SHARE
TWEET

2019-04-03 - Hancitor malspam example

malware_traffic Apr 3rd, 2019 1,077 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. 2019-04-03 - HANCITOR MALSPAM EXAMPLE
  2.  
  3. Received: from scanpacind.com ([23.251.6.146]) by [removed] for [removed];
  4.     Wed, 03 Apr 2019 18:54:45 +0000
  5. DomainKey-Signature: a=rsa-sha1; q=dns; c=simple;
  6.     s=default; d=scanpacind.com;
  7.     h=Message-ID:Date:Reply-To:From:X-Mailer:MIME-Version:TO:Subject:Content-Type:Content-Transfer-Encoding;
  8.     b=QgXjD85rhe/HepPnhtrrCLeP9YSYQhVEfB7QqA/Klw25KtnYhAs4ZrqAvyf9tEGOTW1rl4gV92/aNSDnSPfbYLe6vKvlyajShJykNNoIfMFgLcoxgGmpN0DV5ev3QiYNUSEfyZMtWurPx6wwZCBsbV1kIPUQx7K/sZW/ntTeYd0=;
  9. Message-ID: <36A7BE54.D1F16DC9@scanpacind.com>
  10. Date: Wed, 03 Apr 2019 13:54:39 -0500
  11. Reply-To: "eFax j2 Global, Inc." <efax@scanpacind.com>
  12. From: "eFax, Inc." <efax@scanpacind.com>
  13. X-Mailer: iPhone Mail (10A523)
  14. MIME-Version: 1.0
  15. TO: [removed]
  16. Subject: This is an automatic eFax Notice
  17. Content-Type: text/html;
  18.     charset="utf-8"
  19. Content-Transfer-Encoding: 7bit
  20.  
  21.  
  22. <html>
  23. <head>
  24. <meta id="_moz_html_fragment">
  25. </head>
  26. <body>
  27. <div>
  28. <div style="font-family: Verdana; font-size: 12px;">
  29. <div>&nbsp;
  30. <div>&nbsp;
  31. <div
  32. style="border-left: 2px solid rgb(195, 217, 229); margin: 10px 5px 5px
  33. 10px; padding: 10px 0pt 10px 10px;"><br>
  34. <div>
  35. <table align="center" border="0" cellpadding="0" cellspacing="0"
  36. width="600">
  37. <tbody>
  38. <tr>
  39. <td align="left"><a
  40. href="http://www.efax.com/signup/number?VID=70249&amp;OFFERCODE=EFAX_PLUS_U
  41. SD_1695_1MO_NOACT_30DAY_150PGIFT_1500SEND&amp;utm_source=j2es&amp;utm_medium
  42. =email&amp;utm_content=logo&amp;utm_campaign=signup_abandon_plus&amp;j=true"
  43. target="_blank"><img alt="eFax_Faxing_Simplified"
  44. src="http://media.campaigner.com/media/45/450920/efax_faxing_simplified.jpg
  45. "
  46. style="border: 0px none ; text-decoration: none; margin-left: 5px;
  47. margin-bottom: 10px;"
  48. height="59" width="243"></a></td>
  49. </tr>
  50. </tbody>
  51. </table>
  52. <table align="center" border="0" cellpadding="4" cellspacing="0"
  53. width="600">
  54. <tbody>
  55. <tr>
  56. <td
  57. style="border-top: 9px solid rgb(184, 184, 184); padding: 10px; color:
  58. rgb(0, 0, 0); font-family: Arial,sans-serif; font-weight: normal; font-size:
  59. 14px; line-height: 19px;">
  60. <p style="margin-top: 15px;"><big style="color: rgb(51, 51, 255);">Fax
  61. Message</big> Caller-ID:
  62. 5389
  63. 442
  64. 7753,<br>
  65. <br>
  66. You've got a 6
  67. page fax at 04-03-2019
  68. 10:56:54
  69. GMT.<br>
  70. <br>
  71. *The personal reference #
  72.  is
  73. dl4_sic09-88575768424821-5343473-17.<br>
  74. <br>
  75. Visit www.efax.com/efax-help-center if you have any
  76. questions concerning this
  77. notification or service.</p>
  78. <div align="center">
  79. <table min-height="65" align="center" cellpadding="6"
  80. cellspacing="10" width="250">
  81. <tbody>
  82. <tr>
  83. <td
  84. style="border-style: solid; border-color: rgb(216, 216, 216);
  85. background-color: rgb(205, 0, 0);"
  86. align="center"><a
  87. href="hxxp://tytalrecoverysolutions[.]com?[removed]=[removed]"
  88. style="color: rgb(255, 255, 255); font-size: 19px; font-family:
  89. Arial,sans-serif; font-weight: bold; text-decoration: none; display: block;"
  90. target="_blank">Get Fax Here</a></td>
  91. </tr>
  92. </tbody>
  93. </table>
  94. </div>
  95. <p><br>
  96. <br>
  97.  eFax Group</p>
  98. </td>
  99. </tr>
  100. </tbody>
  101. </table>
  102. <table align="center" border="0" cellpadding="0" cellspacing="4"
  103. width="600">
  104. <tbody>
  105. <tr>
  106. <td>
  107. <p
  108. style="margin-left: 15px; font-size: 11px; line-height: 15px; color:
  109. rgb(102, 102, 102); font-family: arial,helvetica;"><a
  110. href="http://www.j2global.com/cloud-connect?VID=70249&amp;utm_source=j2es&a
  111. mp;utm_medium=email&amp;utm_content=footer&amp;utm_campaign=signup_abandon_p
  112. lus&amp;j=true"
  113. target="_blank"><img alt="j2 footer"
  114. src="https://media.campaigner.com/accountsmedia/43/431045/f022943312314063b
  115. cbfc6b141b8649e.gif"></a><br>
  116.  2007-2018 j2 Global, Inc.
  117. and affiliates. All rights reserved.<br>
  118. eFax is a  trademark of j2 Global, Inc. <br>
  119. 71307
  120. Hollywood St, Los Angeles, CA
  121. 92614<br>
  122. <br>
  123. *** This is an automatic
  124. message, please do not reply directly to
  125. this email address *** <a
  126. href="http://www.efax.com/legal?VID=70249&amp;utm_source=j2es&amp;utm_mediu
  127. m=email&amp;utm_term=privacy-policy&amp;utm_content=text&amp;utm_campaign=si
  128. gnup_abandon_plus&amp;j=true#privacy"
  129. style="color: rgb(153, 153, 153);" target="_blank">Privacy Policy</a>.</p>
  130. </td>
  131. </tr>
  132. </tbody>
  133. </table>
  134. <p><img alt=""
  135. src="http://www.google-analytics.com/collect?v=1&amp;tid=UA-61979988-1&amp;
  136. cid=FEdJF6HFlDZh5PMQ0vo8YA..&amp;t=event&amp;ec=email&amp;ea=open&amp;el=FEd
  137. JF6HFlDZh5PMQ0vo8YA..&amp;cs=j2es&amp;cm=email&amp;cn=signup_abandon_efax_pl
  138. us_NEW&amp;cm1=1"></p>
  139. </div>
  140. </div>
  141. </div>
  142. </div>
  143. </div>
  144. </div>
  145. </body>
  146. </html>
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top