API tools faq
paste
Advertisement
wavellan

20190115_PHISHING_SCAM_2

wavellan
Jan 16th, 2019
255
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 7.88 KB | None | 0 0
raw download clone embed print report
  1. Received: from MBX05D-ORD1.mex08.mlsrvr.com (172.29.9.24) by
  2. MBX05C-ORD1.mex08.mlsrvr.com (172.29.9.23) with Microsoft SMTP Server (TLS)
  3. id 15.0.1367.3 via Mailbox Transport; Tue, 15 Jan 2019 13:51:37 -0600
  4. Received: from MBX04D-ORD1.mex08.mlsrvr.com (172.29.9.21) by
  5. MBX05D-ORD1.mex08.mlsrvr.com (172.29.9.24) with Microsoft SMTP Server (TLS)
  6. id 15.0.1367.3; Tue, 15 Jan 2019 13:51:36 -0600
  7. Received: from gate.forward.smtp.ord1c.emailsrvr.com (108.166.43.128) by
  8. MBX04D-ORD1.mex08.mlsrvr.com (172.29.9.21) with Microsoft SMTP Server (TLS)
  9. id 15.0.1367.3 via Frontend Transport; Tue, 15 Jan 2019 13:51:36 -0600
  10. Return-Path: <dtaylor@cimetrics.com>
  11. X-Spam-Threshold: 95
  12. X-Spam-Score: 100
  13. Precedence: junk
  14. X-Spam-Flag: YES
  15. X-Virus-Scanned: OK
  16. X-Orig-To:
  17. X-Originating-Ip: [108.166.43.99]
  18. Authentication-Results: smtp25.gate.ord1c.rsapps.net; iprev=pass policy.iprev="108.166.43.99"; spf=permerror smtp.mailfrom="dtaylor@cimetrics.com" smtp.helo="smtp99.ord1c.emailsrvr.com"; dkim=pass header.d=cimetrics.com; dmarc=none (p=nil; dis=none) header.from=cimetrics.com
  19. X-Suspicious-Flag: NO
  20. X-Classification-ID: f78916de-18fe-11e9-9d28-b8ca3a673c88-1-1
  21. Received: from [108.166.43.99] ([108.166.43.99:32976] helo=smtp99.ord1c.emailsrvr.com)
  22. by smtp25.gate.ord1c.rsapps.net (envelope-from <dtaylor@cimetrics.com>)
  23. (ecelerity 4.2.38.62370 r(:)) with ESMTPS (cipher=DHE-RSA-AES256-GCM-SHA384)
  24. id 5D/B1-05140-8C93E3C5; Tue, 15 Jan 2019 14:51:36 -0500
  25. Received: from smtp5.relay.ord1c.emailsrvr.com (localhost [127.0.0.1])
  26. by smtp5.relay.ord1c.emailsrvr.com (SMTP Server) with ESMTP id C6818406E8;
  27. Tue, 15 Jan 2019 14:51:33 -0500 (EST)
  28. Message-ID: <5D.B1.05140.8C93E3C5@smtp25.gate.ord1c.rsapps.net>
  29. DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=cimetrics.com;
  30. s=20170502; t=1547581893;
  31. bh=MPgG/YY0y59JBmlnBerrb3nDuGWOeQr+VwvYaomKlSA=;
  32. h=Subject:To:From:Date:From;
  33. b=F+jF2BFbqo0szy/feU3AqeCgOzu4u75cIzVA4kQNkUgxgMtAuDGaFfUdPEK+bwdFL
  34. FQ8SfB5m0/JAbEQ6ctKe+8phgTlOcqjTjLEPjCCaVzoD2409vfgSxEpnCLUVr2aPtL
  35. t7S/iCjrZ6Cfg6+vd2TwJiDSSH4htA7sy/xMABd0=
  36. X-Auth-ID: dtaylor@cimetrics.com
  37. Received: by smtp5.relay.ord1c.emailsrvr.com (Authenticated sender: dtaylor-AT-cimetrics.com) with ESMTPA id F244C4062C;
  38. Tue, 15 Jan 2019 14:51:22 -0500 (EST)
  39. X-Sender-Id: dtaylor@cimetrics.com
  40. Received: from WIN-2TQFV2AIA7G.us-east-2.compute.internal (ec2-18-216-43-86.us-east-2.compute.amazonaws.com [18.216.43.86])
  41. by 0.0.0.0:25 (trex/5.7.12);
  42. Tue, 15 Jan 2019 14:51:33 -0500
  43. MIME-Version: 1.0
  44. Subject: New Audio-Voice +1 (437) 090 0722***
  45. To: me <dtaylor@cimetrics.com>
  46. From: " +1 (437) 090 07 Audio Voice Note " <dtaylor@cimetrics.com>
  47. Date: Tue, 15 Jan 2019 19:51:22 +0000
  48. X-MS-Exchange-Organization-Network-Message-Id: 01044b7a-a5c2-43c8-d224-08d67b22dbcb
  49. X-MS-Exchange-Organization-AVStamp-Mailbox: SMEXzs^g;1475100;0;This mail has
  50. been scanned by Trend Micro ScanMail for Microsoft Exchange;
  51. X-MS-Exchange-Organization-SCL: 5
  52. X-MS-Exchange-Organization-AuthSource: MBX04D-ORD1.mex08.mlsrvr.com
  53. X-MS-Exchange-Organization-AuthAs: Anonymous
  54. Content-type: multipart/alternative;
  55. boundary="B_3630478274_858625276"
  56.  
  57. > This message is in MIME format. Since your mail reader does not understand
  58. this format, some or all of this message may not be legible.
  59.  
  60. --B_3630478274_858625276
  61. Content-type: text/plain;
  62. charset="UTF-8"
  63. Content-transfer-encoding: quoted-printable
  64.  
  65. You have received a new voice mail from "+1 (437) 090 0722 =E2=80=9D
  66.  
  67. =20
  68.  
  69. From: +1(437) 090 0722
  70.  
  71. Received:"01-15-2019
  72.  
  73. Duration:"00:00:17" =20
  74.  
  75. =20
  76.  
  77. Attach File
  78.  
  79.  
  80.  
  81. =20
  82.  
  83. =20
  84.  
  85. File:"vmail'4088913169_102_2018110621132
  86.  
  87.  
  88.  
  89. Thanks and Regards,
  90. Office (C) 2019 Secured Service=20
  91.  
  92.  
  93. --B_3630478274_858625276
  94. Content-type: text/html;
  95. charset="UTF-8"
  96. Content-transfer-encoding: quoted-printable
  97.  
  98. <html>
  99. <head>
  100. <meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3Dutf-8">
  101. </head>
  102. <body>
  103. <p></p>
  104. <p class=3D"MsoNormal" style=3D"FONT-SIZE: 11pt; FONT-FAMILY: 'Calibri',sans-se=
  105. rif; BACKGROUND: white; MARGIN: 0in 0in 0pt">
  106. <span style=3D"FONT-SIZE: 12pt; FONT-FAMILY: 'Arial',sans-serif; COLOR: rgb(3=
  107. 4,34,34)">You have received a new voice mail from &quot;&#43;1
  108. <span style=3D"FONT-SIZE: 12pt; FONT-FAMILY: 'Arial',sans-serif; COLOR: rgb(3=
  109. 4,34,34)">
  110. (437) 090 0722</span> =E2=80=9D<span></span></span></p>
  111. <p class=3D"MsoNormal" style=3D"FONT-SIZE: 11pt; FONT-FAMILY: 'Calibri',sans-se=
  112. rif; BACKGROUND: white; MARGIN: 0in 0in 0pt">
  113. <span style=3D"FONT-SIZE: 12pt; FONT-FAMILY: 'Arial',sans-serif; COLOR: rgb(3=
  114. 4,34,34)"><span></span></span>&nbsp;</p>
  115. <p class=3D"MsoNormal" style=3D"FONT-SIZE: 11pt; FONT-FAMILY: 'Calibri',sans-se=
  116. rif; BACKGROUND: white; MARGIN: 0in 0in 0pt">
  117. <span style=3D"FONT-SIZE: 12pt; FONT-FAMILY: 'Arial',sans-serif; COLOR: rgb(3=
  118. 4,34,34)">From: &#43;1(437) 090 0722<span></span></span></p>
  119. <p class=3D"MsoNormal" style=3D"FONT-SIZE: 11pt; FONT-FAMILY: 'Calibri',sans-se=
  120. rif; BACKGROUND: white; MARGIN: 0in 0in 0pt">
  121. <span style=3D"FONT-SIZE: 12pt; FONT-FAMILY: 'Arial',sans-serif; COLOR: rgb(3=
  122. 4,34,34)">Received:&quot;01-15-2019<span></span></span></p>
  123. <p class=3D"MsoNormal" style=3D"FONT-SIZE: 11pt; FONT-FAMILY: 'Calibri',sans-se=
  124. rif; BACKGROUND: white; MARGIN: 0in 0in 0pt">
  125. <span style=3D"FONT-SIZE: 12pt; FONT-FAMILY: 'Arial',sans-serif; COLOR: rgb(3=
  126. 4,34,34)">Duration:&quot;00:00:17&quot;&nbsp; &nbsp; &nbsp;<span></span></sp=
  127. an></p>
  128. <p class=3D"MsoNormal" style=3D"FONT-SIZE: 11pt; FONT-FAMILY: 'Calibri',sans-se=
