From message73e86b03477f2@hireassociation.co.uk Wed Jan 06 19:08:13 2021 Return-path: Envelope-to: bsdly@bsdly.net Delivery-date: Wed, 06 Jan 2021 19:08:13 +0100 Received: from [185.67.45.59] (helo=LL2B0T.imaginet.com) by skapet.bsdly.net with esmtp (Exim 4.94) (envelope-from ) id 1kxDEB-0000xz-30 for bsdly@bsdly.net; Wed, 06 Jan 2021 19:08:13 +0100 Received: from localhost.localdomain ([111.67.193.158]) by imaginet.com with MailEnable ESMTPA; Wed, 6 Jan 2021 17:27:58 +0000 Date: Wed, 6 Jan 2021 17:27:54 +0000 To: bsdly@bsdly.net From: John White Subject: I recorded you Message-ID: X-Mailer: PHPMailer 6.0.7 (https://github.com/PHPMailer/PHPMailer) MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="b1_lhcLepwOEHSQL9o9MXN5jh9OdgF8r7VdMKHa9ybdBs" Content-Transfer-Encoding: 8bit X-Spam_score: 7.1 X-Spam_score_int: 71 X-Spam_bar: +++++++ X-Spam_report: Spam detection software, running on the system "skapet.bsdly.net", has identified this incoming email as possible spam. The original message has been attached to this so you can view it or label similar future email. If you have any questions, see @@CONTACT_ADDRESS@@ for details. Content preview: Hi! Well, I know that you visit pretty regularly PRONOGRAPHIC movies! The smart phone that you own got hacked so this allowed me to control your microphone and your camera and record you without you even [...] Content analysis details: (7.1 points, 5.0 required) pts rule name description ---- ---------------------- -------------------------------------------------- 5.0 BAYES_50 BODY: Bayes spam probability is 40 to 60% [score: 0.5000] 0.0 FROM_LOCAL_HEX From: localpart has long hexadecimal sequence 0.0 SPF_HELO_NONE SPF: HELO does not publish an SPF Record 0.0 SPF_NONE SPF: sender does not publish an SPF Record 1.3 RCVD_IN_RP_RNBL RBL: Relay in RNBL, https://senderscore.org/blacklistlookup/ [185.67.45.59 listed in bl.score.senderscore.com] 0.0 HTML_MESSAGE BODY: HTML included in message 0.8 RDNS_NONE Delivered to internal network by a host with no rDNS Content analysis details: (7.1 points, 5.0 required, s/c no) X-Spam-Flag: YES X-New-Subject: *****SPAM***** I recorded you Status: RO Content-Length: 4112 Lines: 42 This is a multi-part message in MIME format. --b1_lhcLepwOEHSQL9o9MXN5jh9OdgF8r7VdMKHa9ybdBs Content-Type: text/plain; charset=us-ascii Hi! Well, I know that you visit pretty regularly PRONOGRAPHIC movies! The smart phone that you own got hacked so this allowed me to control your microphone and your camera and record you without you even knowing while you pleasure yourself! The deal is next.. if you don`t send me 800$ value in Blt Coin I will release the video with you doing... you know what to the list of your contacts. My malicious application that was installed also had another function, to steal all your contacts from social media, phonebook list, emails and so. Did I got the passwords? Neah, any smart-phone have like a virus detection tool build-in which means every app installed is scanned for malicious activities, so stealing passwords? Not good, this can be detected! Using camera and extracting contacts without the use know? Normal stuff! Ok! Well to get some coins search on Google this "Buy Blt Coin instantly" and send to this address: Address: 1 7 2 4 D L U M u A v o X K 4 c p 6 p 3 5 Q t f 7 v z c z m g y R 7 Amount: 0.027 Important! The address(CaSe SeNsItIvE) contains spaces so you have to remove manually all spaces and the result it has to be a string of 34 characters long and it will start with "1" as well with end with "7". Use the string without spaces to send my coins! I gave you a few days! So, to remove my sneaky hidden app reset your device to factory settings. Go on Google and search for "Reset Factory Settings [your model phone]". In case you suspect that I compromised your passwords, you can change them! To avoid getting infected next time, make the updates in time for apps! Also maybe you will take in consideration to stop watching this type of content... it makes your brain a mess. Once the coins are sent maybe you will receive those emails just ignore them. The hacked servers are scheduled to send multiple messages. --b1_lhcLepwOEHSQL9o9MXN5jh9OdgF8r7VdMKHa9ybdBs Content-Type: text/html; charset=us-ascii

Hi!

Well, I know that you visit pretty regularly PRONOGRAPHIC movies!

The smart phone that you own got hacked so this allowed me to control your microphone and your camera and record you without you even knowing while you pleasure yourself! The deal is next.. if you don`t send me 800$ value in Blt Coin I will release the video with you doing... you know what to the list of your contacts.

My malicious application that was installed also had another function, to steal all your contacts from social media, phonebook list, emails and so. Did I got the passwords? Neah, any smart-phone have like a virus detection tool build-in which means every app installed is scanned for malicious activities, so stealing passwords? Not good, this can be detected! Using camera and extracting contacts without the use know? Normal stuff!

Ok! Well to get some coins search on Google this "Buy Blt Coin instantly" and send to this address:

Address: 1 7 2 4 D L U M u A v o X K 4 c p 6 p 3 5 Q t f 7 v z c z m g y R 7

Amount: 0.027

Important! The address(CaSe SeNsItIvE) contains spaces so you have to remove manually all spaces and the result it has to be a string of 34 characters long and it will start with "1" as well with end with "7". Use the string without spaces to send my coins! I gave you a few days!

So, to remove my sneaky hidden app reset your device to factory settings. Go on Google and search for "Reset Factory Settings [your model phone]". In case you suspect that I compromised your passwords, you can change them! To avoid getting infected next time, make the updates in time for apps!

Also maybe you will take in consideration to stop watching this type of content... it makes your brain a mess.

Once the coins are sent maybe you will receive those emails just ignore them. The hacked servers are scheduled to send multiple messages.

--b1_lhcLepwOEHSQL9o9MXN5jh9OdgF8r7VdMKHa9ybdBs--