hxxp://Received[:] from SJ0PR16MB5014[.]namprd16[.]prod[.]outlook[.]com (2603[:]10b6[:]a03[:]434[::]13) by SJ0PR16MB4206[.]namprd16[.]prod[.]outlook[.]com with HTTPS; Thu, 4 Jul 2024 20[:]44[:]42 +0000 Received[:] from CH2PR05CA0043[.]namprd05[.]prod[.]outlook[.]com (2603[:]10b6[:]610[:]38[::]20) by SJ0PR16MB5014[.]namprd16[.]prod[.]outlook[.]com (2603[:]10b6[:]a03[:]434[::]13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15[.]20[.]7698[.]30; Thu, 4 Jul 2024 20[:]44[:]39 +0000 Received[:] from CH3PEPF00000016[.]namprd21[.]prod[.]outlook[.]com (2603[:]10b6[:]610[:]38[:]cafe[::]4c) by CH2PR05CA0043[.]outlook[.]office365[.]com (2603[:]10b6[:]610[:]38[::]20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15[.]20[.]7762[.]12 via Frontend Transport; Thu, 4 Jul 2024 20[:]44[:]39 +0000 Authentication-Results[:] spf=fail (sender IP is 205[.]220[.]182[.]217) smtp[.]mailfrom=mail[.]pegasotecnologiacfdi[.]mx; dkim=fail (signature did not verify) header[.]d=pegasotecnologiacfdi[.]mx;dmarc=none action=none header[.]from=pegasotecnologiacfdi[.]mx;compauth=softpass reason=201 Received-SPF[:] Fail (protection[.]outlook[.]com[:] domain of mail[.]pegasotecnologiacfdi[.]mx does not designate 205[.]220[.]182[.]217 as permitted sender) receiver=protection[.]outlook[.]com; client-ip=205[.]220[.]182[.]217; helo=mx0b-0020d203[.]pphosted[.]com; Received[:] from mx0b-0020d203[.]pphosted[.]com (205[.]220[.]182[.]217) by CH3PEPF00000016[.]mail[.]protection[.]outlook[.]com (10[.]167[.]244[.]121) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15[.]20[.]7762[.]1 via Frontend Transport; Thu, 4 Jul 2024 20[:]44[:]38 +0000 Received[:] from pps[.]filterd (m0297917[.]ppops[.]net [127[.]0[.]0[.]1]) by mx0a-0020d203[.]pphosted[.]com (8[.]18[.]1[.]2/8[.]18[.]1[.]2) with ESMTP id 464Dr0kW019478 for <rulloa@sempraglobal[.]com[.]mx>; Thu, 4 Jul 2024 20[:]44[:]38 GMT Authentication-Results-Original[:] ppops[.]net; spf=pass smtp[.]mailfrom=bounces+1485527-3b8d-rulloa=sempraglobal[.]com[.]mx@mail[.]pegasotecnologiacfdi[.]mx; dkim=pass header[.]d=pegasotecnologiacfdi[.]mx header[.]s=s1; dmarc=none Received[:] from o2[.]o1[.]mail[.]pegasotecnologia[.]com (o2[.]o1[.]mail[.]pegasotecnologia[.]com [167[.]89[.]70[.]139]) by mx0a-0020d203[.]pphosted[.]com (PPS) with ESMTPS id 405gpg1eb1-1 (version=TLSv1[.]2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NOT) for <rulloa@sempraglobal[.]com[.]mx>; Thu, 04 Jul 2024 20[:]44[:]38 +0000 (GMT) DKIM-Signature[:] v=1; a=rsa-sha256; c=relaxed/relaxed; d=pegasotecnologiacfdi[.]mx; h=mime-version[:]from[:]subject[:]content-type[:]content-transfer-encoding[:]to[:] cc[:]content-type[:]from[:]subject[:]to; s=s1; bh=P4dN6KewCYgVam5Pf2voFia13Xxy8sE28nWd8mMd3n8=; b=B+IpD3U1/PyyKdQWYxLkZKkuj0spSFd74C5u2apWjlvmZzaz++utF8yrQ/mo/vf9PC+O 84sk8OvkF/ufP55+oC+0+qLjx9XJSNblScjFNivSVtFrTCG5F4kM+9yG5hHyTvVKvq3VOV epny7RuC/GG0fQWTpoQJpGeIhnW2biddSd9k+h4EFp57Wk9CghcLt3kQWdavMxJm3kA5dC 221ad8PuX6IsMhIVKld/Fkos2trygUlLb11QNG7RY0YdM3m95Kv83mQz61sKiINW3yMqds blp/7XgSGyfdZWAYBYxBMf46TN3wxU/4hf/yZMGvZl7mi2Htf/lLYbUJqkthwc+Q== Received[:] by filterdrecv-canary-8db87f47d-lxv88 with SMTP id filterdrecv-canary-8db87f47d-lxv88-1-668709B5-9 2024-07-04 20[:]44[:]37[.]197807138 +0000 UTC m=+3734975[.]720885118 Received[:] from smtps01[.]pegasotecnologiacfdi[.]mx (unknown) by geopod-ismtpd-9 (SG) with ESMTP id M78ePnbKTgeuOp4vY7TPNQ for <rulloa@sempraglobal[.]com[.]mx>; Thu, 04 Jul 2024 20[:]44[:]37[.]074 +0000 (UTC) Received[:] from wn1ldwk0002A1 (unknown [70[.]37[.]70[.]227]) (using TLSv1[.]2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtps01[.]pegasotecnologiacfdi[.]mx (Postfix) with ESMTPSA id 8C6F018000169 for <rulloa@sempraglobal[.]com[.]mx>; Thu, 4 Jul 2024 15[:]44[:]36 -0500 (CDT) From[:] "factura[.]electronica@pegasotecnologiacfdi[.]mx" <factura[.]electronica@pegasotecnologiacfdi[.]mx> Date[:] Thu, 04 Jul 2024 20[:]44[:]37 +0000 (UTC) Message-ID[:] <M78ePnbKTgeuOp4vY7TPNQ@geopod-ismtpd-9> X-SG-EID[:] u001[.]/ZSGvP6UBeFZx/O3MNYR65yn7haMbWC4gq3ZdLUJP5pStGv5/InmH/OzDTMs4uZswNYRHQsGSWf2m+TZVRHS7Uqxj68xq3TDnqqD7sKM5k8TZkRj3AVmUh2kl+8MgEgHNusMosvPCZP2hwGi5xBWpo/BQMrVpuzkyAH+v2Wuo3ADpi5K1uqp72w2m+QGneukYXdAtvnlwzM+u4EVyV/lVsXvX29OHmAE6qPoAJ/gTqocmMsNlF48VV2M8briiMQuBV5hTlrfpI8PPP64gnM+MzrNAW9kByHW/n+pAOmtNRdh3tuieNYgm/f+3kgnkIf7aBTxXvDcFGF59mnCF3Kvlg== To[:] rulloa@sempraglobal[.]com[.]mx X-Entity-ID[:] u001[.]k50FNhlPlu5I+8AO3/DOaQ== X-CLX-Shades[:] MLX X-CLX-Response[:] 1TFkXGR4aEQpMehcaEQpZRBdrEl9aYHx7U3IZaREKWFgXYWYfTHh5SR9HekE RCnhOF2B9HlxyQHlpGXt9EQp5TBdme0hEbHxTeEF4WBEKQ0gXBxgcHBEKQ1kXBxkfHBEKQ0kXGg QaGhoRCllNF2dmchEKWUkXGnEaEBp3BhkYGnEbHxMaEBp3BhgaBhoRClleF2xseREKSUYXWU9HW lhLX1laTXUZdUJFWV5PThEKSUcXeE9NEQpDThd9fV9gR2V8ZH1zU3hTY38eex9yHU8fbksHGVxj ZRNIYBEKWFwXHwQaBBkcHAUbGgQbGxoEGxkeBBkfEBseGh8aEQpeWRdOXGEfeBEKTVwXHhkeEQp MWhdpeG1NXU0RCkVZF3trEQpMXxd6BQUFBQUFBQUFQxEKTEYXb2tra2trEQpCTxdtZnB7cGN5Rx 0ZHhEKQ1oXGxwdBBITBB0aBBsZExEKQl4XGxEKQlwXGxEKXk4XGxEKQksXYH0eXHJAeWkZe30RC kJJF2B9HlxyQHlpGXt9EQpCRRdpZU9LBX1ISVhfaxEKQk4XYH0eXHJAeWkZe30RCkJMF2FmH0x4 eUkfR3pBEQpCbBdhZh9MeHlJH0d6QREKQkAXekdMZXBDQG59WmIRCkJYF2tGZGBFTn5ZQ0FMEQp aWBcYEQp5QxdpSW9AWkJmAVl7EhEKWUsXGR8YHREKcGcXYl9tXVJfSRNLRGYQBxkaEQpwaBd6TH kYZGttX3BTZhAcGBEKcGgXaGwdeU8dRHlgT1MQGhEKcGgXbWYdG01CbGBAUh4QGhEKcGgXa0h9Q UZCRmZDG3MQGhEKcGgXb0d6G1h/ZgUbX0MQGhEKcGgXek1hWVgfREFdYRgQGhEKcGgXYkx7b3NB aH9vXBsQGhEKcGgXYR9MARJdTx5bbWAQGhEKcH0XaW18HFpcRQF8b34QGhEKcH8XYn5lcAV+Umh gGB4QGxoaEQpwXxdlQxN5UhtGZGBuEhAbGhoRCnBsF2tcGx8cYBJmG3BnEBMbEQpwQxdlZG1gf3 MfbBkdXBAaEQptfhcaEQpYTRdLESA= X-Authority-Analysis[:] v=2[.]4 cv=QokM3kyd c=1 sm=1 tr=0 ts=668709b6 b=1 cx=c_pps a=OrPWAeeOzBtKMa4JfuKSlw==[:]117 a=OrPWAeeOzBtKMa4JfuKSlw==[:]17 a=8nJEP1OIZ-IA[:]10 a=uURe4OHTBiYA[:]10 a=4kmOji7k6h8A[:]10 a=7j0FZ4iXMVMA[:]10 a=HQJxeQV1AAAA[:]8 a=GIdvG0K6AAAA[:]8 a=vnKOHqlvAAAA[:]8 a=Dyjd7jq1DtKg-PbLfQIA[:]9 a=CrxE1-Zbx3U2WEbn[:]21 a=lqcHg5cX4UMA[:]10 a=wPNLvfGTeEIA[:]10 a=vzwFdDiLgEUtzLhjz8Uz[:]22 a=drl8tA7rTC04ra35RYlP[:]22 a=9ckQexE9skvaovCeI8Gk[:]22 X-Proofpoint-ORIG-GUID[:] WWuJmOVNWYyRyIU4Q5X7e5Da-3vIO9bJ X-Proofpoint-GUID[:] WWuJmOVNWYyRyIU4Q5X7e5Da-3vIO9bJ MIME-Version[:] 1[.]0 X-Proofpoint-Banner-Trigger[:] inbound Content-Type[:] text/html; charset=iso-8859-1 Content-Transfer-Encoding[:] quoted-printable Subject[:] [EXTERNO] Comprobantes Fiscales Digitales por Internet X-Proofpoint-Virus-Version[:] vendor=baseguard engine=ICAP[:]2[.]0[.]272,Aquarius[:]18[.]0[.]1039,Hydra[:]6[.]0[.]680,FMLib[:]17[.]12[.]28[.]16 definitions=2024-07-04_17,2024-07-03_01,2024-05-17_01 X-Sempra-Spam-Reason[:] safe Return-Path[:] bounces+1485527-3b8d-rulloa=sempraglobal[.]com[.]mx@mail[.]pegasotecnologiacfdi[.]mx X-MS-Exchange-Organization-ExpirationStartTime[:] 04 Jul 2024 20[:]44[:]39[.]1218 (UTC) X-MS-Exchange-Organization-ExpirationStartTimeReason[:] OriginalSubmit X-MS-Exchange-Organization-ExpirationInterval[:] 1[:]00[:]00[:]00[.]0000000 X-MS-Exchange-Organization-ExpirationIntervalReason[:] OriginalSubmit X-MS-Exchange-Organization-Network-Message-Id[:] fc87d767-ad8e-4674-2f29-08dc9c6a1fa6 X-EOPAttributedMessage[:] 0 X-EOPTenantAttributedMessage[:] 4f04fe57-837f-4b9d-9767-b066e63799b9[:]0 X-MS-Exchange-Organization-MessageDirectionality[:] Incoming X-MS-PublicTrafficType[:] Email X-MS-TrafficTypeDiagnostic[:] CH3PEPF00000016[:]EE_|SJ0PR16MB5014[:]EE_|SJ0PR16MB4206[:]EE_ X-MS-Exchange-Organization-AuthSource[:] CH3PEPF00000016[.]namprd21[.]prod[.]outlook[.]com X-MS-Exchange-Organization-AuthAs[:] Anonymous X-MS-Office365-Filtering-Correlation-Id[:] fc87d767-ad8e-4674-2f29-08dc9c6a1fa6 X-MS-Exchange-AtpMessageProperties[:] SA|SL X-EOP-Direct-Delivery[:] True X-MS-Exchange-Organization-SCL[:] 1 X-Microsoft-Antispam[:] BCL[:]3;ARA[:]13230040|13012899012|5062899012|3072899012|13102899012|12012899012|3092899012|69100299015|2092899012|29132699027|5073199012; X-Forefront-Antispam-Report[:] CIP[:]205[.]220[.]182[.]217;CTRY[:]US;LANG[:]es;SCL[:]1;SRV[:];IPV[:]NLI;SFV[:]NSPM;H[:]mx0b-0020d203[.]pphosted[.]com;PTR[:]mx0b-0020d203[.]pphosted[.]com;CAT[:]NONE;SFS[:](13230040)(13012899012)(5062899012)(3072899012)(13102899012)(12012899012)(3092899012)(69100299015)(2092899012)(29132699027)(5073199012);DIR[:]INB; X-MS-Exchange-CrossTenant-OriginalArrivalTime[:] 04 Jul 2024 20[:]44[:]38[.]7937 (UTC) X-MS-Exchange-CrossTenant-Network-Message-Id[:] fc87d767-ad8e-4674-2f29-08dc9c6a1fa6 X-MS-Exchange-CrossTenant-Id[:] 4f04fe57-837f-4b9d-9767-b066e63799b9 X-MS-Exchange-CrossTenant-AuthSource[:] CH3PEPF00000016[.]namprd21[.]prod[.]outlook[.]com X-MS-Exchange-CrossTenant-AuthAs[:] Anonymous X-MS-Exchange-CrossTenant-FromEntityHeader[:] Internet X-MS-Exchange-Transport-CrossTenantHeadersStamped[:] SJ0PR16MB5014 X-MS-Exchange-Transport-EndToEndLatency[:] 00[:]00[:]03[.]3072251 X-MS-Exchange-Processed-By-BccFoldering[:] 15[.]20[.]7741[.]016 X-Microsoft-Antispam-Mailbox-Delivery[:] ucf[:]0;jmr[:]0;auth[:]0;dest[:]I;ENG[:](910001)(944506478)(944626604)(920097)(930097)(140003); X-Microsoft-Antispam-Message-Info[:] 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[//]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

Sharing

Behavioral task

behavioral1

Sample

http://Received: from SJ0PR16MB5014.namprd16.prod.outlook.com (2603:10b6:a03:434::13) by SJ0PR16MB4206.namprd16.prod.outlook.com with HTTPS; Thu, 4 Jul 2024 20:44:42 +0000 Received: from CH2PR05CA0043.namprd05.prod.outlook.com (2603:10b6:610:38::20) by SJ0PR16MB5014.namprd16.prod.outlook.com (2603:10b6:a03:434::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7698.30; Thu, 4 Jul 2024 20:44:39 +0000 Received: from CH3PEPF00000016.namprd21.prod.outlook.com (2603:10b6:610:38:cafe::4c) by CH2PR05CA0043.outlook.office365.com (2603:10b6:610:38::20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7762.12 via Frontend Transport; Thu, 4 Jul 2024 20:44:39 +0000 Authentication-Results: spf=fail (sender IP is 205.220.182.217) smtp.mailfrom=mail.pegasotecnologiacfdi.mx; dkim=fail (signature did not verify) header.d=pegasotecnologiacfdi.mx;dmarc=none action=none header.from=pegasotecnologiacfdi.mx;compauth=softpass reason=201 Received-SPF: Fail (protection.outlook.com: domain of mail.pegasotecnologiacfdi.mx does not designate 205.220.182.217 as permitted sender) receiver=protection.outlook.com; client-ip=205.220.182.217; helo=mx0b-0020d203.pphosted.com; Received: from mx0b-0020d203.pphosted.com (205.220.182.217) by CH3PEPF00000016.mail.protection.outlook.com (10.167.244.121) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7762.1 via Frontend Transport; Thu, 4 Jul 2024 20:44:38 +0000 Received: from pps.filterd (m0297917.ppops.net [127.0.0.1]) by mx0a-0020d203.pphosted.com (8.18.1.2/8.18.1.2) with ESMTP id 464Dr0kW019478 for <[email protected]>; Thu, 4 Jul 2024 20:44:38 GMT Authentication-Results-Original: ppops.net; spf=pass smtp.mailfrom=bounces+1485527-3b8d-rulloa=sempraglobal.com.mx@mail.pegasotecnologiacfdi.mx; dkim=pass header.d=pegasotecnologiacfdi.mx header.s=s1; dmarc=none Received: from o2.o1.mail.pegasotecnologia.com (o2.o1.mail.pegasotecnologia.com [167.89.70.139]) by mx0a-0020d203.pphosted.com (PPS) with ESMTPS id 405gpg1eb1-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NOT) for <[email protected]>; Thu, 04 Jul 2024 20:44:38 +0000 (GMT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pegasotecnologiacfdi.mx; h=mime-version:from:subject:content-type:content-transfer-encoding:to: cc:content-type:from:subject:to; s=s1; bh=P4dN6KewCYgVam5Pf2voFia13Xxy8sE28nWd8mMd3n8=; b=B+IpD3U1/PyyKdQWYxLkZKkuj0spSFd74C5u2apWjlvmZzaz++utF8yrQ/mo/vf9PC+O 84sk8OvkF/ufP55+oC+0+qLjx9XJSNblScjFNivSVtFrTCG5F4kM+9yG5hHyTvVKvq3VOV epny7RuC/GG0fQWTpoQJpGeIhnW2biddSd9k+h4EFp57Wk9CghcLt3kQWdavMxJm3kA5dC 221ad8PuX6IsMhIVKld/Fkos2trygUlLb11QNG7RY0YdM3m95Kv83mQz61sKiINW3yMqds blp/7XgSGyfdZWAYBYxBMf46TN3wxU/4hf/yZMGvZl7mi2Htf/lLYbUJqkthwc+Q== Received: by filterdrecv-canary-8db87f47d-lxv88 with SMTP id filterdrecv-canary-8db87f47d-lxv88-1-668709B5-9 2024-07-04 20:44:37.197807138 +0000 UTC m=+3734975.720885118 Received: from smtps01.pegasotecnologiacfdi.mx (unknown) by geopod-ismtpd-9 (SG) with ESMTP id M78ePnbKTgeuOp4vY7TPNQ for <[email protected]>; Thu, 04 Jul 2024 20:44:37.074 +0000 (UTC) Received: from wn1ldwk0002A1 (unknown [70.37.70.227]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtps01.pegasotecnologiacfdi.mx (Postfix) with ESMTPSA id 8C6F018000169 for <[email protected]>; Thu, 4 Jul 2024 15:44:36 -0500 (CDT) From: "[email protected]" <[email protected]> Date: Thu, 04 Jul 2024 20:44:37 +0000 (UTC) Message-ID: <M78ePnbKTgeuOp4vY7TPNQ@geopod-ismtpd-9> X-SG-EID: u001./ZSGvP6UBeFZx/O3MNYR65yn7haMbWC4gq3ZdLUJP5pStGv5/InmH/OzDTMs4uZswNYRHQsGSWf2m+TZVRHS7Uqxj68xq3TDnqqD7sKM5k8TZkRj3AVmUh2kl+8MgEgHNusMosvPCZP2hwGi5xBWpo/BQMrVpuzkyAH+v2Wuo3ADpi5K1uqp72w2m+QGneukYXdAtvnlwzM+u4EVyV/lVsXvX29OHmAE6qPoAJ/gTqocmMsNlF48VV2M8briiMQuBV5hTlrfpI8PPP64gnM+MzrNAW9kByHW/n+pAOmtNRdh3tuieNYgm/f+3kgnkIf7aBTxXvDcFGF59mnCF3Kvlg== To: [email protected] X-Entity-ID: u001.k50FNhlPlu5I+8AO3/DOaQ== X-CLX-Shades: MLX X-CLX-Response: 1TFkXGR4aEQpMehcaEQpZRBdrEl9aYHx7U3IZaREKWFgXYWYfTHh5SR9HekE RCnhOF2B9HlxyQHlpGXt9EQp5TBdme0hEbHxTeEF4WBEKQ0gXBxgcHBEKQ1kXBxkfHBEKQ0kXGg QaGhoRCllNF2dmchEKWUkXGnEaEBp3BhkYGnEbHxMaEBp3BhgaBhoRClleF2xseREKSUYXWU9HW lhLX1laTXUZdUJFWV5PThEKSUcXeE9NEQpDThd9fV9gR2V8ZH1zU3hTY38eex9yHU8fbksHGVxj ZRNIYBEKWFwXHwQaBBkcHAUbGgQbGxoEGxkeBBkfEBseGh8aEQpeWRdOXGEfeBEKTVwXHhkeEQp MWhdpeG1NXU0RCkVZF3trEQpMXxd6BQUFBQUFBQUFQxEKTEYXb2tra2trEQpCTxdtZnB7cGN5Rx 0ZHhEKQ1oXGxwdBBITBB0aBBsZExEKQl4XGxEKQlwXGxEKXk4XGxEKQksXYH0eXHJAeWkZe30RC kJJF2B9HlxyQHlpGXt9EQpCRRdpZU9LBX1ISVhfaxEKQk4XYH0eXHJAeWkZe30RCkJMF2FmH0x4 eUkfR3pBEQpCbBdhZh9MeHlJH0d6QREKQkAXekdMZXBDQG59WmIRCkJYF2tGZGBFTn5ZQ0FMEQp aWBcYEQp5QxdpSW9AWkJmAVl7EhEKWUsXGR8YHREKcGcXYl9tXVJfSRNLRGYQBxkaEQpwaBd6TH kYZGttX3BTZhAcGBEKcGgXaGwdeU8dRHlgT1MQGhEKcGgXbWYdG01CbGBAUh4QGhEKcGgXa0h9Q UZCRmZDG3MQGhEKcGgXb0d6G1h/ZgUbX0MQGhEKcGgXek1hWVgfREFdYRgQGhEKcGgXYkx7b3NB aH9vXBsQGhEKcGgXYR9MARJdTx5bbWAQGhEKcH0XaW18HFpcRQF8b34QGhEKcH8XYn5lcAV+Umh gGB4QGxoaEQpwXxdlQxN5UhtGZGBuEhAbGhoRCnBsF2tcGx8cYBJmG3BnEBMbEQpwQxdlZG1gf3 MfbBkdXBAaEQptfhcaEQpYTRdLESA= X-Authority-Analysis: v=2.4 cv=QokM3kyd c=1 sm=1 tr=0 ts=668709b6 b=1 cx=c_pps a=OrPWAeeOzBtKMa4JfuKSlw==:117 a=OrPWAeeOzBtKMa4JfuKSlw==:17 a=8nJEP1OIZ-IA:10 a=uURe4OHTBiYA:10 a=4kmOji7k6h8A:10 a=7j0FZ4iXMVMA:10 a=HQJxeQV1AAAA:8 a=GIdvG0K6AAAA:8 a=vnKOHqlvAAAA:8 a=Dyjd7jq1DtKg-PbLfQIA:9 a=CrxE1-Zbx3U2WEbn:21 a=lqcHg5cX4UMA:10 a=wPNLvfGTeEIA:10 a=vzwFdDiLgEUtzLhjz8Uz:22 a=drl8tA7rTC04ra35RYlP:22 a=9ckQexE9skvaovCeI8Gk:22 X-Proofpoint-ORIG-GUID: WWuJmOVNWYyRyIU4Q5X7e5Da-3vIO9bJ X-Proofpoint-GUID: WWuJmOVNWYyRyIU4Q5X7e5Da-3vIO9bJ MIME-Version: 1.0 X-Proofpoint-Banner-Trigger: inbound Content-Type: text/html; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable Subject: [EXTERNO] Comprobantes Fiscales Digitales por Internet X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.272,Aquarius:18.0.1039,Hydra:6.0.680,FMLib:17.12.28.16 definitions=2024-07-04_17,2024-07-03_01,2024-05-17_01 X-Sempra-Spam-Reason: safe Return-Path: bounces+1485527-3b8d-rulloa=sempraglobal.com.mx@mail.pegasotecnologiacfdi.mx X-MS-Exchange-Organization-ExpirationStartTime: 04 Jul 2024 20:44:39.1218 (UTC) X-MS-Exchange-Organization-ExpirationStartTimeReason: OriginalSubmit X-MS-Exchange-Organization-ExpirationInterval: 1:00:00:00.0000000 X-MS-Exchange-Organization-ExpirationIntervalReason: OriginalSubmit X-MS-Exchange-Organization-Network-Message-Id: fc87d767-ad8e-4674-2f29-08dc9c6a1fa6 X-EOPAttributedMessage: 0 X-EOPTenantAttributedMessage: 4f04fe57-837f-4b9d-9767-b066e63799b9:0 X-MS-Exchange-Organization-MessageDirectionality: Incoming X-MS-PublicTrafficType: Email X-MS-TrafficTypeDiagnostic: CH3PEPF00000016:EE_|SJ0PR16MB5014:EE_|SJ0PR16MB4206:EE_ X-MS-Exchange-Organization-AuthSource: CH3PEPF00000016.namprd21.prod.outlook.com X-MS-Exchange-Organization-AuthAs: Anonymous X-MS-Office365-Filtering-Correlation-Id: fc87d767-ad8e-4674-2f29-08dc9c6a1fa6 X-MS-Exchange-AtpMessageProperties: SA|SL X-EOP-Direct-Delivery: True X-MS-Exchange-Organization-SCL: 1 X-Microsoft-Antispam: BCL:3;ARA:13230040|13012899012|5062899012|3072899012|13102899012|12012899012|3092899012|69100299015|2092899012|29132699027|5073199012; X-Forefront-Antispam-Report: CIP:205.220.182.217;CTRY:US;LANG:es;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:mx0b-0020d203.pphosted.com;PTR:mx0b-0020d203.pphosted.com;CAT:NONE;SFS:(13230040)(13012899012)(5062899012)(3072899012)(13102899012)(12012899012)(3092899012)(69100299015)(2092899012)(29132699027)(5073199012);DIR:INB; X-MS-Exchange-CrossTenant-OriginalArrivalTime: 04 Jul 2024 20:44:38.7937 (UTC) X-MS-Exchange-CrossTenant-Network-Message-Id: fc87d767-ad8e-4674-2f29-08dc9c6a1fa6 X-MS-Exchange-CrossTenant-Id: 4f04fe57-837f-4b9d-9767-b066e63799b9 X-MS-Exchange-CrossTenant-AuthSource: CH3PEPF00000016.namprd21.prod.outlook.com X-MS-Exchange-CrossTenant-AuthAs: Anonymous X-MS-Exchange-CrossTenant-FromEntityHeader: Internet X-MS-Exchange-Transport-CrossTenantHeadersStamped: SJ0PR16MB5014 X-MS-Exchange-Transport-EndToEndLatency: 00:00:03.3072251 X-MS-Exchange-Processed-By-BccFoldering: 15.20.7741.016 X-Microsoft-Antispam-Mailbox-Delivery: ucf:0;jmr:0;auth:0;dest:I;ENG:(910001)(944506478)(944626604)(920097)(930097)(140003); X-Microsoft-Antispam-Message-Info: iNblYtpaaRYW4CGI5N+wvGlROhUlK401B1dfe/SjOn+1Z1NtsQaw61ZJptQ7r+kSGq2WyJBxrTSuk7a/a3E7504Tn1BsU6OGddOOaiRcvuxaAA0/aBKX6pCh90Ood7FlQO5fTEglD68JpkyD/IujZnvXJa4fAw84AHtyzjVdVuy0ILoBzmwM2yMxyeaSW+zQ2ygUYq5ko0NTgqaItjYIcmahV8G6IfhOIBvpKC6ZbyjP42OV1E+yzkJ2ch6VlzNK1ZwuUu79xYxaL+4oS6f4FcO+CiW3BK/ZBwTtfip9SxRYAXIFBHGTJRRZEKYO8HyWr9e5uaRQY4ea8LdYtBWl2E3nz6onPzbBeDJQI/29lsu0xaVzkncHmFyLbiOh6vNw4bm3LM4HMfMqwIjZEp02wZMMEvKZxDPAZKyQ9G8qlElTueGaunTVJOxpGHqFsg2zBL1H3gPeA/OEbcmCXlMAEZ5ohMM2IK7Zf0epf6BllRR3Opa6f/CR6A92o9xftpG/EKOphLUUGEE43KrJHAw4VzZSzDjDPQK01eqADz5W0Th9meJM+qet+2q4cCuMEMw90V9gh003keVzrMBZiGCzVsj8LEKJFDtqf/ReO+L9CEL8c4/Nus5ETG1gpjaUEvmt4zKmKc1gokAxqCmyklOYdZcUhDsZhi1bcH7HE0+hPC/CvTe0oqYHdMYCTG6iiZ+MJ1aLvSuMAwNDUBFirFLygB8WROw23oB1XyvN9QhaWRyDJ9XCoy3lmk6o0gdGJD/n9/ZxaAe4mXwWNbNp+I3Ar0OlIR9j9o0X7L5+Lu0qGZQPErhikavDF9Mrv9OEs6HzMgHXJrTe2fqOWpvUAUUMbhiB92jL7S7h245zPjzIBIZl+VcUx//hJDAqxvpjlhfB4St1IG+E3bSvVlPBj8Ex7H1GiSw1VSMjIL7InqBwawchvv/L6nARWBs1fqIzAxVC18Y84Z43RtEItnbSa9XUI4rucxnODdKvaDIiMlugzuYmhtcsDH8R2xbeYRGDmFpb17YVCR+mB7OesXXPT7CsST1y1Wl3kT2OUlmn0f82S7ZiOxhbkn/YRXGYC07dt+fNIoKzLEug3L6U4AR+Y6A5KHac8uuPpdzehGd1qP0WB/crfa24Hw60jjp496GLKE3gNCDRZCmz1TQtwUsFuHRehFYyyejocjTaWq6FYGzIphBV3VAoTcPut/gFOffW8EfOLRADGXcOjGnfjJaGESty2Pug21V5BCdC3B/fGBgw3rlT/e49FPW9LEwx15tMH56sm42eEhDEVe6xso5nUQE5OMsddCfbR+WS2ToAgZIXQnfoaPWigp6rIN5tjbRRCyIm4zbnyUp9LFdbl73R6e5VivB6quh03aW5TSUbgRe/cL+/Uc7XLUapBPq0xyPk78GSfPZc/P4X+f/CTJ4KtE8Q033dApvj1+Ye+yx/4VHpwcm+bWK9v78JILfn65cf6GF9jXFsbbfRVI4J3vBbr3EI4vm8H2zOcKKWnrm6tqQc7zH4Jbbr974zIqVHNXigtmrCWFNm3ELTZY2ImnvGI3xYY/xRynu8XB6FrAoKaHvc4zcueEWx58WL68b7fY8/HzPbEGK8vz634oFnV/mlJDLUUYMMG2y8n7gi+Qe+sNcPjak7D7y+qoDn9W269pxqFZ/MZVxepqFWjAcCsqhjqpoJDk5BCZaDXUr+8H0IqdQPmEGV6o5mzMCVqtjgJX8hYM1Ce75/LWAFESHY+RrZ0IRqDFN8oruyAcebQXcqnPI7RgUyvaSZ1w4VhxEl5L9bdE0ITH6Ua0e3nFHQ2zEGpz61MIXTM1xY9yS6TWWykXurEVzudHUpogtMyZPnMGKfkncXsRfCKTyHFwjCFGAm/pkTZrizS0MbS8g7i3lQ0EHwtzxDRey6M9tm/DRc5C7Mzjhx80bmykbOrUiQuT/MZaLtwq5WitO+BJUPVttS972ab3XxtRwpmT4r33D4DA2KSVW13JT3XIfx2hd6jkEeBs9xFUi0jrLRHBzqHMlhvlnsQUcKWcDGzcFdhuWYFQ+mjDDq6PKqXVjUd/kZw5UaD8tud3TcTmLVjQjf1zoQ/IWuhiO/s7bSeTY1zm/tP5o2HAIbILzwvqGkoM4zE4WhW64tQQ==

Resource

win10v2004-20240704-en

windows10-2004-x64

6 signatures

150 seconds

General

Target

http://Received: from SJ0PR16MB5014.namprd16.prod.outlook.com (2603:10b6:a03:434::13) by SJ0PR16MB4206.namprd16.prod.outlook.com with HTTPS; Thu, 4 Jul 2024 20:44:42 +0000 Received: from CH2PR05CA0043.namprd05.prod.outlook.com (2603:10b6:610:38::20) by SJ0PR16MB5014.namprd16.prod.outlook.com (2603:10b6:a03:434::13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7698.30; Thu, 4 Jul 2024 20:44:39 +0000 Received: from CH3PEPF00000016.namprd21.prod.outlook.com (2603:10b6:610:38:cafe::4c) by CH2PR05CA0043.outlook.office365.com (2603:10b6:610:38::20) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7762.12 via Frontend Transport; Thu, 4 Jul 2024 20:44:39 +0000 Authentication-Results: spf=fail (sender IP is 205.220.182.217) smtp.mailfrom=mail.pegasotecnologiacfdi.mx; dkim=fail (signature did not verify) header.d=pegasotecnologiacfdi.mx;dmarc=none action=none header.from=pegasotecnologiacfdi.mx;compauth=softpass reason=201 Received-SPF: Fail (protection.outlook.com: domain of mail.pegasotecnologiacfdi.mx does not designate 205.220.182.217 as permitted sender) receiver=protection.outlook.com; client-ip=205.220.182.217; helo=mx0b-0020d203.pphosted.com; Received: from mx0b-0020d203.pphosted.com (205.220.182.217) by CH3PEPF00000016.mail.protection.outlook.com (10.167.244.121) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.7762.1 via Frontend Transport; Thu, 4 Jul 2024 20:44:38 +0000 Received: from pps.filterd (m0297917.ppops.net [127.0.0.1]) by mx0a-0020d203.pphosted.com (8.18.1.2/8.18.1.2) with ESMTP id 464Dr0kW019478 for <[email protected]>; Thu, 4 Jul 2024 20:44:38 GMT Authentication-Results-Original: ppops.net; spf=pass smtp.mailfrom=bounces+1485527-3b8d-rulloa=sempraglobal.com.mx@mail.pegasotecnologiacfdi.mx; dkim=pass header.d=pegasotecnologiacfdi.mx header.s=s1; dmarc=none Received: from o2.o1.mail.pegasotecnologia.com (o2.o1.mail.pegasotecnologia.com [167.89.70.139]) by mx0a-0020d203.pphosted.com (PPS) with ESMTPS id 405gpg1eb1-1 (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128 verify=NOT) for <[email protected]>; Thu, 04 Jul 2024 20:44:38 +0000 (GMT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=pegasotecnologiacfdi.mx; h=mime-version:from:subject:content-type:content-transfer-encoding:to: cc:content-type:from:subject:to; s=s1; bh=P4dN6KewCYgVam5Pf2voFia13Xxy8sE28nWd8mMd3n8=; b=B+IpD3U1/PyyKdQWYxLkZKkuj0spSFd74C5u2apWjlvmZzaz++utF8yrQ/mo/vf9PC+O 84sk8OvkF/ufP55+oC+0+qLjx9XJSNblScjFNivSVtFrTCG5F4kM+9yG5hHyTvVKvq3VOV epny7RuC/GG0fQWTpoQJpGeIhnW2biddSd9k+h4EFp57Wk9CghcLt3kQWdavMxJm3kA5dC 221ad8PuX6IsMhIVKld/Fkos2trygUlLb11QNG7RY0YdM3m95Kv83mQz61sKiINW3yMqds blp/7XgSGyfdZWAYBYxBMf46TN3wxU/4hf/yZMGvZl7mi2Htf/lLYbUJqkthwc+Q== Received: by filterdrecv-canary-8db87f47d-lxv88 with SMTP id filterdrecv-canary-8db87f47d-lxv88-1-668709B5-9 2024-07-04 20:44:37.197807138 +0000 UTC m=+3734975.720885118 Received: from smtps01.pegasotecnologiacfdi.mx (unknown) by geopod-ismtpd-9 (SG) with ESMTP id M78ePnbKTgeuOp4vY7TPNQ for <[email protected]>; Thu, 04 Jul 2024 20:44:37.074 +0000 (UTC) Received: from wn1ldwk0002A1 (unknown [70.37.70.227]) (using TLSv1.2 with cipher DHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by smtps01.pegasotecnologiacfdi.mx (Postfix) with ESMTPSA id 8C6F018000169 for <[email protected]>; Thu, 4 Jul 2024 15:44:36 -0500 (CDT) From: "[email protected]" <[email protected]> Date: Thu, 04 Jul 2024 20:44:37 +0000 (UTC) Message-ID: <M78ePnbKTgeuOp4vY7TPNQ@geopod-ismtpd-9> X-SG-EID: u001./ZSGvP6UBeFZx/O3MNYR65yn7haMbWC4gq3ZdLUJP5pStGv5/InmH/OzDTMs4uZswNYRHQsGSWf2m+TZVRHS7Uqxj68xq3TDnqqD7sKM5k8TZkRj3AVmUh2kl+8MgEgHNusMosvPCZP2hwGi5xBWpo/BQMrVpuzkyAH+v2Wuo3ADpi5K1uqp72w2m+QGneukYXdAtvnlwzM+u4EVyV/lVsXvX29OHmAE6qPoAJ/gTqocmMsNlF48VV2M8briiMQuBV5hTlrfpI8PPP64gnM+MzrNAW9kByHW/n+pAOmtNRdh3tuieNYgm/f+3kgnkIf7aBTxXvDcFGF59mnCF3Kvlg== To: [email protected] X-Entity-ID: u001.k50FNhlPlu5I+8AO3/DOaQ== X-CLX-Shades: MLX X-CLX-Response: 1TFkXGR4aEQpMehcaEQpZRBdrEl9aYHx7U3IZaREKWFgXYWYfTHh5SR9HekE RCnhOF2B9HlxyQHlpGXt9EQp5TBdme0hEbHxTeEF4WBEKQ0gXBxgcHBEKQ1kXBxkfHBEKQ0kXGg QaGhoRCllNF2dmchEKWUkXGnEaEBp3BhkYGnEbHxMaEBp3BhgaBhoRClleF2xseREKSUYXWU9HW lhLX1laTXUZdUJFWV5PThEKSUcXeE9NEQpDThd9fV9gR2V8ZH1zU3hTY38eex9yHU8fbksHGVxj ZRNIYBEKWFwXHwQaBBkcHAUbGgQbGxoEGxkeBBkfEBseGh8aEQpeWRdOXGEfeBEKTVwXHhkeEQp MWhdpeG1NXU0RCkVZF3trEQpMXxd6BQUFBQUFBQUFQxEKTEYXb2tra2trEQpCTxdtZnB7cGN5Rx 0ZHhEKQ1oXGxwdBBITBB0aBBsZExEKQl4XGxEKQlwXGxEKXk4XGxEKQksXYH0eXHJAeWkZe30RC kJJF2B9HlxyQHlpGXt9EQpCRRdpZU9LBX1ISVhfaxEKQk4XYH0eXHJAeWkZe30RCkJMF2FmH0x4 eUkfR3pBEQpCbBdhZh9MeHlJH0d6QREKQkAXekdMZXBDQG59WmIRCkJYF2tGZGBFTn5ZQ0FMEQp aWBcYEQp5QxdpSW9AWkJmAVl7EhEKWUsXGR8YHREKcGcXYl9tXVJfSRNLRGYQBxkaEQpwaBd6TH kYZGttX3BTZhAcGBEKcGgXaGwdeU8dRHlgT1MQGhEKcGgXbWYdG01CbGBAUh4QGhEKcGgXa0h9Q UZCRmZDG3MQGhEKcGgXb0d6G1h/ZgUbX0MQGhEKcGgXek1hWVgfREFdYRgQGhEKcGgXYkx7b3NB aH9vXBsQGhEKcGgXYR9MARJdTx5bbWAQGhEKcH0XaW18HFpcRQF8b34QGhEKcH8XYn5lcAV+Umh gGB4QGxoaEQpwXxdlQxN5UhtGZGBuEhAbGhoRCnBsF2tcGx8cYBJmG3BnEBMbEQpwQxdlZG1gf3 MfbBkdXBAaEQptfhcaEQpYTRdLESA= X-Authority-Analysis: v=2.4 cv=QokM3kyd c=1 sm=1 tr=0 ts=668709b6 b=1 cx=c_pps a=OrPWAeeOzBtKMa4JfuKSlw==:117 a=OrPWAeeOzBtKMa4JfuKSlw==:17 a=8nJEP1OIZ-IA:10 a=uURe4OHTBiYA:10 a=4kmOji7k6h8A:10 a=7j0FZ4iXMVMA:10 a=HQJxeQV1AAAA:8 a=GIdvG0K6AAAA:8 a=vnKOHqlvAAAA:8 a=Dyjd7jq1DtKg-PbLfQIA:9 a=CrxE1-Zbx3U2WEbn:21 a=lqcHg5cX4UMA:10 a=wPNLvfGTeEIA:10 a=vzwFdDiLgEUtzLhjz8Uz:22 a=drl8tA7rTC04ra35RYlP:22 a=9ckQexE9skvaovCeI8Gk:22 X-Proofpoint-ORIG-GUID: WWuJmOVNWYyRyIU4Q5X7e5Da-3vIO9bJ X-Proofpoint-GUID: WWuJmOVNWYyRyIU4Q5X7e5Da-3vIO9bJ MIME-Version: 1.0 X-Proofpoint-Banner-Trigger: inbound Content-Type: text/html; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable Subject: [EXTERNO] Comprobantes Fiscales Digitales por Internet X-Proofpoint-Virus-Version: vendor=baseguard engine=ICAP:2.0.272,Aquarius:18.0.1039,Hydra:6.0.680,FMLib:17.12.28.16 definitions=2024-07-04_17,2024-07-03_01,2024-05-17_01 X-Sempra-Spam-Reason: safe Return-Path: bounces+1485527-3b8d-rulloa=sempraglobal.com.mx@mail.pegasotecnologiacfdi.mx X-MS-Exchange-Organization-ExpirationStartTime: 04 Jul 2024 20:44:39.1218 (UTC) X-MS-Exchange-Organization-ExpirationStartTimeReason: OriginalSubmit X-MS-Exchange-Organization-ExpirationInterval: 1:00:00:00.0000000 X-MS-Exchange-Organization-ExpirationIntervalReason: OriginalSubmit X-MS-Exchange-Organization-Network-Message-Id: fc87d767-ad8e-4674-2f29-08dc9c6a1fa6 X-EOPAttributedMessage: 0 X-EOPTenantAttributedMessage: 4f04fe57-837f-4b9d-9767-b066e63799b9:0 X-MS-Exchange-Organization-MessageDirectionality: Incoming X-MS-PublicTrafficType: Email X-MS-TrafficTypeDiagnostic: CH3PEPF00000016:EE_|SJ0PR16MB5014:EE_|SJ0PR16MB4206:EE_ X-MS-Exchange-Organization-AuthSource: CH3PEPF00000016.namprd21.prod.outlook.com X-MS-Exchange-Organization-AuthAs: Anonymous X-MS-Office365-Filtering-Correlation-Id: fc87d767-ad8e-4674-2f29-08dc9c6a1fa6 X-MS-Exchange-AtpMessageProperties: SA|SL X-EOP-Direct-Delivery: True X-MS-Exchange-Organization-SCL: 1 X-Microsoft-Antispam: BCL:3;ARA:13230040|13012899012|5062899012|3072899012|13102899012|12012899012|3092899012|69100299015|2092899012|29132699027|5073199012; X-Forefront-Antispam-Report: CIP:205.220.182.217;CTRY:US;LANG:es;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:mx0b-0020d203.pphosted.com;PTR:mx0b-0020d203.pphosted.com;CAT:NONE;SFS:(13230040)(13012899012)(5062899012)(3072899012)(13102899012)(12012899012)(3092899012)(69100299015)(2092899012)(29132699027)(5073199012);DIR:INB; X-MS-Exchange-CrossTenant-OriginalArrivalTime: 04 Jul 2024 20:44:38.7937 (UTC) X-MS-Exchange-CrossTenant-Network-Message-Id: fc87d767-ad8e-4674-2f29-08dc9c6a1fa6 X-MS-Exchange-CrossTenant-Id: 4f04fe57-837f-4b9d-9767-b066e63799b9 X-MS-Exchange-CrossTenant-AuthSource: CH3PEPF00000016.namprd21.prod.outlook.com X-MS-Exchange-CrossTenant-AuthAs: Anonymous X-MS-Exchange-CrossTenant-FromEntityHeader: Internet X-MS-Exchange-Transport-CrossTenantHeadersStamped: SJ0PR16MB5014 X-MS-Exchange-Transport-EndToEndLatency: 00:00:03.3072251 X-MS-Exchange-Processed-By-BccFoldering: 15.20.7741.016 X-Microsoft-Antispam-Mailbox-Delivery: ucf:0;jmr:0;auth:0;dest:I;ENG:(910001)(944506478)(944626604)(920097)(930097)(140003); X-Microsoft-Antispam-Message-Info: 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

Sharing

General

Malware Config

Signatures

Files