Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Villefranche-sur-Saône (Rhône) Hospital Center

Group: ryuk

Discovered by ransomware.live: 2021-02-15

Estimated attack date: 2021-02-15

Country: FR

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 6

Third Party Employee Credentials: 0

External Attack Surface: 1

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • cloud.store orange-business.com
  • NAMANI LHOPITALNORDOUEST.FR
  • VFORTUNE LHOPITALNORDOUEST.FR
  • SMONBON LHOPITALNORDOUEST.FR
MX Records
  • mxa-006fb401.gslb.pphosted.com.
  • mxb-006fb401.gslb.pphosted.com.
TXT Records
  • google-site-verification=fAtvQbS2bM4q92xKAoRI3_73a2IqzdQ-LwBGsKViNPw
  • v=spf1 ip4:217.109.60.110 ip4:217.109.60.119 ~all
  • MS=ms87624876
Cloud / SaaS Services Detected
Microsoft 365