Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo quifatex.com

Group: Dispossessor

Discovered by ransomware.live: 2024-04-19

Estimated attack date: 2023-11-11

Country: EC

Description:

We're your strategic ally in commercial and logistics solutions, offering health and welfare to Ecuadorian families.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 60

Third Party Employee Credentials: 55

External Attack Surface: 5


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse directnic.com
  • nic-admin impsat.net.ec
MX Records
  • quifatex-com.mail.protection.outlook.com.
TXT Records
  • fortinet-fortiphish-site-verification=00d905ac27309088739069dfb396f8
  • yTnn1Ge++Zu90w5rw14tw2evtFa1yBwu3BKQ+ZaJRyehriPace82JXshIk+BRZsgv/Z9YA/4199gk2Ut+RhURQ==
  • v=spf1 mx a ptr ip4:181.188.209.0/27 include:spf.protection.outlook.com ~all
  • MS=BD557B3BCF1E2E8AD49A2BC2109ACC8CE5000189
  • MS=ms36124038
  • google-site-verification=wsk8GKH_8ml-FlY4cbndAcFELIJu_4D9i1TO3KvoFZ0
  • fortinet-fortiphish-site-verification=6MEuzCKK4dhGthx8Ur8eF9
Cloud / SaaS Services Detected
Microsoft 365 Fortinet

Leak Screenshot:

Leak Screenshot