[Nmc-wg] *SPAM* Don't forget to pay the tax within 2 days!

nmc-wg at ogf.org nmc-wg at ogf.org
Thu Jan 26 11:21:02 PST 2023 

Spam detection software, running on the system "mail.pglaf.org",
has identified this incoming email as possible spam.  The original
message has been attached to this so you can view it or label
similar future email.  If you have any questions, see
the administrator of that system for details.

Content preview:  Hello! Have you recently noticed that I have e-mailed you
  from your account? Yes, this simply means that I have total access to your
   device. For the last couple of months, I have been watching you. Still wondering
   how is that possible? Well, you have been infected with malware originating
   from an adult website that you visited. You may not [...] 

Content analysis details:   (15.1 points, 4.0 required)

 pts rule name              description
---- ---------------------- --------------------------------------------------
 0.8 BAYES_50               BODY: Bayes spam probability is 40 to 60%
                            [score: 0.4264]
 3.5 HELO_DYNAMIC_SPLIT_IP  Relay HELO'd using suspicious hostname
                            (Split IP)
 0.2 CK_HELO_GENERIC        Relay used name indicative of a Dynamic Pool or
                            Generic rPTR
 0.0 TVD_RCVD_IP            Message was received from an IP address
 0.0 SPF_HELO_NONE          SPF: HELO does not publish an SPF Record
 1.4 PYZOR_CHECK            Listed in Pyzor
                            (https://pyzor.readthedocs.io/en/latest/)
 0.0 FSL_BULK_SIG           Bulk signature with no Unsubscribe
 0.8 RDNS_NONE              Delivered to internal network by a host with no rDNS
 0.0 HDR_ORDER_FTSDMCXX_NORDNS Header order similar to spam
                            (FTSDMCXX/boundary variant) + no rDNS
 0.0 BITCOIN_XPRIO          Bitcoin + priority
 1.9 BITCOIN_EXTORT_01      Extortion spam, pay via BitCoin
 0.0 PDS_BTC_MSGID          Bitcoin ID with T_MSGID_NOFQDN2
 0.0 PDS_BTC_ID             FP reduced Bitcoin ID
 0.0 MIMEOLE_DIRECT_TO_MX   MIMEOLE + direct-to-MX
 2.0 HDR_ORDER_FTSDMCXX_DIRECT Header order similar to spam
                            (FTSDMCXX/boundary variant) + direct-to-MX
 1.0 TO_EQ_FM_DIRECT_MX     To == From and direct-to-MX
 1.0 BITCOIN_SPAM_07        BitCoin spam pattern 07
 2.5 DOS_OE_TO_MX           Delivered direct to MX with OE headers
 0.0 XPRIO                  Has X-Priority header
 0.0 NO_FM_NAME_IP_HOSTN    No From name + hostname using IP address


-------------- next part --------------
An embedded message was scrubbed...
From: <nmc-wg at ogf.org>
Subject: Don't forget to pay the tax within 2 days!
Date: 26 Jan 2023 21:21:02 +0200
Size: 2962
URL: <https://lists.ogf.org/pipermail/nmc-wg/attachments/20230126/a88ed403/attachment.eml>

More information about the Nmc-wg mailing list