SHARE
TWEET

2019-02-28 - Hancitor malspam example

malware_traffic Feb 28th, 2019 869 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. 2019-02-28 - HANCITOR MALSPAM EXAMPLE
  2.  
  3. Received: from santuariohotel.com ([24.39.22.58]) by [removed] for [removed];
  4.      Thu, 28 Feb 2019 19:27:05 +0000
  5. Message-ID: <51AEC145.A05520A3@santuariohotel.com>
  6. Date: Thu, 28 Feb 2019 13:26:51 -0500
  7. Reply-To: "HelloFax Inc." <hellofax@santuariohotel.com>
  8. From: "HelloFax" <hellofax@santuariohotel.com>
  9. X-Mailer: iPad Mail (11D169b)
  10. X-Accept-Language: en-us
  11. MIME-Version: 1.0
  12. TO: [removed]
  13. Subject: HelloFax, Someone Sent You a Fax
  14. Content-Type: text/html;
  15.      charset="utf-8"
  16. Content-Transfer-Encoding: 7bit
  17.  
  18.  
  19. <html>
  20. <head>
  21. <meta>
  22. </head>
  23. <body>
  24. <div
  25. style="font-size: 10pt; font-family:
  26. Verdana,Arial,Helvetica,sans-serif;"><br>
  27. <div
  28. style="margin: 0pt; padding: 0pt; background-color: rgb(238, 238, 238);
  29. font-family: &quot;Helvetica Neue&quot;,Arial,Helvetica,sans-serif;
  30. font-size: 14px; line-height: 1.4em; width: 100%; min-width: 680px;">
  31. <table border="0" cellpadding="0" cellspacing="0" width="100%">
  32. <tbody>
  33. <tr style="border-collapse: collapse;">
  34. <td
  35. style="font-family: &quot;Helvetica Neue&quot;,Arial,Helvetica,sans-serif;
  36. font-size: 14px; line-height: 1.4em; border-collapse: collapse;"
  37. align="center" bgcolor="#eeeeee">
  38. <table border="0" cellpadding="20" cellspacing="0" width="640">
  39. <tbody>
  40. <tr style="border-collapse: collapse;">
  41. <td
  42. style="font-family: &quot;Helvetica Neue&quot;,Arial,Helvetica,sans-serif;
  43. font-size: 14px; line-height: 1.4em; border-collapse: collapse;"
  44. align="left" width="640">
  45. <div style="margin: 0pt 0pt 20px;">
  46. <div style="text-align: left;"> <a
  47. href="http://app.hellofax.com/?rel=em_lg&amp;utm_campaign=account_onboardin
  48. g&amp;utm_source=default&amp;utm_medium=email&amp;utm_content=original"
  49. style="color: rgb(0, 0, 0); text-decoration: none;" target="_blank"><img
  50. src="https://dyn550zzd47ox.cloudfront.net/1.52.0/css/images/email/hf_logo.p
  51. ng"
  52. alt="HelloFax"
  53. style="border: 0pt none ; margin: 0pt; padding: 0pt; max-width: 180px;
  54. height: auto; line-height: 100%; outline-color: invert; outline-style: none;
  55. outline-width: medium; text-decoration: none;"
  56. border="0" height="33" width="123"></a> </div>
  57. <p style="margin: 5px 0pt 0pt; color: rgb(102, 102, 102);">The
  58. easiest way to send
  59. faxes online</p>
  60. </div>
  61. <table width="640">
  62. <tbody>
  63. <tr>
  64. <td
  65. style="border: 1px solid rgb(204, 204, 204); padding: 40px 40px 30px;
  66. background-color: rgb(255, 255, 255); color: black;"
  67. bgcolor="#ffffff">
  68. <h1
  69. style="margin: 0pt 0pt 10px; font-size: 18px; font-weight: bold; color:
  70. rgb(0, 0, 0);">Dear
  71. Customer,</h1>
  72. <p
  73. style="margin: 10px 0px; font-size: 14px; line-height: 1.4em; color: rgb(0,
  74. 0, 0);">You have received a HelloFax<br>
  75. <br>
  76. Date/Time:
  77. 02/28/2019 08:57 AM<br>
  78. Number of pages received: 6<br>
  79. <br>
  80. Reference number:
  81. MSH756457K.</p>
  82. <div style="margin: 20px 0px;">
  83. <table>
  84. <tbody>
  85. <tr>
  86. <td
  87. style="padding: 9px 16px; background: rgb(0, 179, 230) none repeat scroll
  88. 0%; font-size: 16px; color: rgb(247, 251, 253); -moz-background-clip:
  89. -moz-initial; -moz-background-origin: -moz-initial;
  90. -moz-background-inline-policy: -moz-initial;"><a
  91. target="_blank"
  92. style="text-decoration: none; font-size: 16px; color: rgb(247, 251, 253);"
  93. href="hxxp://btcmarkethub[.]com?[removed]=[removed]"><span
