citizenswv.com
citizenswv.com
Group: dispossessor
Discovered by ransomware.live: 2024-04-19
Estimated attack date: 2023-12-11
Description:
Part 1. Once again we see how greedy a bank can be , putting their own money above clients interests . Welcome to Citizens Bank of West Virginia, a locally owned community bank which provides a comprehensive line of banking, trust and investment...
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 1
Third Party Employee Credentials: 0
External Attack Surface: 1
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abusecomplaints markmonitor.com
- whoisrequest markmonitor.com
MX Records
- mx2.hc2879-47.iphmx.com.
- mx1.hc2879-47.iphmx.com.
TXT Records
- v=spf1 mx exists:%{i}.spf.hc197966.iphmx.com ip4:66.254.128.0/19 ip4:205.196.224.0/19 include:spf.protection.outlook.com include:spfref.jackhenry.com include:_spf.iriscrm.com -all
- MS=6D65DBB08962310D8CE484F007B0C2E54FA0DF60
- 7o0s8v9ar6tedbcvrcr4vmn4rh
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.
Leak Screenshot:
