Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo EMPRESARIA.COM

Group: clop

Discovered by ransomware.live: 2024-12-19

Estimated attack date: 2024-12-19

Country: GB

Description:

_URL_

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 5

Third Party Employee Credentials: 0

External Attack Surface: 3


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse enom.com
MX Records
  • mx1-eu1.ppe-hosted.com.
  • mx2-eu1.ppe-hosted.com.
TXT Records
  • 2z9457x08wll6cwz8mv52dq5q7sgr1yf
  • google-site-verification=ZeD4O1DblaWYG7v3YLSUgiglj2WxizrVNd3e1YKyWEU
  • g5dqmk71sw9qnhnpf5g9fn9478wqbqcb
  • qs0g0xskc4gbrmfqwhjkx36b90j59q0m
  • workplace-domain-verification=EgMerjmAFPZ55duR3ogwobSfQQEn0g
  • 0ed1fe018a5092c468b82c45b08670e60a0741d810
  • v=spf1 a:dispatch-eu.ppe-hosted.com include:spf.protection.outlook.com include:spf.rsmemployerservices.co.uk include:_spf.bullhornmail.com a:outbound3.bullhorn.com a:outbound2.bullhorn.com a:o1.email.bullhornmail.com include:spf.UK.exclaimer.net ~all
  • _mpoodrnxvatdzb4fi70j5nwvh1oh2qc
Cloud / SaaS Services Detected
Proofpoint Essentials

Leak Screenshot:

Leak Screenshot