Blackmail phishing
Posted by Dave Yadallee on
Return-path:
Envelope-to: dave@doctor.nl2k.ab.ca
Delivery-date: Fri, 29 Apr 2022 07:30:00 -0600
Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.95 (FreeBSD))
(envelope-from)
id 1nkQgE-000EHs-5v
for dave@doctor.nl2k.ab.ca;
Fri, 29 Apr 2022 07:29:06 -0600
Resent-From: The Doctor
Resent-Date: Fri, 29 Apr 2022 07:29:06 -0600
Resent-Message-ID:
Resent-To: Dave Yadallee
Received: from [160.154.162.97] (port=48207)
by doctor.nl2k.ab.ca with esmtp (Exim 4.95 (FreeBSD))
(envelope-from)
id 1nkPvy-000OJs-BT
for doctor@nl2k.ab.ca;
Fri, 29 Apr 2022 06:41:23 -0600
Message-ID: <626BDCD2.9070105@nl2k.ab.ca>
Date: Fri, 29 Apr 2022 11:40:50 -0100
From:
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9.2.23) Gecko/20110922 Thunderbird/3.1.15
MIME-Version: 1.0
To:
Subject: =?UTF-8?B?RG8gWW91IERvIEFueSBvZiBUaGVzZSBFbWJhcnJhc3NpbmcgVGhpbmdzPw==?=
Content-Type: multipart/alternative;
boundary="------------030504020800080807010903"
X-Spam_score: 11.8
X-Spam_score_int: 118
X-Spam_bar: +++++++++++
X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",
has identified this incoming email as possible spam. The original
message has been attached to this so you can view it or label
similar future email. If you have any questions, see
@@CONTACT_ADDRESS@@ for details.
Content preview: I am sorry to inform you but your device was hacked. That's
what happened. I have used a Zero Click vulnerability with a special code
to hack your device through a website. A complicated software that requires
precise skills that I posess. This exploit [...]
Content analysis details: (11.8 points, 5.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
2.5 STOX_BOUND_090909_B No description available.
1.6 RCVD_IN_BRBL_LASTEXT RBL: No description available.
[160.154.162.97 listed in bb.barracudacentral.org]
1.3 RCVD_IN_VALIDITY_RPBL RBL: Relay in Validity RPBL,
https://senderscore.org/blocklistlookup/
[160.154.162.97 listed in bl.score.senderscore.com]
1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,
https://senderscore.org/blacklistlookup/
0.9 SPF_FAIL SPF: sender does not match SPF record (fail)
[SPF failed: Please see http://www.openspf.org/Why?s=mfrom;id=doctor%40nl2k.ab.ca;ip=160.154.162.97;r=doctor.nl2k.ab.ca]
0.0 HTML_MESSAGE BODY: HTML included in message
-0.0 T_SCC_BODY_TEXT_LINE No description available.
1.3 RDNS_NONE Delivered to internal network by a host with no rDNS
0.5 PDS_BTC_ID FP reduced Bitcoin ID
2.5 BITCOIN_SPAM_02 BitCoin spam pattern 02
Subject: {SPAM?} =?UTF-8?B?RG8gWW91IERvIEFueSBvZiBUaGVzZSBFbWJhcnJhc3NpbmcgVGhpbmdzPw==?=
This is a multi-part message in MIME format.
--------------030504020800080807010903
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: quoted-printable
I am sorry to inform you but your device was hacked.
That's what happened. I have used a Zero Click vulnerability with a =
special code to hack your device through a website.
A complicated software that requires precise skills that I posess.
This exploit works in a chain with a specially crafted unique code and =
such type of an attack goes undetected.
You only had to visit a website to be infected, and unfortunately for =
you it's that simple for me.
You were not targeted, but just became one of the many unlucky people =
who got hacked through that webpage.
All of this happened in August. So I’ve had enough time to collect =
the information.
I think you already know what is going to happen next.
For a couple of month my software was quietly collecting information =
about your habits, websites you visit, websearches, texts you send.
There is more to it, but I have listed just a few reasons for you to =
understand how serious this is.
To be clear, my software controlled your camera and microphone as well.
It was just about right timing to get you privacy violated. I have made =
a few pornhub worthy videos with you as a lead actor.
I’ve been waiting enough and have decided that it’s time to =
put an end to this.
Here is my offer. Let’s name this a “consulting fee” I =
need to get, so I can delete the media content I have been collecting.
Your privacy stays untouched, if I get the payment.
Otherwise, I will leak the most damaging content to your contacts and =
post it to a public website for perverts to view.
You and I understand how damaging this will be to you, it's not that =
much money to keep your privacy.
I don’t care about you personally, that's why you can be sure that =
all files I have and software on your device will be deleted immediately =
after I receive the transfer.
I only care about getting paid.
My modest consulting fee is 1700 US Dollars to be transferred in =
Bitcoin. Exchange rate at the time of the transfer.
You need to send that amount to this wallet: =
1JwLUkacG322ARR8cSYGLQxnXh3EXZvXDF
The fee is non negotiable, to be transferred within 2 business days.
Obviously do not try to ask for help from the law enforcement unless you =
want your privacy to be violated.
I will monitor your every move until I get paid. If you keep your end of =
the agreement, you wont hear from me ever again.
Take care and have a good day.
--------------030504020800080807010903
Content-Type: text/html; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
charset=3DISO-8859-1">
I am sorry to inform you but your device was hacked.
That's what happened. I have used a Zero Click vulnerability with a =
special code to hack your device through a website.
A complicated software that requires precise skills that I posess.
This exploit works in a chain with a specially crafted unique code and =
such type of an attack goes undetected.
You only had to visit a website to be infected, and unfortunately for =
you it's that simple for me.
You were not targeted, but just became one of the many unlucky people =
who got hacked through that webpage.
All of this happened in August. So I’ve had enough time to collect =
the information.
I think you already know what is going to happen next.
For a couple of month my software was quietly collecting information =
about your habits, websites you visit, websearches, texts you send.
There is more to it, but I have listed just a few reasons for you to =
understand how serious this is.
To be clear, my software controlled your camera and microphone as =
well.
It was just about right timing to get you privacy violated. I have made =
a few pornhub worthy videos with you as a lead actor.
I’ve been waiting enough and have decided that it’s time to =
put an end to this.
Here is my offer. Let’s name this a “consulting fee” I =
need to get, so I can delete the media content I have been =
collecting.
Your privacy stays untouched, if I get the payment.
Otherwise, I will leak the most damaging content to your contacts and =
post it to a public website for perverts to view.
You and I understand how damaging this will be to you, it's not that =
much money to keep your privacy.
I don’t care about you personally, that's why you can be sure that =
all files I have and software on your device will be deleted immediately =
after I receive the transfer.
I only care about getting paid.
My modest consulting fee is 1700 US Dollars to be transferred in =
Bitcoin. Exchange rate at the time of the transfer.
You need to send that amount to this wallet: =
1JwLUkacG322ARR8cSYGLQxnXh3EXZvXDF
The fee is non negotiable, to be transferred within 2 business =
days.
Obviously do not try to ask for help from the law enforcement unless you =
want your privacy to be violated.
I will monitor your every move until I get paid. If you keep your end of =
the agreement, you wont hear from me ever again.
Take care and have a good day.
--------------030504020800080807010903--
Envelope-to: dave@doctor.nl2k.ab.ca
Delivery-date: Fri, 29 Apr 2022 07:30:00 -0600
Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.95 (FreeBSD))
(envelope-from
id 1nkQgE-000EHs-5v
for dave@doctor.nl2k.ab.ca;
Fri, 29 Apr 2022 07:29:06 -0600
Resent-From: The Doctor
Resent-Date: Fri, 29 Apr 2022 07:29:06 -0600
Resent-Message-ID:
Resent-To: Dave Yadallee
Received: from [160.154.162.97] (port=48207)
by doctor.nl2k.ab.ca with esmtp (Exim 4.95 (FreeBSD))
(envelope-from
id 1nkPvy-000OJs-BT
for doctor@nl2k.ab.ca;
Fri, 29 Apr 2022 06:41:23 -0600
Message-ID: <626BDCD2.9070105@nl2k.ab.ca>
Date: Fri, 29 Apr 2022 11:40:50 -0100
From:
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9.2.23) Gecko/20110922 Thunderbird/3.1.15
MIME-Version: 1.0
To:
Subject: =?UTF-8?B?RG8gWW91IERvIEFueSBvZiBUaGVzZSBFbWJhcnJhc3NpbmcgVGhpbmdzPw==?=
Content-Type: multipart/alternative;
boundary="------------030504020800080807010903"
X-Spam_score: 11.8
X-Spam_score_int: 118
X-Spam_bar: +++++++++++
X-Spam_report: Spam detection software, running on the system "doctor.nl2k.ab.ca",
has identified this incoming email as possible spam. The original
message has been attached to this so you can view it or label
similar future email. If you have any questions, see
@@CONTACT_ADDRESS@@ for details.
Content preview: I am sorry to inform you but your device was hacked. That's
what happened. I have used a Zero Click vulnerability with a special code
to hack your device through a website. A complicated software that requires
precise skills that I posess. This exploit [...]
Content analysis details: (11.8 points, 5.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
2.5 STOX_BOUND_090909_B No description available.
1.6 RCVD_IN_BRBL_LASTEXT RBL: No description available.
[160.154.162.97 listed in bb.barracudacentral.org]
1.3 RCVD_IN_VALIDITY_RPBL RBL: Relay in Validity RPBL,
https://senderscore.org/blocklistlookup/
[160.154.162.97 listed in bl.score.senderscore.com]
1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL,
https://senderscore.org/blacklistlookup/
0.9 SPF_FAIL SPF: sender does not match SPF record (fail)
[SPF failed: Please see http://www.openspf.org/Why?s=mfrom;id=doctor%40nl2k.ab.ca;ip=160.154.162.97;r=doctor.nl2k.ab.ca]
0.0 HTML_MESSAGE BODY: HTML included in message
-0.0 T_SCC_BODY_TEXT_LINE No description available.
1.3 RDNS_NONE Delivered to internal network by a host with no rDNS
0.5 PDS_BTC_ID FP reduced Bitcoin ID
2.5 BITCOIN_SPAM_02 BitCoin spam pattern 02
Subject: {SPAM?} =?UTF-8?B?RG8gWW91IERvIEFueSBvZiBUaGVzZSBFbWJhcnJhc3NpbmcgVGhpbmdzPw==?=
This is a multi-part message in MIME format.
--------------030504020800080807010903
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: quoted-printable
I am sorry to inform you but your device was hacked.
That's what happened. I have used a Zero Click vulnerability with a =
special code to hack your device through a website.
A complicated software that requires precise skills that I posess.
This exploit works in a chain with a specially crafted unique code and =
such type of an attack goes undetected.
You only had to visit a website to be infected, and unfortunately for =
you it's that simple for me.
You were not targeted, but just became one of the many unlucky people =
who got hacked through that webpage.
All of this happened in August. So I’ve had enough time to collect =
the information.
I think you already know what is going to happen next.
For a couple of month my software was quietly collecting information =
about your habits, websites you visit, websearches, texts you send.
There is more to it, but I have listed just a few reasons for you to =
understand how serious this is.
To be clear, my software controlled your camera and microphone as well.
It was just about right timing to get you privacy violated. I have made =
a few pornhub worthy videos with you as a lead actor.
I’ve been waiting enough and have decided that it’s time to =
put an end to this.
Here is my offer. Let’s name this a “consulting fee” I =
need to get, so I can delete the media content I have been collecting.
Your privacy stays untouched, if I get the payment.
Otherwise, I will leak the most damaging content to your contacts and =
post it to a public website for perverts to view.
You and I understand how damaging this will be to you, it's not that =
much money to keep your privacy.
I don’t care about you personally, that's why you can be sure that =
all files I have and software on your device will be deleted immediately =
after I receive the transfer.
I only care about getting paid.
My modest consulting fee is 1700 US Dollars to be transferred in =
Bitcoin. Exchange rate at the time of the transfer.
You need to send that amount to this wallet: =
1JwLUkacG322ARR8cSYGLQxnXh3EXZvXDF
The fee is non negotiable, to be transferred within 2 business days.
Obviously do not try to ask for help from the law enforcement unless you =
want your privacy to be violated.
I will monitor your every move until I get paid. If you keep your end of =
the agreement, you wont hear from me ever again.
Take care and have a good day.
--------------030504020800080807010903
Content-Type: text/html; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
charset=3DISO-8859-1">
I am sorry to inform you but your device was hacked.
That's what happened. I have used a Zero Click vulnerability with a =
special code to hack your device through a website.
A complicated software that requires precise skills that I posess.
This exploit works in a chain with a specially crafted unique code and =
such type of an attack goes undetected.
You only had to visit a website to be infected, and unfortunately for =
you it's that simple for me.
You were not targeted, but just became one of the many unlucky people =
who got hacked through that webpage.
All of this happened in August. So I’ve had enough time to collect =
the information.
I think you already know what is going to happen next.
For a couple of month my software was quietly collecting information =
about your habits, websites you visit, websearches, texts you send.
There is more to it, but I have listed just a few reasons for you to =
understand how serious this is.
To be clear, my software controlled your camera and microphone as =
well.
It was just about right timing to get you privacy violated. I have made =
a few pornhub worthy videos with you as a lead actor.
I’ve been waiting enough and have decided that it’s time to =
put an end to this.
Here is my offer. Let’s name this a “consulting fee” I =
need to get, so I can delete the media content I have been =
collecting.
Your privacy stays untouched, if I get the payment.
Otherwise, I will leak the most damaging content to your contacts and =
post it to a public website for perverts to view.
You and I understand how damaging this will be to you, it's not that =
much money to keep your privacy.
I don’t care about you personally, that's why you can be sure that =
all files I have and software on your device will be deleted immediately =
after I receive the transfer.
I only care about getting paid.
My modest consulting fee is 1700 US Dollars to be transferred in =
Bitcoin. Exchange rate at the time of the transfer.
You need to send that amount to this wallet: =
1JwLUkacG322ARR8cSYGLQxnXh3EXZvXDF
The fee is non negotiable, to be transferred within 2 business =
days.
Obviously do not try to ask for help from the law enforcement unless you =
want your privacy to be violated.
I will monitor your every move until I get paid. If you keep your end of =
the agreement, you wont hear from me ever again.
Take care and have a good day.
--------------030504020800080807010903--
Trackbacks
Trackback specific URI for this entryThis link is not meant to be clicked. It contains the trackback URI for this entry. You can use this URI to send ping- & trackbacks from your own blog to this entry. To copy the link, right click and select "Copy Shortcut" in Internet Explorer or "Copy Link Location" in Mozilla.
No Trackbacks
Comments
Display comments as Linear | ThreadedNo comments