20180806_PHISHING_SCAM_1

1. Received: from MBX05D-ORD1.mex08.mlsrvr.com (172.29.9.24) by
2. MBX05C-ORD1.mex08.mlsrvr.com (172.29.9.23) with Microsoft SMTP Server (TLS)
3. id 15.0.1367.3 via Mailbox Transport; Mon, 6 Aug 2018 13:04:06 -0500
4. Received: from MBX10D-ORD1.mex08.mlsrvr.com (172.29.9.40) by
5. MBX05D-ORD1.mex08.mlsrvr.com (172.29.9.24) with Microsoft SMTP Server (TLS)
6. id 15.0.1367.3; Mon, 6 Aug 2018 13:04:05 -0500
7. Received: from gate.forward.smtp.iad3a.emailsrvr.com (204.232.172.40) by
8. MBX10D-ORD1.mex08.mlsrvr.com (172.29.9.40) with Microsoft SMTP Server (TLS)
9. id 15.0.1367.3 via Frontend Transport; Mon, 6 Aug 2018 13:04:06 -0500
10. Return-Path: <[email protected]>
11. X-Spam-Threshold: 95
12. X-Spam-Score: 100
13. Precedence: junk
14. X-Spam-Flag: YES
15. X-Virus-Scanned: OK
16. X-Orig-To: REMOVED
17. X-Originating-Ip: [185.128.24.30]
18. Authentication-Results: smtp36.gate.iad3a.rsapps.net; iprev=pass policy.iprev="185.128.24.30"; spf=neutral smtp.mailfrom="[email protected]" smtp.helo="fdi.gov.cn"; dkim=none (message not signed) header.d=none; dmarc=none (p=nil; dis=none) header.from=fdi.gov.cn
19. X-Suspicious-Flag: NO
20. X-Classification-ID: 1abff176-99a3-11e8-b057-525400575b2b-1-1
21. Received: from [185.128.24.30] ([185.128.24.30:51371] helo=fdi.gov.cn)
22. by smtp36.gate.iad3a.rsapps.net (envelope-from <[email protected]>)
23. (ecelerity 4.2.38.62370 r(:)) with ESMTP
24. id 06/0D-02425-49D886B5; Mon, 06 Aug 2018 14:04:05 -0400
25. Reply-To: <[email protected]>
26. From: General Purchase Manager <[email protected]>
27. To: <REMOVED>
28. Subject: Consultation about your Products
29. Date: Mon, 6 Aug 2018 11:04:02 -0700
30. Message-ID: <[email protected]>
31. MIME-Version: 1.0
32. X-MS-Exchange-Organization-Network-Message-Id: 2721ee48-cc7a-4ac2-3d13-08d5fbc6fff9
33. X-MS-Exchange-Organization-AVStamp-Mailbox: SMEXzs^g;1442500;0;This mail has
34. been scanned by Trend Micro ScanMail for Microsoft Exchange;
35. X-MS-Exchange-Organization-SCL: 5
36. X-MS-Exchange-Organization-AuthSource: MBX10D-ORD1.mex08.mlsrvr.com
37. X-MS-Exchange-Organization-AuthAs: Anonymous
38. Content-type: multipart/alternative;
39. boundary="B_3616399000_1950913588"
40.  
41. > This message is in MIME format. Since your mail reader does not understand
42. this format, some or all of this message may not be legible.
43.  
44. --B_3616399000_1950913588
45. Content-type: text/plain;
46. charset="UTF-8"
47. Content-transfer-encoding: 7bit
48.  
49. Hi Dear (REMOVED)
50.  
51. We introduce ourselves as Coral Sky General Trading L.L.C, a privately owned general trading company located in the Dubai, UAE.
52.  
53. We picked interest in your products after a partner in Hong Kong referred us to your company.
54.  
55. We are yet to get response after we wrote your colleague.
56.  
57. Kindly let us know if you can accept new orders. We will forward our P.O and specification immediately to place a trial order.
58.  
59. Regards,
60.  
