Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo airfastindonesia.com

Group: warlock

Discovered by ransomware.live: 2025-08-25

Estimated attack date: 2025-08-25

Country: ID

Description:

all user data

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 3

Compromised Users: 4

Third Party Employee Credentials: 4

External Attack Surface: 7

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse joker.com
MX Records
  • mail.airfastindonesia.com.
TXT Records
  • MS=ms16358441
  • v=spf1 +mx +a +ip4:202.169.46.237/32 +ip4:183.91.85.45/32 -all
Cloud / SaaS Services Detected
Microsoft 365