Windows Analysis Report
FW_ Complete with Docusign_ Louisiana Association of Business and Industry_pdf.msg

{
    "explanation": [
        "The email appears to be from a legitimate DocuSign domain (docusign.net) and follows standard DocuSign formatting and template",
        "The email contains expected DocuSign security features like a unique security code and proper support links",
        "The business context and addresses appear legitimate with specific details about the Louisiana Association of Business and Industry"
    ],
    "phishing": false,
    "confidence": 8,
    "generated_by_ai": false
}

{
    "date": "Mon, 02 Dec 2024 21:07:38 +0100", 
    "subject": "FW: Complete with Docusign: Louisiana Association of Business and Industry.pdf", 
    "communications": [
        "Is this legit?\n\n \n\n", 
        "From: DocuSign NA3 System <dse_NA3@docusign.net> \nSent: Monday, December 2, 2024 1:09 PM\nTo: Sam Canatella <scanatella@steamsolutions.com>\nSubject: Complete with Docusign: Louisiana Association of Business and Industry.pdf\n\n \n\nCAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you recognize the sender and know the content is safe.\n\n \n\n\t <https://docucdn-a.akamaihd.net/olive/images/2.62.0/global-assets/email-templates/email-logo.png> \n\n <https://NA3.docusign.net/member/Images/email/docInvite-white.png> \n\nLouisiana Association of Business and Industry sent you a document to review and sign. \n\n \n\n      REVIEW DOCUMENT       <https://urldefense.proofpoint.com/v2/url?u=https-3A__na3.docusign.net_Signing_EmailStart.aspx-3Fa-3D601beb6c-2D990f-2D4b61-2D873f-2D03e1c0fa31a4-26etti-3D24-26acct-3Dc807c6cc-2D9db9-2D4dad-2D9dd9-2D3bdafd75ef87-26er-3Dee32b569-2Ddc9c-2D4902-2D8203-2D6d9eb3fe325b&d=DwMFaQ&c=euGZstcaTDllvimEN8b7jXrwqOf-v5A_CdpgnVfiiMM&r=_s-Im0evCJZzZ6DANeC7JdcMDtVmt7y_MjRsI4BSh6Q&m=ELN3G4IJB9ezIYN0Qb5jidwZVRw2WjDo0arwmkkotIYh_RAUScXASOWxa5vU2nxv&s=NVSdFxrZLAueY3vV1c1daJzFJZPHXaoyCW5ix3v0yCA&e=> \n\n <https://NA3.docusign.net/Member/image.aspx?i=logo&l=5c635e39-adbe-4f88-a6a9-1c0fc40379a5> \n\nLouisiana Association of Business and Industry \n\nJcotto@rwtowne.com <mailto:Jcotto@rwtowne.com> \n\nLouisiana Association of Business and Industry\n500 Main Street \nBaton Rouge, LA 70801\n\n\t\nDo Not Share This Email\nThis email contains a secure link to Docusign. Please do not share this email, link, or access code with others.\n\nAlternate Signing Method\nVisit Docusign.com, click 'Access Documents', and enter the security code:\n601BEB6C990F4B61873F03E1C0FA31A43 \n\nAbout Docusign\nSign documents electronically in just minutes. It's safe, secure, and legally binding. Whether you're in an office, at home, on-the-go -- or even across the globe -- Docusign provides a professional trusted solution for Digital Transaction Management. \n\nQuestions about the Document?\nIf you need to modify the document or have questions about the details in the document, please reach out to the sender by emailing them directly.