API tools faq
paste
Advertisement
wavellan

20190530_PHISHING_SCAM_1

wavellan
May 30th, 2019
238
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.42 KB | None | 0 0
raw download clone embed print report
  1. Hi, stranger!
  2.  
  3. I hacked your device, because I sent you this message from your account.
  4. If you have already changed your password, my malware will be intercepts it every time.
  5.  
  6. You may not know me, and you are most likely wondering why you are receiving this email, right?
  7. In fact, I posted a malicious program on adults (pornography) of some websites, and you know that you visited these websites to enjoy
  8. (you know what I mean).
  9.  
  10. While you were watching video clips,
  11. my trojan started working as a RDP (remote desktop) with a keylogger that gave me access to your screen as well as a webcam.
  12.  
  13. Immediately after this, my program gathered all your contacts from messenger, social networks, and also by e-mail.
  14.  
  15. What I've done?
  16. I made a double screen video.
  17. The first part shows the video you watched (you have good taste, yes ... but strange for me and other normal people),
  18. and the second part shows the recording of your webcam.
  19.  
  20. What should you do?
  21.  
  22. Well, I think $550 (USD dollars) is a fair price for our little secret.
  23. You will make a bitcoin payment (if you don't know, look for "how to buy bitcoins" on Google).
  24.  
  25. BTC Address: 19aT6f2hkZ8AGDYhFAdYtVYRj7kFhLBuVV
  26. (This is CASE sensitive, please copy and paste it)
  27.  
  28. Remarks:
  29. You have 2 days (48 hours) to pay. (I have a special code, and at the moment I know that you have read this email).
  30.  
  31. If I don't get bitcoins, I will send your video to all your contacts, including family members, colleagues, etc.
  32. However, if I am paid, I will immediately destroy the video, and my trojan will be destruct someself.
  33.  
  34. If you want to get proof, answer "Yes!" and resend this letter to youself.
  35. And I will definitely send your video to your any 19 contacts.
  36.  
  37. This is a non-negotiable offer, so please do not waste my personal and other people's time by replying to this email.
  38.  
  39. Bye!
  40.  
  41.  
  42.  
  43.  
  44. Received: from MBX05D-ORD1.mex08.mlsrvr.com (172.29.9.24) by
  45. MBX05C-ORD1.mex08.mlsrvr.com (172.29.9.23) with Microsoft SMTP Server (TLS)
  46. id 15.0.1473.3 via Mailbox Transport; Thu, 30 May 2019 15:39:46 -0500
  47. Received: from MBX12D-ORD1.mex08.mlsrvr.com (172.29.9.42) by
  48. MBX05D-ORD1.mex08.mlsrvr.com (172.29.9.24) with Microsoft SMTP Server (TLS)
  49. id 15.0.1473.3; Thu, 30 May 2019 15:39:46 -0500
  50. Received: from gate.forward.smtp.iad3a.emailsrvr.com (204.232.172.40) by
  51. MBX12D-ORD1.mex08.mlsrvr.com (172.29.9.42) with Microsoft SMTP Server (TLS)
  52. id 15.0.1473.3 via Frontend Transport; Thu, 30 May 2019 15:39:46 -0500
  53. Return-Path: <[email protected]>
  54. X-Spam-Threshold: 95
  55. X-Spam-Score: 100
  56. Precedence: junk
  57. X-Spam-Flag: YES
  58. X-Virus-Scanned: OK
  59. X-Orig-To:
  60. X-Originating-Ip: [92.222.235.178]
  61. Authentication-Results: smtp8.gate.iad3a.rsapps.net; iprev=pass policy.iprev="92.222.235.178"; spf=pass smtp.mailfrom="[email protected]" smtp.helo="xiaomiromania.com"; dkim=pass header.d=xiaomiromania.com; dmarc=none (p=nil; dis=none) header.from=
  62. X-Suspicious-Flag: NO
  63. X-Classification-ID: 0f0a0b98-831b-11e9-be76-525400b8fe03-1-1
  64. Received: from [92.222.235.178] ([92.222.235.178:33081] helo=xiaomiromania.com)
  65. by smtp8.gate.iad3a.rsapps.net (envelope-from <[email protected]>)
  66. (ecelerity 4.2.38.62370 r(:)) with ESMTPS (cipher=DHE-RSA-AES256-GCM-SHA384)
  67. id A4/E8-30773-19F30FC5; Thu, 30 May 2019 16:39:45 -0400
  68. Received: from xiaomiromania.com (unknown [202.21.32.137])
  69. by server.localdomain (Postfix) with ESMTPA id EF59912C8C37
  70. for <>; Thu, 30 May 2019 22:17:39 +0200 (CEST)
  71. DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=xiaomiromania.com;
  72. s=default; t=1559247460;
  73. bh=MbftWQASwbWSIAVyA5D0UWclsGGKWFthZIEdSZiF8uA=; l=1898;
  74. h=From:To:Subject;
  75. b=hjgJiCEoj57ajQWnurGkfG75WfOPAISFWkVC3jm7FD6vobEKY3btVsz6sk7WllYVX
  76. Ip+ineQzY2FXH2vgy1EVNZlECH5ATpvzU98ejEbtZYs0nbqgzg7aGi0k3VracI2o+B
  77. YcsofMJaH7VdWDmnLtns2nr8NOXHoTBjEiIBYgPQ=
  78. Reply-To: <>
  79. From:
  80. To:
  81. Subject: Be sure to read this message! Your personal data is threatened!
  82. Date: Fri, 31 May 2019 01:47:36 +0530
  83. Message-ID: <20190531014736.5A8D5B9D4F0F7268@>
  84. MIME-Version: 1.0
  85. X-MS-Exchange-Organization-Network-Message-Id: 117a2646-267a-484b-409f-08d6e53ef3d6
  86. X-MS-Exchange-Organization-AVStamp-Mailbox: SMEXzs^g;1514100;0;This mail has
  87. been scanned by Trend Micro ScanMail for Microsoft Exchange;
  88. X-MS-Exchange-Organization-SCL: 5
  89. X-MS-Exchange-Organization-AuthSource: MBX12D-ORD1.mex08.mlsrvr.com
  90. X-MS-Exchange-Organization-AuthAs: Anonymous
  91. Content-type: text/plain;
  92. charset="UTF-8"
  93. Content-transfer-encoding: 7bit
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!