Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo toolsign.com

Group: Lynx

Discovered by ransomware.live: 2025-04-15

Estimated attack date: 2025-03-15

Country: DE

Description:

toolsign GmbH is a company that operates in the Consumer Services industry. It employs 10to19 people and has 1Mto5M of revenue. The company is headquartered in Neusorg, Bavaria, Germany.


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse domainbox.com
MX Records
  • mx-02-eu-central-1.prod.hydra.sophos.com.
  • mx-01-eu-central-1.prod.hydra.sophos.com.
TXT Records
  • gsn1h4eb32n5ljo2t2hpb147oj
  • sophos-domain-verification=204bea10aa60abf8a7a807668d5e570d6be7cb50
  • v=spf1 include:_spf.prod.hydra.sophos.com include:_spf-e.cegedim.fr include:_spf-i.cegedim.fr -all
  • 1slrkhtjnga3n02unj41ncs0ei
Cloud / SaaS Services Detected
Sophos

Leak Screenshot:

Leak Screenshot