order phishing
Posted by Dave Yadallee on
Return-path:
Envelope-to: dave@doctor.nl2k.ab.ca
Delivery-date: Wed, 21 Feb 2024 06:36:00 -0700
Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.97.1 (FreeBSD))
(envelope-from)
id 1rcmkW-00000000DRi-27qj
for dave@doctor.nl2k.ab.ca;
Wed, 21 Feb 2024 06:35:00 -0700
Resent-From: The Doctor
Resent-Date: Wed, 21 Feb 2024 06:35:00 -0700
Resent-Message-ID:
Resent-To: Dave Yadallee
Received: from zzs4kids.com ([87.251.86.117]:55526)
by doctor.nl2k.ab.ca with esmtp (Exim 4.97.1 (FreeBSD))
(envelope-from)
id 1rcgE1-0000000082S-0P7z
for root@nk.ca;
Tue, 20 Feb 2024 23:37:07 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; s=zzs4; d=zzs4kids.com;
h=Content-Type:From:To:Subject:Message-ID:Date:MIME-Version;
i=Jeremy_dCrmCjpn@zzs4kids.com;
bh=poLBRFJUm3vsiFeEC3n8XTTYOwP4SWvWBGOE3PQ9Spo=;
b=QYgXHdpf5Olkgs8hZyuRQLoO3w+l698Ew0bbVwYoLGu50mjxxoRjh71uRXFqX/tQMXG41KrvmBI5
4yZGLTQk0Q7GhHiE/pY2d0HD3RdikqL4PfpGNWZOaP0Q0fyz+YEPgem8+/WZbWYki8ZwNJcs6GUI
buTNk/CMZzwaczgjeopSyVOu3YWKp1nD9vjP7rrd243pXGJ0XZB8ZfbL/hkzogjufA9JJAtW+OIN
C6HoX5FrTHm6ryu8BryDj7edBv5aZfTa1ZD+veMjYyvPz2DgvDvEFoWJj9kEly7BUI8XBi6APrF3
RGxr2je432bCC+MfvnxgjkOocTY9tXLbZV8liA==
Content-Type: multipart/mixed; boundary="--_NmP-4cb021f32ad82898-Part_1"
X-Ms-Exchange-Organization-Messagedirectionality: Originating
X-Ms-Exchange-Organization-Authas: Internal
X-Ms-Exchange-Organization-Authmechanism: 02
X-Ms-Exchange-Organization-Authsource:
MWHPR22MB0014.namprd22.prod.outlook.com
X-Ms-Exchange-Organization-Network-Message-ID:
ffe8bf42-c85a-42c8-a084-08d75b722819
X-Ma4-Node: false
X-Priority: 1
X-Msmail-Priority: High
Importance: high
From: Jeremy
To: root@nk.ca
Subject: *** VIRUS ***new order _PO#cVEpX
Message-ID:
Date: Wed, 21 Feb 2024 06:35:03 +0000
MIME-Version: 1.0
X-Antivirus: AVG (VPS 240221-0, 2/20/2024), Inbound message
X-Antivirus-Status: Infected
X-Attachment: order_XLS.htm#3446217359 Virus: HTML:Phishing-CUY [Phish] Moved to chest
----_NmP-4cb021f32ad82898-Part_1
Content-Type: text/html
Content-Transfer-Encoding: quoted-printable
charset=3Dunicode">
none; text-indent: 0px; letter-spacing: normal; font-family: Times; =
font-size: medium; font-style: normal; font-weight: 400; word-spacing: 0px;=
white-space: normal; orphans: 2; widows: 2; background-color: rgb(255, 255=
, 255); text-decoration-style: initial; font-variant-ligatures: normal; =
font-variant-caps: normal; -webkit-text-stroke-width: 0px; =
text-decoration-thickness: initial; text-decoration-color: initial;">
font-family: Calibri, Arial, Helvetica, sans-serif; font-size: 16px; =
vertical-align: baseline; font-stretch: inherit; font-feature-settings: =
inherit; font-kerning: inherit; font-optical-sizing: inherit; =
font-variation-settings: inherit;">Dear root
rgb(0, 0, 0) !important; text-transform: none; text-indent: 0px; =
letter-spacing: normal; font-family: Calibri, Arial, Helvetica, sans-serif;=
font-size: 16px; font-style: normal; font-weight: 400; word-spacing: 0px; =
vertical-align: baseline; white-space: normal; orphans: 2; widows: 2; =
font-stretch: inherit; font-feature-settings: inherit; background-color: =
rgb(255, 255, 255); text-decoration-style: initial;=20
font-variant-ligatures: normal; font-variant-caps: normal; =
-webkit-text-stroke-width: 0px; text-decoration-thickness: initial; =
text-decoration-color: initial; font-variant-numeric: inherit; =
font-variant-east-asian: inherit; font-kerning: inherit; =
font-optical-sizing: inherit; font-variation-settings: inherit; =
font-variant-alternates: inherit;">
5px;">Please find the attached Purchase Order , Confirm if it will be ready=
for delivery within 40 days?
sans-serif; font-size: 14px;">해외송금과
aria-hidden=3D"true">
currentColor; font-family: inherit; font-size: 10pt; vertical-align: =
baseline; font-stretch: inherit; font-feature-settings: inherit; =
font-kerning: inherit; font-optical-sizing: inherit; =
font-variation-settings: inherit;">
currentColor; color: rgb(0, 32, 96) !important; font-family: Arial, =
sans-serif; font-size: 8pt; vertical-align: baseline; font-stretch: =
inherit; font-feature-settings: inherit; font-kerning: inherit; =
font-optical-sizing: inherit; font-variation-settings: inherit;">
C-307, Research Center, EtechHive, 410 Jeongseojin-Ro, Seo-Gu, Incheon, =
Korea.
currentColor; font-family: inherit; font-size: 8pt; vertical-align: =
baseline; font-stretch: inherit; font-feature-settings: inherit; =
font-kerning: inherit; font-optical-sizing: inherit; =
font-variation-settings: inherit;">
Tel
currentColor; vertical-align: baseline;">+82-32-424-1776 =
Fax
currentColor; vertical-align: baseline;">+82-
505-720-1785 Cell
style=3D"margin: 0px; padding: 0px; border: 0px currentColor; =
vertical-align: baseline;">+82-10-4070-1776
>
----_NmP-4cb021f32ad82898-Part_1--
Envelope-to: dave@doctor.nl2k.ab.ca
Delivery-date: Wed, 21 Feb 2024 06:36:00 -0700
Received: from doctor by doctor.nl2k.ab.ca with local (Exim 4.97.1 (FreeBSD))
(envelope-from
id 1rcmkW-00000000DRi-27qj
for dave@doctor.nl2k.ab.ca;
Wed, 21 Feb 2024 06:35:00 -0700
Resent-From: The Doctor
Resent-Date: Wed, 21 Feb 2024 06:35:00 -0700
Resent-Message-ID:
Resent-To: Dave Yadallee
Received: from zzs4kids.com ([87.251.86.117]:55526)
by doctor.nl2k.ab.ca with esmtp (Exim 4.97.1 (FreeBSD))
(envelope-from
id 1rcgE1-0000000082S-0P7z
for root@nk.ca;
Tue, 20 Feb 2024 23:37:07 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; s=zzs4; d=zzs4kids.com;
h=Content-Type:From:To:Subject:Message-ID:Date:MIME-Version;
i=Jeremy_dCrmCjpn@zzs4kids.com;
bh=poLBRFJUm3vsiFeEC3n8XTTYOwP4SWvWBGOE3PQ9Spo=;
b=QYgXHdpf5Olkgs8hZyuRQLoO3w+l698Ew0bbVwYoLGu50mjxxoRjh71uRXFqX/tQMXG41KrvmBI5
4yZGLTQk0Q7GhHiE/pY2d0HD3RdikqL4PfpGNWZOaP0Q0fyz+YEPgem8+/WZbWYki8ZwNJcs6GUI
buTNk/CMZzwaczgjeopSyVOu3YWKp1nD9vjP7rrd243pXGJ0XZB8ZfbL/hkzogjufA9JJAtW+OIN
C6HoX5FrTHm6ryu8BryDj7edBv5aZfTa1ZD+veMjYyvPz2DgvDvEFoWJj9kEly7BUI8XBi6APrF3
RGxr2je432bCC+MfvnxgjkOocTY9tXLbZV8liA==
Content-Type: multipart/mixed; boundary="--_NmP-4cb021f32ad82898-Part_1"
X-Ms-Exchange-Organization-Messagedirectionality: Originating
X-Ms-Exchange-Organization-Authas: Internal
X-Ms-Exchange-Organization-Authmechanism: 02
X-Ms-Exchange-Organization-Authsource:
MWHPR22MB0014.namprd22.prod.outlook.com
X-Ms-Exchange-Organization-Network-Message-ID:
ffe8bf42-c85a-42c8-a084-08d75b722819
X-Ma4-Node: false
X-Priority: 1
X-Msmail-Priority: High
Importance: high
From: Jeremy
To: root@nk.ca
Subject: *** VIRUS ***new order _PO#cVEpX
Message-ID:
Date: Wed, 21 Feb 2024 06:35:03 +0000
MIME-Version: 1.0
X-Antivirus: AVG (VPS 240221-0, 2/20/2024), Inbound message
X-Antivirus-Status: Infected
X-Attachment: order_XLS.htm#3446217359 Virus: HTML:Phishing-CUY [Phish] Moved to chest
----_NmP-4cb021f32ad82898-Part_1
Content-Type: text/html
Content-Transfer-Encoding: quoted-printable
charset=3Dunicode">
none; text-indent: 0px; letter-spacing: normal; font-family: Times; =
font-size: medium; font-style: normal; font-weight: 400; word-spacing: 0px;=
white-space: normal; orphans: 2; widows: 2; background-color: rgb(255, 255=
, 255); text-decoration-style: initial; font-variant-ligatures: normal; =
font-variant-caps: normal; -webkit-text-stroke-width: 0px; =
text-decoration-thickness: initial; text-decoration-color: initial;">
font-family: Calibri, Arial, Helvetica, sans-serif; font-size: 16px; =
vertical-align: baseline; font-stretch: inherit; font-feature-settings: =
inherit; font-kerning: inherit; font-optical-sizing: inherit; =
font-variation-settings: inherit;">Dear root
rgb(0, 0, 0) !important; text-transform: none; text-indent: 0px; =
letter-spacing: normal; font-family: Calibri, Arial, Helvetica, sans-serif;=
font-size: 16px; font-style: normal; font-weight: 400; word-spacing: 0px; =
vertical-align: baseline; white-space: normal; orphans: 2; widows: 2; =
font-stretch: inherit; font-feature-settings: inherit; background-color: =
rgb(255, 255, 255); text-decoration-style: initial;=20
font-variant-ligatures: normal; font-variant-caps: normal; =
-webkit-text-stroke-width: 0px; text-decoration-thickness: initial; =
text-decoration-color: initial; font-variant-numeric: inherit; =
font-variant-east-asian: inherit; font-kerning: inherit; =
font-optical-sizing: inherit; font-variation-settings: inherit; =
font-variant-alternates: inherit;">
5px;">Please find the attached Purchase Order , Confirm if it will be ready=
for delivery within 40 days?
Kindly provide =
us the Proforma Invoice, Payment terms and estimated shipping date in =
return, treat urgently.
padding: 0px; border: 0px currentColor; color: rgb(0, 32, 96) !important; =
font-family: Arial, sans-serif; font-size: 8pt; vertical-align: baseline; =
font-stretch: inherit; font-feature-settings: inherit; font-kerning: =
inherit; font-optical-sizing: inherit; font-variation-settings: =
inherit;">
padding: 0px; border: 0px currentColor; color: rgb(0, 32, 96) !important; =
font-family: Arial, sans-serif; font-size: 8pt; vertical-align: baseline; =
font-stretch: inherit; font-feature-settings: inherit; font-kerning: =
inherit; font-optical-sizing: inherit; font-variation-settings: =
inherit;">Jeremy Kim
sans-serif; font-size: 14px;">해외송금과
aria-hidden=3D"true">
currentColor; font-family: inherit; font-size: 10pt; vertical-align: =
baseline; font-stretch: inherit; font-feature-settings: inherit; =
font-kerning: inherit; font-optical-sizing: inherit; =
font-variation-settings: inherit;">
currentColor; color: rgb(0, 32, 96) !important; font-family: Arial, =
sans-serif; font-size: 8pt; vertical-align: baseline; font-stretch: =
inherit; font-feature-settings: inherit; font-kerning: inherit; =
font-optical-sizing: inherit; font-variation-settings: inherit;">
C-307, Research Center, EtechHive, 410 Jeongseojin-Ro, Seo-Gu, Incheon, =
Korea.
currentColor; font-family: inherit; font-size: 8pt; vertical-align: =
baseline; font-stretch: inherit; font-feature-settings: inherit; =
font-kerning: inherit; font-optical-sizing: inherit; =
font-variation-settings: inherit;">
Tel
currentColor; vertical-align: baseline;">+82-32-424-1776 =
Fax
currentColor; vertical-align: baseline;">+82-
505-720-1785 Cell
style=3D"margin: 0px; padding: 0px; border: 0px currentColor; =
vertical-align: baseline;">+82-10-
>
----_NmP-4cb021f32ad82898-Part_1--
Trackbacks
Trackback specific URI for this entryThis link is not meant to be clicked. It contains the trackback URI for this entry. You can use this URI to send ping- & trackbacks from your own blog to this entry. To copy the link, right click and select "Copy Shortcut" in Internet Explorer or "Copy Link Location" in Mozilla.
No Trackbacks
Comments
Display comments as Linear | ThreadedNo comments