Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo www.minerasancristobal.com

Group: apt73

Discovered by ransomware.live: 2024-12-11

Estimated attack date: 2024-12-11

Country: BO

Description:

Minerals & Mining. financial docs, internal docs, personal docs.

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 18

Compromised Users: 191

Third Party Employee Credentials: 3

External Attack Surface: 13


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • antispam01.minerasancristobal.com.
  • mail.minerasancristobal.com.
TXT Records
  • o=~
  • oZYPVNRKHqRR596gXUtynafD/gSjjjx/vh8aJyaX45Yq7jxoL4ai1LTM7Pz1oOGrfz+OTAsvcSI7iVRuCsKPrA==
  • v4jc6d4iif3ghneu1mcsbsh20i
  • _amazonses.reclutamiento@minerasancristobal.com
  • _fg0asar90u31c8ycqzal62qeufu04kg
  • reclutamiento@minerasancristobal.com
  • ms-domain-verification=801f4473-26d1-482d-8044-1a473e8f2fe1
  • v=spf1 ip4:200.87.147.151 ip4:200.87.147.152 include:spf.protection.outlook.com ~all
  • MS=ms95406127
  • knowbe4-site-verification=be42ebf3d97ca349e3c7f01f6e02da1d
Cloud / SaaS Services Detected
Amazon SES/WorkMail Microsoft 365 KnowBe4

Leak Screenshot:

Leak Screenshot