apollomd.com
apollomd.com
Group: Qilin
Discovered by ransomware.live: 2025-06-12
Estimated attack date: 2025-06-06
Country:
Description:
All data of this company will be available for download on 16.06.2025.ApolloMD is a fully integrated and coordinated national group practice,that partners with more than 100 leading medical facilities across the country to provide multidiscip ...
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 2
Third Party Employee Credentials: 1
External Attack Surface: 1
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- us-smtp-inbound-2.mimecast.com.
- us-smtp-inbound-1.mimecast.com.
TXT Records
- sending_domain86652=274054623188ec25bb9adbf8cd99526311d869af25f9afb0f60cfea011493db3
- atlassian-sending-domain-verification=a5f72d19-6815-4311-9c85-9702f070d523
- 0ed1fe018a25e0e25671e14ca0b8761a7157ff30a0
- v=spf1 ip4:207.246.254.85 include:spf.protection.outlook.com include:_spf.salesforce.com include:us._netblocks.mimecast.com -all
- Account Engagement emails pass SPF automatically, but we recommend setting it up as a best practice.
- pardot86652=c7f729b376ac2fe11671a55e925ca7a96c14045056d29869c02bcd77df19936a
- Cr08MFtlcc+v8Cb7zPo/z3jrOazkwUeDr6W1S/UIL3bS8pyDMd8VeNao6nUKBhQ10r7cShkJRhG6NQMtZVlC8A==
- ZOOM_verify_Wubs23u9Q8CbDBp9l-HUmA
- apple-domain-verification=ikapFfxh1iBQtFeB
Cloud / SaaS Services Detected
Apple
Salesforce
Mimecast
Zoom
Leak Screenshot:
