Translate

1/05/2014

Category MALICIOUS DOMAIN:
internetdo.com (with Snapchat Breach Report)
plus olafnyu.advidwebsite.com
Malicious Redirection & HTML as PUA (Potentially Unwanted Application)


MALICIOUS DOMAIN:
internetdo.com
  • https://www.virustotal.com/de/url/7053a08f1ee1404b6b2a9e963f09fd60eed927728fa6498d137128d8bd126ff7/analysis/1388934257/
SPECIFIC LINK:
internetdo.com/2014/01/reports-millions-of-snapchat-usernames-phone-numbers-leaked
  • https://www.virustotal.com/de/url/dc9e72e20dced1c12f94750c70112eaa108bafc625c18a696571dbb2644596b0/analysis/1388932937/
HTML = PUA
  • https://www.virustotal.com/de/file/890a410a9b772245d228d96fbccd15fbeb7f3b384ad2605f9198a442e8e1be61/analysis/1388933443/
http_inspect: SIMPLE REQUEST
http_inspect: UNKNOWN METHOD
  • https://urlquery.net/report.php?id=8703868
REFERENCE: http://jsunpack.jeek.org/?report=b68af5b8aaab25e4d8e668c55ed3619e3d354b40

internetdo.com REDIRECTS TO MALICIOUS SITE (URL):

DOMAIN:
olafnyu.advidwebsite.com
  • https://www.virustotal.com/de/url/5ed8ea843a5e04eae90f73925ef9665560cdab1a9dfd417371be5d54bd96bf16/analysis/1388934808/
SPECIFIC MALICIOUS LINK:
olafnyu.advidwebsite.com/ncd/index.php?uri=oklm.com/vdd/1154870/same_silky_panties_on_wife...she_likes_them.html&id=39475&f=1
  • https://www.virustotal.com/de/url/181bdd3c8b1a480f40123d18993a024ad7d52b0ca73ff6113264a7449cceee59/analysis/
  • https://urlquery.net/report.php?id=8704038
---> Goes to
us-st.xhamster.com
  • https://www.virustotal.com/de/url/54464a87b6fc44e52eea5e5a014f2b373b5ab64a94fdfd92c450e46d41c6027c/analysis/1388936555/
OTHER URLs (DOMAINS) INVOLVED:
bdv.bidvertiser.com
  • https://www.virustotal.com/de/url/c5269620ca2b75c9bb0a97fb8ca65791103f1375bffc9ca3316930eadcf5f2ec/analysis/1388935993
cdn.hyperpromote.com/slclib800x440.js
  • https://www.virustotal.com/de/url/62cd1d9ce7051354066da0403d619aa5b3a4dc7e5ea686df462b32d319f64df1/analysis/

Keine Kommentare:

Kommentar veröffentlichen