OwlCyberSecurity - MANAGER
Edit File: 1722492135.M424557P2641981.cloudbhc.clouditzone.com,S=5182,W=5294
Return-Path: <info@onebox.pk> Delivered-To: info+spam@onebox.pk Received: from cloudbhc.clouditzone.com by cloudbhc.clouditzone.com with LMTP id 4AcsGeckq2Y9UCgAZAThIw (envelope-from <info@onebox.pk>) for <info+spam@onebox.pk>; Thu, 01 Aug 2024 11:02:15 +0500 Return-path: <info@onebox.pk> Envelope-to: info@onebox.pk Delivery-date: Thu, 01 Aug 2024 11:02:15 +0500 Received: from 178.91.67.64.dynamic.telecom.kz ([178.91.67.64]:54159) by cloudbhc.clouditzone.com with esmtp (Exim 4.96.2) (envelope-from <info@onebox.pk>) id 1sZOt6-00B5LD-0w for info@onebox.pk; Thu, 01 Aug 2024 11:02:15 +0500 Received: from ozqiwal ([138.5.223.111]) by 92826.com with MailEnable ESMTP; Thu, 1 Aug 2024 11:03:57 +0600 Received: (qmail 26273 invoked by uid 262); 1 Aug 2024 11:03:55 +0600 From: info@onebox.pk To: info@onebox.pk Date: Thu, 1 Aug 2024 11:03:57 +0600 Message-ID: <262736.262736@92826.com> Mime-Version: 1.0 Content-type: text/plain; X-Spam-Status: Yes, score=15.5 X-Spam-Score: 155 X-Spam-Bar: +++++++++++++++ X-Spam-Report: Spam detection software, running on the system "cloudbhc.clouditzone.com", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see root\@localhost for details. Content preview: Hello there! Unfortunately, there are some bad news for you. Some time ago your device was infected with my private trojan, R.A.T (Remote Administration Tool), if you want to find out more about it simply use Google. Content analysis details: (15.5 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 0.0 TVD_RCVD_IP Message was received from an IP address 2.9 HELO_DYNAMIC_SPLIT_IP Relay HELO'd using suspicious hostname (Split IP) 0.0 CK_HELO_GENERIC Relay used name indicative of a Dynamic Pool or Generic rPTR 0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked. See http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block for more information. [URIs: bitpay.com] 0.5 SUBJ_ALL_CAPS Subject is all capitals 2.0 PYZOR_CHECK Listed in Pyzor (https://pyzor.readthedocs.io/en/latest/) 0.0 KAM_SHORT Use of a URL Shortener for very short URL 0.0 KAM_DMARC_STATUS Test Rule for DKIM or SPF Failure with Strict Alignment 2.6 RDNS_DYNAMIC Delivered to internal network by host with dynamic-looking rDNS 1.0 KAM_LAZY_DOMAIN_SECURITY Sending domain does not have any anti-forgery methods 0.5 PDS_BTC_ID FP reduced Bitcoin ID 0.0 FSL_BULK_SIG Bulk signature with no Unsubscribe 0.0 BITCOIN_SPAM_07 BitCoin spam pattern 07 3.5 BITCOIN_TOEQFM Bitcoin + To same as From 2.6 BITCOIN_MALWARE BitCoin + malware bragging X-Spam-Flag: YES Subject: ***SPAM*** I RECORDED YOU! Hello there! Unfortunately, there are some bad news for you. Some time ago your device was infected with my private trojan, R.A.T (Remote Administration Tool), if you want to find out more about it simply use Google. My trojan allowed me to access your files, accounts and your cam. Check the sender of this email, I have sent it from your email account. To make sure you read this email, you will receive it multiple times. You truly enjoy checking out porn websites and watching dirty videos, while having a lot of kinky fun. I RECORDED YOU (through the cam of your device) SATISFYING YOURSELF! After that I removed my malware to not leave any traces. If you still doubt my serious intentions, it only takes couple mouse clicks to share the video of you with your friends, relatives, all email contacts, on social networks and the darknet. All you need is $1800 USD in Bitcoin (BTC) transfer to my account. After the transaction is successful, I will proceed to delete everything. Be sure, I keep my promises. You can easily buy Bitcoin (BTC) here: https://cex.io/buy-bitcoins https://nexo.com/buy-crypto/bitcoin-btc https://bitpay.com/buy-bitcoin/?crypto=BTC https://paybis.com/ https://invity.io/buy-crypto Or simply google other exchanger. After that send the Bitcoin (BTC) directly to my wallet, or install the free software: Atomicwallet, or: Exodus wallet, then receive and send to mine. My Bitcoin (BTC) address is: 1GtGZpzfRkAVBL48F68mi8bTcatwpTZGm8 Yes, that's how the address looks like, copy and paste my address, it's (cAsE-sEnSEtiVE). You are given not more than 3 days after you have opened this email. As I got access to this email account, I will know if this email has already been read. Everything will be carried out based on fairness. An advice from me, regularly change all your passwords to your accounts and update your device with newest security patches.