xrobwx71 Administrator Staff member Joined Sep 27, 2019 Posts 2,762 Location Panama City Beach, FL Jun 26, 2024 #1 I received a text message today copied below. From a phone number with an Indonesian exchange of +62 It's supposedly from the USPS (United States Postal Service) ((with an Indonesian exchange)) USPS Notification: Your parcel is temporarily on hold at our facility due to insufficient address information. Please provide a valid delivery address to avoid returning the package. URL:Removed Wishing you an exceptional day from the USPS team. Congratulations! Your analysis is done and available at: Free Automated Malware Analysis Service - powered by Falcon Sandbox - Viewing online file analysis results for 'https://cutt.ly/repmWkJb?BKK=FH5CsqGHpl%3Fbqy%3DcypMvfnNhc' --- Falcon Sandbox Analysis Overview --- Free Automated Malware Analysis Service - powered by Falcon Sandbox --- Falcon Sandbox Analysis Summary --- Analysis State: SUCCESS Threat Verdict: malicious Threat Score: 82/100 AV Detection Ratio: n/a AV Family Name: n/a Time of analysis: 2024-06-26 16:58:38 Contacted Domains: a.nel.cloudflare.com, cutt.ly, usom.mzlrpdma.top Contacted Hosts: 104.22.0.232, 172.67.189.63, 172.67.189.63, 35.190.80.1, 35.190.80.1 Environment: Windows 10 64 bit (ID: 160) Last edited: Jun 26, 2024
I received a text message today copied below. From a phone number with an Indonesian exchange of +62 It's supposedly from the USPS (United States Postal Service) ((with an Indonesian exchange)) USPS Notification: Your parcel is temporarily on hold at our facility due to insufficient address information. Please provide a valid delivery address to avoid returning the package. URL:Removed Wishing you an exceptional day from the USPS team. Congratulations! Your analysis is done and available at: Free Automated Malware Analysis Service - powered by Falcon Sandbox - Viewing online file analysis results for 'https://cutt.ly/repmWkJb?BKK=FH5CsqGHpl%3Fbqy%3DcypMvfnNhc' --- Falcon Sandbox Analysis Overview --- Free Automated Malware Analysis Service - powered by Falcon Sandbox --- Falcon Sandbox Analysis Summary --- Analysis State: SUCCESS Threat Verdict: malicious Threat Score: 82/100 AV Detection Ratio: n/a AV Family Name: n/a Time of analysis: 2024-06-26 16:58:38 Contacted Domains: a.nel.cloudflare.com, cutt.ly, usom.mzlrpdma.top Contacted Hosts: 104.22.0.232, 172.67.189.63, 172.67.189.63, 35.190.80.1, 35.190.80.1 Environment: Windows 10 64 bit (ID: 160)
A Guy Righteous Dude Joined Jun 2, 2012 Posts 1,122 Location Bay Area Peninsula Jun 27, 2024 #2 I'm getting daily now text messages to donate to a presidential candidate and they will match my donation. Usually from 325 area code. I block each one and the next day it's a new number. I'm sure it's a scam from the beginning, but this switching numbers just confirms A Guy
I'm getting daily now text messages to donate to a presidential candidate and they will match my donation. Usually from 325 area code. I block each one and the next day it's a new number. I'm sure it's a scam from the beginning, but this switching numbers just confirms A Guy
xrobwx71 Administrator Staff member Joined Sep 27, 2019 Posts 2,762 Location Panama City Beach, FL Jun 27, 2024 #3 I'm told, this one is old and goes back to the XP days although from my goal of getting the info out there to help at least one person from becoming a victim, the age of a vector is irrelevant if it's still happening.
I'm told, this one is old and goes back to the XP days although from my goal of getting the info out there to help at least one person from becoming a victim, the age of a vector is irrelevant if it's still happening.