Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo apollohospitals.com

Group: killsec

Discovered by ransomware.live: 2024-10-20

Estimated attack date: 2024-10-20

Country: IN

Description:

Apollo Hospitals is one of India's leading healthcare institutions, offering world-class medical services across multiple specialties.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 3

Compromised Users: 94

Third Party Employee Credentials: 58

External Attack Surface: 1


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse-contact publicdomainregistry.com
  • ganeshraj_n apollohospitals.com
MX Records
  • apollohospitals-com.mail.protection.outlook.com.
TXT Records
  • v=spf1 +mx +a +ip4:213.35.96.0/19 +ip4:207.127.109.192/26 +ip4:168.138.160.0/19 +ip4:159.112.172.0/22 +ip4:158.178.240.0/21 +ip4:158.178.224.0/20 +ip4:152.69.208.0/20 +ip4:146.235.16.0/21 +ip4:140.91.56.0/23 +ip4:140.245.96.0/19 +ip4:140.204.54.128/25 +ip" "4:138.2.64.0/19 +ip4:134.70.128.0/22 +ip4:129.150.32.0/19 +ip4:129.148.184.0/22 +ip4:129.148.180.0/25 +ip4:59.144.176.134/30 +ip4:14.143.223.242/30 +include:spf_c.oraclecloud.com include:spf.protection.outlook.com -all
  • vrc318rfa5383dasjlcs9jg71c
  • MS=ms12637134
  • MS=ms18797264
  • MS=ms51702471
  • gk/QHzme+0siEhjXMPbVno1GhqpCxWZAawKGR53iT/0RamFI2/H+JNTytqkKo3hrsV0gh0lpccyA+dyhJE/nXQ==
  • ms-domain-verification=1d7162dd-3bdc-4809-91eb-d4caf4244c0e
  • ms-domain-verification=94892614-a344-4f2c-a9df-313df4707a08
  • ms-domain-verification=a1a75622-b26d-4965-93f9-a966fbbdff2a
Cloud / SaaS Services Detected
Microsoft 365 Oracle Cloud

Leak Screenshot:

Leak Screenshot