OwlCyberSecurity - MANAGER

Edit File: 1717364131.M634290P3639821.premium128.web-hosting.com,S=10458,W=10686:2,

Return-Path: <cholulteca@sbcglobol.net> Delivered-To: faouzi.berroua+spam@gourayafroid.com Received: from premium128.web-hosting.com by premium128.web-hosting.com with LMTP id MPmJJKPlXGYNijcAAvhI2g (envelope-from <cholulteca@sbcglobol.net>) for <faouzi.berroua+spam@gourayafroid.com>; Sun, 02 Jun 2024 17:35:31 -0400 Return-path: <cholulteca@sbcglobol.net> Envelope-to: faouzi.berroua@gourayafroid.com Delivery-date: Sun, 02 Jun 2024 17:35:31 -0400 Received: from [94.120.206.189] (port=13772) by premium128.web-hosting.com with esmtp (Exim 4.96.2) (envelope-from <cholulteca@sbcglobol.net>) id 1sDsr7-00FI9h-2V for faouzi.berroua@gourayafroid.com; Sun, 02 Jun 2024 17:35:31 -0400 From: "ario bradley" <cholulteca@sbcglobol.net> To: <faouzi.berroua@gourayafroid.com> Date: 3 Jun 2024 01:58:09 +0200 Message-ID: <004f01dab54d$07404c48$00e24993$@sbcglobol.net> MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_004C_01DAB54D.073D9CF0" X-Mailer: Microsoft Outlook 15.0 Thread-Index: Act588rdpfjxc1hj4ng8rdpfjxc1hj== Content-Language: en-us X-Spam-Status: Yes, score=34.2 X-Spam-Score: 342 X-Spam-Bar: ++++++++++++++++++++++++++++++++++ X-Spam-Report: Spam detection software, running on the system "premium128.web-hosting.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: Hi. This is the last warning. I hacked your operating system. All personal data from your devices has been copied to my servers. I have access to your messengers, social networks, emails, chat history [...] Content analysis details: (34.2 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 4.7 RCVD_IN_XBL RBL: Received via a relay in Spamhaus XBL [94.120.206.189 listed in zen.spamhaus.org] 3.6 RCVD_IN_PBL RBL: Received via a relay in Spamhaus PBL 1.3 RCVD_IN_VALIDITY_RPBL RBL: Relay in Validity RPBL, https://senderscore.org/blocklistlookup/ [94.120.206.189 listed in bl.score.senderscore.com] 1.2 RCVD_IN_BL_SPAMCOP_NET RBL: Received via a relay in bl.spamcop.net [Blocked - see <https://www.spamcop.net/bl.shtml?94.120.206.189>] 0.0 RCVD_IN_VALIDITY_CERTIFIED_BLOCKED RBL: ADMINISTRATOR NOTICE: The query to Validity was blocked. See https://knowledge.validity.com/hc/en-us/articles/20961730681243 for more information. [94.120.206.189 listed in sa-accredit.habeas.com] 0.0 HTML_MESSAGE BODY: HTML included in message 1.6 RATWARE_NO_RDNS Suspicious MsgID and MIME boundary + no rDNS 0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict Alignment 2.5 BITCOIN_SPAM_03 BitCoin spam pattern 03 8.5 KAM_CRIM Extortion Email -0.0 T_SCC_BODY_TEXT_LINE No description available. 1.0 KAM_LAZY_DOMAIN_SECURITY Sending domain does not have any anti-forgery methods 2.0 RDNS_NONE Delivered to internal network by a host with no rDNS 1.0 PDS_BAD_THREAD_QP_64 Bad thread header - short QP 0.5 PDS_BTC_ID FP reduced Bitcoin ID 2.5 BITCOIN_YOUR_INFO BitCoin with your personal info 1.4 DOS_OUTLOOK_TO_MX Delivered direct to MX with Outlook headers 1.0 BITCOIN_MALWARE BitCoin + malware bragging 1.0 MALWARE_NORDNS Malware bragging + no rDNS 0.3 BITCOIN_ONAN BitCoin + [censored] X-Spam-Flag: YES Subject: ***SPAM*** Re: This is a multi-part message in MIME format. ------=_NextPart_000_004C_01DAB54D.073D9CF0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable Hi. This is the last warning. I hacked your operating system. All personal data from your devices has been copied to my servers. I have access to your messengers, social networks, emails, chat history = and contact list. My virus constantly updates signatures (it is driver-based) so it = remains invisible to antivirus software. While collecting information about you, I found out that you are a big = fan of adult websites. You really like to visit porn sites and watch dirty videos while having = an orgasm. I've already made a screen capture. It's a montage of the pornographic video you were watching at the time = and your masturbation. Your face is perfectly visible.I don't think this kind of content will = have a positive impact on your reputation. I can send this video to everyone who knows you. I also have no problem with making all of your personal information = public on the Internet. I think you know what I mean. It would be a real disaster for you. I could ruin your life forever. I think you really don't want that to happen. Let's solve it this way: you transfer me 1200 dollars (USD) (in bitcoin = equivalent at the exchange rate at the moment of funds transfer), and I = will immediately remove all this dirt from my servers. After that we will forget about each other. My bitcoin wallet for payment: = bc1q7df546x5cjj9fhlzczru5wvg86mltnfv3lvg5d If you do not know how to transfer money and what Bitcoin is. Use = Google. I give you 2 working days to transfer the money. The timer started automatically as soon as you opened the email. I&rsquo;ll receive a notification about the opening of this email. Do not try to complain anywhere, as there is no way to track the wallet, = the mail from where the letter came, and is not tracked and created = automatically, so there is no point in writing to me. Do not try to contact the police and other security services, otherwise = your data will be published. Changing passwords in social networks, mail, device will not help you, = because all the data is already downloaded to a cluster of my servers. Good luck and don't do anything stupid. Think about your future. ------=_NextPart_000_004C_01DAB54D.073D9CF0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable <html xmlns:v=3D"urn:schemas-microsoft-com:vml" = xmlns:o=3D"urn:schemas-microsoft-com:office:office" = xmlns:w=3D"urn:schemas-microsoft-com:office:word" = xmlns:m=3D"http://schemas.microsoft.com/office/2004/12/omml" = xmlns=3D"http://www.w3.org/TR/REC-html40"><head><META = HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; = charset=3Dus-ascii"><meta name=3DGenerator content=3D"Microsoft Word 15 = (filtered medium)"><style><!-- /* Font Definitions */ @font-face =09{font-family:"Cambria Math"; =09panose-1:0 0 0 0 0 0 0 0 0 0;} @font-face =09{font-family:Calibri; =09panose-1:2 15 5 2 2 2 4 3 2 4;} /* Style Definitions */ p.MsoNormal, li.MsoNormal, div.MsoNormal =09{margin:0in; =09margin-bottom:.0001pt; =09font-size:11.0pt; =09font-family:"Calibri","sans-serif";} a:link, span.MsoHyperlink =09{mso-style-priority:99; =09color:#0563C1; =09text-decoration:underline;} a:visited, span.MsoHyperlinkFollowed =09{mso-style-priority:99; =09color:#954F72; =09text-decoration:underline;} span.EmailStyle17 =09{mso-style-type:personal-compose; =09font-family:"Calibri","sans-serif"; =09color:windowtext;} .MsoChpDefault =09{mso-style-type:export-only; =09font-family:"Calibri","sans-serif";} @page WordSection1 =09{size:8.5in 11.0in; =09margin:1.0in 1.0in 1.0in 1.0in;} div.WordSection1 =09{page:WordSection1;} --></style><!--[if gte mso 9]><xml> <o:shapedefaults v:ext=3D"edit" spidmax=3D"1026" /> </xml><![endif]--><!--[if gte mso 9]><xml> <o:shapelayout v:ext=3D"edit"> <o:idmap v:ext=3D"edit" data=3D"1" /> </o:shapelayout></xml><![endif]--></head><body lang=3DEN-US = link=3D"#0563C1" vlink=3D"#954F72"><div class=3DWordSection1><p = class=3DMsoNormal><p>Hi.</p> <p>This is the last warning.</p> <p>I hacked your operating system.</p> <p>All personal data from your devices has been copied to my = servers.</p> <p>I have access to your messengers, social networks, emails, chat = history and contact list.</p> <p>My virus constantly updates signatures (it is driver-based) so it = remains invisible to antivirus software.</p> <p>While collecting information about you, I found out that you are a = big fan of adult websites.<br />You really like to visit porn sites and = watch dirty videos while having an orgasm.</p> <p>I've already made a screen capture.<br />It's a montage of the = pornographic video you were watching at the time and your = masturbation.<br />Your face is perfectly visible.I don't think this = kind of content will have a positive impact on your reputation.</p> <p>I can send this video to everyone who knows you.</p> <p>I also have no problem with making all of your personal information = public on the Internet.<br />I think you know what I mean.</p> <p>It would be a real disaster for you.</p> <p>I could ruin your life forever.</p> <p>I think you really don't want that to happen.</p> <p>Let's solve it this way: you transfer me 1200 dollars (USD) (in = bitcoin equivalent at the exchange rate at the moment of funds = transfer), and I will immediately remove all this dirt from my = servers.<br />After that we will forget about each other.</p> <p>My bitcoin wallet for payment: = bc1q7df546x5cjj9fhlzczru5wvg86mltnfv3lvg5d</p> <p>If you do not know how to transfer money and what Bitcoin is. Use = Google.</p> <p></p> <p>I give you 2 working days to transfer the money.<br />The timer = started automatically as soon as you opened the email.<br />I&rsquo;ll = receive a notification about the opening of this email.</p> <p></p> <p>Do not try to complain anywhere, as there is no way to track the = wallet, the mail from where the letter came, and is not tracked and = created automatically, so there is no point in writing to me.<br />Do = not try to contact the police and other security services, otherwise = your data will be published.</p> <p>Changing passwords in social networks, mail, device will not help = you, because all the data is already downloaded to a cluster of my = servers.</p> <p>Good luck and don't do anything stupid. Think about your = future.</p><o:p></o:p></p></div></body></html> ------=_NextPart_000_004C_01DAB54D.073D9CF0--