20240428_PHISHING_SCAM_1

1. I understand we don't know each other yet but there is a serious proposal I want to discuss with you.
2.  
3. Yulia Kadulia
4.  
5.  
6.  
7.  
8.  
9. Received: from CO1PR05MB8023.namprd05.prod.outlook.com (2603:10b6:303:d7::16)
10. by SJ0PR05MB8678.namprd05.prod.outlook.com with HTTPS; Sun, 28 Apr 2024
11. 11:44:08 +0000
12. Received: from PH8PR07CA0037.namprd07.prod.outlook.com (2603:10b6:510:2cf::17)
13. by CO1PR05MB8023.namprd05.prod.outlook.com (2603:10b6:303:d7::16) with
14. Microsoft SMTP Server (version=TLS1_2,
15. cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7544.21; Sun, 28 Apr
16. 2024 11:44:04 +0000
17. Received: from CY4PEPF0000EE36.namprd05.prod.outlook.com
18. (2603:10b6:510:2cf:cafe::f0) by PH8PR07CA0037.outlook.office365.com
19. (2603:10b6:510:2cf::17) with Microsoft SMTP Server (version=TLS1_2,
20. cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7519.34 via Frontend
21. Transport; Sun, 28 Apr 2024 11:44:03 +0000
22. Authentication-Results: spf=pass (sender IP is 203.153.103.126)
23. smtp.mailfrom=bgi-corp.co.id; dkim=pass (signature was verified)
24. header.d=bgi-corp.co.id;dmarc=pass action=none
25. header.from=bgi-corp.co.id;compauth=pass reason=100
26. Received-SPF: Pass (protection.outlook.com: domain of bgi-corp.co.id
27. designates 203.153.103.126 as permitted sender)
28. receiver=protection.outlook.com; client-ip=203.153.103.126;
29. helo=mail.bgi-corp.co.id; pr=C
30. Received: from mail.bgi-corp.co.id (203.153.103.126) by
31. CY4PEPF0000EE36.mail.protection.outlook.com (10.167.242.42) with Microsoft
32. SMTP Server (version=TLS1_3, cipher=TLS_AES_256_GCM_SHA384) id 15.20.7544.18
33. via Frontend Transport; Sun, 28 Apr 2024 11:44:01 +0000
34. Received: from localhost (localhost [127.0.0.1])
35. by mail.bgi-corp.co.id (Postfix) with ESMTP id 567C4E099ED;
36. Sun, 28 Apr 2024 01:08:51 -0400 (EDT)
37. Received: from mail.bgi-corp.co.id ([127.0.0.1])
38. by localhost (mail.bgi-corp.co.id [127.0.0.1]) (amavisd-new, port 10032)
39. with ESMTP id z9zaloOHvLuo; Sun, 28 Apr 2024 01:08:50 -0400 (EDT)
40. Received: from localhost (localhost [127.0.0.1])
41. by mail.bgi-corp.co.id (Postfix) with ESMTP id C4565DC586D;
42. Sat, 27 Apr 2024 20:21:27 -0400 (EDT)
43. DKIM-Filter: OpenDKIM Filter v2.10.3 mail.bgi-corp.co.id C4565DC586D
44. DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=bgi-corp.co.id;
45. s=612DB160-97F0-11EE-8066-D57B74C0B0DC; t=1714263687;
46. bh=SzKsMiK14ccTAOiEQI+MZ/bOAPAnoxB6/W5lR5ETvNA=;
47. h=MIME-Version:To:From:Date:Message-Id;
48. b=mJ60nsNpBZPlfAwiyl+m/6ZPpkFLYSJw+aafv4dGMrNk9BPDdHvR1kuJpvicMdZkE
49. w0QvynDgNp5zdbhuvq7nnFBUwv9/9It2EJQshhauUDAOqw5gfbCE8xNUHNC3SLe4NA
50. guOxsYfeKaxqyy/GpIg/5cCjYzwfAHYoL4uEFBnszt3XaVnpgT82QyVvq35+zRwS5o
51. H0XJgf66KJ9qKGKVLie8F97x0C8IJvT8dB3oDxlG7Ic/vfX6Gm6OALYZk762/NbfYb
52. 252DdsUfco05S3Jgoc5yBoIjv/QqT/IM5xNJw9kucutjzqIYVvVO+QmQ0JJxOB5YyZ
