Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo hphood.com

Group: lockbit3

Discovered by ransomware.live: 2024-08-30

Estimated attack date: 2022-03-14

Country: US

Description:

Products: Milk, Ice Cream, Cottage Cheese, Sour Cream, Cream Eggnog, Recipes, Store Locator, Girl drinking Hood Milk, Girl drinking Hood milk.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 2

Compromised Users: 2

Third Party Employee Credentials: 3

External Attack Surface: 5


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse enom.com
MX Records
  • hphood-com.mail.protection.outlook.com.
TXT Records
  • 561pl8nvkp661e027qfevth5pi
  • apple-domain-verification=waG0rVxyQwhFL7J0
  • v=spf1 ip4:204.8.112.0/22 ip4:108.166.45.120/32 ip4:50.31.43.169/32 ip4:208.86.168.7/32 ip4:135.84.68.123/32 ip4:64.106.173.0/25 ip4:192.69.130.0/24 include:spf.protection.outlook.com ~all
  • nHLYmgYQwSQiS4FNYJR+1jQjsMmZi7CIesUfuruhr5Hm/X2X65Ruk2JHn6wHVl8uzONNyPqOuazE1XOwWjwKsA==
  • docusign=7f02d07a-028d-41de-a3f1-b7114d11ff98
Cloud / SaaS Services Detected
Apple DocuSign

Leak Screenshot:

Leak Screenshot