Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo www.sobha.com

Group: ransomhub

Discovered by ransomware.live: 2024-08-06

Estimated attack date: 2024-08-04

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 15

Compromised Users: 50

Third Party Employee Credentials: 17

External Attack Surface: 36


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • sobha.in.tmes-in.trendmicro.com.
TXT Records
  • google-site-verification=fR8-OLOFZBvJxNG6RNAU2iIkxuT1qLEN2s_-BI0w7UI
  • rhino_accounts=97639ef158bf93c0ccc9cee5f4e2063d
  • v=spf1 include:spf.tmes-in.trendmicro.com ip4:3.110.59.128/25 ip4:3.110.71.192/26 ~all
  • MS=ms89992475
  • apple-domain-verification=fF1Cz3EsWsq21ACk
  • google-site-verification=M7khZ5uddbJn9s0inYNXsLXmib6Eny1D9QZVvibUsNI
Cloud / SaaS Services Detected
Apple Microsoft 365

Leak Screenshot:

Leak Screenshot