecurity.com.
TXT Records
  • uat4es3pnplaj32nbrvqkf0jp8
  • google-site-verification=a-tBcydRGgFhY9Tj1YJN-kqyjVbXOs0fQ2IQ-K-uBdI
  • MS=ms72931261
  • google-site-verification=y2V4Z_Pm5-wzQ4kC27N97nOHDoyvtP2i5Zv_A6p24ww
  • NfeAn5dlGAQexcIZxgMcAfkUeCc1r4eM9jx2zxIoIdO2qQjwYYBsLxOKM0FIGBzpXwKDl48bsQPgxJHEjog
  • MS=ms32117482
  • google-site-verification=b6YLBkFkRBrVQfaubgSOa2Kx3bx4fuqIdZy8cWnYkY8
  • facebook-domain-verification=01onepjfps9go9xouv5vc80cvxpkxx
  • z95PJvMZN38kedPRUNoDjpKmdbBbhwHxWmmwJLOeMBo=
  • MS=ms29557289
  • google-site-verification=Ca4TLIbvhDLKsmK79axOoQTQ_lvtYht8jNXYCVPYcnM.
  • v=spf1 include:spf1.qualitas.com.mx include:spf2.qualitas.com.mx include:spf.protection.outlook.com include:spf.hornetsecurity.com include:amazonses.com include:spf.mittum.com include:spf-us.emailsignatures365.com include:_spf.salesforce.com -all
  • MS=ms24541898
  • google-site-verification=VWyfHoBwldtmA3TzqoIW_MJRZwqsojktHPk_IBH1aTk.
Cloud / SaaS Services Detected
Amazon SES/WorkMail Microsoft 365 Salesforce

Leak Screenshot:

Leak Screenshot