New Posts  All Forums:Forum Nav:

fake emails?

post #1 of 10
Thread Starter 
not sure this was the right place to post this but here it is anyway.

almost once a day i get an email, saying that UPS or FedEx has a package to deliver to me. attached is a zip file that includes a virus. The emails are (were) very very obvious however I got one today containing the same virus that was from

no-replyyhyml@irs.gov

how would someone email a message like that with a fake domain?
dBag
(9 items)
 
yep...
(10 items)
 
air
(8 items)
 
CPUMotherboardRAMHard Drive
xeon e3-1230v2 supermicro mbd x9scm-0 KVR1333D3E9S/4G OCZ vertex3 60GB 
CoolingOSPowerCase
1u 80mm blower + passive cpu  proxmox 3.1 supermicro 300w 1u supermicro 1u 
Other
2x intel pro1000 nics  
CPUMotherboardGraphicsRAM
A8-3870K @ 3.7GHz GIGABYTE A75M-UD2H Power Cooler 7870 Team Group Inc 
Hard DriveCoolingOSPower
3x OCZ Agility 3 60GB (RAID-0 on Rocket RAID 27... Corsair H-80 core win-7 Seagate 750 Gold 
CaseAudio
some lian-li case... M-Audio AV40s + 10" Sony ___? 
CPUMotherboardGraphicsRAM
D525 @ 1.8GHz Supermicro onboard 2x2GB DDR1333 
Hard DriveOSCaseOther
WD Green ubuntu 12 1u  3x40mm fans  
  hide details  
Reply
dBag
(9 items)
 
yep...
(10 items)
 
air
(8 items)
 
CPUMotherboardRAMHard Drive
xeon e3-1230v2 supermicro mbd x9scm-0 KVR1333D3E9S/4G OCZ vertex3 60GB 
CoolingOSPowerCase
1u 80mm blower + passive cpu  proxmox 3.1 supermicro 300w 1u supermicro 1u 
Other
2x intel pro1000 nics  
CPUMotherboardGraphicsRAM
A8-3870K @ 3.7GHz GIGABYTE A75M-UD2H Power Cooler 7870 Team Group Inc 
Hard DriveCoolingOSPower
3x OCZ Agility 3 60GB (RAID-0 on Rocket RAID 27... Corsair H-80 core win-7 Seagate 750 Gold 
CaseAudio
some lian-li case... M-Audio AV40s + 10" Sony ___? 
CPUMotherboardGraphicsRAM
D525 @ 1.8GHz Supermicro onboard 2x2GB DDR1333 
Hard DriveOSCaseOther
WD Green ubuntu 12 1u  3x40mm fans  
  hide details  
Reply
post #2 of 10
I don't know how they do it but its easily done... I think since I get like 4 spoofed emails a day

Sent from my GT-I9000M using Tapatalk
post #3 of 10
There's quite a few websites out there that allows you to mask your email and it'll show up as so and so when you receive the email. It's the easiest way to spoof emails for tricking people.
     
CPUMotherboardGraphicsRAM
Intel Core i7-4870HQ @ 2.5 GHz (Turbo @ 3.7 GHz) Apple Logic Board Nvidia GeForce GT 750M 2GB 16 GB 1600 MHz DDR3 
Hard DriveOSMonitorKeyboard
APPLE SSD SM0512F 500GB macOS Sierra 15" Retina Display (2880 x 1800) Full-size backlit keyboard with 78 (U.S.) keys 
PowerCaseMouseAudio
85W Magsafe 2 Precision Aluminum Unibody Multi-Touch Trackpad Focusrite Scarlett 2i4 2nd Gen 
CPUGraphicsRAMHard Drive
Intel Core i5-3317U @ 1.7GHz (Turbo @ 2.6 GHz) Intel HD Graphics 4000 4 GB 1600 MHz DDR3L SDRAM APPLE SSD TS128E 
OSMonitorKeyboardPower
macOS Sierra 11.6" LCD/LED Backlit IPS Display (1366 x 768) Full-size backlit keyboard with 78 (U.S.) keys 85W Magsafe 2 
CaseMouse
Precision Aluminum Unibody Multi-Touch Trackpad 
  hide details  
Reply
     
CPUMotherboardGraphicsRAM
Intel Core i7-4870HQ @ 2.5 GHz (Turbo @ 3.7 GHz) Apple Logic Board Nvidia GeForce GT 750M 2GB 16 GB 1600 MHz DDR3 
Hard DriveOSMonitorKeyboard
APPLE SSD SM0512F 500GB macOS Sierra 15" Retina Display (2880 x 1800) Full-size backlit keyboard with 78 (U.S.) keys 
PowerCaseMouseAudio
85W Magsafe 2 Precision Aluminum Unibody Multi-Touch Trackpad Focusrite Scarlett 2i4 2nd Gen 
CPUGraphicsRAMHard Drive
Intel Core i5-3317U @ 1.7GHz (Turbo @ 2.6 GHz) Intel HD Graphics 4000 4 GB 1600 MHz DDR3L SDRAM APPLE SSD TS128E 
OSMonitorKeyboardPower
macOS Sierra 11.6" LCD/LED Backlit IPS Display (1366 x 768) Full-size backlit keyboard with 78 (U.S.) keys 85W Magsafe 2 
CaseMouse
Precision Aluminum Unibody Multi-Touch Trackpad 
  hide details  
Reply
post #4 of 10
Its easy to do on any email server on the command line, I sent one to myself from billgates@microsoft.com
post #5 of 10
Its just the header saying that. Do you still have the zip file? If you do can you pass it on to me. Like to open it DSA.
post #6 of 10
SMTP (simple mail transfer protocol) isn't exactly known for it's security.
When you send out a message, you can populate the 'from' field with anything you'd like.

Most spoofed messages will end up in a spam folder when they fail reverse DNS lookup performed by the majority of e-mail servers, though.
Das Rig, Ja?
(12 items)
 
  
CPUMotherboardGraphicsRAM
AMD Ryzen 1700 Asus Crosshair VI EVGA 1080Ti SC2 2x16G GSkill RGB 3200 
Hard DriveCoolingOSMonitor
500 GB 960 EVO Enermax T50A-BVT Windows 10 Pro 27" Asus 
KeyboardPowerCaseMouse
Logitech K350 EVGA 1600G2 Fractal Define C Rosewill M55 RGB 
  hide details  
Reply
Das Rig, Ja?
(12 items)
 
  
CPUMotherboardGraphicsRAM
AMD Ryzen 1700 Asus Crosshair VI EVGA 1080Ti SC2 2x16G GSkill RGB 3200 
Hard DriveCoolingOSMonitor
500 GB 960 EVO Enermax T50A-BVT Windows 10 Pro 27" Asus 
KeyboardPowerCaseMouse
Logitech K350 EVGA 1600G2 Fractal Define C Rosewill M55 RGB 
  hide details  
Reply
post #7 of 10
Quote:
Originally Posted by hks85;13935637 
not sure this was the right place to post this but here it is anyway.

almost once a day i get an email, saying that UPS or FedEx has a package to deliver to me. attached is a zip file that includes a virus. The emails are (were) very very obvious however I got one today containing the same virus that was from

no-replyyhyml@irs.gov

how would someone email a message like that with a fake domain?

Simple, the person sending the email just modifies the information packet to say whatever they want. If the mail information is not sent verified by the host machine, which it is obviously not, then it gets sent out as is.

Edit - Didn't read beers post, he explained it.
Windfall
(13 items)
 
  
CPUMotherboardGraphicsRAM
Q9550 Asus P5E3 Premium Wifi XFX HD Radeon 6950 SuperTalent 
Hard DriveOptical DriveOSMonitor
WADFALS1001 WD Black Edition 1TB x 2 Raid 0 DVD-RW DIE VISTA, Using W7 24Inch 1920x1200 
PowerCase
Corsair 750TX Corsair 800D 
  hide details  
Reply
Windfall
(13 items)
 
  
CPUMotherboardGraphicsRAM
Q9550 Asus P5E3 Premium Wifi XFX HD Radeon 6950 SuperTalent 
Hard DriveOptical DriveOSMonitor
WADFALS1001 WD Black Edition 1TB x 2 Raid 0 DVD-RW DIE VISTA, Using W7 24Inch 1920x1200 
PowerCase
Corsair 750TX Corsair 800D 
  hide details  
Reply
post #8 of 10
Yeah if you add your mates addy in the from field it will bounce and go back to him and it will look like its coming from himself. They been doing it for years. No one tried to revise the mail protocol they just try all sorts of filters but your mail box still are filled with thousands of email bombers latest creations
post #9 of 10
soooo are botnets sending these things or what? I get about 1-2 spam emails on my gmail account. I never have used that email for anything other than communication and sign ups on secured, reputable sites.
Coffee Cake
(23 items)
 
   
CPUMotherboardGraphicsRAM
Intel Core i5 8600K Gigabyte Z370 Aorus Gaming 7 Gigabyte Gaming G1 GTX 1080 Corsair Vengance RGB 16GB 
Hard DriveHard DriveHard DriveCooling
Samsung 850 Evo 500GB Crucial MX 100 256GB Toshiba P300 3TB EK Supremacy MX Copper Plexi 
CoolingCoolingOSMonitor
EK CoolStream PE 240 EK XRes 100 DDC 3.1 Pump/Res Combo Windows 10 Pro Dell U2515H 
KeyboardPowerCaseMouse
Corsair K95 RGB Platinum Corsair AX750W Phanteks Enthoo Pro M SE Corsair M65 RGB 
Mouse PadAudioAudioAudio
Corsair MM100 Bose 2.1 Speakers Bayerdynamic DT-770 Pro 32ohm AKG K240 Mk ii 
AudioAudioOther
Sure SRH-840 Audio Tehcnica ATH-M50 CableMod Addressable RGB Strip 
  hide details  
Reply
Coffee Cake
(23 items)
 
   
CPUMotherboardGraphicsRAM
Intel Core i5 8600K Gigabyte Z370 Aorus Gaming 7 Gigabyte Gaming G1 GTX 1080 Corsair Vengance RGB 16GB 
Hard DriveHard DriveHard DriveCooling
Samsung 850 Evo 500GB Crucial MX 100 256GB Toshiba P300 3TB EK Supremacy MX Copper Plexi 
CoolingCoolingOSMonitor
EK CoolStream PE 240 EK XRes 100 DDC 3.1 Pump/Res Combo Windows 10 Pro Dell U2515H 
KeyboardPowerCaseMouse
Corsair K95 RGB Platinum Corsair AX750W Phanteks Enthoo Pro M SE Corsair M65 RGB 
Mouse PadAudioAudioAudio
Corsair MM100 Bose 2.1 Speakers Bayerdynamic DT-770 Pro 32ohm AKG K240 Mk ii 
AudioAudioOther
Sure SRH-840 Audio Tehcnica ATH-M50 CableMod Addressable RGB Strip 
  hide details  
Reply
post #10 of 10
Quote:
Originally Posted by SOCOM_HERO;13945603 
soooo are botnets sending these things or what? I get about 1-2 spam emails on my gmail account. I never have used that email for anything other than communication and sign ups on secured, reputable sites.

nigerians with free internet actually creates 99 percent of them. Botnets are used for DDOS attacks mostly Some connectivity services gave the users from nigeria only a couple of servers they are allowed on because of them black listing their servers with spam mail
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security