Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo eFunda, Inc.

Group: Bqtlock

Discovered by ransomware.live: 2025-07-31

Estimated attack date: 2025-07-31

Country: US

Data exfiltrated: ~670 GB

Ransom: 200 XMR

Description:

efunda.com (270+ subdomains)

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 431

Third Party Employee Credentials: 0

External Attack Surface: 16

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • alt1.aspmx.l.google.com.
  • aspmx2.googlemail.com.
  • alt2.aspmx.l.google.com.
  • aspmx.l.google.com.
  • aspmx3.googlemail.com.
TXT Records
  • v=spf1 a mx ip4:128.242.106.217/29 ip4:173.164.201.18 include:aspmx.googlemail.com -all
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot