Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

chatrium.com

chatrium.com

Discovered 2021-11-07 03:45 UTC
Est. attack date 2021-11-07

Infostealer activity detected by HudsonRock

Compromised Employees: 1

Compromised Users: 0

Third Party Employee Credentials: 9


External Attack Surface: 2


Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operationsweb.com
MX Records
  • chatrium-com-1.fortimailcloud.com.
  • chatrium-com-2.fortimailcloud.com.
TXT Records
  • MS=ms96626174
  • vsbbszkb0kl0kr5mvh9qcxvkb3f1j28s
  • v=spf1 ip4:203.78.109.90 include:spf.protection.outlook.com include:spf.mandrillapp.com include:travelanium.net include:_spf.travelclick.com include:_spf.fortimailcloud.com ~all
  • _227pryxjyb4bllp9lna0172oqe0wy4e
  • y0htkp3jgxjy47c4kjsd9by2hw2mqt8t
  • _yg6wc27p9ohquupwn5t7v5qrwjxzjsw
Cloud / SaaS Services Detected
Microsoft 365 Mandrill Fortinet