woqod.com
woqod.com
Group: babuk2
Discovered by ransomware.live: 2025-03-20
Estimated attack date: 2025-03-20
Country:
Description:
woqod.com
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 5
Compromised Users: 118
Third Party Employee Credentials: 11
External Attack Surface: 46
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- woqod-com.mail.protection.outlook.com.
TXT Records
- y72-85S-2PA
- v=spf1 ip4:78.100.89.243 ip4:78.100.115.233 include:spf.protection.outlook.com include:qat-k1.o365.crossware.co.nz -all
- webexdomainverification.18O9U=c0f6b3e3-5abd-4077-9881-f5142dfa3600
- cisco-ci-domain-verification=2e22c242f53005656b06e5527513728558179d10a0d1efc1dbc00453be62a0f0
- gJNZ3srEEZkfvE/oAWxWc806cpAKaywg7P8tO9xyBTipeuXUy05DWA5wEuVHRWOIK4slQX3JLUNlEQsWVmbSxw==
- google-site-verification=U33r7NteXJiFWJyRPjPpmsvrNk6PvIgo76G9DGnjpAo
- MS=ms97117405
Cloud / SaaS Services Detected
Microsoft 365
Cisco
Cisco Webex
Leak Screenshot:
