Scammers Number: N/A Website Only (1 Telegram Phone Number Leaked).
Domains Used: http://tigerccshop.me & http://tigerccshop.cc
Extra Info: Data Includes Server Info.
Website Name: Tiger CC Shop
IP: 147.135.79.249 (Works as a Website… Redirects to the login portal).
Operating System: Debian x64
Hosting Company: OVH SAS
Location: Reston, VA, USA
SSL Status: Untrusted. Self-Signed
Page Status: 200
Creation Date: 2021-01-10
Registry Expiry Date: 2023-01-10
Name Server: ERIC.NS.CLOUDFLARE.COM
Name Server: FATIMA.NS.CLOUDFLARE.COM
Open Ports: 22, 80, 123, 443
Web Tech: Django, Python, Bootstrap
ASN: AS16276
22/SSH (TCP)
OpenBSD OpenSSH Version7.9
Debian Linux: 10.2
80/HTTP (TCP)
nginx:
http:// 147.135.79.249 (Separated due to weird Embed Problems).
Request GET /login/
Protocol HTTP/1.1
Status Code = 200
Status Reason OK
Body Hash sha1:4b41a953e1b89f9712a52ee2f047319c98931774
123/NTP (UDP)
Time Header
Version: 3
Mode: 4
Stratum: 2
Poll: 3
Precision -24
Reference ID: �l�
443/HTTP (TCP)
https:// 147.135.79.249
Request GET /login/
Protocol: HTTP/1.1/
Status Code: 200
Status Reason: OK
Body Hash: sha1:6a461a1989e17150d551526a4d7cda3adf6cd0bf
TLS:
JARM: 2ad2ad16d2ad2ad22c2ad2ad2ad2add02b8cc6626b25ebf05ea1651e2438d3
Handshake:
Version Selected: TLSv1_2
Cipher Selected: LS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
Leaf Certificate:
29f07d93231aabfa7044256da8a8c56b6afc7fe5b7e8465458a83c459c963554
emailAddress = [email protected], C=RU, ST=new maxico, L=niomon, O=Bouncy Castles, Inc., CN = tigerccshop.me
emailAddress = [email protected]
emailAddres s= [email protected], C=RU, ST=new maxico, L=niomon, O=Bouncy Castles, Inc., CN = tigerccshop.me,
emailAddress = [email protected]
38.6583, -77.2481
Telegram Accounts:
@pinfern0
@Tiktokk
@Tiktokk
@gomoraccv
@Tornado0cc
@sputnik706
@RRockCC
@OrcAdipdivcc
@goldboyCC - Phone Number used with account is: +1 760 350 7760
Telegram Invite: Telegram: Join Group Chat
Tor Hidden Service:
http://ld3hfzxcr4dib3v3kaetaiqym2xnhppxot3l6nyv2fw3zx5oldvdwdad.onion
Will Attempt to do more info gathering, Website and All info has been passed to US Law Enforcement. Just Thought I’d provide this lovely gem.
No Vulnerabilities have been found thus far.
2 Audio Samples from Telegram showing this operation has Millions in stolen assets (Files Hosted on Discord until I upload to a safer sharing location).
$300,000 Credit Card Balance Check. No Personal Data.
$107,000+ Balance Check. No Personal Info. OGG File
Both were provided in May and June respectively.
I Don’t condone nor Support this website or the trades.
I Will be using Python to scrape data such as names, Cities and Addresses to help victims know their credit card info has been stolen. If You’re able to provide some support it might ruin the site before it’s taken down. This Would help Law Enforcement and Banks Majorly as it would prevent further theft.






