Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are leading to ransomware attacks

MMOSER.COM

mmoser.com

Group Clop
Discovered 2022-12-22 20:02 UTC
Est. attack date 2022-12-22

Description:

Home - M Moser Associates

Infostealer activity detected by HudsonRock

Compromised Employees: 12

Compromised Users: 1

Third Party Employee Credentials: 7


External Attack Surface: 11


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operationsweb.com
MX Records
  • mmoser-com.mail.protection.outlook.com. Microsoft 365
TXT Records
  • google-site-verification=pTJaAjRRy7JLRtwWphUgh5UdLeVQICxrZ9nwSDISF7g
  • 2AeAqZ9Ya9oNJFz5RJLpN2Ty8LDLEpjGdBUM9appSArsJPRtE6pzrCeF6g5CHy5eEXtVfcz+/XhlpQNSFG4CFw==
  • v=spf1 mx ip4:210.184.49.202 ip4:183.178.148.132 ip4:203.125.60.70 ip4:58.185.70.62 include:spf.protection.outlook.com -all
  • duo_sso_verification=o3fM20stJ9Few1rx8nqgs1ZLnyQ95LPhfDPnxGDe09TiCK7T1ZXt8d2LTkIkUI72
  • amazonses:jDMOnKdr4B+EkBvDOeg0GRyjmIbyfaUgVccj7R4IQpw=
Cloud / SaaS Services Detected
Amazon SES/WorkMail Cisco Duo

Leak Screenshot:

Leak Screenshot