20240410_PHISHING_SCAM_1

1. I understand we don't know each other yet but there
2. is a serious proposal i want to discuss with you.
3.  
4.  
5.  
6.  
7. Received: from CO6PR05MB7681.namprd05.prod.outlook.com (2603:10b6:5:34c::10)
8. by SJ0PR05MB8678.namprd05.prod.outlook.com with HTTPS; Thu, 11 Apr 2024
9. 05:48:01 +0000
10. Received: from BY5PR04CA0001.namprd04.prod.outlook.com (2603:10b6:a03:1d0::11)
11. by CO6PR05MB7681.namprd05.prod.outlook.com (2603:10b6:5:34c::10) with
12. Microsoft SMTP Server (version=TLS1_2,
13. cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7409.55; Thu, 11 Apr
14. 2024 05:47:59 +0000
15. Received: from SJ1PEPF00001CE4.namprd03.prod.outlook.com
16. (2603:10b6:a03:1d0:cafe::ae) by BY5PR04CA0001.outlook.office365.com
17. (2603:10b6:a03:1d0::11) with Microsoft SMTP Server (version=TLS1_2,
18. cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7472.22 via Frontend
19. Transport; Thu, 11 Apr 2024 05:47:59 +0000
20. Authentication-Results: spf=pass (sender IP is 203.153.103.126)
21. smtp.mailfrom=bgi-corp.co.id; dkim=pass (signature was verified)
22. header.d=bgi-corp.co.id;dmarc=pass action=none
23. header.from=bgi-corp.co.id;compauth=pass reason=100
24. Received-SPF: Pass (protection.outlook.com: domain of bgi-corp.co.id
25. designates 203.153.103.126 as permitted sender)
26. receiver=protection.outlook.com; client-ip=203.153.103.126;
27. helo=mail.bgi-corp.co.id; pr=C
28. Received: from mail.bgi-corp.co.id (203.153.103.126) by
29. SJ1PEPF00001CE4.mail.protection.outlook.com (10.167.242.20) with Microsoft
30. SMTP Server (version=TLS1_3, cipher=TLS_AES_256_GCM_SHA384) id 15.20.7452.22
31. via Frontend Transport; Thu, 11 Apr 2024 05:47:57 +0000
32. Received: from localhost (localhost [127.0.0.1])
33. by mail.bgi-corp.co.id (Postfix) with ESMTP id C41F2C42DF9
34. for <>; Sat, 6 Apr 2024 18:58:22 -0400 (EDT)
35. Received: from mail.bgi-corp.co.id ([127.0.0.1])
36. by localhost (mail.bgi-corp.co.id [127.0.0.1]) (amavisd-new, port 10032)
37. with ESMTP id vbLhnhD2Ubf2 for <>;
38. Sat, 6 Apr 2024 18:58:22 -0400 (EDT)
39. Received: from localhost (localhost [127.0.0.1])
40. by mail.bgi-corp.co.id (Postfix) with ESMTP id 19AEB1121401
41. for <>; Fri, 5 Apr 2024 20:27:11 -0400 (EDT)
42. DKIM-Filter: OpenDKIM Filter v2.10.3 mail.bgi-corp.co.id 19AEB1121401
43. DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=bgi-corp.co.id;
44. s=612DB160-97F0-11EE-8066-D57B74C0B0DC; t=1712363231;
45. bh=akEKgw1VhVd1mbLSOkyGeUIXk/ak582U4fCtVfxBoe4=;
46. h=From:To:Date:Message-ID:MIME-Version;
47. b=WhtP1nPO6Ldhs7O07C+vzUg2O2C5FRgPeA7w/MYkTTrbrDoGVMpkpi3lYrZkvyuTU
48. TRzBQVzZ+jegKdoGUPRjQQoBSUXV7ddtOwqRAYGc17fXzlICwL8ItqaDbKvbYZJYdY
49. hAJS/vW0pNQZbsC+Vzt5m820bw+am41l0+9OHUtDfsKo70LiQFDVpzPjyAf/SP1EJs
50. 1b1bOzCb8QPrumkizcmTs6iUGaL+s0T7rr74Wa/3KxBEynolyBpW4nXmN4yP3WtbuI
51. wy/7GWxUdH6Pm3PKimKAfDnGJ1xJtPcWP8tLr+hSc2aKBF1P+mjV6xUIkpGf8ijTBE
52. /B9Xsh3vqQl4w==
53. X-Virus-Scanned: amavisd-new at bgi-corp.co.id
54. Received: from mail.bgi-corp.co.id ([127.0.0.1])
55. by localhost (mail.bgi-corp.co.id [127.0.0.1]) (amavisd-new, port 10026)
56. with ESMTP id wS_cfASZ2-8h for <>;
57. Fri, 5 Apr 2024 20:27:11 -0400 (EDT)
58. Received: from [80.244.11.209] (unknown [80.244.11.209])
59. by mail.bgi-corp.co.id (Postfix) with ESMTPSA id 70659EE12D4
60. for <>; Thu, 4 Apr 2024 21:47:58 -0400 (EDT)