\n\nStop receiving this email\nReport this email <https://urldefense.proofpoint.com/v2/url?u=https-3A__protect.docusign.net_report-2Dabuse-3Fe-3DAUtomjpFak9GlbPL0zFFi10aJHhQCAYY4fACN-5F3KO-2Dj9wj-5FrOkQCbSeOhAlEPZ3LE47RSrH1JKc0yrXx1SxdD1LO-5FJDX-2DvdQQEo-2DC444yFyfoI5v1-5F90FuiTEtSuCUFXRgIEY3JtDPlR74lKZ4jI8L-5F6nSLico6d9VhOr7DGi-5FgFg9wsZ3jeZEZtTdZpUF15HAAndo7aIlnpfp-2Djc0jM17X8Kr-2DPwzEEWzcPtTUEpeccTRgHNsaX12JGGqc3t-5FL52Zvt-5F58eVIWurS8bnuqk2JRfL-2DlzfqEUQGIIkVAEeCNgo6d1eFmSA4SEbGprhKLko52PI6PNOlhL6JYyZh4USq1I0S3rwpqvq1MjzqQtuNCAbnZLP8LhzKonLSpP9cqGHJfdkMK9JXS7MZJa0xw5MjSrTs5knd2y2WCSB3oedUzkIy2nbl3ll4LOcDavGx7nNpB1n7u3N0pNly2t1tlc2Tc-26lang-3Den&d=DwMFaQ&c=euGZstcaTDllvimEN8b7jXrwqOf-v5A_CdpgnVfiiMM&r=_s-Im0evCJZzZ6DANeC7JdcMDtVmt7y_MjRsI4BSh6Q&m=ELN3G4IJB9ezIYN0Qb5jidwZVRw2WjDo0arwmkkotIYh_RAUScXASOWxa5vU2nxv&s=GNLsKCBR1ZYzyLliSm48oheBTqgIhkY2v3MEjh74Du8&e=>  or read more about Declining to sign <https://urldefense.proofpoint.com/v2/url?u=https-3A__support.docusign.com_en_guides_Declining-2Dto-2Dsign-2DDocuSign-2DSigner-2DGuide&d=DwMFaQ&c=euGZstcaTDllvimEN8b7jXrwqOf-v5A_CdpgnVfiiMM&r=_s-Im0evCJZzZ6DANeC7JdcMDtVmt7y_MjRsI4BSh6Q&m=ELN3G4IJB9ezIYN0Qb5jidwZVRw2WjDo0arwmkkotIYh_RAUScXASOWxa5vU2nxv&s=x539rfi9s8_lgd5MerQEZ649dIUPbU9Ibmk3pr8jyfk&e=>  and Managing notifications <https://urldefense.proofpoint.com/v2/url?u=https-3A__support.docusign.com_en_articles_How-2Ddo-2DI-2Dmanage-2Dmy-2Demail-2Dnotifications&d=DwMFaQ&c=euGZstcaTDllvimEN8b7jXrwqOf-v5A_CdpgnVfiiMM&r=_s-Im0evCJZzZ6DANeC7JdcMDtVmt7y_MjRsI4BSh6Q&m=ELN3G4IJB9ezIYN0Qb5jidwZVRw2WjDo0arwmkkotIYh_RAUScXASOWxa5vU2nxv&s=f85FT_5cr8CnsDiXE895wO-A6IsXrNkWPzmi93xYg38&e=> .\n\nIf you have trouble signing, visit \"How to Sign a Document <https://urldefense.proofpoint.com/v2/url?u=https-3A__support.docusign.com_s_articles_How-2Ddo-2DI-2Dsign-2Da-2DDocuSign-2Ddocument-2DBasic-2DSigning-3Flanguage-3Den-5FUS-26utm-5Fcampaign-3DGBL-5FXX-5FDBU-5FUPS-5F2211-5FSignNotificationEmailFooter-26utm-5Fmedium-3Dproduct-26utm-5Fsource-3Dpostsend&d=DwMFaQ&c=euGZstcaTDllvimEN8b7jXrwqOf-v5A_CdpgnVfiiMM&r=_s-Im0evCJZzZ6DANeC7JdcMDtVmt7y_MjRsI4BSh6Q&m=ELN3G4IJB9ezIYN0Qb5jidwZVRw2WjDo0arwmkkotIYh_RAUScXASOWxa5vU2nxv&s=F-hxCpqn5HTCAj25ZmYM4_nbNFTxc8dC7PnON-3btdA&e=> \" on our Docusign Support Center <https://urldefense.proofpoint.com/v2/url?u=https-3A__support.docusign.com_&d=DwMFaQ&c=euGZstcaTDllvimEN8b7jXrwqOf-v5A_CdpgnVfiiMM&r=_s-Im0evCJZzZ6DANeC7JdcMDtVmt7y_MjRsI4BSh6Q&m=ELN3G4IJB9ezIYN0Qb5jidwZVRw2WjDo0arwmkkotIYh_RAUScXASOWxa5vU2nxv&s=oHiMJ6xO12kXB4OJaer0dYmQGB4DaB63o-XiuulpzDg&e=> , or browse our Docusign Community <https://urldefense.proofpoint.com/v2/url?u=https-3A__community.docusign.com_esignature-2D111-3Futm-5Fcampaign-3DGBL-5FUS-5FPRD-5FAWA-5F2405-5FCommunityCTA-26utm-5Fmedium-3Demail-26utm-5Fsource-3Dpostsend&d=DwMFaQ&c=euGZstcaTDllvimEN8b7jXrwqOf-v5A_CdpgnVfiiMM&r=_s-Im0evCJZzZ6DANeC7JdcMDtVmt7y_MjRsI4BSh6Q&m=ELN3G4IJB9ezIYN0Qb5jidwZVRw2WjDo0arwmkkotIYh_RAUScXASOWxa5vU2nxv&s=q1NE1OHWnIN_JEKjPbE39W4dWqgsZ3MjSs3U1hxnaTI&e=>  for more information.\n\nDownload the Docusign App <https://urldefense.proofpoint.com/v2/url?u=https-3A__www.docusign.com_features-2Dand-2Dbenefits_mobile-3Futm-5Fcampaign-3DGBL-5FXX-5FDBU-5FUPS-5F2211-5FSignNotificationEmailFooter-26utm-5Fmedium-3Dproduct-26utm-5Fsource-3Dpostsend&d=DwMFaQ&c=euGZstcaTDllvimEN8b7jXrwqOf-v5A_CdpgnVfiiMM&r=_s-Im0evCJZzZ6DANeC7JdcMDtVmt7y_MjRsI4BSh6Q&m=ELN3G4IJB9ezIYN0Qb5jidwZVRw2WjDo0arwmkkotIYh_RAUScXASOWxa5vU2nxv&s=-pX5hDLOsChC-Wf0gzbGNlq82PWiVUKBHDQeJBndR4U&e=> \n\nThis message was sent to you by Louisiana Association of Business and Industry who is using the Docusign Electronic Signature Service. If you would rather not receive email from this sender you may contact the sender with your request.\n\n\t\n\n \n\n"
    ], 
    "from": "Sam Canatella <scanatella@steamsolutions.com>", 
    "to": "Cameron Gambrell <cgambrell@steamsolutions.com>", 
    "attachements": []
}

