OwlCyberSecurity - MANAGER

Edit File: 1717024317.M771121P3841339.premium128.web-hosting.com,S=8437,W=8605:2,

Return-Path: <aaao03@pradahotonsale.com> Delivered-To: faouzi.berroua+spam@gourayafroid.com Received: from premium128.web-hosting.com by premium128.web-hosting.com with LMTP id YAEQKj22V2Y7nToAAvhI2g (envelope-from <aaao03@pradahotonsale.com>) for <faouzi.berroua+spam@gourayafroid.com>; Wed, 29 May 2024 19:11:57 -0400 Return-path: <aaao03@pradahotonsale.com> Envelope-to: faouzi.berroua@gourayafroid.com Delivery-date: Wed, 29 May 2024 19:11:57 -0400 Received: from [170.231.164.106] (port=8864) by premium128.web-hosting.com with esmtp (Exim 4.96.2) (envelope-from <aaao03@pradahotonsale.com>) id 1sCSSR-00GGMK-1f for faouzi.berroua@gourayafroid.com; Wed, 29 May 2024 19:11:57 -0400 Message-ID: <657320332790621088550034@pradahotonsale.com> From: "ingmar priscilla" <aaao03@pradahotonsale.com> To: <faouzi.berroua@gourayafroid.com> Date: 29 May 2024 15:45:53 -0400 MIME-Version: 1.0 Content-type: multipart/alternative; boundary="---2F316505B07B51D0CE9AFA4F84AE2F31" X-Mailer: Qogchm ogtmr X-Spam-Status: Yes, score=34.8 X-Spam-Score: 348 X-Spam-Bar: ++++++++++++++++++++++++++++++++++ X-Spam-Report: Spam detection software, running on the system "premium128.web-hosting.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: I have some bad news for you. A few months ago I gained access to your devices. After that I started to monitor your activities. I installed a Trojan virus in the operating systems of all the devices [...] Content analysis details: (34.8 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 1.2 RCVD_IN_BL_SPAMCOP_NET RBL: Received via a relay in bl.spamcop.net [Blocked - see <https://www.spamcop.net/bl.shtml?170.231.164.106>] 3.6 RCVD_IN_PBL RBL: Received via a relay in Spamhaus PBL [170.231.164.106 listed in zen.spamhaus.org] 4.7 RCVD_IN_XBL RBL: Received via a relay in Spamhaus XBL 1.3 RCVD_IN_VALIDITY_RPBL RBL: Relay in Validity RPBL, https://senderscore.org/blocklistlookup/ [170.231.164.106 listed in bl.score.senderscore.com] 0.0 RCVD_IN_VALIDITY_SAFE_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [170.231.164.106 listed in sa-accredit.habeas.com] 2.7 RCVD_IN_PSBL RBL: Received via a relay in PSBL [170.231.164.106 listed in psbl.surriel.com] 1.1 DATE_IN_PAST_03_06 Date: is 3 to 6 hours before Received: date 0.0 HTML_MESSAGE BODY: HTML included in message 8.5 KAM_CRIM Extortion Email 1.0 KAM_LAZY_DOMAIN_SECURITY Sending domain does not have any anti-forgery methods 0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict Alignment -0.0 T_SCC_BODY_TEXT_LINE No description available. 1.2 BITCOIN_SPAM_03 BitCoin spam pattern 03 2.0 RDNS_NONE Delivered to internal network by a host with no rDNS 2.5 XM_RANDOM X-Mailer apparently random 0.5 PDS_BTC_ID FP reduced Bitcoin ID 4.5 BITCOIN_EXTORT_01 Extortion spam, pay via BitCoin X-Spam-Flag: YES Subject: ***SPAM*** Fwd: This is a multi-part message in MIME format. -----2F316505B07B51D0CE9AFA4F84AE2F31 Content-type: text/plain; charset="iso-8859-1" Content-transfer-encoding: quoted-printable I have some bad news for you. A few months ago I gained access to your devices. After that I started to monitor your activities. I installed a Trojan virus in the operating systems of all the devices = you use to access the Internet. This software gives me access to all the controllers on your devices. I have uploaded all of your information, data, photos, browsing history = to my servers. I have access to all your data, messengers, social networks, emails, = chat history and contacts. My virus updates signatures and remains invisible to antivirus software. While gathering information about you, I discovered that you are a big = fan of adult websites and watch exciting videos while having a lot of = fun. I was able to record some of your dirty scenes of you masturbating and = reaching orgasm. If you have any doubts, I can make a few clicks and all the videos will = be shown to everyone you know. And I can also put all your correspondence, personal photos, and all = your secret data on the Internet. I could ruin your reputation forever. I think you really do not want this to happen, given the specifics of = the video you like to watch (you know exactly what I mean), it will lead = to a real disaster for you. Let's solve it this way: you wire me 1500 dollars US (USD) (in bitcoin = equivalent at the exchange rate at the time of the funds transfer), and = I'll remove all this filth right away. After that we will forget about each other. I also promise to deactivate and remove all malware from your devices. I always keep my word. Here is my bitcoin wallet: bc1qvje0spxuly7hepumvdzupekfxcc08jkfpzrvye You have 2 days from the time you open this email. If you don't send the money your video and all your details will be = published on the internet for all the people and your loved ones to see. = I will ruin your reputation forever. Don't try to find me. Don't try to contact the police and other security services or your data = will be published. I know many secrets about you. Be aware of your reputation. -----2F316505B07B51D0CE9AFA4F84AE2F31 Content-type: text/html; charset="iso-8859-1" Content-transfer-encoding: quoted-printable <html><head><meta http-equiv=3Dcontent-type content=3D"text/html; = charset=3Diso-8859-1"> </head> <body><p>I have some bad news for you.</p> <p>A few months ago I gained access to your devices.<br />After that I = started to monitor your activities.</p> <p>I installed a Trojan virus in the operating systems of all the = devices you use to access the Internet.<br />This software gives me = access to all the controllers on your devices.</p> <p>I have uploaded all of your information, data, photos, browsing = history to my servers.<br />I have access to all your data, messengers, = social networks, emails, chat history and contacts.</p> <p>My virus updates signatures and remains invisible to antivirus = software.<br />While gathering information about you, I discovered that = you are a big fan of adult websites and watch exciting videos while = having a lot of fun.</p> <p>I was able to record some of your dirty scenes of you masturbating = and reaching orgasm.</p> <p>If you have any doubts, I can make a few clicks and all the videos = will be shown to everyone you know.</p> <p>And I can also put all your correspondence, personal photos, and all = your secret data on the Internet.</p> <p>I could ruin your reputation forever.</p> <p>I think you really do not want this to happen, given the specifics of = the video you like to watch (you know exactly what I mean), it will lead = to a real disaster for you.</p> <p>Let's solve it this way: you wire me 1500 dollars US (USD) (in = bitcoin equivalent at the exchange rate at the time of the funds = transfer), and I'll remove all this filth right away.<br />After that we = will forget about each other.</p> <p>I also promise to deactivate and remove all malware from your = devices.</p> <p>I always keep my word.<br />Here is my bitcoin wallet: = bc1qvje0spxuly7hepumvdzupekfxcc08jkfpzrvye</p> <p>You have 2 days from the time you open this email.</p> <p>If you don't send the money your video and all your details will be = published on the internet for all the people and your loved ones to see. = <br />I will ruin your reputation forever.</p> <p>Don't try to find me.<br />Don't try to contact the police and other = security services or your data will be published.</p> <p>I know many secrets about you.</p> <p>Be aware of your reputation.</p></body></html> -----2F316505B07B51D0CE9AFA4F84AE2F31--