Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo hi-cone.com

Group: cactus

Discovered by ransomware.live: 2024-01-12

Estimated attack date: 2023-12-18

Country: US

Description:

Download link #1:  https://***************.onion/HICONE/PROOF 


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • hicone-com0e.mail.protection.outlook.com.
TXT Records
  • v=spf1 ip4:75.145.138.240/28 ip4:50.219.58.8/29 ip4:50.219.58.16/28 ip4:198.40.253.254 include:spf.protection.outlook.com ~all
  • fdd3eos4lbud69hegu6as3ife7
  • MS=ms44938381
  • 79toappb04ohkp70qm9f5udqp
  • befgb2mpakort4018dujvepojt
  • k6qk72vlrkvnt9ntjp9rlm38ba
  • pc4kgfst1r2agdclsrdb93llpi
Cloud / SaaS Services Detected
Microsoft 365

Leak Screenshot:

Leak Screenshot