Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo www.hameshakem.co.il

Group: Devman

Discovered by ransomware.live: 2025-10-03

Estimated attack date: 2025-10-03

Country: IL

Description:

Ransom: 6kk 400gb exfiltrated

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 11

Third Party Employee Credentials: 0

External Attack Surface: 1

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • mickeyb one1.co.il
  • domreg interspace.net
MX Records
  • hameshakem-co-il.mail.protection.outlook.com.
TXT Records
  • v=spf1 +a +mx +ip4: 63.250.63.82 +a:relay.simply-smart.com +include:spf.protection.outlook.com ~all
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot