uhcsr.com
uhcsr.com
Group: dispossessor
Discovered by ransomware.live: 2024-04-19
Estimated attack date: 2021-07-27
Description:
uhcsr.com
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 1240
Third Party Employee Credentials: 1
External Attack Surface: 31
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- domainabuse cscglobal.com
MX Records
- mxb-0077b904.gslb.pphosted.com.
- mxa-0077b904.gslb.pphosted.com.
TXT Records
- stripe-verification=DABA7646782DF77AB1FD8AF473A2C2E2109562C793D8AF7AEBBEDA713AC4B262
- stripe-verification=b148f8c88b1d3b715fd66b7a580e01ee36ae2057d8cd0dcc4e8b84f572f3a459
- stripe-verification=f5ffe2615f5c33e916600d69ee3e77719049cd8778d5d0d8480d3abd696d9790
- stripe-verification=f737f340fb2bf98b02348769d27132bdfbe9b1d056d08d6079da88cc15d3972d
- v=spf1 include:amazonses.com include:%{ir}.%{v}.%{d}.spf.has.pphosted.com -all
- 6d1d0ee6-19f0-406f-a88d-68a7d94cfc3e
- MS=ms76686759
- adobe-idp-site-verification=9a5c47599b4f379d5e29ede339f3da7f9e1689f8e16709c98e397c86a1c68122
- cisco-ci-domain-verification=2aae22d5c233a6e502d96a21bedbb7b743b8ceb816f907ab85686532a1bdb1e4
- smartsheet-site-validation=KflnHLUCxnqJmy7GVkCBVZgsjwGVZtjx
- stripe-verification=51224bbc433316f2b8f71438e1a8de5c7b3c42e709833613518cf1a9f07a449e
Cloud / SaaS Services Detected
Adobe
Amazon SES/WorkMail
Microsoft 365
Stripe
Cisco
Proofpoint
Leak Screenshot:
