Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo alfiras.com

Group: lockbit3

Discovered by ransomware.live: 2024-02-09

Estimated attack date: 2024-01-22

Country: AE

Description:

2tb dataEstablished in 1988, Al Firas is a leading contracting company based in Abu Dhabi. As a trusted and known contractor, Al Firas delivers sustainable projects of high quality, including High Rise Commercial and Residential Buildings, School...

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 9

Third Party Employee Credentials: 2

External Attack Surface: 1


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • mx2-eu1.ppe-hosted.com.
  • mx1-eu1.ppe-hosted.com.
TXT Records
  • globalsign-domain-verification=445CF6C76CBA5FF3F64A332CDAAE70E2
  • ppe-366430f4e52988b24fa54607c9e8f9078e2f26f1
  • 4.16.2025
  • v=spf1 include:spf.protection.outlook.com a:dispatch-eu.ppe-hosted.com -all
Cloud / SaaS Services Detected
Proofpoint Essentials

Leak Screenshot:

Leak Screenshot