E-shop Best Buy has received an order - with analysis
Posted: Tue Dec 09, 2014 8:35 am
Message:
E-shop **** has received an order addressed to you which has to be confirmed by the recipient within 4 days.
Upon confirmation you may pick it in any nearest store of ****.
Detailed order information is attached to the letter.
Wishing you Happy Thanksgiving!
****
Attachment:
Unknown. Deleted by virus scanner
YOU SHOULD ALREADY KNOW AT THIS POINT THAT THE EMAIL IS MALICIOUS
Email verification:
Using tool http://tools.email-checker.com/ showed that the from email address was not a valid email address. ie. it does not exist or has been suspended
Domain name check:
http://whois.domaintools.com showed that the domain name used in the email address, was in fact genuine and belongs to a long established company. ie. the domain name has been faked
Message header:
In Outlook, you open the email, click File/Properties then copy the section Internet Headers. Other email programs will be different.
Pasting the header into the tool http://www.iptrackeronline.com/email-he ... alysis.php show the source of the email to be Hong Kong.
As the company should be based in the USA, this confirms a malicious email.
I know it's not a rental scam but I've not received any lately. Hopefully it's still of use to someone.
E-shop **** has received an order addressed to you which has to be confirmed by the recipient within 4 days.
Upon confirmation you may pick it in any nearest store of ****.
Detailed order information is attached to the letter.
Wishing you Happy Thanksgiving!
****
Attachment:
Unknown. Deleted by virus scanner
YOU SHOULD ALREADY KNOW AT THIS POINT THAT THE EMAIL IS MALICIOUS
Email verification:
Using tool http://tools.email-checker.com/ showed that the from email address was not a valid email address. ie. it does not exist or has been suspended
Domain name check:
http://whois.domaintools.com showed that the domain name used in the email address, was in fact genuine and belongs to a long established company. ie. the domain name has been faked
Message header:
In Outlook, you open the email, click File/Properties then copy the section Internet Headers. Other email programs will be different.
Pasting the header into the tool http://www.iptrackeronline.com/email-he ... alysis.php show the source of the email to be Hong Kong.
As the company should be based in the USA, this confirms a malicious email.
I know it's not a rental scam but I've not received any lately. Hopefully it's still of use to someone.