61. Abdou Traore
62. General Purchasing Manager
63.  
64. Coral Sky General Trading L.L.C
65. Office: No 702A, Aspin Commercial Tower Sheikh Zayed Road Dubai - UAE
66. Phone: +971 50 6990325
67. Email: [email protected]
68.  
69.  
70. --B_3616399000_1950913588
71. Content-type: text/html;
72. charset="UTF-8"
73. Content-transfer-encoding: quoted-printable
74.  
75. <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.=
76. w3.org/TR/html4/loose.dtd">
77. <html>
78. <head>
79. <meta http-equiv=3D"Content-Type" content=3D"text/html; charset=3Dutf-8">
80. <meta name=3D"GENERATOR" content=3D"MSHTML 11.00.9600.19081">
81. </head>
82. <body style=3D"MARGIN: 0.5em">
83. <font size=3D"2" face=3D"Verdana">
84. <p style=3D"FONT-SIZE: 11px; FONT-FAMILY: &quot;Lucida Grande&quot;, Verdana,=
85. Arial, Helvetica, sans-serif; WHITE-SPACE: normal; WORD-SPACING: 0px; TEXT-=
86. TRANSFORM: none; FONT-WEIGHT: 400; COLOR: rgb(51,51,51); FONT-STYLE: normal;=
87. ORPHANS: 2; WIDOWS: 2; LETTER-SPACING: normal; BACKGROUND-COLOR: rgb(255,25=
88. 5,255); TEXT-INDENT: 0px; font-variant-ligatures: normal; font-variant-caps:=
89. normal; -webkit-text-stroke-width: 0px; text-decoration-style: initial; tex=
90. t-decoration-color: initial">
91. <strong>Hi Dear (REMOVED)&nbsp;<br>
92. &nbsp;<br>
93. We introduce ourselves as Coral Sky General Trading L.L.C, a privately owne=
94. d general trading company located in the Dubai, UAE.<br>
95. &nbsp;<br>
96. We picked interest in your products after a partner in Hong Kong referred u=
97. s to your company.<br>
98. &nbsp;<br>
99. We are yet to get response after we wrote your colleague.<br>
100. &nbsp;<br>
101. Kindly let us know if you can accept new orders. We will forward our P.O an=
102. d specification immediately to place a trial order.&nbsp;<span>
103. <span>&nbsp;</span>&nbsp;</span><br>
104. &nbsp;<br>
105. Regards,<span>&nbsp;</span><br>
106. &nbsp;<br>
107. Abdou Traore<br>
108. General Purchasing Manager</strong></p>
109. <p style=3D"FONT-SIZE: 11px; FONT-FAMILY: &quot;Lucida Grande&quot;, Verdana,=
110. Arial, Helvetica, sans-serif; WHITE-SPACE: normal; WORD-SPACING: 0px; TEXT-=
111. TRANSFORM: none; FONT-WEIGHT: 400; COLOR: rgb(51,51,51); FONT-STYLE: normal;=
112. ORPHANS: 2; WIDOWS: 2; LETTER-SPACING: normal; BACKGROUND-COLOR: rgb(255,25=
113. 5,255); TEXT-INDENT: 0px; font-variant-ligatures: normal; font-variant-caps:=
114. normal; -webkit-text-stroke-width: 0px; text-decoration-style: initial; tex=
115. t-decoration-color: initial">
116. <strong>Coral Sky General Trading L.L.C<br>
117. Office: No 702A, Aspin Commercial Tower Sheikh Zayed Road Dubai - UAE<span>=
118. &nbsp;</span><br>
119. Phone: &#43;971 50 6990325<br>
120. Email:<span>&nbsp;</span></strong><a onclick=3D"return rcmail.command('compos=
121. e','[email protected]',this)" style=3D"COLOR: rgb(1,134,186)" href=3D"mail=
122. to:[email protected]" rel=3D"noreferrer"><strong>[email protected]=
123. </strong></a></p>
124. </font>
125. </body>
126. </html>
127.  
128.  
129. --B_3616399000_1950913588--