Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo gstpam.org

Group: babuk2

Discovered by ransomware.live: 2025-01-27

Estimated attack date: 2025-01-27

Description:

gstpam.org

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 9

Third Party Employee Credentials: 0

External Attack Surface: 4


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • alt5.aspmx.l.google.com.
  • alt1.aspmx.l.google.com.
  • alt2.aspmx.l.google.com.
  • aspmx.l.google.com.
  • alt3.aspmx.l.google.com.
  • alt4.aspmx.l.google.com.
TXT Records
  • google-site-verification=mg9boq48KOLLCZOZ68QOGse_ca76ARh0Lc3FfkbAdnE
  • httpcs-site-verification=edec77b016ccc76b3a56c43d3cd431e4d78f4961
  • v=spf1 a mx a:bulkcampaign.in ip4:62.171.158.4 ip4:62.171.158.6 ip4:62.171.158.7 ip4:62.171.158.8 ip4:62.171.158.5 ip6:2a02:c207:2035:6463:0000:0000:0000:0001 include:_spf.google.com include:spf.brevo.com -all
  • brevo-code:7906bb42665fbf5c16b889a7c54379a7
  • google-site-verification=1d9QwN_D1aqA-0CmjkezgWmCaMoSxaVSFCo4fJAHyLk
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot