Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo oogp.com

Group: cactus

Discovered by ransomware.live: 2024-01-27

Estimated attack date: 2024-01-27

Country: US

Description:

Download link #1: https://***************.onion/OOGP/PROOF  

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 1

Third Party Employee Credentials: 0

External Attack Surface: 2


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • oogp-com.mail.protection.outlook.com.
TXT Records
  • google-site-verification=l47nfLp-Or9ojs2plcZkwweD408HxZHEjca1uTpcC6Q
  • v=spf1 include:spf.protection.outlook.com ip4:216.115.13.12 include:_spf.google.com MX include:spf.mandrillapp.com ~all
  • MS=ms10136153
  • _02otrrv1zn39fa360oaym6q5815d7j1
Cloud / SaaS Services Detected
Microsoft 365 Mandrill

Leak Screenshot:

Leak Screenshot