Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

Logo

Xtrim TVCable

xtrim.com.ec

Group: Akira

Discovered by ransomware.live: 2024-11-14

Estimated attack date: 2024-11-14

Country: EC

Description:

Xtrim Corporate Group in telecommunications of 100% Ecu adorian capital. Company was born from the integration of companies in the telecommunications sector, related services and value-added services. You can find lots of internal financial data, employees and customers contacts. We have made the process of downloading company data as simple as possible for our users. All you need is any torrent client (like Vuze, Utorrent, qBittorrent or Tra nsmission to use magnet links). You will find the torre nt file above. 1. Open uTorrent, or any another torrent client. 2. Add torrent file or paste the magnet URL to upload t he data safely. 3. Archives have no password. MAGNET URL: magnet:?xt=urn:btih:F1B3E8135A2AE2828DDCF09 80118C320B812C967&dn=xtrim.com.ec&tr=udp://tracker.open bittorrent.com:80/announce&tr=udp://tracker.opentrackr. org:1337/announce&tr=wss://wstracker.online
Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 248

Third Party Employee Credentials: 14

External Attack Surface: 9


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • soporte@dominiosecuador.ec
MX Records
  • setelsa.in.tmes.trendmicro.com.
TXT Records
  • 1549rltkfjsvlf2rs7cq37i3l8
  • atlassian-sending-domain-verification=d2d53c46-3879-4872-be8d-1b3765a2e879
  • sdvjtx7182g6x3hf5nn1mvtdqjyk7z23
  • google-site-verification=1QWqYu65SCix6ukfgjiETmO5tIxdaibqecAvKwVztxc
  • ZAC0136
  • google-site-verification=1cwpNfHcmK_pXvkTAI0WkvmbaAZ_fEBMPsNMEFzePXk
  • v=spf1 include:spf.protection.outlook.com include:spf.tmes.trendmicro.com include:musvc.com include:masifi.com include:mailgun.org -all
  • google-gws-recovery-domain-verification=66164085
  • MS=ms85642868
Cloud / SaaS Services Detected
Microsoft 365 Mailgun

Legal Disclaimer: Ransomware.live does not engage in the acquisition, exfiltration, downloading, possession, hosting, access, consultation, redistribution, or disclosure of unlawfully obtained data. This platform indexes only publicly visible information posted by ransomware operators and open web sources without accessing or obtaining the underlying stolen content. The service is provided to support public awareness, legitimate research, and cyber-resilience. No stolen personal or confidential data is collected or distributed via this site.