farmatodo.com
farmatodo.com
Group: akira
Discovered by ransomware.live: 2025-01-31
Estimated attack date: 2025-01-31
Country:
Description:
Extract from Taking stock of 2024 Part 1
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 13
Compromised Users: 111
Third Party Employee Credentials: 69
External Attack Surface: 120
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- farmatodo.in.tmes.trendmicro.com.
TXT Records
- N3UK6ALCS7FYX2IG8Q6ELR4VYU3FVDF2X2N6AALB
- _8fxwegn29dxlp2di6p5unx1b1fkt97p
- google-site-verification=5PzVOmwcrZJkoRYhMAEOGueqgTBnefOoohKoOwBJ_50
- _49jl3pyxr0s5y5vceztwqbyjcplv87c
- MS=ms33661023
- google-site-verification=ogvBdcLDXxC0n0QFnATkmUUuzmu75jvW6_pRXcQx18s
- google-site-verification=hXZBu6k8ohplL6166T8iRVr_DOGtXkjAtu_2cmViQ70
- atlassian-domain-verification=2xTK/+U3z1DTjm3msszR75ayyPXOAPk5+n4axBZfWAHIzmZJGfd9UY43oyquTYkq
- MS=ms61559786
- pinterest-site-verification=75fb18e07245971d99ec9e45bb8a0fab
- JX1C8YB5IWfw6Lox9qjr30MbRRnit11V1BYIlLv62JPK/RAwl/dOGugQwyJB//zb9iEA3vsdbZbMc1YL4hntHw==
- MS=ms39778877
- google-site-verification=iLodw_ipF3jbxT56kwQ5EFghwMaw22CD2-76Zt3RJ8s
- ZVZ4UI0LF7P0Q9M7L6BZ0KPPMJ2TYP53RSUJDEB1
- google-site-verification=8zxCh71lc0dlFqPFGJbn_MdW0i_es2nyxT4KwI9lUNc
- google-site-verification=lB1dTJBNbOPWluPz5vYSU3T2Cy9ClEvHJlODbesCDKQ
- google-site-verification=69Uavv4VPTMsw9PM6z2ZtWj-bth4HKKjOFF9gTxlbqY
- sxb6s8xnbj8lhdcr0q1y1mrjm143l22n
- tmes=7c90e6ec1fff6d2d8e37f07630f14e78
- v=spf1 include:spf.tmes.trendmicro.com include:_spf.google.com include:_spf-amer.onbmc.com -all
- google-site-verification=-W0XeptWtt5DjEEtLnf8m0lmN6vnQkqGF-tnobdFDj0
Cloud / SaaS Services Detected
Atlassian
Microsoft 365