WheelerShip
WheelerShip
Group: hunters
Discovered by ransomware.live: 2024-07-02
Estimated attack date: 2024-07-02
Country:
Description:
Country : United States of America - Exfiltraded data : yes - Encrypted data : no
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 27
Third Party Employee Credentials: 0
External Attack Surface: 0
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- wheelership-com.mail.protection.outlook.com.
TXT Records
- atlassian-domain-verification=lDXeBAitEGlyi6E8xhrFGgZYGhBlMnb3j2FrTBModtjTK8ahyE/pA7zFqUtrf/jT
- facebook-domain-verification=4nx9l3ap4yu9cl25utdyn46czpffya
- google-site-verification=5r5ki_8jkXT64alg2iqjhjqaeUdPk6gy1_FO9uf34fM
- google-site-verification=D63rFdtiEYgAIel7CDH2-CoJ_VESQsG-HcPAMZQ6-6I
- klaviyo-site-verification=UeWjGE
- v=spf1 ip4:164.90.252.159 +a +mx +ip4:192.99.160.229 +include:amazonses.com +include:spf.protection.outlook.com +include:servers.mcsv.net +include:trustpilotservice.com +include:_spf.google.com +include:sendgrid.net ~all
- z9bcr68symr1kpzywtmjtcn4rhzk7ptl
- 9y7hbxvxdxqmbqjkhl59tq28vjtshrtx
- amazonses:sWfcAjoa6NovOupPJ5iojIwRnAD4EfUJcFY0JqBMjVM=
- atlassian-domain-verification=iIlQa5ew42e7FpzmYoTp0FW/Q4bboih9erISiH/L7Xhk18ahaoymoMqM/5tsxvLF
Cloud / SaaS Services Detected
Atlassian
Amazon SES/WorkMail
SendGrid
Leak Screenshot:
