Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo ctsystem.com

Group: cactus

Discovered by ransomware.live: 2024-06-10

Estimated attack date: 2024-05-28

Country: TW

Description:

Download link #1:  https://***************.onion/CTSYSTEM/PROOF/Mirror: https://cactus5dqnqkppa5ayckiyk6dttpqwczdqphv5mxh4dkk5ct544q5aad.onion/CTSYSTEM/PROOF/DATA DESCRIPTIONS: Corporate confidential data, engineering documents, financial data, customer information, personal identification documents, database backups, etc.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 1

Third Party Employee Credentials: 2

External Attack Surface: 0


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • spam.ctsystem.com.
  • mail.simpnic.com.
TXT Records
  • No TXT records found.
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot