leggett.com
leggett.com
Group: dispossessor
Discovered by ransomware.live: 2024-04-19
Estimated attack date: 2024-04-19
Description:
leggett.com
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 6
Compromised Users: 36
Third Party Employee Credentials: 2
External Attack Surface: 23
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse gcd.com
MX Records
- leggett-com.mail.protection.outlook.com.
TXT Records
- leggett.azurewebsites.net
- f8sea5r52001no4qkmrgk80p72
- u7360rkuffkhgprifvl5ndd61i
- s38ejt1j4na8rn9kjsn0o4l9nb
- 11i4jau091ml94cabnuqhgobfl
- hCHQiCx9tLaqODVbOPZ9CB77EpV9QSsJ3DJ8H7HDTgj9Tf4FI3jnv/ucg0c+qEDJahsVimTUMg/jzUCDVaBYUg==
- 1cat8g0opabous44auus254hm0
- 6pbopem7i004b9ea2cg3qvsi4n
- zoho-verification=zb77458172.zmverify.zoho.com
- 5r66j0ofl6b26gc5772vs3n717
- dropbox-domain-verification=r84xkdkow43l
- onetrust-domain-verification=0b8815aa64354504a264f5b15423ad1c
- v=spf1 include:spf-lp.leggett.com include:spf-sf.leggett.com include:spfc1.leggett.com include:spfc2.leggett.com include:spf-jpmorgan.leggett.com include:spf.protection.outlook.com include:shops.shopify.com include:sendgrid.net ip4:146.66.82.81 -all
- qjj0j6ep42m8mj1f3r9cehoj56
- fktnih8lkd39l65f7rs42uauti
- esst9njosbr56rhk70gnq4rm73
- lauepq86nluhkgmii42r02imdi
- 47ef75v8r35rhc9u4bifjj9pqs
- airtable-verification=0ebd366bb25da336bbde657270d3f654
- successfactors-site-verification=YWJlZDc4YjI5YjJhZmZiM2E2MzRkZGI0ZDgwOWNhOWVhYmM2OTNkY2E3OGZkY2EwMmIxNDA3OGEyNTAwM2Y1NA==
- ag98omdmb77lini5bnac4ql7cg
- qc2it6gkne575el5s197hbe908
- oargoihk7g814hilcoq7gr7hna
- mnim8p96kp38seol9jqrbm5dbq
- apple-domain-verification=izOZT3xhW5kzdLmx
- lgusmvjho3adso8houj5l0mv0t
- 3psk9p4bc0mkod68io5qjgj3fl
- 02bb090946f21ae11ca333e56f76ecacff1a4377884cf1c77c
- k1knivmm1h2opmklpmmdsgaert
Cloud / SaaS Services Detected
Apple
Box
Dropbox
Shopify
Zoho Campaigns
SendGrid
OneTrust
Leak Screenshot:
