API tools faq
paste
Advertisement
wavellan

20190912_PHISHING_SCAM_1

wavellan
Sep 12th, 2019
309
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.60 KB | None | 0 0
raw download clone embed print report
  1. Hello!
  2.  
  3. I am a hacker who has access to your operating system.
  4. I also have full access to your account.
  5.  
  6. I've been watching you for a few months now.
  7. The fact is that you were infected with malware through an adult site that you visited.
  8.  
  9. If you are not familiar with this, I will explain.
  10. Trojan Virus gives me full access and control over a computer or other device.
  11. This means that I can see everything on your screen, turn on the camera and microphone, but you do not know about it.
  12.  
  13. I also have access to all your contacts and all your correspondence.
  14.  
  15. Why your antivirus did not detect malware?
  16. Answer: My malware uses the driver, I update its signatures every 4 hours so that your antivirus is silent.
  17.  
  18. I made a video showing how you satisfy yourself in the left half of the screen, and in the right half you see the video that you watched.
  19. With one click of the mouse, I can send this video to all your emails and contacts on social networks.
  20. I can also post access to all your e-mail correspondence and messengers that you use.
  21.  
  22. If you want to prevent this,
  23. transfer the amount of $500 to my bitcoin address (if you do not know how to do this, write to Google: "Buy Bitcoin").
  24.  
  25. My bitcoin address (BTC Wallet) is: 3Ab6wYqo9gBhHEtv23GL5HEpSZ7LEw9A6o
  26.  
  27. After receiving the payment, I will delete the video and you will never hear me again.
  28. I give you 50 hours (more than 2 days) to pay.
  29. I have a notice reading this letter, and the timer will work when you see this letter.
  30.  
  31. Filing a complaint somewhere does not make sense because this email cannot be tracked like my bitcoin address.
  32. I do not make any mistakes.
  33.  
  34. If I find that you have shared this message with someone else, the video will be immediately distributed.
  35.  
  36. Best regards!
  37.  
  38.  
  39.  
  40.  
  41.  
  42. Received: from MBX05D-ORD1.mex08.mlsrvr.com (172.29.9.24) by
  43. MBX05C-ORD1.mex08.mlsrvr.com (172.29.9.23) with Microsoft SMTP Server (TLS)
  44. id 15.0.1473.3 via Mailbox Transport; Thu, 12 Sep 2019 07:16:56 -0500
  45. Received: from MBX03C-ORD1.mex08.mlsrvr.com (172.29.9.17) by
  46. MBX05D-ORD1.mex08.mlsrvr.com (172.29.9.24) with Microsoft SMTP Server (TLS)
  47. id 15.0.1473.3; Thu, 12 Sep 2019 07:16:56 -0500
  48. Received: from gate.forward.smtp.iad3b.emailsrvr.com (146.20.86.8) by
  49. MBX03C-ORD1.mex08.mlsrvr.com (172.29.9.17) with Microsoft SMTP Server (TLS)
  50. id 15.0.1473.3 via Frontend Transport; Thu, 12 Sep 2019 07:16:56 -0500
  51. Return-Path: <[email protected]>
  52. X-Spam-Threshold: 95
  53. X-Spam-Score: 100
  54. Precedence: junk
  55. X-Spam-Flag: YES
  56. X-Virus-Scanned: OK
  57. X-Orig-To:
  58. X-Originating-Ip: [66.165.183.84]
  59. Authentication-Results: smtp4.gate.iad3b.rsapps.net; iprev=pass policy.iprev="66.165.183.84"; spf=pass smtp.mailfrom="[email protected]" smtp.helo="mail.gsat.us"; dkim=fail (key not found in DNS) header.d=kasbahonline.com; dmarc=none (p=nil; dis=none) header.from=kasbahonline.com
  60. X-Suspicious-Flag: YES
  61. X-Classification-ID: 36108ef4-d557-11e9-947f-525400789c6c-1-1
  62. Received: from [66.165.183.84] ([66.165.183.84:46618] helo=mail.gsat.us)
  63. by smtp4.gate.iad3b.rsapps.net (envelope-from <[email protected]>)
  64. (ecelerity 4.2.38.62370 r(:)) with ESMTPS (cipher=DHE-RSA-AES256-GCM-SHA384)
  65. id D4/51-28432-8373A7D5; Thu, 12 Sep 2019 08:16:56 -0400
  66. Received: from [66.165.183.84] (mailgse.com [66.165.183.84])
  67. (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits))
  68. (No client certificate requested)
  69. by mailgse.com (Postfix) with ESMTPSA id 4FD5D145090F
  70. for <>; Thu, 12 Sep 2019 12:16:36 +0000 (GMT)
  71. DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kasbahonline.com;
  72. s=default; t=1568290601;
  73. bh=JKi7yg63bG/r/SHNyZi+Mlx20AREFEQDhXOEZvX1Q9A=;
  74. h=From:Subject:Date:To;
  75. b=hmoW50pQcUqSnvsCHZcUinNYYXqYYn0tuhwDMZ/ToEnP8TGoWsBBKmOFT+09TYlxT
  76. dRTXCY45sM1t+7nNOHOWBeAhZ5iyaiPHsB6ZnBZBpFC6t9/g81Y0NdM3SujZUelhOG
  77. amxIqz3Fp0ck6xdKLdKmXyxoBM7SOew2NLTfUab8=
  78. From: Reese <[email protected]>
  79. MIME-Version: 1.0
  80. Message-ID: <[email protected]>
  81. Subject: Security Alert. Your accounts were compromised. You need to change
  82. password!
  83. Date: Thu, 12 Sep 2019 15:16:41 +0300
  84. To:
  85. X-EMarSys-Environment: jssnzvyo
  86. X-Felis-L: 4GB73OR6S3Q55A95L1Q8CK7NN16FMDOGQ
  87. X-ClientProxiedBy: 551.40.092.078
  88. X-MS-Exchange-Organization-Network-Message-Id: 9105440c-c52f-40e6-2e51-08d7377b1a8a
  89. X-MS-Exchange-Organization-AVStamp-Mailbox: SMEXzs^g;1536100;0;This mail has
  90. been scanned by Trend Micro ScanMail for Microsoft Exchange;
  91. X-MS-Exchange-Organization-SCL: 5
  92. X-MS-Exchange-Organization-AuthSource: MBX03C-ORD1.mex08.mlsrvr.com
  93. X-MS-Exchange-Organization-AuthAs: Anonymous
  94. Content-type: text/plain;
  95. charset="UTF-8"
  96. Content-transfer-encoding: 7bit
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!