MOON

File: /home/asjudine/mail/asjudinet.com/servi/.spam/new/1622779025.H87012P882.server.asjudinet.com,S=6402
Envelope-to: servi@asjudinet.com
Delivery-date: Thu, 03 Jun 2021 22:57:05 -0500
Message-ID: <60B97A53.3010508@asjudinet.com>
Date: Fri, 04 Jun 2021 -4:56:51 -0400
From: <servi@asjudinet.com>
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-US; rv:1.9.2.4) Gecko/20100608 Thunderbird/3.1
MIME-Version: 1.0
To: <servi@asjudinet.com>
Content-Type: multipart/alternative;
 boundary="------------050600080500000805070806"
 
 Content preview:  Greetings, I am sorry to inform you that your cloud storage
    was compromised. Let&#8217;s get the biggest elephant out of the room first.
    I am not a part of shady group that encrypts your data and extorts money
   leaving you no choice. But I HAVE copied your data. The choice is yours. [...]
    
 
 Content analysis details:   (13.1 points, 5.0 required)
 
  pts rule name              description
 ---- ---------------------- --------------------------------------------------
  2.9 HELO_DYNAMIC_SPLIT_IP  Relay HELO'd using suspicious hostname (Split
                             IP)
  0.1 STOX_BOUND_090909_B    No description available.
  0.4 INVALID_DATE           Invalid Date: header (not RFC 2822)
  2.7 RCVD_IN_PSBL           RBL: Received via a relay in PSBL
                             [179.62.57.206 listed in psbl.surriel.com]
  0.0 HTML_MESSAGE           BODY: HTML included in message
  1.0 KAM_LAZY_DOMAIN_SECURITY Sending domain does not have any
                             anti-forgery methods
  2.0 RDNS_NONE              Delivered to internal network by a host with no rDNS
  0.5 PDS_BTC_ID             FP reduced Bitcoin ID
  2.5 BITCOIN_SPAM_02        BitCoin spam pattern 02
  1.0 BITCOIN_PAY_ME         Pay me via BitCoin
  0.0 NO_FM_NAME_IP_HOSTN    No From name + hostname using IP address
X-Spam-Flag: YES
Subject:    =?UTF-8?B?V2l0aCByZWZlcmVuY2UgdG8geW91ciBjbG91ZCBzdG9yYWdl?=

This is a multi-part message in MIME format.
--------------050600080500000805070806
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: quoted-printable

Greetings,
I am sorry to inform you that your cloud storage was compromised.
Let&#8217;s get the biggest elephant out of the room first.
I am not a part of shady group that encrypts your data and extorts money =
leaving you no choice. But I HAVE copied your data.
The choice is yours.

Here is what happened, one of the websites where you have an account was =
breached.
After that I got access to your password from that breach and with some =
advanced manipulations and bruteforce extracted your backup data.
The data set that I have downloaded and parsed contains pictures, =
documents, contacts and more including some deleted files.
I don't have much time and dedication NOW to go through all of the =
files, but with some fast looking I did - I am sure that you dont want =
some of them to be seen by other people.

What I can do if you don't follow my instructions is simple.
I can send from your name to your contacts the most interesting content, =
it's the least I can do. You may care or not, it's up to you to decide.
If you decide that you don't care, I will go through all files, and who =
knows what more I may find more.
Maybe you have some confidential business information. Or GREAT nudes =
and videos.=20

If I spend more time on your case, the amount will be 3 times bigger. =
Depends on the content.
So let's make it simple. You pay me $2000 USD, I delete the data, you =
change your password.
Business as usual, use Bitcoin to make the transfer.
13gdUqbxkC2TQPmaHLuMsTatATz6jHCwkp
 Account is unique and you have some reasonable time to make the =
payment.
Take care.

--------------050600080500000805070806
Content-Type: text/html; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
  <head>

    <meta http-equiv=3D"content-type" content=3D"text/html; =
charset=3DISO-8859-1">
  </head>
  <body text=3D"#000000" bgcolor=3D"#ffffff">
    Greetings,<br>
I am sorry to inform you that your cloud storage was compromised.<br>
Let&#8217;s get the biggest elephant out of the room first.<br>
I am not a part of shady group that encrypts your data and extorts money =
leaving you no choice. But I HAVE copied your data.<br>
The choice is yours.<br><br>
Here is what happened, one of the websites where you have an account was =
breached.<br>
After that I got access to your password from that breach and with some =
advanced manipulations and bruteforce extracted your backup data.<br>
The data set that I have downloaded and parsed contains pictures, =
documents, contacts and more including some deleted files.<br>
I don't have much time and dedication NOW to go through all of the =
files, but with some fast looking I did - I am sure that you dont want =
some of them to be seen by other people.<br><br>
What I can do if you don't follow my instructions is simple.<br>
I can send from your name to your contacts the most interesting content, =
it's the least I can do. You may care or not, it's up to you to =
decide.<br>
If you decide that you don't care, I will go through all files, and who =
knows what more I may find more.<br>
Maybe you have some confidential business information. Or GREAT nudes =
and videos. <br><br>
If I spend more time on your case, the amount will be 3 times bigger. =
Depends on the content.<br>
So let's make it simple. You pay me $2000 USD, I delete the data, you =
change your password.<br>
Business as usual, use Bitcoin to make the transfer.<br>
13gdUqbxkC2TQPmaHLuMsTatATz6jHCwkp<br>
 Account is unique and you have some reasonable time to make the =
payment.<br>
Take care.<br>
  </body>
</html>

--------------050600080500000805070806--