Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo texanscan.org

Group: chort

Discovered by ransomware.live: 2024-11-17

Estimated attack date: 2024-11-17

Country: US

Description:

Status: Not Available - details: Databases + Files of This Company

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 21

Third Party Employee Credentials: 19

External Attack Surface: 2


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse gkg.net
MX Records
  • d161546a.ess.barracudanetworks.com.
  • d161546b.ess.barracudanetworks.com.
TXT Records
  • MS=ms33887314
  • google-site-verification=lLfj3KJ3NoP8E1D8CMHQxpiP2ARH1KjjdQ6CW9DiIZM
  • piqje3sg84n2rbrrsh33crcer8
  • google-site-verification=e5Gm4C3JLBScdSDbHNcd6irFNHASf8p27Lun2azVtJM
  • facebook-domain-verification=v4i8rt4wzqhcl2fy9gf2hde4pbq7r8
  • 7djge4dnbehq9c67o2dkguvtvr
  • 45eb7fece8842e4619f7aceb9974d65a
  • v=spf1 ip4:204.15.81.0/26 ip4:216.206.186.129/25 ip4:208.90.57.0/26 ip4:208.75.123.0/24 ip4:97.75.112.130/26 ip4:12.215.40.10/29 ip4:138.91.224.174 ip4:216.0.113.130 ip4:70.36.20.116 ip4:67.23.62.36 ip4:67.23.61.36 ip4:208.64.181.100 ip4:40.118.170.132 ip" "4:192.161.144.0/20 ip4:66.195.143.26 ip4:8.12.72.20 mx:res.cisco.com include:_spf.google.com include:spf.ess.barracudanetworks.com include:_spf.caspiomail.com include:servers.mcsv.net include:sendgrid.net -all
  • google-site-verification=F-Cx2-A7skZGsLMKB2REgfNWq9rDpiTUqfF0GtcVCeo
  • google-site-verification=2-YkcNBNL6HQauBrUGdkBxpxhXe75BVY-7Od4FjLBYY
Cloud / SaaS Services Detected
Microsoft 365 SendGrid