Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo hundhausen.de

Group: cactus

Discovered by ransomware.live: 2024-06-23

Estimated attack date: 2023-09-15

Country: DE

Description:

Download link #1:  https://***************.onion/HUNDHAUSEN/PROOF/Mirror: https://cactus5dqnqkppa5ayckiyk6dttpqwczdqphv5mxh4dkk5ct544q5aad.onion/HUNDHAUSEN/PROOF/DATA DESCRIPTIONS: Corporate confidential data: projects, drawings, financial documents\payrolls, correspondence etc.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 7

Third Party Employee Credentials: 0

External Attack Surface: 0


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • mx-02-a.dcl.srs-sys.de.
  • mx-01-a.dcl.srs-sys.de.
TXT Records
  • MS=ms99159909
  • HAnyW2zOkuDMukjUuWP1T7yb5kmFnWYv8AJqVJfETLc9c1y+hJfmMmcOqfM/wREjJX7Mvd7kRV06sLB/qe4xHA==
  • apple-domain-verification=haTQ0J6XZBE0CGFx
  • v=spf1 include:spf.protection.outlook.com include:_spf.srs-sys.de include:spf.crsend.com ip4:87.129.157.124 -all
Cloud / SaaS Services Detected
Apple Microsoft 365

Leak Screenshot:

Leak Screenshot