www.pure-chemical.com
www.pure-chemical.com
Group: devman
Discovered by ransomware.live: 2025-09-03
Estimated attack date: 2025-09-03
Country:
Description:
5000000 USD
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 1
Compromised Users: 3
Third Party Employee Credentials: 5
External Attack Surface: 3
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- aspmx.l.google.com.
- alt3.aspmx.l.google.com.
- alt4.aspmx.l.google.com.
- mx.email-messaging.com.
- alt2.aspmx.l.google.com.
- alt1.aspmx.l.google.com.
TXT Records
- v=spf1 include:_spf.mlsend.com include:email-messaging.com include:spf.sendinblue.com include:sendgrid.net ip4:3.7.15.196 ip4:65.1.21.19 ip4:51.254.145.171 ip4:65.2.113.204 ip4:72.5.230.100 ip4:182.74.53.66 ip4:121.240.21.76 ip4:223.31.139.61 ip4:74.80.23" "4.196 ip4:152.67.8.207 ip4:65.1.140.247 ip4:223.31.139.60 ip4:182.74.53.90 ip4:13.234.234.121 ip4:43.205.53.117 include:_spf.google.com ~all
- _wbg9jf3z9wxvy4v2fum6nmli1jf0ebi
- sendinblue-code:eb0512560e1d10d8a6c507fce8a6906c
- "google-site-verification=mZPRubn5IW8Y1vRwTMsA9lthBXWNQbPdEHLq92Lz284"
- google-site-verification=mZPRubn5IW8Y1vRwTMsA9lthBXWNQbPdEHLq92Lz284
Cloud / SaaS Services Detected
SendGrid
Sendinblue
Leak Screenshot:
