UJP - 貴方の名前で未払いがあります。出来るだけすぐに借金を清算してください。 というセクストーションメール

Life is fun and easy!

不正IP報告数

Okan Sensor
 
メイン
ログイン
ブログ カテゴリ一覧

ブログ - 貴方の名前で未払いがあります。出来るだけすぐに借金を清算してください。 というセクストーションメール

貴方の名前で未払いがあります。出来るだけすぐに借金を清算してください。 というセクストーションメール

カテゴリ : 
セキュリティ » スパム・フィッシング
ブロガー : 
ujpblog 2022/7/12 1:49
 ちょっと今日は出かけていたのだけれど,帰ってこたらこんなメールが73通も同内容のセクストーションメールが来ていました.そういうキャンペーンの模様.月曜日だし?
 今回は日本語版と英語版の入手ができたので,ちょっとみてみました.

引用:
こんにちは!

悲しいことに、今から残念な話をお伝えします。
ネット閲覧に利用されている全デバイスへの完全なアクセス権を数ヶ月前に、私は獲得しました。
そのすぐ後に、貴方がとった全てのネット上の活動記録をつけ始めています。
 今回は,過去にメールアドレスが漏洩したもの,サイト用にデフォルトで用意されるべきメールアドレス(infoとか),何だか不明な存在したことがないメールアドレス(エラーメールをサルベージしてる),ブログにあえて記載したクローリングされるであろうメールアドレス,それら全てに送信してきているようです.
 また,docomo.ne.jp で作っている短い文字数のメアドにも来ていました.ドコモの迷惑メール対策を突破しているということですね.


引用:
私のウォレットに ¥220000 (送金時の為替レートで、¥220000 相当のビットコイン)を送金してくれれば、お金の受け取りが終わるとすぐに、貴方が登場する全てのイヤラシイ動画は削除します。

 今日現在の22万円相当のビットコイン価格を調べてみた.

 7月11日現在は,0.078ビットコインの模様.
 今回,73通来たメールを見てみたら,次の2つのビットコインアドレスの記載があった.

161VPEPw7NAd5y7LGqdBjYMnNbqUBxjdfJ
1DPDe2v12xDRnzKVsR99Y4HjS4QfHYu2p3

 それぞれの取引情報を見てみる.


 こちらのアドレスは取引がない模様.


 2つ目のアドレスには,0.78 BTCが送金されている.つまり,この送金をしたのは日本人ということかな.

 ちなみに,英文でもこのメールは来ています.

引用:
Subject: There is an overdue payment under your name. Please, settle your debts ASAP.

あなたの名前で延滞金が発生しています。早急にご清算ください。


Hi!

Sadly, there are some bad news that you are about to hear.
About few months ago I have gained a full access to all devices used by you for internet browsing.
Shortly after, I started recording all internet activities done by you.

こんにちは。

悲しいことに、あなたには悪い知らせがあります。
数ヶ月前、私はあなたがインターネットを閲覧するために使用しているすべてのデバイスに完全にアクセスできるようになりました。
その直後から、私はあなたのインターネット上での行動をすべて記録し始めました。

 翻訳はDeepLを使っています.ニュアンスは同じですね.

引用:
You need to carry out a $1550 USD transfer to my wallet (equivalent amount in bitcoins depending on exchange rate at the moment of funds transfer),

1550米ドルを私のウォレットに送金してください(送金時の為替レートにより、ビットコインでの相当額となります)。


 日本人向けの方が高い模様.

 セクストーションメールの送信先のIPアドレスを抽出してみた.
$ grep -h "Received: from " *|sort|uniq -c|sort🆑
      1 Received: from 0xb9e59882.cust.fastspeed.dk (unknown [185.229.152.130])
      1 Received: from 10.16.52.179.d.dyn.claro.net.do (unknown [179.52.16.10])
      1 Received: from 177-10-4-70.cleannet.com.br (unknown [177.10.4.70])
      1 Received: from 177-91-75-247.rev.netcorporativa.com.br (unknown [177.91.75.247])
      1 Received: from 179-41-153-135.speedy.com.ar (unknown [179.41.153.135])
      1 Received: from 189.219.221.2-clientes-izzi.mx (unknown [189.219.221.2])
      1 Received: from 191-37-73-101.cntfiber.net.br (191-37-73-101.cntfiber.net.br [191.37.73.101])
      1 Received: from 192-141-199-154.dyn.socitel.com.br (unknown [192.141.199.154])
      1 Received: from 2-228-50-218.ip190.fastwebnet.it (2-228-50-218.ip190.fastwebnet.it [2.228.50.218])
      1 Received: from 33-15-138-91.dyn.cable.fcom.ch (33-15-138-91.dyn.cable.fcom.ch [91.138.15.33])
      1 Received: from 37-185-171-181.fibertel.com.ar (unknown [181.171.185.37])
      1 Received: from 45-4-138-18.reverse.cablecolor.hn (unknown [45.4.138.18])
      1 Received: from 83-41-167-181.fibertel.com.ar (unknown [181.167.41.83])
      1 Received: from 87-126-208-118.ip.btc-net.bg (87-126-208-118.ip.btc-net.bg [87.126.208.118])
      1 Received: from 95-97-193-190.cab.prima.net.ar (unknown [190.193.97.95])
      1 Received: from [103.133.243.41] (unknown [103.133.243.41])
      1 Received: from [103.14.195.252] (unknown [103.14.195.252])
      1 Received: from [103.15.241.70] (unknown [103.15.241.70])
      1 Received: from [103.159.32.38] (unknown [103.159.32.38])
      1 Received: from [103.73.225.72] (unknown [103.73.225.77])
      1 Received: from [103.91.141.107] (unknown [103.91.141.107])
      1 Received: from [110.47.150.29] (unknown [110.47.150.29])
      1 Received: from [119.207.227.47] (unknown [119.207.227.47])
      1 Received: from [138.99.162.142] (unknown [138.99.162.142])
      1 Received: from [167.249.70.1] (unknown [167.249.70.1])
      1 Received: from [168.121.98.160] (unknown [168.121.98.160])
      1 Received: from [177.84.246.22] (unknown [177.84.246.22])
      1 Received: from [179.108.16.105] (unknown [179.108.16.105])
      1 Received: from [179.42.33.160] (unknown [179.42.33.160])
      1 Received: from [182.183.248.161] (unknown [182.183.248.161])
      1 Received: from [186.118.8.239] ([186.118.8.239])
      1 Received: from [190.140.190.28] (unknown [190.140.190.28])
      1 Received: from [196.89.155.180] (unknown [196.89.155.180])
      1 Received: from [197.238.23.151] (unknown [197.238.23.151])
      1 Received: from [200.75.127.105] (unknown [200.75.127.105])
      1 Received: from [202.173.124.185] (unknown [202.173.124.185])
      1 Received: from [212.15.82.62] (unknown [212.15.82.62])
      1 Received: from [220.79.145.185] (unknown [220.79.145.185])
      1 Received: from [223.237.168.170] (unknown [223.237.140.170])
      1 Received: from [41.140.239.229] (unknown [41.140.239.229])
      1 Received: from [41.202.207.168] (unknown [41.202.207.168])
      1 Received: from [41.65.227.183] (unknown [41.65.227.183])
      1 Received: from [45.123.223.80] (unknown [45.123.223.80])
      1 Received: from [45.178.0.15] (unknown [45.178.0.15])
      1 Received: from [45.6.180.187] (unknown [45.6.180.187])
      1 Received: from [46.99.135.90] (unknown [46.99.135.90])
      1 Received: from [62.28.128.179] (unknown [62.28.128.179])
      1 Received: from [87.123.244.196] (unknown [87.123.244.196])
      1 Received: from [87.246.62.238] (unknown [87.246.62.238])
      1 Received: from abts-mp-dynamic-004.64.168.122.airtelbroadband.in ([122.168.64.4])
      1 Received: from abts-mp-dynamic-099.91.168.122.airtelbroadband.in (unknown [122.168.91.99])
      1 Received: from bb6a3a5b.virtua.com.br (unknown [187.106.58.91])
      1 Received: from bb7a0422.virtua.com.br (unknown [187.122.4.34])
      1 Received: from bd23c59e.virtua.com.br (unknown [189.35.197.158])
      1 Received: from bfb3027d.virtua.com.br (unknown [191.179.2.125])
      1 Received: from bfbf8048.virtua.com.br (unknown [191.191.128.72])
      1 Received: from bzq-79-177-142-39.red.bezeqint.net (bzq-79-177-142-39.red.bezeqint.net [79.177.142.39])
      1 Received: from cpe-172-101-33-126.maine.res.rr.com (cpe-172-101-33-126.maine.res.rr.com [172.101.33.126])
      1 Received: from customer-189-217-206-186.cablevision.net.mx ([189.217.206.186])
      1 Received: from customer-201-141-25-23.cablevision.net.mx (unknown [201.141.25.23])
      1 Received: from dslb-084-058-216-039.084.058.pools.vodafone-ip.de (dslb-084-058-216-039.084.058.pools.vodafone-ip.de [84.58.216.39])
      1 Received: from dynamic-ip-18682244185.cable.net.co (unknown [186.82.244.185])
      1 Received: from firewall.mandela.ac.za (firewall.mandela.ac.za [192.96.15.1])
      1 Received: from ip-037-201-147-239.um10.pools.vodafone-ip.de (ip-037-201-147-239.um10.pools.vodafone-ip.de [37.201.147.239])
      1 Received: from mo-sg.mose-mail.jp (mo-sg1801-0.mose-mail.jp [202.238.237.18])
      1 Received: from net-93-67-188-102.cust.vodafonedsl.it (net-93-67-188-102.cust.vodafonedsl.it [93.67.188.102])
      1 Received: from p57ae9661.dip0.t-ipconnect.de (p57ae9661.dip0.t-ipconnect.de [87.174.150.97])
      1 Received: from r190-134-3-191.dialup.adsl.anteldata.net.uy (r190-134-3-191.dialup.adsl.anteldata.net.uy [190.134.3.191])
      1 Received: from reverse.rain.network (unknown [41.216.201.205])
      1 Received: from static-ip-18160173157.cable.net.co (unknown [181.60.173.157])
      1 Received: from static.vnpt.vn (unknown [113.186.214.13])
$
 アジアが多いのかと思ったら,そうでもない模様.

トラックバック


広告スペース
Google