Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo archlou.org

Group: kairos

Discovered by ransomware.live: 2024-12-13

Estimated attack date: 2024-12-13

Country: US

Description:

usa - Archdiocese of Louisville

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 1

Compromised Users: 1

Third Party Employee Credentials: 2

External Attack Surface: 1


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • archlou-org.mx2.arsmtp.com.
  • archlou-org.mx1.arsmtp.com.
TXT Records
  • ppe-77dd447418fa23048b64
  • rB7Gh0Ob5cmfFcvlKlJIHaYjjNzJT0ye4F7dlt4R0p5HgwbvNJA+IaMR/DzrEfFKZHTNZ67Kz3WYt+EM0B12mw==
  • google-site-verification=JqEm-0p8UqM6yyATs9ywaSdgufoVO0E6Xs2fABpWymI
  • /1bbqjOCu5lhRAJsRShPqA==
  • v=spf1 mx include:archlou-org.spf.smtp25.com include:outboundmail.blackbaud.net include:spf.protection.outlook.com include:edgepilot.com a:dispatch-us.ppe-hosted.com ~all
  • ro9fjn86qbuthpuok9mikloqvn
  • ca3-bda0cf006b354205b262828d9c0a9c10
Cloud / SaaS Services Detected
Proofpoint Essentials

Leak Screenshot:

Leak Screenshot