sbamh.org
sbamh.org
Group: kawa4096
Discovered by ransomware.live: 2025-07-22
Estimated attack date: 2025-07-20
Country:
Description:
sbamh.org
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 2
Third Party Employee Credentials: 0
External Attack Surface: 2
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- registrar-abuse cloudflare.com
MX Records
- d279001a.ess.barracudanetworks.com.
- d279001b.ess.barracudanetworks.com.
TXT Records
- MS=ms68792143
- s2em88edup3cdatvufm7avt91h
- v=spf1 mx a ip4:24.248.111.210 ip4:209.2" "22.80.0/21 ip4:64.235.144.0/20 ip4:68.98" ".201.13 ip4:12.149.180.98 ip4:13.65.248." "100 include:ppi.net include:spf.topdesk." "net include:spf.protection.outlook.com ~" "all
- MS=4B4C6F19BE3198DB7BFA734D837701B81FF20662
Cloud / SaaS Services Detected
Microsoft 365