Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo www.clubcar.com

Group: qilin

Discovered by ransomware.live: 2025-04-15

Estimated attack date: 2024-12-22

Country: US

Description:

Club Car boasts a 60+ year history of industry-leading innovation and design, initially focused on golf cars and then expanding to commercial utility vehicles and personal-use transportation. Every detail of design, fabrication and assembl ...

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 22

Third Party Employee Credentials: 9

External Attack Surface: 11

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abusecomplaints markmonitor.com
  • whoisrequest markmonitor.com
MX Records
  • clubcar-com.mail.protection.outlook.com.
TXT Records
  • adobe-idp-site-verification=937549f8-2d60-4453-b359-79547d8a985d
  • google-site-verification=39Q4wRuTBx63xnMKK2flYPhhiEsyf-SUJutELe3jOiA
  • MS=ms13279876
  • fwmsbl6bsj8p7zfgx9c5sg7fyl1ty53v
  • 6mjwdb18qfh0r1w1hgb4r43v2vgvtzbj
  • google-site-verification=ms6cKesppvZdVi9nuLeDpnWY-vh9AP0opZgccozXSes
  • f68fqgyt5qrjpv6k8c6c6w9896dfs0b9
  • znmwnwsbccjz279c5mwwbkl5cpl7hsmn
  • ms-domain-verification=57009a86-9c1d-4825-9fe0-1311f396ce34
  • MS=ms28878834
  • google-site-verification=AUbRNR2lo6Gn-33PRQlsScAzKjCvjtHyn-Xx8ujeohA
  • 8pjnyl1wj5wqymdlmctq6p3m2m3cn310
  • amazonses:xVo1KlSBdk+gg5nB84oIFnlRCCdfSDyLnjak6NvDcZA=
  • v=spf1 include:spf.protection.outlook.com include:amazonses.com ip4:12.87.233.110 ip4:199.5.184.254 ip4:208.73.5.150 ip4:50.228.56.250 include:_spf.createsend.com ip4:40.65.119.243/32 ip4:54.174.60.0/23 ip4:143.244.80.0/20 ip4:18.208.124.128/25 ip4:54.174" ".59.0/24 ip4:54.174.63.0/24 ip4:3.93.157.0/24 ip4:54.174.57.0/24 include:_spf.smtp.com include:docebosaas.com ip4:52.22.249.69 include:_spf.salesforce.com ip4:44.216.108.18 ip4:199.91.141.23 ip4:199.5.184.0/24 ~all
  • ym0r1mlr3k2txdtd4cr3814hb9kppz92
  • google-site-verification=URl4YVGT2EP8M4pgzBqKOZxuIDp_b9nveCS4THA_2Z8
  • amazonses:LdAYQNgWviMAcNzFYSQD4i3AIdQdjXmMhzuDG810+Ms=
  • amazonses:RxirzVeOL8G0taNkp5s7i7t2Ok6eUcJk1Fiq2JR/oRM=
  • amazonses:BBDlJahXDRSAuQePhRq27YwVt5U89k+32hsMIbObPZs=
  • remarkable-domain-verification=1448122f-9254-46e2-bb0c-e117009873f5
  • apple-domain-verification=QU0aWldYsKaaJMvP
  • knowbe4-site-verification=125990a2c8bba1769509b3a86f0b1631
Cloud / SaaS Services Detected
Adobe Apple Amazon SES/WorkMail Microsoft 365 Salesforce KnowBe4

Leak Screenshot:

Leak Screenshot