Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo q-cells.de

Group: abyss

Discovered by ransomware.live: 2024-08-02

Estimated attack date: 2024-08-02

Country: DE

Description:

q-cells.de 5.4Tb uncompressed data

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 121

Third Party Employee Credentials: 0

External Attack Surface: 5


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • mail.q-cells.de.
TXT Records
  • d365mktkey=Rqoxxx1TJYoCpp7bVbJdWsWvpwg5crAspxXgPIwznxYx
  • google-site-verification=yQdU24S9WqJENDqNAh_FJBT5W_qes7r8e7Ou0AUWoqU
  • FxA5UMKExsTqrKtJUeOJmUcVXn+cL8s5Roc5rTpQwMA=
  • google-site-verification=NalAOazjJw7kpvVRKjFqfy8kxgxvSVRtOSPnwnKgQL8
  • v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAymgvCqXkKw+tI42Hv6ltvXyq1g5+Eafx0Z9zT4/UjhrsVeY0ZkD/KwDc7CnHaIc1UHr8Vogtvhcu3SZdXVWWCMAqtEJIgXfovH5MHeGn6vaRe4K+SQlDUxHYC7m7prUVbazKIeY2KP6yIW1gIlrmRuoig0XHskIjQKm4Bz2Ja6ybiUB3Yz8Jla2YMSlwIB7wX" "d5scPPnYKIwaPylAiXOQ1gmmyjTd4VYXQe9PhBvw3xjCrArBwKAfp9C1k4vda7oeCu/BYdfIBfKs8Xf1Lxpa97pDAVW0J652W3V45JR+HdmtfVwJlHUmk2Xl2DmllBW0YnRIFIoOK5ivtRZW6ASnwIDAQAB
  • google-site-verification=2UwM1vbbsCyR0yft4iDEHhfAtgXMvbClssdp35GcEcA
  • v=spf1 mx a:otc-de-spf.mms.t-systems-service.com ip4:212.45.105.137 ip4:212.45.105.138 ip4:212.45.105.143 ip4:212.45.105.144 ip4:203.115.228.42 ip4:51.144.33.217 ip4:13.95.173.238 ip4:13.81.38.240 ip4:218.146.32.12 ip4:14.47.120.190 ip4:3.35.97.129 ip4:13" ".95.173.238 ip4:93.90.180.15 ip4:93.90.180.16 ip4:93.90.180.17 ip4:58.87.39.137 ip4:93.90.180.18 include:spf.crsend.com include:indivsurvey.de include:mail.zendesk.com -all
  • _globalsign-domain-verification=C4h8w0fxgm1kQ3G_l-EOWkRfUzDBR8gchpljS8YoFG
Cloud / SaaS Services Detected
Zendesk