www.dimarcogroup.com
www.dimarcogroup.com
Group: lynx
Discovered by ransomware.live: 2025-09-02
Estimated attack date: 2025-09-02
Country:
Description:
The DiMarco Group, LLC founded in 1910 and headquartered in Rochester, New York, operates as a full-service development company. The company's services include real estate development, construction management, property management, facilities maintenance, and construction equipment.
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 1
Compromised Users: 0
Third Party Employee Credentials: 0
External Attack Surface: 1
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domain.operations web.com
MX Records
- mx1-us1.ppe-hosted.com.
- mx2-us1.ppe-hosted.com.
TXT Records
- MS=ms71471705
- cisco-ci-domain-verification=6c57726b8e06f26dab08d42ba8be498f868b6bc0f607b22550915d4950863b01
- r8b3j9dl4f00424lloojtive5b
- v=spf1 +a +ip4:67.20.115.110 +ip4:97.107.142.201 +ip4:67.20.76.148 +ip4:162.223.206.48/28 +ip4:205.145.130.165 +ip4:162.223.206.58 +ip4:216.35.161.254 +include:spf.nexuspayables.com include:_spf-us.ppe-hosted.com include:relay.bswift.com ~all
- MS=4EB0D56D085FB3E21EC077586B56C5ED58CEF190
- apple-domain-verification=TNN1MjByBYfxZOlH
- google-site-verification=Svxb0UssR9VMNzyHI5A4e5veQFs28p-5Hxsfah2hLzc
- ppe-f239021ffd82596a0c7a70fa7dbd6be0eb0bdce2
- facebook-domain-verification=dlav5d5b5pv25wg60k7w261uxrxcy8
- ia3t8pvg3pgibe9nv5jbb8vvj8
- ujf7cg83936tnvmar8ofg7hnci
- ihjm9hk5gkrcqhs4195csb23ku
- 4u01duuatbpm8d8q6jr5o8oj8g
- google-site-verification=kH4Lwa6iTi-bfSY-yzGVNqpBFXwZzxwDnBeIF5c9fDI
Cloud / SaaS Services Detected
Apple
Microsoft 365
Cisco
Proofpoint Essentials
Leak Screenshot:
