Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo ragasa.com.mx

Group: lockbit3

Discovered by ransomware.live: 2023-09-06

Estimated attack date: 2023-09-06

Country: MX

Description:

RAGASA INDUSTRIES, S.A. DE C.V., PROTEINAS NATURALES, S.A. DE C.V., BASIC PROTEINS, S.A. DE C.V., ADMINISTRATIVE AND COMMERCIAL INTEGRAL SERVICES, S.A. DE C.V., CONTROLLING ENTITY, S.A. DE C.V., INMUEBLES RAGAR, S.A. DE C.V., RAUL GARCIA Y CIA., S.A....


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • esa1.hc4598-54.iphmx.com.
  • esa2.hc4598-54.iphmx.com.
TXT Records
  • DZC=JReqazS
  • 1bb1cf86d1f370e992ce6d6d93bd83
  • google-site-verification=q_1dNlPUjQ3n8bpvSleGVdF0OhamST1XiZkXs2Cqtgw
  • v=spf1 ip4:189.209.96.226 ip4:189.209.96.229 ip4:40.74.250.203 ip4:184.173.249.72 ip4:169.46.178.45 ip4:23.102.164.89 ip4:207.54.81.47 ip4:139.138.35.199 ip4:207.54.80.250 ip4:139.138.32.151 ip4:104.215.112.74 ip4:201.175.33.4" " ip4:139.138.32.151 ip4:208.185.229.0/24 ip4:208.185.235.0/24 ip4:148.59.108.0/23 ip4:148.59.106.0/23 ip4:129.148.11.0/24 ip4:35.80.141.6 ip4:44.229.121.55 include:spf.protection.outlook.com include:spf_c.oraclecloud.com -all
  • MS=ms51261139
  • apple-domain-verification=hXVar3y5ACgDXOWz
  • hk2csprt4hctrcfne8t0porofd
  • google-site-verification=AEyoy0RD6NhTb3_GRJDIDbW4rSbJ-C6UISNa6gtZslg
  • cisco-ci-domain-verification=31c08ce86d095acca6ef919c96ff0673b48e6a12fb3bae558c7c794684263534
  • IS6aW+8Skl8hahiHp5UGI/FeGvq88wjhLTgWfolU32bZKFrPLbKJquFb6F6OlIa0385co0mH5+OF7P7SHfLd+w==
Cloud / SaaS Services Detected
Apple Microsoft 365 Oracle Cloud Cisco

Leak Screenshot:

Leak Screenshot