Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo laderalending.com

Group: ransomhub

Discovered by ransomware.live: 2025-02-12

Estimated attack date: 2025-02-12

Country: US

Description:

[AI generated] Ladera Lending is a full-service mortgage banking firm based in the United States. They specialize in providing a wide range of loan services, including purchase loans, refinance, home equity loans and reverse mortgages. The company aims to cater to individuals' unique needs with customized, flexible solutions. Their seasoned professionals offer comprehensive financial advice and guide customers throughout the loan process.


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • mx2-us1.ppe-hosted.com.
  • mx1-us1.ppe-hosted.com.
TXT Records
  • v=spf1 a:dispatch-us.ppe-hosted.com include:spf.protection.outlook.com include:amazonses.com include:_spf.optimalblue.com include:sendgrid.net ip4:149.72.147.186 ip4:104.9.116.124 ip4:168.245.28.105 ip4:167.89.101.239 -all
  • v=verifydomain MS=85270387
  • google-site-verification=D914Yp0EQrXYA5hvxVbyC-sm92K0pwiWx677nixa7YA
  • google-site-verification=jLHRdSdNBjFbPAMWR48Qgv7fvk_LS_eDCictNaNCUAA
  • ppe-71be27611c4aa677b87c2364118594afec2438d2
  • 0ed1fe018a6623978929e44f3ab70bb09b161261f7
  • 672i3n8poiqvqueavvmpapq3r2
  • facebook-domain-verification=80htc206qhtzh5mu5dcm1l7l746ij5
Cloud / SaaS Services Detected
Amazon SES/WorkMail Microsoft 365 SendGrid Proofpoint Essentials

Leak Screenshot:

Leak Screenshot