API tools faq
paste
wavellan

20231127_PHISHING_SCAM_1

wavellan
Nov 27th, 2023
260
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 6.80 KB | None | 0 0
raw download clone embed print report
  1. Hi YOUR_NAME_HERE
  2.  
  3. My name is Nora Marshall. I am employed at a company that has expertise in logistics.
  4. We currently have an open position within our department.
  5.  
  6. We're looking for a dependable candidate for the available position, and if you're keen, we can explore the possibility of collaborating with you. I will provideyou with all the necessary documents for the evaluation.
  7.  
  8. Having either U.S. citizenship or have the right to work in the United States.
  9.  
  10. Should this spark your curiosity, respond, and we will initiate contact.
  11.  
  12.  
  13. Yours faithfully,
  14. Nora Marshall
  15. Corporate Recruiter
  16.  
  17.  
  18.  
  19.  
  20. Received: from MW4PR05MB8234.namprd05.prod.outlook.com (2603:10b6:303:121::19)
  21. by MWHPR0501MB3899.namprd05.prod.outlook.com with HTTPS; Mon, 27 Nov 2023
  22. 23:07:18 +0000
  23. Received: from SJ0PR03CA0059.namprd03.prod.outlook.com (2603:10b6:a03:33e::34)
  24. by MW4PR05MB8234.namprd05.prod.outlook.com (2603:10b6:303:121::19) with
  25. Microsoft SMTP Server (version=TLS1_2,
  26. cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7025.29; Mon, 27 Nov
  27. 2023 23:07:14 +0000
  28. Received: from MW2NAM12FT104.eop-nam12.prod.protection.outlook.com
  29. (2603:10b6:a03:33e:cafe::14) by SJ0PR03CA0059.outlook.office365.com
  30. (2603:10b6:a03:33e::34) with Microsoft SMTP Server (version=TLS1_2,
  31. cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7025.28 via Frontend
  32. Transport; Mon, 27 Nov 2023 23:07:14 +0000
  33. Authentication-Results: spf=pass (sender IP is 209.85.208.181)
  34. smtp.mailfrom=gmail.com; dkim=pass (signature was verified)
  35. header.d=gmail.com;dmarc=pass action=none header.from=gmail.com;compauth=pass
  36. reason=100
  37. Received-SPF: Pass (protection.outlook.com: domain of gmail.com designates
  38. 209.85.208.181 as permitted sender) receiver=protection.outlook.com;
  39. client-ip=209.85.208.181; helo=mail-lj1-f181.google.com; pr=C
  40. Received: from mail-lj1-f181.google.com (209.85.208.181) by
  41. MW2NAM12FT104.mail.protection.outlook.com (10.13.181.144) with Microsoft SMTP
  42. Server (version=TLS1_3, cipher=TLS_AES_256_GCM_SHA384) id 15.20.7046.21 via
  43. Frontend Transport; Mon, 27 Nov 2023 23:07:14 +0000
  44. Received: by mail-lj1-f181.google.com with SMTP id 38308e7fff4ca-2c876f1e44dso59811281fa.0
  45. for <>; Mon, 27 Nov 2023 15:07:14 -0800 (PST)
  46. DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
  47. d=gmail.com; s=20230601; t=1701126432; x=1701731232; darn=;
  48. h=mime-version:message-id:subject:from:to:date:from:to:cc:subject
  49. :date:message-id:reply-to;
  50. bh=ygHIn3z135rR4ZNXSM3UfrFZTcvW8xoFCEbCBmzCPS8=;
  51. b=FU/LOHJFHpIlIp0PxRg8Se38QcbBtqgZ3aOKS6xU/SEJbCbJOHV2JJ3Qnsb8+txJVh
  52. jAz9kdFzsR+xsHpTiK43bFTGTLyfJ6gxr5QpkjJ3gJ3Fy9rhM8lum+xpzGDoWK8aDe7z
  53. Nc2PlzVwJje6EbYnTyHoYa6ZmVr8Ug1oNJUn6QbjFwdVMwi5f05cAZqICIhMCJDSFymX
  54. tpFKmerXvjefoeZftpz7KZxUeVeRPbId24Ww+1E2hMgsAWn8fjXDKbuAVl8wQxQdhAp0
  55. z1OREdFDcLWdsLuFBUsrZ3M+//kIGJshQ1DPOZ/RFP7ny2TKHucweWVWS/KNFXfp/gGl
  56. s/ZA==
  57. X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
  58. d=1e100.net; s=20230601; t=1701126432; x=1701731232;
  59. h=mime-version:message-id:subject:from:to:date:x-gm-message-state
  60. :from:to:cc:subject:date:message-id:reply-to;
  61. bh=ygHIn3z135rR4ZNXSM3UfrFZTcvW8xoFCEbCBmzCPS8=;
  62. b=wTT4e8JTnB6RNvCEyH+KuzUXYsjd/i2VY2l5LjkTwc2OyXnqj+GvEijJdS7BGNHROE
  63. U5McT5OhB0DKEdMrzPzmsEjUXoVInTzVr70f5PIbONOzV0Mv8SPNxx+MTK7W8FkWt4KE
