Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo rjcorp.in

Group: lockbit3

Discovered by ransomware.live: 2024-03-31

Estimated attack date: 2024-03-31

Country: IN

Description:

This question is for testing whether you are a human visitor and to prevent automated spam submission. Audio is not supported in your browser.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 80

Compromised Users: 106

Third Party Employee Credentials: 56

External Attack Surface: 60


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • reg_admin godaddy.com
MX Records
  • rjcorp.in.tmes.trendmicro.com.
TXT Records
  • _v216uasa1j7uh5hods9wrfa8wsa8p8y
  • v=spf1 ip4:59.144.118.1 ip4:103.89.74.0/24 ip4:169.148.146.0/23 ip4:103.117.158.0/24 ip4:103.117.159.0/24 ip4:169.148.135.0/24 ip4:199.67.76.0/22 include:spf.protection.outlook.com include:spf.tmes.trendmicro.com include:_spf.google.com include:_spf-dc44." "sapsf.com include:transmail.net.in -all
  • z84d77zdn40bbzrb4fvq3cx3x4jvkzm5
  • google-site-verification=XLwcPh8BA8Cnk5J4GrwfKXKgucdGi-4Fc7muIAN7E5w
  • tmes=11ec754bf58022908e1229a322d5ac9f
  • MS=ms93060054
  • successfactors-site-verification=YzQwMDlmZTA0MDI2YjNhOTY0YjE3ZTI2M2VkZTc5YWI1NGQwZDk1NTY2ZjBjY2M0YzA0MWEzZWIzOGI0ZjA3MA==
  • v=verifydomain MS=8943027
Cloud / SaaS Services Detected
Microsoft 365

Leak Screenshot:

Leak Screenshot