Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo gnc.com

Group: dispossessor

Discovered by ransomware.live: 2024-04-19

Estimated attack date: 2020-07-22

Country: US

Description:

gnc.com

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 2840

Third Party Employee Credentials: 24

External Attack Surface: 53


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • gnc-com.mail.protection.outlook.com.
TXT Records
  • jimpmnn5ppq91b7c9qjbfd0v8s
  • kkLYEvS05/ENI9uGsHfR49l3qMVF91/KQxfrCjyaTfnb0S5kOgCHyyKeIvD58hR+ZLB/Ql0fuh/NWJkI3fQ6CA==
  • v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCkqwnIPyNE2ep7ZYkTuXqWHacOZo6fT0VJw0gj2kA6zX8TctwsfEyzUj3X6/u/8ItaGxnnVPZKl3fvKjPfvGVXdqpBL3MLSYSI/AcFnJZkJmbJ/sxVIojvINkiO0+tVtHnkosgPpQQVVmFs2QxvDoFg3eTDbWTaOSxcxsbD6YodwIDAQAB
  • v=spf1 mx ip4:68.235.220.103 ip4:68.235.220.104 ip4:68.235.221.231 include:spf.protection.outlook.com a:production-web-gnc.demandware.net include:amazonses.com include:spf.mandrillapp.com include:mailgun.org -all
  • 17c56enrc7amai1r058roooabg
  • 3vmfm6rb3cfeq713rt393uh4pj
  • 4oa769uuhdgl8lagb0pknbjimd
  • 64dkes9u6s5qbu8vn3be3lf70e
  • MS=ms43028561
  • apple-domain-verification=nIt7apUYtJLkkcVl
  • facebook-domain-verification=0j4x4rld0f65pwc61tl3aprhyn05y2
  • ga8bu8vcog9aad085sr4pij8ua
  • google-site-verification=AF_ffjzPxxPgu1nktvQ8ojLcRbSLxG11MeCa81zL89s
Cloud / SaaS Services Detected
Apple Amazon SES/WorkMail Microsoft 365 Mailgun Mandrill

Leak Screenshot:

Leak Screenshot