61. Reply-To: [email protected]
62. From: "Yuliia" <[email protected]>
63. To:
64. Subject: Offering!
65. Date: 4 Apr 2024 18:47:54 -0700
66. Message-ID: <[email protected]>
67. MIME-Version: 1.0
68. Return-Path: [email protected]
69. X-MS-Exchange-Organization-ExpirationStartTime: 11 Apr 2024 05:47:57.7576
70. (UTC)
71. X-MS-Exchange-Organization-ExpirationStartTimeReason: OriginalSubmit
72. X-MS-Exchange-Organization-ExpirationInterval: 1:00:00:00.0000000
73. X-MS-Exchange-Organization-ExpirationIntervalReason: OriginalSubmit
74. X-MS-Exchange-Organization-Network-Message-Id:
75. c9d07e3b-a5d8-4168-7ea7-08dc59eaf0d6
76. X-EOPAttributedMessage: 0
77. X-EOPTenantAttributedMessage: 0d4bfd0a-5b8b-4c86-b245-3f11f8ea539a:0
78. X-MS-Exchange-Organization-MessageDirectionality: Incoming
79. X-MS-PublicTrafficType: Email
80. X-MS-TrafficTypeDiagnostic:
81. SJ1PEPF00001CE4:EE_|CO6PR05MB7681:EE_|SJ0PR05MB8678:EE_
82. X-MS-Exchange-Organization-AuthSource:
83. SJ1PEPF00001CE4.namprd03.prod.outlook.com
84. X-MS-Exchange-Organization-AuthAs: Anonymous
85. X-MS-Office365-Filtering-Correlation-Id: c9d07e3b-a5d8-4168-7ea7-08dc59eaf0d6
86. X-MS-Exchange-Organization-SCL: 5
87. X-Forefront-Antispam-Report:
88. CIP:203.153.103.126;CTRY:ID;LANG:en;SCL:5;SRV:;IPV:NLI;SFV:SPM;H:mail.bgi-corp.co.id;PTR:ip-126-103-static.velo.net.id;CAT:SPM;SFS:(13230031)(17110700005)(17130700007);DIR:INB;
89. X-Microsoft-Antispam: BCL:0;
90. X-MS-Exchange-CrossTenant-OriginalArrivalTime: 11 Apr 2024 05:47:57.1169
91. (UTC)
92. X-MS-Exchange-CrossTenant-Network-Message-Id: c9d07e3b-a5d8-4168-7ea7-08dc59eaf0d6
93. X-MS-Exchange-CrossTenant-Id: 0d4bfd0a-5b8b-4c86-b245-3f11f8ea539a
94. X-MS-Exchange-CrossTenant-AuthSource:
95. SJ1PEPF00001CE4.namprd03.prod.outlook.com
96. X-MS-Exchange-CrossTenant-AuthAs: Anonymous
97. X-MS-Exchange-CrossTenant-FromEntityHeader: Internet
98. X-MS-Exchange-Transport-CrossTenantHeadersStamped: CO6PR05MB7681
99. X-MS-Exchange-Transport-EndToEndLatency: 00:00:04.6513599
100. X-MS-Exchange-Processed-By-BccFoldering: 15.20.7409.037
101. X-Microsoft-Antispam-Mailbox-Delivery:
102. ucf:0;jmr:0;auth:0;dest:J;OFR:SpamFilterAuthJ;ENG:(910001)(944506478)(944626604)(920097)(930097)(3100021)(140003);RF:JunkEmail;
103.  
104. Content-type: multipart/alternative;
105. boundary="B_3795670047_1429566177"
106.  
107. > This message is in MIME format. Since your mail reader does not understand
108. this format, some or all of this message may not be legible.
109.  
110. --B_3795670047_1429566177
111. Content-type: text/plain;
112. charset="UTF-8"
113. Content-transfer-encoding: 7bit