Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo diavaz.com

Group: Lockbit3

Discovered by ransomware.live: 2023-02-18

Estimated attack date: 2023-02-18

Description:

The DIAVAZ Group is an organization of companies and strategic alliances created mainly to provide integrated solutions for the oil industry using the most advanced technologies available on the market.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 4

Compromised Users: 17

Third Party Employee Credentials: 15

External Attack Surface: 4


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuso akky.mx
  • abuse akky.mx
  • ayuda akky.mx
MX Records
  • aspmx.l.google.com.
  • alt3.aspmx.l.google.com.
  • alt4.aspmx.l.google.com.
  • alt1.aspmx.l.google.com.
  • alt2.aspmx.l.google.com.
TXT Records
  • v=spf1 include:_spf.google.com include:spf1.successfactors.com include:amazonses.com ~all
  • MS=ms47084896
  • nd56e7rkpbj0ugkv3nmo1uv819
  • v=DKIM1; k=rsa; p=MIGf\"MA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDC90OY7A5BYLpzMpnTQpXfsNHBSKjAGKXN2q7XVNvTlLNc2VWaAUijFfwBZd38hA9sdGHOhaw66JNyJy1yP9/bWrLojTXGyFiwZUYO8Pjk5pYCAo3Ia0OZRhWIlJ57b7zcsvEfkoaeKkaWb5xoUAQjkjRycEMzAVFQ4Gj8NdYKrQIDAQAB
Cloud / SaaS Services Detected
Amazon SES/WorkMail Microsoft 365