Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo ibericar

Group: monti

Discovered by ransomware.live: 2024-12-22

Estimated attack date: 2024-12-22

Country: ES

Description:

Auto Suckers

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 4

Third Party Employee Credentials: 1

External Attack Surface: 3


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • caetanoretail-es.mail.protection.outlook.com.
TXT Records
  • amazonses:M4hiXxfGA1WPQ0FrxoPRU/L3quEEn5ZHGqYIzmeiIFM=
  • stripe-verification=aafaf0a1bc9995750cdd2e91147a9ddd2b95e25c9fbb565b9ebc5eea99031e0c
  • MS=ms77063665
  • amazonses:L+sOXxzJsJES0HNCV2lTT1brTYZoWsb5PF1dypTn6rI=
  • stripe-verification=80f30df586017e5200668c5c5fe0e009fb8144a7c5b6c28df88300b70d156fe8
  • stripe-verification=9b94d3ee99bc513b1606a9fb6e3794a8deb599457a0236c9b8270865ab7f3395
  • stripe-verification=94ebeb79a329082417a3397221adf6c5a8c390a567b3ea07300b120fe7c39cf4
  • stripe-verification=e042db2742cdd3adb58c64987d774010aa3030b34bd51a13bdef3556c44dc14d
  • stripe-verification=bdb087605f498df52873c465c568586d923cea4fa2f8ad2ee02f71c7ca82724e
  • stripe-verification=c3926e49d6c0c1681033133f45295596ae4fc807f2122ef710a4db96d26eb612
  • stripe-verification=185b6f297e3f6fcc0f78d3e50531d0fd68f1daefbc30ec85ec3100310a6108c0
  • stripe-verification=352be16fffe76edbb7594f489c18763139be1b30e85a076f4d0276147201c222
  • stripe-verification=8887d760780bb1e06786ff9af409051d17c297a12738e69d5b030ceb354a3fe7
  • v=spf1 ip4:195.23.106.26 ip4:195.23.106.20 ip4:195.23.106.27 include:spf.mandrillapp.com include:eu.zcsend.net include:mail.zohoanalytics.eu include:spf.protection.outlook.com include:eu.zeptomail.net include:spf.zohomail360.com include:one.zoho.eu inc" "lude:spf.ipzmarketing.com -all
  • stripe-verification=88555d85b02cef4b15da8a296664ea33e709a20fd75a30012496e5c3d4697979
  • v=DMARC1; p=none; rua=mailto:admin@caetanoretail.es;
Cloud / SaaS Services Detected
Amazon SES/WorkMail Microsoft 365 Stripe Mandrill

Leak Screenshot:

Leak Screenshot