mol.go.th
mol.go.th
Group: devman
Discovered by ransomware.live: 2025-07-17
Estimated attack date: 2025-07-17
Country:
Description:
15000000 USD
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 47
Compromised Users: 433
Third Party Employee Credentials: 0
External Attack Surface: 111
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- staff thnic.co.th
MX Records
- asbb3.beenets.com.
- asbb2.beenets.com.
- asbb4.beenets.com.
TXT Records
- _globalsign-domain-verification=zdFaOVQLoAjusrRfOTFYg6_lVx65HfAW2G0kNkcuxg
- google-site-verification=1BJv05raEFJiyg5QY3Ox9Y5h9dPm7ohNZn7bxndyvm8
- globalsign-domain-verification=47EB39D930B9033254F0B1C23BCB313E
- v=spf1 mx ip4:164.115.25.145 ~all
- _0a4pdurzwbdpvhpg14unrd38nmnqyge
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.
Leak Screenshot:
