Contact us Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks


Group Killsec
Discovered 2025-09-22 09:25 UTC
Est. attack date 2025-09-22
Country GB

Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 3

Third Party Employee Credentials: 8


External Attack Surface: 4


Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • trustandsafetysupport.aws.com
  • 1ff9c8ab76c568693316f91fe387ca4951026f5e524d95a1978a03802780cc4cfractalite.com.whoisproxy.org
  • 1ff9c8ab76c568693316f91fe387ca49cfdbc2e0500f060964f9a9bf8e156c1cfractalite.com.whoisproxy.org
  • 1ff9c8ab76c568693316f91fe387ca49a22ed5c0b420a112108f6eace37c3153fractalite.com.whoisproxy.org
  • 1ff9c8ab76c568693316f91fe387ca4971a606499598da6b7e1b9cab6acf40a9fractalite.com.whoisproxy.org
MX Records
  • aspmx2.googlemail.com. Google Workspace
  • aspmx3.googlemail.com. Google Workspace
  • aspmx4.googlemail.com. Google Workspace
  • aspmx5.googlemail.com. Google Workspace
  • aspmx.l.google.com. Google Workspace
  • alt1.aspmx.l.google.com. Google Workspace
  • alt2.aspmx.l.google.com. Google Workspace
TXT Records
  • brevo-code:02afa3bb6fe6137eb6973dc38d7d5c8e
Cloud / SaaS Services Detected
No well-known cloud or SaaS service detected.

Leak Screenshot:

Leak Screenshot