Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo trellisware.com

Group: dispossessor

Discovered by ransomware.live: 2024-04-19

Estimated attack date: 2022-02-04

Description:

trellisware.com

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 1

Third Party Employee Credentials: 0

External Attack Surface: 1


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • us-smtp-inbound-2.mimecast.com.
  • us-smtp-inbound-1.mimecast.com.
TXT Records
  • MS=ms21925761
  • ylp/FUS2H+NKP4R/oOHWhbOGKV8z5WuTSN3iX1XUpol0SMLCGxlJnYmBFrJNutL0Bs0FGfcyooqwXk3s2Q0wrg==
  • google-site-verification=eQ53dUAoQJbA0j5sD5nLEsY5uAHVDfixY8DzRPe0hpY
  • v=spf1 mx a include:us._netblocks.mimecast.com include:_spf.salesforce.com include:mail.zendesk.com include:spf.protection.office365.us include:em9226.trellisware.com ip4:52.61.20.130 ip4:15.200.57.169 ip4:96.127.94.103 ip4:12.157.149.187 ip4:149.72.66.18" "4 mx:qad.com -all
  • docker-verification=1bc88a24-a889-44a9-9542-7a114eae7a53
  • YpqJ8D2PE1iTncA9EiBNMs/tr9Y6agGC7B2wX61Y0rD6VsEC0ZE5TLmueLpxJAA1T6UmEaavUdSe+mRRNZOdwQ==
Cloud / SaaS Services Detected
Microsoft 365 Salesforce Zendesk Mimecast

Leak Screenshot:

Leak Screenshot