Analysis report for http://www.free-tv-video-online.me/

Sample Overview

URL http://www.free-tv-video-online.me/
Domainwww.free-tv-video-online.me
Analysis Started 2012-08-14 11:11:24
Report Generated 2012-08-14 11:51:45
Jsand version 2.3.4

See the report for domain www.free-tv-video-online.me.

Detection results

DetectorResult
Jsand 2.3.4 benign

Exploits

No exploits were identified.

Deobfuscation results

Evals

Writes

Network Activity

Requests

URL StatusContent Type
http://www.free-tv-video-online.me/ 200text/html
http://www.free-tv-video-online.me/resources/codebase/dhtmlxcommon.js 200application/x-javascript
http://www.free-tv-video-online.me/resources/codebase/dhtmlxcombo.js 200application/x-javascript
http://www.free-tv-video-online.me/resources/codebase/ext/dhtmlxcombo_extra.js 200application/x-javascript
http://www.google-analytics.com/ga.js 200text/javascript
about:blank 200text/html
http://supremeadserver.com/www/delivery/afr.php?zoneid=1&cb=INSERT_RANDOM_NUMBER_HERE 200text/html
http://ad.yieldmanager.com/st?ad_type=iframe&ad_size=160x600&section=3423352&pub_url= 200text/html
http://ad.yieldmanager.com/imp?Z=160x600&u=&s=3423352&T=3&_salt=3637818633&B=10&r=0 302text/html
http://cookex.amp.yahoo.com/v2/cexposer/SIG=12nkuq47f/*http%3A//ad.yieldmanager.com/imp?Z=160x600&u=&s=3423352&T=3&_salt=3637818633&B=10&r=0 302text/html
http://ad.yieldmanager.com/imp?Z=160x600&u=&s=3423352&T=3&_salt=3637818633&B=10&r=0&SIG=10v9eqd9p;x-cookie=076eio982y7ug&o=3&f=qr 200application/x-javascript
http://trpxl.com/px.js 200application/javascript
http://ad.yieldmanager.com/imp?Z=160x600&u=&s=3423352&T=3&_salt=804380977&B=10&r=0 200application/x-javascript
http://supremeadserver.com/www/delivery/afr.php?zoneid=3&cb=INSERT_RANDOM_NUMBER_HERE 200text/html
http://ad.yieldmanager.com/st?ad_type=iframe&ad_size=300x250&section=3423352&pub_url= 200text/html
http://ad.yieldmanager.com/imp?Z=300x250&u=&s=3423352&T=3&_salt=3501132739&B=10&r=0 200application/x-javascript
http://content.yieldmanager.edgesuite.net/atoms/98/94/ae/d7/9894aed7064503bc3ea1da8068614f24.swf?clickTag=http%3A%2F%2Fad%2Eyieldmanager%2Ecom%2Fclk%3F3%2CeJydzV1vgjAUBuBfwx0xh5ZWFrKLbsUNp%2DgQtrAbA9LxISiBGtRfv6Jku9%2Dbk%2Dbk6WmPgW0QWABJCElpOjUTsA38gOg0RhRSHWzbNqhFLRNM0P3%2DnbHXzPLYc%2DLOM3bLG2pXbMyN3Hu%2EtoaTc9cpN%2E2dkgjW4%2DQLho79P3xDzuHYq33q%2E4xbbF%2E4dF7un%2E7GHBSVH5XH83zxGSKPO3IZzKrlxiiigPWLwK%2D9IDS%2EAhdWQZ5H2e%2ELR13PpWw0zDQ0UxWnk0shqrSOD3Em2snuWCvtpIbV1VZeGqFhXny3cS00RBV1xXUgDHBGBJR1YieL42EwE2FMkLLmlGxPbaXsB%2DBocG4%3D%2C 200application/x-shockwave-flash
http://ad.yieldmanager.com/imp?Z=300x250&u=&s=3423352&T=3&_salt=2317168142&B=10&r=0 200application/x-javascript
http://content.yieldmanager.edgesuite.net/atoms/00/97/aa/8c/0097aa8cfa45a251e42d2d390c683bb.swf?clickTag=http%3A%2F%2Fad%2Eyieldmanager%2Ecom%2Fclk%3F3%2CeJydjVtvgkAQhX8Nb8Qss9wM6cOaxdYGEAq0wRezXERE1MASpL%2D%2Di5L2vSeTycl35qJgCzJmHFSTIabkOTJ0S8FL0A0GyxRkZFkWxoqhqpqGQP4YAkLeStMjK2PhmuQhp3G2ZFY5tc3T%2D4%2Dc0o19CocnShPkz5M9jzvyf9FQu8ezF%2E%2EE%2EZKaxB%2DP%2DvupXv2N2dijMWxfg8H5isGjNnej9dkNlcqjn7UTZeouyms3SsYEEmUX%2EG6%2DyPKR85uEiQRrUSxfjFVxzht2YWXRLrJrI2jHJSyiPR9vhYRpdWhZU0igC9RV3xPCCN1BQ4J1Rcar62ViKmCsgWC3Pt337VmwH07ycJA%3D%2C 200application/x-shockwave-flash
http://supremeadserver.com/www/delivery/afr.php?zoneid=4&cb=INSERT_RANDOM_NUMBER_HERE 200text/html
http://supremeadserver.com/www/delivery/afr.php?zoneid=2&cb=INSERT_RANDOM_NUMBER_HERE 200text/html

Redirects

FromTo
http://ad.yieldmanager.com/imp?Z=160x600&u=&s=3423352&T=3&_salt=3637818633&B=10&r=0http://cookex.amp.yahoo.com/v2/cexposer/SIG=12nkuq47f/*http%3A//ad.yieldmanager.com/imp?Z=160x600&u=&s=3423352&T=3&_salt=3637818633&B=10&r=0
http://cookex.amp.yahoo.com/v2/cexposer/SIG=12nkuq47f/*http%3A//ad.yieldmanager.com/imp?Z=160x600&u=&s=3423352&T=3&_salt=3637818633&B=10&r=0http://ad.yieldmanager.com/imp?Z=160x600&u=&s=3423352&T=3&_salt=3637818633&B=10&r=0&SIG=10v9eqd9p;x-cookie=076eio982y7ug&o=3&f=qr

ActiveX controls

Shellcode

No shellcode was identified.

Malware

No additional malware was retrieved.

FEEDBACK

Comments