Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo emsshi.com

Group: Dispossessor

Discovered by ransomware.live: 2024-04-19

Estimated attack date: 2023-08-16

Description:

emsshi.com

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 0

Compromised Users: 3

Third Party Employee Credentials: 1

External Attack Surface: 1


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domain.operations web.com
MX Records
  • emsshi-com.mail.protection.outlook.com.
TXT Records
  • v=spf1 ip4:74.87.53.194 ip4:74.87.53.196 ip4:74.87.53.198 include:spf.protection.outlook.com include:mailgun.org -all
  • google-site-verification=ttSgoLAArrpp5U52BLDTRs8vxZrdp6afw3FDUgNGJcI
  • amjoc9rhmr31qhftetassi8qc6
  • MS=ms51960418
Cloud / SaaS Services Detected
Microsoft 365 Mailgun

Leak Screenshot:

Leak Screenshot