Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo icmconv.com

Group: kawa4096

Discovered by ransomware.live: 2025-07-22

Estimated attack date: 2025-06-19

Country: US

Description:

icmconv.com

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 3

Compromised Users: 0

Third Party Employee Credentials: 0

External Attack Surface: 2

Infostealer Distribution

DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abuse godaddy.com
MX Records
  • icmconv-com.mail.protection.outlook.com.
TXT Records
  • WZgerlec+w8MdZdK52eGzGrXMSpjB0fZqF3xNwJzuQ5qymDPkR71uQy6LYRKGq1PEepExiIhOnl2RLLFOM2a3g==
  • MS=ms47382737
  • v=spf1 ip4:184.180.191.5 include:spf.protection.outlook.com include:authsmtp.com include:servers.mcsv.net -all
  • as=1435680533
Cloud / SaaS Services Detected
Microsoft 365