  64. noSHnotp9C59zVe7dTZrUOMJysEgq9URO8J/9e7vZ+YnKDxWEq/NWZf2vES13zBgA34/
  65. spzdLxofTpM5A0R/6tPFjfBv51lxIXOLdkJOSAojSn7qJlLvSevEMLJariLFuz/CBi4+
  66. EHYn4DMKOzr0CuBtT4nmmjsfBxH+SBZJfztQPAVVzA4A5OxHVQfNk6NQjwpnKUtppBzk
  67. nm/g==
  68. X-Gm-Message-State: AOJu0YwQVEpcGkEP96PttVpe84/mTEBvzyz+SL5//djSnCKlMxPw50tZ
  69. m6+sgrEoPgnvilwTxSPRff5paBtvVXs=
  70. X-Google-Smtp-Source: AGHT+IEz94Tj+pUrxUuMh9uCWRXn5xL90FKrqFBEBHL7kl5eHLiSERK3t4f1QyzB5ObxWPACYqER7g==
  71. X-Received: by 2002:ac2:4e10:0:b0:50a:a5f7:47fb with SMTP id e16-20020ac24e10000000b0050aa5f747fbmr10854333lfr.49.1701126431917;
  72. Mon, 27 Nov 2023 15:07:11 -0800 (PST)
  73. Return-Path: [email protected]
  74. Received: from [127.0.0.1] ([91.194.2.221])
  75. by smtp.gmail.com with ESMTPSA id i17-20020a056512319100b0050ab72b97fcsm1625249lfe.124.2023.11.27.15.07.11
  76. for <>
  77. (version=TLS1_2 cipher=ECDHE-ECDSA-AES128-GCM-SHA256 bits=128/128);
  78. Mon, 27 Nov 2023 15:07:11 -0800 (PST)
  79. Date: Mon, 27 Nov 2023 18:07:10 +0000
  80. To:
  81. From: Nora Marshall <[email protected]>
  82. Subject: Hello ...... UIB05202
  83. Message-ID: <aAPDIwJkRKA6CFG5b5Oe8QkZX0nHZE8DT6Q4ENkaOo@localhost>
  84. X-Priority: 3 (Normal)
  85. X-Mailer: Microsoft Outlook 16.0
  86. MIME-Version: 1.0
  87. X-MS-Exchange-Organization-ExpirationStartTime: 27 Nov 2023 23:07:14.3786
  88. (UTC)
  89. X-MS-Exchange-Organization-ExpirationStartTimeReason: OriginalSubmit
  90. X-MS-Exchange-Organization-ExpirationInterval: 1:00:00:00.0000000
  91. X-MS-Exchange-Organization-ExpirationIntervalReason: OriginalSubmit
  92. X-MS-Exchange-Organization-Network-Message-Id:
  93. c763ccd0-6e1a-4d3a-c488-08dbef9d9819
  94. X-EOPAttributedMessage: 0
  95. X-EOPTenantAttributedMessage: 0d4bfd0a-5b8b-4c86-b245-3f11f8ea539a:0
  96. X-MS-Exchange-Organization-MessageDirectionality: Incoming
  97. X-MS-PublicTrafficType: Email
  98. X-MS-TrafficTypeDiagnostic:
  99. MW2NAM12FT104:EE_|MW4PR05MB8234:EE_|MWHPR0501MB3899:EE_
  100. X-MS-Exchange-Organization-AuthSource:
  101. MW2NAM12FT104.eop-nam12.prod.protection.outlook.com
  102. X-MS-Exchange-Organization-AuthAs: Anonymous
  103. X-MS-Office365-Filtering-Correlation-Id: c763ccd0-6e1a-4d3a-c488-08dbef9d9819
  104. X-MS-Exchange-Organization-SCL: 5
  105. X-Forefront-Antispam-Report:
  106. CIP:209.85.208.181;CTRY:US;LANG:en;SCL:5;SRV:;IPV:NLI;SFV:SPM;H:mail-lj1-f181.google.com;PTR:mail-lj1-f181.google.com;CAT:SPM;SFS:(13230031)(7916004)(84050400002)(230922051799003)(451199024)(4744005)(7246003)(7636003)(7596003)(356005)(426003)(336012)(9686003)(82202003)(33716001)(26005)(73392003)(5660300002)(7126003)(956004)(22186003)(58800400005)(76482006)(8676002)(1096003)(86362001)(6916009)(27256005)(70300200001)(36394005);DIR:INB;
  107. X-Microsoft-Antispam: BCL:0;
  108. X-MS-Exchange-CrossTenant-OriginalArrivalTime: 27 Nov 2023 23:07:14.3317
  109. (UTC)
  110. X-MS-Exchange-CrossTenant-Network-Message-Id: c763ccd0-6e1a-4d3a-c488-08dbef9d9819
  111. X-MS-Exchange-CrossTenant-Id: 0d4bfd0a-5b8b-4c86-b245-3f11f8ea539a
  112. X-MS-Exchange-CrossTenant-AuthSource:
  113. MW2NAM12FT104.eop-nam12.prod.protection.outlook.com
  114. X-MS-Exchange-CrossTenant-AuthAs: Anonymous
  115. X-MS-Exchange-CrossTenant-FromEntityHeader: Internet
  116. X-MS-Exchange-Transport-CrossTenantHeadersStamped: MW4PR05MB8234
  117. X-MS-Exchange-Transport-EndToEndLatency: 00:00:03.7345379
  118. X-MS-Exchange-Processed-By-BccFoldering: 15.20.7025.020
  119. X-Microsoft-Antispam-Mailbox-Delivery:
  120. ucf:0;jmr:0;auth:0;dest:J;OFR:SpamFilterAuthJ;ENG:(910001)(944506478)(944626604)(920097)(930097)(3100021)(140003);RF:JunkEmail;
  121. Content-type: text/plain;
  122. charset="UTF-8"
  123. Content-transfer-encoding: 7bit
  124.  
  125.  
Advertisement
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!