{
  "contains_trigger_text": true,
  "trigger_text": "REVIEW DOCUMENT",
  "prominent_button_name": "REVIEW DOCUMENT",
  "text_input_field_labels": "unknown",
  "pdf_icon_visible": false,
  "has_visible_captcha": false,
  "has_urgent_text": false,
  "has_visible_qrcode": false,
  "contains_chinese_text": false
}

{
  "brands": [
    "Docusign"
  ]
}

{
  "contains_trigger_text": true,
  "trigger_text": "Web Site Has Been Blocked!",
  "prominent_button_name": "unknown",
  "text_input_field_labels": "unknown",
  "pdf_icon_visible": false,
  "has_visible_captcha": false,
  "has_urgent_text": false,
  "has_visible_qrcode": false,
  "contains_chinese_text": false
}

{
    "typosquatting": false,
    "unusual_query_string": false,
    "suspicious_tld": false,
    "ip_in_url": false,
    "long_subdomain": false,
    "malicious_keywords": false,
    "encoded_characters": false,
    "redirection": false,
    "contains_email_address": false,
    "known_domain": true,
    "brand_spoofing_attempt": false,
    "third_party_hosting": false
}

URL: https://urldefense.proofpoint.com

{
  "brands": [
    "Proofpoint"
  ]
}

{
    "typosquatting": false,
    "unusual_query_string": false,
    "suspicious_tld": false,
    "ip_in_url": false,
    "long_subdomain": false,
    "malicious_keywords": false,
    "encoded_characters": false,
    "redirection": false,
    "contains_email_address": false,
    "known_domain": true,
    "brand_spoofing_attempt": false,
    "third_party_hosting": false
}

URL: https://proofpoint.com