Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo pbssystems.com

Group: cactus

Discovered by ransomware.live: 2023-12-28

Estimated attack date: 2023-12-08

Description:

Download link #1: https://***************.onion/PBS/PROOF  


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • pbssystems-com.mail.protection.outlook.com.
TXT Records
  • MS=ms70899340
  • miro-verification=e2ea011e8244018edef4562410aaffbceb77ca6c
  • L7B7V13GjF1tgjtustGvPo/gbd1V0CMau/u8z0Jbk7dBHVM2/hyzA+FkbuwHrESmq/rlN3pRVEwc/X2IbDgceg==
  • MS=ms43541452
  • _1ay2b1su4jggqb3m4g3bqq609hwxkr8
  • v=spf1 mx a ip4:66.244.206.240/28 ip4:208.118.107.33/27 ip4:184.71.214.96/29 ip4:69.85.201.108/29 include:21667969.spf04.hubspotemail.net include:email-od.com include:_spf.stgi.net include:spf.protection.outlook.com include:_spf.dayforcehcm.com include:se" "ndgrid.net -all
  • MS=ms99649179
Cloud / SaaS Services Detected
HubSpot Microsoft 365 Miro

Leak Screenshot:

Leak Screenshot