Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Thermosash Commercial Ltd

Group: hunters

Discovered by ransomware.live: 2024-01-04

Estimated attack date: 2024-01-04

Country: NZ

Description:

Country : New Zealand - Exfiltraded data : yes - Encrypted data : no

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 5

Third Party Employee Credentials: 0

External Attack Surface: 7


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • filter1.thermo-4.mailguard.com.au.
  • filter3.thermo-4.mailguard.com.au.
  • filter2.thermo-4.mailguard.com.au.
TXT Records
  • Thermosash Commercial Ltd
  • MS=ms59384270
  • apple-domain-verification=eNVD6Xjh9wdq1sWO
  • v=spf1 a include:_spf.sitehost.co.nz ip4:124.157.113.157 ip4:124.157.109.161 include:customer.mailguard.com.au ip4:103.242.49.9 include:spf.mandrillapp.com -all
Cloud / SaaS Services Detected
Apple Microsoft 365 Mandrill

Leak Screenshot:

Leak Screenshot