Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo esaote.com

Group: babuk2

Discovered by ransomware.live: 2025-03-18

Estimated attack date: 2025-03-18

Country: IT

Description:

esaote.com

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 44

Compromised Users: 61

Third Party Employee Credentials: 19

External Attack Surface: 87

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domainabuse tucows.com
MX Records
  • esaote-com.mail.protection.outlook.com.
TXT Records
  • google-site-verification=EUvg1v3HYcI7B6eMP22tExmSLSDAxgrxbhm1Bcrnce8
  • Sendinblue-code:8130425a3d37d65e659803e04c43d8cc
  • MS=ms89658111
  • apple-domain-verification=29iDdlNqf4ovsviP
  • v=spf1 include:_netblocks.esaote.com ip4:213.92.112.226 " "ip4:213.21.176.178 ip4:46.101.58.97 ip4:213.156.53.83 ip4:77.43.127.67 ip4:213.21.158.77 " "include:spf.protection.outlook.com include:spf.sendinblue.com " "include:spf.byway.it include:_spf.google.com include:spf.massmtp.com " "include:portalmail.assentcompliance.com ~all
Cloud / SaaS Services Detected
Apple Microsoft 365 Sendinblue

Leak Screenshot:

Leak Screenshot