Insurance Agency Marketing Services
Insurance Agency Marketing Services
Group: alphv
Discovered by ransomware.live: 2023-07-26
Estimated attack date: 2023-04-19
Description:
Insurance Agency Marketing Services, Inc. was founded in 1986 with service to producers as the centerpiece.
🕵️ Infostealer activity detected by HudsonRock
Compromised Employees: 0
Compromised Users: 1
Third Party Employee Credentials: 0
External Attack Surface: 2
Infostealer Distribution
DNS Records:
The following DNS records were found for the victim's domain.
WHOIS Emails
- abuse godaddy.com
MX Records
- iamsinc-com.mail.protection.outlook.com.
TXT Records
- aghgrgao2si7oa5fnv3qorg1ob
- google-site-verification=ogdQuP-ZoJ-JTDqTl5PEOez25vlB81wVMcADP5RRe3k
- 0AuwHf2qNOHX98AKgqVGNFSnjDtBxUvtK2AxJnx2shQACmp4dzgkzLxg26mS739RS20RU3bsTnmD6zNqDhGeuQ==
- MS=ms96479319
- k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDziBb7GuqWsBwSIhAg1vVyadjPLkH5NiPVV5R+HTeN7JmmECG8Yxmt8PNoc64C2r4g14mZc6WFwOrvWx+xApjmyKtkOhmP5Qf6cNoQUoR+uhPNeT7hVk6G56cp2ch/z6D4T76ge2pnbPWZeNO3QqwFpiGi6v9pfjrvG9sMEs1DwwIDAQAB
- Sendinblue-code:f1ef5ff16e1767e466c41755cbd5a279
- 5016182cc15c9600f7ba3793e04e7af74b96c69834c4fc235bf04c39ede696d4
- v=spf1 a:lmna.iamsinc.com ip4:168.245.13.50 ip4:74.126.60.170 ip4:74.126.60.171 ip4:192.249.120.134 a:mail1.wpengine.com a:owa.iamsinc.com a:vps109216.inmotionhosting.com include:spf.protection.outlook.com include:spf.sendinblue.com include:3411449.spf06." "hubspotemail.net include:spfa.cpmails.com -all
Cloud / SaaS Services Detected
HubSpot
Microsoft 365
Sendinblue
Leak Screenshot:
