OwlCyberSecurity - MANAGER

Edit File: 1721943940.M724515P59731.cloudbhc.clouditzone.com,S=7968,W=8096

Return-Path: <01000190ebdaa9ac-54be4aab-1c68-407f-b054-3cca87f18f35-000000@email.matchtime.com> Delivered-To: info+spam@onebox.pk Received: from cloudbhc.clouditzone.com by cloudbhc.clouditzone.com with LMTP id eI11KoTHomZT6QAAZAThIw (envelope-from <01000190ebdaa9ac-54be4aab-1c68-407f-b054-3cca87f18f35-000000@email.matchtime.com>) for <info+spam@onebox.pk>; Fri, 26 Jul 2024 02:45:40 +0500 Return-path: <01000190ebdaa9ac-54be4aab-1c68-407f-b054-3cca87f18f35-000000@email.matchtime.com> Envelope-to: info@onebox.pk Delivery-date: Fri, 26 Jul 2024 02:45:40 +0500 Received: from a48-176.smtp-out.amazonses.com ([54.240.48.176]:35989) by cloudbhc.clouditzone.com with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256 (Exim 4.96.2) (envelope-from <01000190ebdaa9ac-54be4aab-1c68-407f-b054-3cca87f18f35-000000@email.matchtime.com>) id 1sX6HJ-000Fb2-0G for info@onebox.pk; Fri, 26 Jul 2024 02:45:40 +0500 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/simple; s=v7qdw4njionk4ape2bq5qaujp6ocoi3l; d=matchtime.com; t=1721943894; h=To:Subject:From:Message-ID:Date:MIME-Version:Content-Type:Content-Transfer-Encoding; bh=RqCY64hxCRXdxBy+eyWPCFpKr4dceF+kepiseGyVMfc=; b=CK2ONV26D/dCiSjZSRV+LtbFE2tY7/jejFa3ZGS2eWJexon1xmZHlytQ4gt2zL4x 3NRpw4N/eqTqAdNcRE44alD5CnZVDCRCNK0XPklK/syAqe9DAJGYg78kPoONsmY+jKm /iRp6Hbo1F/hagGPp5mDfL8DKzBni5k4F5JXbZc/5Znm6xP688Dx16pgpwbKs2b5MI0 JS0gZl82x4aW4sNfyKTPBMawSXVHxNfYeCAtQnZvDIhu2qpjKFWL6aQzkZ5fqKpNw26 SbEJ4M4OPvvnl1Ij5rnu+lDRuPsh2TPGsVHujhpYXstqa85eDUAN2feGDU2I9GkXMOy rUty/+H0YQ== DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/simple; s=ug7nbtf4gccmlpwj322ax3p6ow6yfsug; d=amazonses.com; t=1721943894; h=To:Subject:From:Message-ID:Date:MIME-Version:Content-Type:Content-Transfer-Encoding:Feedback-ID; bh=RqCY64hxCRXdxBy+eyWPCFpKr4dceF+kepiseGyVMfc=; b=BC00CeDcPMSfEQlxjnLkE2EREkmgfXAigJDD0aCECsUEmZ0i7jCkfQugrwMxJJpg 5ucbBRsGlDAQTqNiO25gkA8YuhwE3VRAVTsJQYLQVW00xxaH1AXX33TyT/JERcbb+ir 79kTgiYdp5stECLfGkkRwnhGxapE/3m4icnQbG9Y= To: info@onebox.pk From: =?UTF-8?Q?Must_Read?= <no-reply@matchtime.com> Message-ID: <01000190ebdaa9ac-54be4aab-1c68-407f-b054-3cca87f18f35-000000@email.amazonses.com> Date: Thu, 25 Jul 2024 21:44:54 +0000 MIME-Version: 1.0 X-Mailer: eLettershop 3.1.21 X-Report-Abuse: Content-Type: text/html; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Feedback-ID: ::1.us-east-1.hKmo2EpeO3RUNZHOvXnGW7tXnodGs+rOZuR/lIvuM+8=:AmazonSES X-SES-Outgoing: 2024.07.25-54.240.48.176 X-Spam-Status: Yes, score=10.0 X-Spam-Score: 100 X-Spam-Bar: ++++++++++ X-Spam-Report: Spam detection software, running on the system "cloudbhc.clouditzone.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: Hello! I have to share bad news with you. Approximately a few months ago, I gained access to your devices, which you use for internet browsing. After that, I have started tracking your internet activities. Content analysis details: (10.0 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: matchtime.com] 0.7 LOCALPART_IN_SUBJECT Local part of To: address appears in Subject 0.0 HTML_MESSAGE BODY: HTML included in message 0.1 MIME_HTML_ONLY BODY: Message only has text/html MIME parts 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily valid 0.1 DKIM_INVALID DKIM or DK signature exists, but is not valid 0.0 BITCOIN_SPAM_03 BitCoin spam pattern 03 8.5 KAM_CRIM Extortion Email 0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict Alignment 0.5 PDS_BTC_ID FP reduced Bitcoin ID 0.0 BITCOIN_EXTORT_01 Extortion spam, pay via BitCoin X-Spam-Flag: YES Subject: ***SPAM*** =?UTF-8?Q?INFO?= <!DOCTYPE html><html>=0A<body style=3D"background-color:#ffffff;">=0A<table= width=3D"350" border=3D"0" cellspacing=3D"0" cellpadding=3D"0"=0Astyle=3D"= font-size:16px;line-height:1.6; font-family:=0ARoboto,RobotoDraft,Helvetica= ,Arial,sans-serif"><tbody><tr><td>=0AHello!<br><br>=0AI have to share bad n= ews with you. Approximately a few months ago, I gained=0Aaccess to your dev= ices, which you use for internet browsing. After that, I=0Ahave started tra= cking your internet activities.<br><br>=0AHere is the sequence of events:<b= r><br>=0ASome time ago, I purchased access to email accounts from hackers (= nowadays,=0Ait is quite simple to buy it online).<br><br>=0AI have easily m= anaged to log in to your email account. One week later, I=0Ahave already in= stalled the Cobalt Strike "Malware" on the Operating Systems=0Aof all the d= evices you use to access your email.<br><br>=0AIt was not hard at all (sinc= e you were following the links from your inbox=0Aemails). All ingenious is = simple.<br><br>=0AThis software provides me with access to all your devices= controllers=0A(e.g., your microphone, video camera, and all on it).<br><br= >=0AI have downloaded all your information, data, photos, videos, documents= ,=0Afiles, web browsing history to my servers.<br><br>=0AI have access to a= ll your messengers, social networks, emails, chat=0Ahistory, and contacts l= ist.<br><br>=0AMy virus continuously refreshes the signatures (it is driver= -based) and=0Ahence remains invisible for antivirus software.<br><br>=0ALik= ewise, I guess by now you understand why I have stayed undetected until=0At= his letter.<br><br>=0AWhile gathering information about you, I have discove= red that you are a big=0Afan of adult websites.<br><br>=0AYou love visiting= porn websites and watching exciting videos while enduring=0Aan enormous am= ount of pleasure.<br><br>=0AWell, I have managed to record a number of your= dirty scenes and montaged a=0Afew videos, which show how you masturbate an= d reach orgasms.<br><br>=0AIf you have doubts, I can make a few clicks of m= y mouse, and all your=0Avideos will be shared with your friends, family, an= d relatives.<br><br>=0AConsidering the specificity of the videos you like t= o watch (you perfectly=0Aknow what I mean), it will cause a real catastroph= e for you. I also have no=0Aissue at all with making them available for pub= lic access (leaked and=0Aexposed all data).<br><br>=0AGeneral Data Protecti= on Regulation (GDPR): Under the rules of the law, you=0Aface a heavy fine o= r arrest. I guess you do not want that to=0Ahappen.<br><br>=0AHere is what = you need to do - transfer the Bitcoin equivalent of 1300 USD=0Ato my Bitcoi= n account (that is rather a simple process, which you can check=0Aout onlin= e in case if you do not know how to do that).<br><br>=0ABelow is the Bitcoi= n account information (Bitcoin wallet):<br>=0A15b51zbzzk5q1jaSq7if77821cYhi= TtXv3<br><br>=0AOnce the required amount is transferred to my account, I wi= ll proceed with=0Adeleting all those videos and disappear from your life on= ce and for=0Aall.<br><br>=0AKindly ensure you complete the abovementioned t= ransfer within 50 hours (2=0Adays +).<br><br>=0AI will receive a notificati= on right after you open this email, hence the=0Acountdown will start.<br><b= r>=0ATrust me, I am very careful, calculative and never make mistakes. If I= =0Adiscover that you shared this message with others, I will straight away= =0Aproceed with making your private videos public.<br><br>=0AGood luck!=0A<= /td></tr></tbody></table>=0A</body>=0A</html>