Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo BASF - Nunhems

Group: fog

Discovered by ransomware.live: 2024-07-29

Estimated attack date: 2024-07-29

Country: NL

Description:

30 GB


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • domainabuse cscglobal.com
MX Records
  • basf.mail.protection.outlook.com.
TXT Records
  • ms-domain-verification=360665bf-5e67-406e-970f-fa82f8bc78f6
  • amazonses:2nW9K2DzbfpriP0MgZMbjlb3FVoK0VN3F4tCDDvcIWA=
  • tresorit-verification=PUFdD5LbvAOwIcK2AR561vCyhARJg6_a3b4wHTU7uzI
  • _5rfaz1drhzg1nn7qs8mx87jnpdp84fy
  • amazonses:zrDPBloO9Gyyb8HkIjnh00UMQIlO5ocVk0enAZbLGcg=
  • NZRJ4SBV4R44WWHITAPCDKHEAYMXIIT68AID2X7WOGVS0EQ6E8OGXZUY233UNIAP
  • successfactors-site-verification=ZmM5Mzg1ZDcxOTMxZTY1MTM5ZTliZDMwNWI2YzNkYjBmNmM0M2Y2MzE4MWE0NmRiYzA2NGY5M2ZiNTZiYThhMg==
  • adobe-sign-verification=b36108583501acbdcb8725c54d7f45db
  • canva-site-verification=c_kg9X0lHIp9LA74hR7jjg
  • wrike-verification=MTUxNTQyMToxZTUzMjgwMjE5MzI1NGJhNTAyMGUxZDJlNjcwNDYxNWQ3OWIzNzllNzVlMjczMTk5Mzc3N2I5Nzg2MGY2ZGY2
  • QO5EHVMUKM6K5H1U7CU619KHEJ
  • 6jyrt5qzlpkcf95plkbykx4jq73xbwy0
  • onetrust-domain-verification=b159c116fcbc4523b02783b9cc9eea36
  • flexera-domain-verification-trfymrfzuttgkuvu
  • quickbase-site-verification- c90b6ae9be498ca9690d27f4e084bc82829dcb39
  • autodesk-domain-verification=esX-uLfgEatW3h3oSMvq
  • onetrust-domain-verification=834b0d0ea60140608edd3e046d85af48
  • amazonses:SAXpznzA+qqs1yWtSeYuFHA5s6KQKjR5+gZREsfuNf8=
  • _3dxd4h0rwjpm6nvekp8pky1dlh0dxhf
  • google-site-verification=kfQ7qPx-DLPSiOXyXev8oiNKzf-TXfiNC189Y5d5stU
  • pardot13412=7921646de86dc96351de2d36d6781b7697e9d63f9c98c6df6e71ccdfe43322bf
  • ms-domain-verification=8dd3439c-2809-49fd-8af3-cb83dd97c257
  • vq7tjDzd3kWLmXQ5RsZh4eZJ9lNMwQ9josFiug1welI=
  • docker-verification=b4a0b19e-b3d2-4d48-b72c-12d89566da34
  • pardot700743=b4213bc8370cf15b24e20f7c70705dfbe559a6e1abffdf87dde4129c1cae1f30
  • ms-domain-verification=001d3805-ef2a-4497-9012-a32c45b2e10f
  • flexera-domain-verification-jwufqpczehcogllb
  • successfactors-site-verification=Y2FhNWVlNGM3MDkyYWMzN2VhNThiZDVhN2VhZDZjNzNjMDg0MDVkYzFmMzljNTlkZjk5NTQ5M2YzYTRlYjU4MA==
  • google-site-verification=PXizJPqTvWVmmTGpBD-luvk3a8sVnDfYuntYAQY6GcM
  • webexdomainverification.=ba41f6dd-747f-4af9-a12b-46fb21ec0ef5
  • ms-domain-verification=52043a6a-a9dd-44bb-88db-426120cb5b9b
  • figma-domain-verification=abe1408e9fc82733b5e1f39d679e4ea7b1fbd1bd695bcee6a4175e658ba924ab-1732696666
  • fbb355bv5tzy3cqd1bjcqrdct165zqgc
  • ms-domain-verification=48e049a5-284d-4154-8a38-9d71abf7dda4
  • google-site-verification=-ts9hBMbdEzxD7asvDk3kZRbaXpx0T4P1e16ZMiMWZI
  • sending_domain700743=3fdb19e07320979f81e25446798f10081ae0644ad664952abf489965cd963d5a
  • plqrq1zb2rkc1473s91c0hkgfr5h2txb
  • MS=ms95326458
  • unity-sso-verification=f2030ee3-e75b-4c5a-a662-322d580d8215
  • mongodb-site-verification=GXcLGG50YFCROEnwrRsDhzqe2hMOlKcy
  • ms-domain-verification=05b54373-e481-4443-96c3-8886104a4949
  • Dynatrace-site-verification=3984e4f5-5265-487a-b2ab-7a18806e9113__d0uj094v6trkplt6d89em5r47e
  • v=spf1 ip4:20.101.12.10 ip4:20.23.134.203 ip4:141.6.2.0/24 ip4:141.6.72.0/24 include:spf.protection.outlook.com include:_trusted.basf.com -all
  • flexera-domain-verification-rjxljjjbqledonwt
  • tresorit-verification=d3Sn8qS68gtv0ucHWWfLEORrIDs-9VyQnoGJJXmKsZY
  • csbv7fpmyxl1d2968yk6g0t8j89jt8mg
  • google-site-verification=rIPeGMrX6y9blYxp-hGvQfZHjTmSMsszR_oSxkwIoEg
  • j4kghygg7d0vt03pzxbp6y2lh95lph7b
  • flexera-domain-verification-koztrfjbvszijtfd
  • google-site-verification=JUPwYrqNRAwOPJ8CG6Nh8W_zskFdmIL-QyIjqoJXEV8
  • google-site-verification=2YxlLAR4Z4ol-fLcrw9iS8Jz2Q3Ym1uL4yAjJ6w0Weo
  • bluebeam-verification=5mp9rftnt8uqwb524ftwvmkpdbneor
  • _u5cwmqmt790v0l2ba2295js48y100n6
  • amazonses:l2IT6+Ld6vtcNvayU4ft5LEdkC7KaWkjyIyGy0Rgw4I=
  • miro-verification=0112475a7913357bc607fd3e2a15859c191bc4e6
  • DomainVerification=NZRJ4SBV4R44WWHITAPCDKHEAYMXIIT68AID2X7WOGVS0EQ6E8OGXZUY233UNIAP
  • webexdomainverification.GKB5=a735dcb2-db3f-447e-9721-f87646119ec4
  • bluebeam-verification=0zbqx7j71gn6vpqnxgidwn0aphfjl9
  • webexdomainverification.GE4D=b489eae7-0883-4d15-a16d-82720504acba
  • globalsign-domain-verification=ZN-I6lqhgWl_M55NPp0wJOsuDbx-RExV9JT-XY2U9-
  • apple-domain-verification=YIbmyCQeTtx3Lgxa
  • flexera-domain-verification-qgegxwbmopltsuhj
  • KNuzGjuHKr5LpaDfOvBsut/yBM+ujfirLj8Mqq9AxYY=
  • _w9ywwjjipu9g8d1elteqkjhftex32kc
Cloud / SaaS Services Detected
Apple Amazon SES/WorkMail Microsoft 365 Salesforce Miro Autodesk Flexera OneTrust Cisco Webex

Leak Screenshot:

Leak Screenshot