  129. rif; BACKGROUND: white; MARGIN: 0in 0in 0pt">
  130. <span style=3D"FONT-SIZE: 12pt; FONT-FAMILY: 'Arial',sans-serif; COLOR: rgb(3=
  131. 4,34,34)"><span></span></span>&nbsp;</p>
  132. <p class=3D"MsoNormal" style=3D"FONT-SIZE: 11pt; FONT-FAMILY: 'Calibri',sans-se=
  133. rif; BACKGROUND: white; MARGIN: 0in 0in 0pt">
  134. <span style=3D"FONT-SIZE: 12pt; FONT-FAMILY: 'Arial',sans-serif; COLOR: rgb(3=
  135. 4,34,34)"><a style=3D"COLOR: rgb(5,99,193); TEXT-DECORATION: underline" href=3D"=
  136. http://www.x.co/em3ilsrv3???--&#43;-&#43;-&#43;%7BG04L00%7D&#43;=3DW2" target=3D=
  137. "_blank" data-saferedirecturl=3D"https://www.google.com/url?q=3Dhttp://www.x.co/=
  138. svr8em8em??--%2B-%2B-%2B%257BG04L00%257D%2B%3DW2&amp;source=3Dgmail&amp;ust=3D15=
  139. 47561799909000&amp;usg=3DAFQjCNH6LRS7wEBmXIH-KNqwyrPaaGNIGw"><span style=3D"COLO=
  140. R: rgb(17,85,204)">Attach
  141. File</span></a><span><br>
  142. </span></span></p>
  143. <p class=3D"MsoNormal" style=3D"FONT-SIZE: 11pt; FONT-FAMILY: 'Calibri',sans-se=
  144. rif; BACKGROUND: white; MARGIN: 0in 0in 0pt">
  145. <br>
  146. <span style=3D"FONT-SIZE: 12pt; FONT-FAMILY: 'Arial',sans-serif; COLOR: rgb(3=
  147. 4,34,34)"><span></span></span></p>
  148. <p class=3D"MsoNormal" style=3D"FONT-SIZE: 11pt; FONT-FAMILY: 'Calibri',sans-se=
  149. rif; BACKGROUND: white; MARGIN: 0in 0in 0pt">
  150. <span style=3D"FONT-SIZE: 12pt; FONT-FAMILY: 'Arial',sans-serif; COLOR: rgb(3=
  151. 4,34,34)"><span></span></span>&nbsp;</p>
  152. <p class=3D"MsoNormal" style=3D"FONT-SIZE: 11pt; FONT-FAMILY: 'Calibri',sans-se=
  153. rif; BACKGROUND: white; MARGIN: 0in 0in 0pt">
  154. <span style=3D"FONT-SIZE: 12pt; FONT-FAMILY: 'Arial',sans-serif; COLOR: rgb(3=
  155. 4,34,34)"><span></span></span>&nbsp;</p>
  156. <p class=3D"MsoNormal" style=3D"FONT-SIZE: 11pt; FONT-FAMILY: 'Calibri',sans-se=
  157. rif; BACKGROUND: white; MARGIN: 0in 0in 0pt">
  158. <span style=3D"FONT-SIZE: 12pt; FONT-FAMILY: 'Arial',sans-serif; COLOR: rgb(3=
  159. 4,34,34)">File:&quot;vmail'4088913169_102_<wbr>2018110621132</span></p>
  160. <p class=3D"MsoNormal" style=3D"FONT-SIZE: 11pt; FONT-FAMILY: 'Calibri',sans-se=
  161. rif; BACKGROUND: white; MARGIN: 0in 0in 0pt">
  162. <span style=3D"FONT-SIZE: 12pt; FONT-FAMILY: 'Arial',sans-serif; COLOR: rgb(3=
  163. 4,34,34)"><br>
  164. </span></p>
  165. <p class=3D"MsoNormal" style=3D"FONT-SIZE: 11pt; FONT-FAMILY: 'Calibri',sans-se=
  166. rif; BACKGROUND: white; MARGIN: 0in 0in 0pt">
  167. <span style=3D"FONT-SIZE: 12pt; FONT-FAMILY: 'Arial',sans-serif; COLOR: rgb(3=
  168. 4,34,34)">Thanks and Regards,<br>
  169. Office (C) 2019 Secured Service <span></span></span></p>
  170. </body>
  171. </html>
  172.  
  173.  
  174. --B_3630478274_858625276--
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!