kh.org
kh.org
Group: threeam
Discovered by ransomware.live: 2024-03-25
Estimated attack date: 2024-03-25
Country:
Description:
Founded in 1966, Kootenai Health is a hospital that provides patient care services for people in Idaho, Montana, and Eastern Washington. They are based in Coeur d'Alene, Idaho. ...
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 2
Compromised Users: 1
Third Party Employee Credentials: 0
External Attack Surface: 6
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- mx1.hc4552-24.iphmx.com.
- mx2.hc4552-24.iphmx.com.
TXT Records
- _bbxn4frwl64ixv0lufqv3y05v1hhak1
- citrix.mobile.ads.otp=2rwivttbt4hv5yksu0u3z
- apple-domain-verification=bbaDQvhgIweuiLkL
- _f6n48jy6aw19ahkz31o886s7s5oo2ib
- intersight=eb5e3298d0311a1705e45266ae0b43e218b2d5b649b85d4c247f02b81a01cd7e
- cisco-ci-domain-verification=2356478caf8e5a9a831116b6723222fb1320efececdaced635e5ffcd38cf6475
- amazon-business-verification=624f45539f2419346c810eadd6863babb4917f6735fc1a91718e571e75609fc6
- j21h2qgmnxh5xq2f67sq1pxrzyp72jfc
- ecostruxure-it-verification=2a1de1ec-41eb-4a3f-bdf9-cf509929e201
- amazonses:e/b2QeKPuxlcI22KVWLVW2Ewu9AiOn15Mz6/nooGYWY=
- 4dwlq8fhg7x3y5r11qz0h9dcx8825ssr
- MS=ms90838761
- google-site-verification=JoxP2ZZIGuQQ7cnI6ujMTn3MobVAVv3Ep2wEIXyOx3Q
- ypK4Ai5lFAJgVP1199R/jPD1/zRngjdYDE3ig844wxMUoXrAl0PM3RyvB5SSGHa1MCuAZXaDkL+WuBTLRmadow==
- xzwdt3kpcjn949mv48079xfr5kd9qfh9
- _mdv0cwlk5jpk6lfl1v80jwheb4u4lmv
- v=spf1 mx ip4:198.17.248.73 ip4:198.17.248.74 ip4:207.54.85.175 ip4:207.54.85.48 ip4:207.54.95.217 ip4:68.232.155.209 include:secure.giftlegacy.com include:outboundmail.blackbaud.net include:sendgrid.net include:spf.constantcontact.com " "include:spf.protection.outlook.com ~all
- 0jdx85v2wvjs2dj1679140z5yv62q4g2
Cloud / SaaS Services Detected
Apple
Amazon SES/WorkMail
Microsoft 365
Cisco
SendGrid
Leak Screenshot:
