atr.com
atr.com
Group: Akira
Discovered by ransomware.live: 2025-01-31
Estimated attack date: 2025-01-31
Description:
Extract from Taking stock of 2024 Part 1
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 2
Third Party Employee Credentials: 2
External Attack Surface: 0
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- atr-com.mail.protection.outlook.com.
TXT Records
- KqAGjPjkXWqXoCPWh5Rb3Z6eAAs26WBx+WzcTGPYwaNO7be8WHTF1Y/rMWBi63ka1/QUpUolFLWzruprLwhPAQ==
- v=spf1 ip4:108.31.144.66 include:spf.messagelabs.com include:spf.protection.outlook.com ~all
- MS=ms36579628
Cloud / SaaS Services Detected
Microsoft 365