# inrs.rricrosoft-office.org — MALICIOUS

> PhishDestroy identifies inrs.rricrosoft-office.org as a Microsoft Office phishing site flagged by 12 of 95 VirusTotal vendors. Check the full report.

## Summary
The domain inrs.rricrosoft-office.org has been confirmed as an active phishing site impersonating Microsoft Office, with an elevated threat level currently in operation.

PhishDestroy identifies the domain inrs.rricrosoft-office.org as a confirmed Microsoft Office credential phishing site, currently active and elevated in risk. This domain was flagged by 12 of 95 VirusTotal security vendors, registered through Dynadot Inc on July 07, 2023, and resolves to IP address 20.50.64.14. The domain utilizes a Let's Encrypt SSL certificate to appear legitimate and has accumulated a concerning detection footprint, reflecting its malicious intent.

Risk assessment for inrs.rricrosoft-office.org remains elevated due to sustained phishing operations targeting Microsoft Office users. To mitigate exposure, users must avoid interacting with this domain and report it through official Microsoft or PhishDestroy channels. Network administrators should implement DNS-based blocking using the IP address 20.50.64.14 and domain name inrs.rricrosoft-office.org. Additionally, updating endpoint protection systems with the latest threat intelligence derived from this report will help prevent credential theft and lateral network compromise.

## Threat Details
- Verdict: MALICIOUS
- Site status: unknown (HTTP ?)

## Domain Intelligence
- Registered: 2023-07-07 19:31:48
- Registrar: Dynadot Inc
- IP: 20.50.64.14

## Detection Status
- VirusTotal: 12 vendors flagged
- Google Safe Browsing: clean
- Blocklists: 0 hits

## Evidence
- Cloudflare Radar: https://radar.cloudflare.com/domains/inrs.rricrosoft-office.org
- PhishDestroy: https://phishdestroy.io/domain/inrs.rricrosoft-office.org/
- LLM endpoint: https://phishdestroy.io/domain/inrs.rricrosoft-office.org/llm.txt

## If You Visited This Site
1. Change any passwords you may have entered
2. Enable 2FA on all related accounts
3. Monitor your accounts for unauthorized activity
4. Report to: FBI IC3, Europol, local authorities

---
Report by PhishDestroy | https://phishdestroy.io/domain/inrs.rricrosoft-office.org/
Last updated: 2026-04-09