  94. style="color: rgb(247, 251, 253);">Download Fax Now</span></a></td>
  95. </tr>
  96. </tbody>
  97. </table>
  98. </div>
  99. <hr
  100. style="border: medium none ; color: rgb(204, 204, 204); background-color:
  101. rgb(204, 204, 204); min-height: 1px;">
  102. <p
  103. style="margin: 10px 0px; font-size: 14px; line-height: 1.4em; color: rgb(0,
  104. 0, 0);">Thank you for going paper-less!<br>
  105. <span style="margin-left: 1em;">- <em>HelloFax Crew</em></span></p>
  106. </td>
  107. </tr>
  108. </tbody>
  109. </table>
  110. </td>
  111. </tr>
  112. </tbody>
  113. </table>
  114. </td>
  115. </tr>
  116. </tbody>
  117. </table>
  118. <table
  119. style="border-top: 1px solid rgb(153, 153, 153); border-bottom: 1px solid
  120. rgb(153, 153, 153); padding: 0pt 0pt 30px; background: rgb(204, 204, 204)
  121. none repeat scroll 0%; min-width: 680px; -moz-background-clip: -moz-initial;
  122. -moz-background-origin: -moz-initial; -moz-background-inline-policy:
  123. -moz-initial;"
  124. border="0" cellpadding="0" cellspacing="0" width="100%">
  125. <tbody>
  126. <tr style="border-collapse: collapse;">
  127. <td
  128. style="font-family: &quot;Helvetica Neue&quot;,Arial,Helvetica,sans-serif;
  129. font-size: 14px; line-height: 1.4em; border-collapse: collapse;"
  130. align="center" bgcolor="#cccccc">
  131. <table style="margin-top: 20px;" border="0" cellpadding="20"
  132. cellspacing="0" width="640">
  133. <tbody>
  134. <tr style="border-collapse: collapse;">
  135. <td
  136. style="padding: 0px 12px 0px 0px; vertical-align: top; font-family:
  137. &quot;Helvetica Neue&quot;,Arial,Helvetica,sans-serif; font-size: 12px;
  138. line-height: 1.4em; border-collapse: collapse; color: rgb(85, 85, 85);"
  139. align="left"> <strong>We believe the
  140. office can be paperless!</strong><br>
  141. <a style="color: rgb(54, 139, 198); text-decoration: none;"
  142. href="http://app.hellofax.com/?utm_campaign=account_onboarding&amp;utm_sour
  143. ce=default&amp;utm_medium=email&amp;utm_content=original"
  144. target="_blank">HelloFax</a> <span>Send
  145. Documents Online</span><br>
  146. <a style="color: rgb(54, 139, 198); text-decoration: none;"
  147. href="http://app.hellosign.com/?utm_campaign=account_onboarding&amp;utm_sou
  148. rce=default&amp;utm_medium=email&amp;utm_content=original"
  149. target="_blank">HelloSign</a> <span>Sign
  150. Docs Online</span><br>
  151. <a style="color: rgb(54, 139, 198); text-decoration: none;"
  152. href="http://app.hellosign.com/gmail?utm_campaign=account_onboarding&amp;ut
  153. m_source=default&amp;utm_medium=email&amp;utm_content=original"
  154. target="_blank">HelloSign for Gmail</a> <span>Sign
  155. via Googlemail</span> </td>
  156. <td
  157. style="padding: 0px 12px 0px 0px; vertical-align: top; font-family:
  158. &quot;Helvetica Neue&quot;,Arial,Helvetica,sans-serif; font-size: 12px;
  159. line-height: 1.4em; border-collapse: collapse; color: rgb(85, 85, 85);"
  160. align="left"> 204 Amelia
  161. Avenue, Suite
  162. 401<br>
  163. San Diego , CA </td>
  164. <td
  165. style="padding: 0px; vertical-align: top; font-family: &quot;Helvetica
  166. Neue&quot;,Arial,Helvetica,sans-serif; font-size: 12px; line-height: 1.4em;
  167. border-collapse: collapse; color: rgb(85, 85, 85);"
  168. align="left"> <a
  169. style="color: rgb(54, 139, 198); text-decoration: none;"
  170. href="https://dyn550zzd47ox.cloudfront.net/1.52.0/css/images/email/support.
  171. vcf"
  172. target="_blank">Add us to your list of
  173. contacts</a><br>
  174. </td>
  175. </tr>
  176. </tbody>
  177. </table>
  178. </td>
  179. </tr>
  180. </tbody>
  181. </table>
  182. </div>
  183. </div>
  184. </body>
  185. </html>
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top