Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo duopharmabiotech.com

Group: ValenciaLeaks

Discovered by ransomware.live: 2024-09-18

Estimated attack date: 2024-09-18

Country: MY

Description:

Data Exfiltrated : 25.7GB - Leak Date : 23.08.2024:04:00

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 9

Third Party Employee Credentials: 9

External Attack Surface: 3


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • alt4.aspmx.l.google.com.
  • duopharmabiotech-com-2.fortimailcloud.com.
  • duopharmabiotech-com-1.fortimailcloud.com.
  • aspmx.l.google.com.
  • alt1.aspmx.l.google.com.
  • alt2.aspmx.l.google.com.
  • alt3.aspmx.l.google.com.
TXT Records
  • v=spf1 ip4:168.128.135.200 ip4:203.106.223.161 ip4:203.106.221.65 ip4:175.143.4.190 ip4:60.51.17.113 include:_spf.google.com include:_spf.fortimailcloud.com -all
  • D8917292
  • MS=F789E4E789A91126F8653AD2A9D9720A359E67EE
  • ZOOM_verify_v7WncMJ8SXOIqeLiNrXIJw
  • google-site-verification=ZcVlFbW-Nex0P59bR9gMotx9Ze0oQK-XiGeZ943OZqc
  • q5vjkuos6btt91evrt08862rno
Cloud / SaaS Services Detected
Fortinet Zoom

Leak Screenshot:

Leak Screenshot