Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo Ranzijn

Group: raworld

Discovered by ransomware.live: 2024-03-21

Estimated attack date: 2024-03-21

Country: NL

🕵️ Infostealer activity detected by HudsonRock

Compromised Employees: 1

Compromised Users: 40

Third Party Employee Credentials: 0

External Attack Surface: 2


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • No emails found.
MX Records
  • ranzijn-nl.mail.protection.outlook.com.
TXT Records
  • facebook-domain-verification=817x5eu1qsvk4857htpopcxy6y7v1g
  • facebook-domain-verification=onrifyxn5alesleuy7nyqxt1d4ua1s
  • google-site-verification=BtNlbY6oNd-vXCb9SVfI-2oMVh59wo_Dz24q3wtC9Hg
  • google-site-verification=FJfr8VXgrP7DVQrfP5J832JpWqNaq4M8qgcSeofIozY
  • google-site-verification=PQuRu5Swgqs6MrWTa-SnErNFtdRL9S92R2Ej2WeWo-4
  • pinterest-site-verification=5d40e962b98997e4cf8df4da620d14ec
  • v=spf1 ip4:84.246.15.63 include:trustpilotservice.com include:sendgrid.net include:spf.sqr.nl include:spf.protection.outlook.com include:spf.animana.com include:amazonses.com ip4:46.31.48.0/21 ip4:5.100.226.177/28 ip4:185.46.182.1 ip4:185.46.182.200/29 ip" "4:185.46.182.208/31 include:_spf.yellowyard.nl -all
  • /6OFhrAOvX0QOqufV0yvkcX9GJj2EVmSIuZ1MF1pVy7XnVYzwasofEu/mEUaWdqLJd7NDkyRzCHCX3SQm5y5LA==
  • apple-domain-verification=dQ0ySjnfXEew7Bw9
Cloud / SaaS Services Detected
Apple Amazon SES/WorkMail SendGrid

Leak Screenshot:

Leak Screenshot