53. xIwQ6Mf6jqpew==
54. X-Virus-Scanned: amavisd-new at bgi-corp.co.id
55. Received: from mail.bgi-corp.co.id ([127.0.0.1])
56. by localhost (mail.bgi-corp.co.id [127.0.0.1]) (amavisd-new, port 10026)
57. with ESMTP id 29HlQ-CGJkq4; Sat, 27 Apr 2024 20:21:27 -0400 (EDT)
58. Received: from [192.168.1.103] (unknown [78.163.119.229])
59. by mail.bgi-corp.co.id (Postfix) with ESMTPSA id 9FFCED88386;
60. Sat, 27 Apr 2024 17:18:34 -0400 (EDT)
61. MIME-Version: 1.0
62. Content-Description: Mail message body
63. Subject: Hello Dear Friend
64. To: Recipients <[email protected]>
65. From: "Yulia Kadulia" <[email protected]>
66. Date: Sat, 27 Apr 2024 22:26:43 -0800
67. Reply-To: [email protected]
68. Message-Id: <[email protected]>
69. Return-Path: [email protected]
70. X-MS-Exchange-Organization-ExpirationStartTime: 28 Apr 2024 11:44:02.3853
71. (UTC)
72. X-MS-Exchange-Organization-ExpirationStartTimeReason: OriginalSubmit
73. X-MS-Exchange-Organization-ExpirationInterval: 1:00:00:00.0000000
74. X-MS-Exchange-Organization-ExpirationIntervalReason: OriginalSubmit
75. X-MS-Exchange-Organization-Network-Message-Id:
76. 3ccbcdfb-6492-4da3-b80d-08dc6778802b
77. X-EOPAttributedMessage: 0
78. X-EOPTenantAttributedMessage: 0d4bfd0a-5b8b-4c86-b245-3f11f8ea539a:0
79. X-MS-Exchange-Organization-MessageDirectionality: Incoming
80. X-MS-PublicTrafficType: Email
81. X-MS-TrafficTypeDiagnostic:
82. CY4PEPF0000EE36:EE_|CO1PR05MB8023:EE_|SJ0PR05MB8678:EE_
83. X-MS-Exchange-Organization-AuthSource:
84. CY4PEPF0000EE36.namprd05.prod.outlook.com
85. X-MS-Exchange-Organization-AuthAs: Anonymous
86. X-MS-Office365-Filtering-Correlation-Id: 3ccbcdfb-6492-4da3-b80d-08dc6778802b
87. X-MS-Exchange-Organization-SCL: 9
88. X-Forefront-Antispam-Report:
89. CIP:203.153.103.126;CTRY:ID;LANG:en;SCL:9;SRV:;IPV:NLI;SFV:SPM;H:mail.bgi-corp.co.id;PTR:ErrorRetry;CAT:HSPM;SFS:(13230031)(62346018);DIR:INB;
90. X-Microsoft-Antispam: BCL:0;ARA:13230031|62346018;
91. X-MS-Exchange-CrossTenant-OriginalArrivalTime: 28 Apr 2024 11:44:01.4056
92. (UTC)
93. X-MS-Exchange-CrossTenant-Network-Message-Id: 3ccbcdfb-6492-4da3-b80d-08dc6778802b
94. X-MS-Exchange-CrossTenant-Id: 0d4bfd0a-5b8b-4c86-b245-3f11f8ea539a
95. X-MS-Exchange-CrossTenant-AuthSource:
96. CY4PEPF0000EE36.namprd05.prod.outlook.com
97. X-MS-Exchange-CrossTenant-AuthAs: Anonymous
98. X-MS-Exchange-CrossTenant-FromEntityHeader: Internet
99. X-MS-Exchange-Transport-CrossTenantHeadersStamped: CO1PR05MB8023
100. X-MS-Exchange-Transport-EndToEndLatency: 00:00:06.7928812
101. X-MS-Exchange-Processed-By-BccFoldering: 15.20.7544.013
102. X-Microsoft-Antispam-Mailbox-Delivery:
103. ucf:0;jmr:0;auth:0;dest:J;OFR:SpamFilterAuthJ;ENG:(910001)(944506478)(944626604)(920097)(930097)(3100021)(140003);RF:JunkEmail;
104.  
105. Content-type: text/plain;
106. charset="UTF-8"
107. Content-transfer-encoding: 7bit