Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo unitex.com

Group: dispossessor

Discovered by ransomware.live: 2024-04-19

Estimated attack date: 2023-08-16

Description:

More information in our telegram channel https://t.me/snatch_team Persons responsible for data leakage:Jorge Lascano:Chief Engineer, Engineer+1 718-679-8796jlascano@unitex.com;David Potack:President+1 914-882-8098+1 914-840-3200dpotack@unitex.com;Steve Gottlieb:CFO+1 212-575-1777sgottlieb@unitex.com;Quron Gee:Senior President, Senior VP+1 212-575-1777qgee@unitex.com;Steven Bonarrigo:VP, VP, Business Development+1 973-568-6553+1 212-575-1777sbonarrigo@unitex.com;Seth Gershman:Director, Director, Communications, Director, Marketing, VP, VP, Communications, VP, Marketing+1

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 2

Third Party Employee Credentials: 0

External Attack Surface: 1


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse wildwestdomains.com
MX Records
  • mx1-us1.ppe-hosted.com.
  • mx2-us1.ppe-hosted.com.
TXT Records
  • v=spf1 a:dispatch-us.ppe-hosted.com mx include:icpbounce.com include:spf.protection.outlook.com ip4:173.63.165.85 ip4:68.132.141.90 ip4:162.220.40.195 ip4:162.220.40.196 ip4:65.254.15.42 ip4:162.211.86.192 -all
  • ppe-fcfbb90856d11695847ed12954b717aea062147f
  • 7i6tvojada5c5jugp4k2ir07nn
  • MS=ms71736665
  • e3ioov3er4qjrtg061nr3p6r64
Cloud / SaaS Services Detected
Microsoft 365 Proofpoint Essentials

Leak Screenshot:

Leak Screenshot