nepa.gov.af&dfr.gov.af
nepa.gov.af&dfr.gov.af
Group: ransomhub
Discovered by ransomware.live: 2024-06-04
Estimated attack date: 2024-04-22
Country:
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 1
Third Party Employee Credentials: 0
External Attack Surface: 1
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- registry nic.af
- tamimkabiry gmail.com
MX Records
- nepa.gov.af.
TXT Records
- v=spf1 ip4:157.250.199.115 ip4:161.129.64.35 ip4:162.220.10.171 ip4:161.129.64.34 ip4:162.220.10.170 ip4:162.220.15.21 ip4:209.133.196.210 ip4:69.46.23.106 ip4:185.185.83.12 ip4:107.190.136.210 ip4:144.76.114.106 +a +mx ~all
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.
Leak Screenshot:
