Buy Me a Coffee

Sponsored by Hudson Rock Use Hudson Rock's free cybercrime intelligence tools to learn how Infostealer infections are impacting your business

Logo TOMTOM.COM

Group: clop

Discovered by ransomware.live: 2023-07-11

Estimated attack date: 2023-07-11

Description:

TomTom — Mapping and Location Technology


DNS Records:

The following DNS records were found for the victim's domain.

WHOIS Emails
  • abusecomplaints markmonitor.com
  • whoisrequest markmonitor.com
MX Records
  • tomtom-com.mail.protection.outlook.com.
TXT Records
  • sBHbq68WlBeeFpBU7TsF/rILV+UblLl61eL3JN2uZ3vhCQKmqm9PuYvxrVOC4Nird0r0Z/AmPTfRDCx0XvciAg==
  • jamf-site-verification=G3E8_z6Hul8V4LRRzqb36g
  • onetrust-domain-verification=ed9b028f470a4f418effe0bb8faf3af8
  • MS=ms14080619
  • unity-sso-verification=cb42482b-80c0-4c31-8f46-9eec1f11be9c
  • docusign=4e2ef447-c398-49eb-885f-93a3c38cb230
  • teamviewer-sso-verification=d61bf8d9f45847469ee7545563807b70
  • airtable-verification=f87a384c2ed70508a7caf734c8fc56e9
  • docusign=3ce7bb6d-7e84-47a7-8d4f-dcd7de13f634
  • miro-verification=c366a88d6ef9552f4a93d9016e5eb3b8ec5d47bb
  • apple-domain-verification=NAGVDc5TxR8AvHUb
  • facebook-domain-verification=cpwht607889mbpsxlzqbrtvmmgwm93
  • google-site-verification=AIX2eLQtiGKMjrdTkaNIjlibc69ZhosNZEQU4XvvDPY
  • docker-verification=2158b838-492e-404d-90c3-21764f1c446e
  • google-site-verification=GzfIXCzElSCZaGP3KID04CgZ-JIxTa2KDF5kOPiuxbE
  • atlassian-domain-verification=LNTzFCPe79DXpAt4NY1pKp5ZNIuZFPoQQ00EHwKjcQX1W0QLQDEDLEftCwNPoaJc
  • b3hqxdn8mym6085y5qjjmglycyytzvgf
  • hcp-domain-verification=865afc456cf26f92967c598d0c27a913040e4e23b8167e02f022db1a3bc929c1
  • v=spf1 include:spf.protection.outlook.com include:sharepointonline.com include:_spf.salesforce.com ip4:20.76.56.69 -all
  • adobe-idp-site-verification=a0c9aec7-2cac-4280-b67d-87c4a648f73b
  • mixpanel-domain-verify=4b828da3-f72e-4fa9-b096-6b8bd90bcbe0
  • ms-domain-verification=5808bf5a-1792-495f-b5f1-e33e1cf1390c
  • _4zto0td9nojr7hb9equ0cmrsuol9ya4
  • h1-domain-verification=9cZmw66YqZ1Nb3DAMtPQYPRurXKQ3kgX7KTT8ypD1NU1WxC2
  • 90e4ae7308c543e59bc45ad2c7c0c6ba
  • identrust_validate=hdIpSbx0ykv6XbCNUp2sUzubdfTombetgZYOY4GgqG3M
  • google-site-verification=UzHGW9mOc94-x3sIA1aH0UDc2t8EGPIWewIT72bMVBM
  • google-site-verification=WO42AZ7OcwAQhtl5RmaR0dlngJYc0bqbypY3bhH6XbM
  • pardot510681=40442bb65425b211ae9d2d6de714659b41600748d54e1e6ac7faeed415190f48
  • RV = QuoVadis=b7857c09-11e4-4c65-8a10-df1305b6642a
  • onetrust-domain-verification=829e27e3ec234967a16cbe0f3bae485c
  • google-site-verification=fY7o80hMancXdF59CPD2XUPr5ck9JySV-jwgufbHbVE
Cloud / SaaS Services Detected
Adobe Apple Atlassian Microsoft 365 Salesforce Miro Teamviewer JamF OneTrust DocuSign

Leak Screenshot:

Leak Screenshot