www.sicoob.com.br
www.sicoob.com.br
Group: Ransomhub
Discovered by ransomware.live: 2024-06-24
Estimated attack date: 2024-06-01
Country:
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 18
Compromised Users: 775
Third Party Employee Credentials: 112
External Attack Surface: 6
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- No emails found.
MX Records
- sicoob-com-br.mail.protection.outlook.com.
TXT Records
- KVukGvAu/j2FEFvkLV6O2bhk3598YEWJljun291TDcwR6OsnIHxaC3vnhx4ZL5S15ptSdd+yGMmtX42UEU7osw==
- 6s3XyDQICQKLd3vtChu9BSEXti9pry5LcrEvrfiG/jpwWAUNqhL6+znyofmZXKJaqrqb0E6LtvloivebREXnRg==
- JV1UMHYN6WXMOFQD44226KKLWHGIKOWXE0S6LJN9
- ms-domain-verification=87ad4315-9315-41c5-86e2-82abfe0b6055
- knowbe4-site-verification=9349897150601012306677e2407b9dec
- Dynatrace-site-verification=cff0b246-330d-4d57-9124-4f658faf5f60__hlgkt01j8vm5u3kqr3h1tvkr86
- atlassian-domain-verification=qY4UaYIxKFc5yWXa1MjnblNcEwM6CnZMqjN/uNi0MGVlbfbKQSWRKq3cp12jgjj5
- v=spf1 mx ip4:191.242.202.203 ip4:187.72.5.131 ip4:201.24.25.212 ip4:191.242.203.78 ip4:191.242.202.105" " ip4:216.218.133.192/26 ip4:189.74.157.205/31 ip4:187.72.5.209 ip4:187.72.5.210 ip4:187.72.5.196" " ip4:177.53.253.176/30 ip4:177.53.249.177 ip4:189.74.157.224/28 ip4:177.53.251.179" " ip4:177.53.249.179 ip4:177.53.249.110 ip4:177.53.251.110 ip4:177.53.253.110" " include:spf.protection.outlook.com include:cust-spf.exacttarget.com" " include:email-messaging.com include:_spf.elasticemail.com -all
- mn+m+q6qpOeaEz4CsrC+50elokYASlyu2EAQrDmlgeKiLpPB4zP10NHpPw5r+qPmBv3bKbwxxCSe6sXbK2SrCQ==
Cloud / SaaS Services Detected
Atlassian
KnowBe4
Leak Screenshot:
