Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo esinsa.com

Group: dispossessor

Discovered by ransomware.live: 2024-04-19

Estimated attack date: 2023-04-24

Description:

Esinsa is a company that operates in the Machinery industry. It employs 21-50 people and has $10M-$25M of revenue.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 6

Third Party Employee Credentials: 6

External Attack Surface: 0


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • mx-02-us-east-2.prod.hydra.sophos.com.
  • mx-01-us-east-2.prod.hydra.sophos.com.
  • esinsa-com.mail.protection.outlook.com.
TXT Records
  • k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDVST9S2y00s11zC5UZJ8VcRRyEoU05O+eTQsm76uYUuzxPi3UeWC66KrxCEdm2sVMKyw0Z+N/mujkrUIl708vecmzIm1PmadEAByxpNsJ7KX2IJKJCDfhTwEa44x8IaJsnofyPJ9yA9QHnzxsb/OKF6+GVCt1Ta4ss1SC/tkEchQIDAQAB
  • v=spf1 include:spf.protection.outlook.com include:_spf_useast2.prod.hydra.sophos.com include:_spf.google.com include:zoho.com -all
  • sophos-domain-verification=e6c29c76ecf3a2686ef253d0052cd8ae87788ebc
  • facebook-domain-verification=r89hbnemgd01t8jzgdcxv6skez691t
  • zoho-verification=zb98912058.zmverify.zoho.com
Cloud / SaaS Services Detected
Zoho Campaigns Zoho Mail Sophos

Leak Screenshot:

Leak Screenshot