Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Treasury of Cote d'Ivoire

Group: hunters

Discovered by ransomware.live: 2024-05-13

Estimated attack date: 2024-05-13

Country: CI

Description:

Country : Côte d'Ivoire - Exfiltraded data : no - Encrypted data : yes

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 446

Third Party Employee Credentials: 11

External Attack Surface: 10


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • herve.akeboue sndi.ci
MX Records
  • ALT2.ASPMX.L.GOOGLE.COM.
  • ASPMX4.GOOGLEMAIL.COM.
  • ASPMX5.GOOGLEMAIL.COM.
  • tresor-gouv-ci.mail.protection.outlook.COM.
  • ASPMX.L.GOOGLE.COM.
  • ALT1.ASPMX.L.GOOGLE.COM.
  • ASPMX3.GOOGLEMAIL.COM.
  • ASPMX2.GOOGLEMAIL.COM.
TXT Records
  • MS=ms44870794
  • v=spf1 include:spf.protection.outlook.com ~all
  • google-site-verification=nqCBLf0cxAYrrp2c45rHGYW_cQrdh2lCq3bDUgdiN0Y
  • MS=32EDD1E805F002FE70EB65AF515F53515861776A
Cloud / SaaS Services Detected
Microsoft 365

Leak Screenshot:

Leak Screenshot