Analysis report for http://www.ladyoscaroverview.com

Sample Overview

URL http://www.ladyoscaroverview.com
Domainwww.ladyoscaroverview.com
Analysis Started 2013-07-05 00:50:58
Report Generated 2013-07-05 00:51:13
Jsand version 2.3.6

See the report for domain www.ladyoscaroverview.com.

Detection results

DetectorResult
Jsand 2.3.6 benign

Exploits

No exploits were identified.

Deobfuscation results

Evals

Writes

Network Activity

Requests

URL StatusContent Type
http://www.ladyoscaroverview.com/ 200text/html

Redirects

FromTo
http://ad.yieldmanager.com/imp?Z=728x90%2c468x60&e=286128&S=816799066&I=ROS&T=3&_salt=3839409364&B=10&u=http%3A%2F%2Fwww.ladyoscaroverview.com%2F%3Ffp%3DF6wN0phTM42e%252BYauH0TMCLEBfbG7LfoL2OEFVLCVO2yGFWM4R57uNeaSsyTBirZrL3knG%252BbAttFLK3oGgexc4A%253D%253D%26prvtof%3DIkG08jRl0GBN3HIJ63Vt2dRJZ21LDCn54BNY56lF0ZM%253D%26poru%3DrEW8jBqdMImRh%252FRwbumnLhBZqZVz9&r=0&H=http%3A%2F%2Fwww.ladyoscaroverview.com%2F%3Ffp%3DF6wN0phTM42e%252BYauH0TMCLEBfbG7LfoL2OEFVLCVO2yGFWM4R57uNeaSsyTBirZrL3knG%252BbAttFLK3oGgexc4A%253D%253D%26prvtof%3DIkG08jRl0GBN3HIJ63Vt2dRJZ21LDCn54BNY56lF0ZM%253D%26poru%3DrEW8jBqdMImRh%252FRwbumnLhBZqZVz9&M=3http://cookex.amp.yahoo.com/v2/cexposer/SIG=1jnl4j8br/*http%3A//ad.yieldmanager.com/imp?Z=728x90%2c468x60&e=286128&S=816799066&I=ROS&T=3&_salt=3839409364&B=10&u=http%3A%2F%2Fwww.ladyoscaroverview.com%2F%3Ffp%3DF6wN0phTM42e%252BYauH0TMCLEBfbG7LfoL2OEFVLCVO2yGFWM4R57uNeaSsyTBirZrL3knG%252BbAttFLK3oGgexc4A%253D%253D%26prvtof%3DIkG08jRl0GBN3HIJ63Vt2dRJZ21LDCn54BNY56lF0ZM%253D%26poru%3DrEW8jBqdMImRh%252FRwbumnLhBZqZVz9&r=0&H=http%3A%2F%2Fwww.ladyoscaroverview.com%2F%3Ffp%3DF6wN0phTM42e%252BYauH0TMCLEBfbG7LfoL2OEFVLCVO2yGFWM4R57uNeaSsyTBirZrL3knG%252BbAttFLK3oGgexc4A%253D%253D%26prvtof%3DIkG08jRl0GBN3HIJ63Vt2dRJZ21LDCn54BNY56lF0ZM%253D%26poru%3DrEW8jBqdMImRh%252FRwbumnLhBZqZVz9&M=3
http://cookex.amp.yahoo.com/v2/cexposer/SIG=1jnl4j8br/*http%3A//ad.yieldmanager.com/imp?Z=728x90%2c468x60&e=286128&S=816799066&I=ROS&T=3&_salt=3839409364&B=10&u=http%3A%2F%2Fwww.ladyoscaroverview.com%2F%3Ffp%3DF6wN0phTM42e%252BYauH0TMCLEBfbG7LfoL2OEFVLCVO2yGFWM4R57uNeaSsyTBirZrL3knG%252BbAttFLK3oGgexc4A%253D%253D%26prvtof%3DIkG08jRl0GBN3HIJ63Vt2dRJZ21LDCn54BNY56lF0ZM%253D%26poru%3DrEW8jBqdMImRh%252FRwbumnLhBZqZVz9&r=0&H=http%3A%2F%2Fwww.ladyoscaroverview.com%2F%3Ffp%3DF6wN0phTM42e%252BYauH0TMCLEBfbG7LfoL2OEFVLCVO2yGFWM4R57uNeaSsyTBirZrL3knG%252BbAttFLK3oGgexc4A%253D%253D%26prvtof%3DIkG08jRl0GBN3HIJ63Vt2dRJZ21LDCn54BNY56lF0ZM%253D%26poru%3DrEW8jBqdMImRh%252FRwbumnLhBZqZVz9&M=3http://ad.yieldmanager.com/imp?Z=728x90%2c468x60&e=286128&S=816799066&I=ROS&T=3&_salt=3839409364&B=10&u=http%3A%2F%2Fwww.ladyoscaroverview.com%2F%3Ffp%3DF6wN0phTM42e%252BYauH0TMCLEBfbG7LfoL2OEFVLCVO2yGFWM4R57uNeaSsyTBirZrL3knG%252BbAttFLK3oGgexc4A%253D%253D%26prvtof%3DIkG08jRl0GBN3HIJ63Vt2dRJZ21LDCn54BNY56lF0ZM%253D%26poru%3DrEW8jBqdMImRh%252FRwbumnLhBZqZVz9&r=0&H=http%3A%2F%2Fwww.ladyoscaroverview.com%2F%3Ffp%3DF6wN0phTM42e%252BYauH0TMCLEBfbG7LfoL2OEFVLCVO2yGFWM4R57uNeaSsyTBirZrL3knG%252BbAttFLK3oGgexc4A%253D%253D%26prvtof%3DIkG08jRl0GBN3HIJ63Vt2dRJZ21LDCn54BNY56lF0ZM%253D%26poru%3DrEW8jBqdMImRh%252FRwbumnLhBZqZVz9&M=3&SIG=10vubtc1h;x-cookie=5t0v9q98gphat&o=3&f=f1

ActiveX controls

Shellcode

No shellcode was identified.

Malware

Additional (potential) malware:

URLTypeHashAnalysis
http://clk.atdmt.com/go/428571547/direct;wi.720;hi.300;ai.307358798;ct.$num$/01/ &ArmClickToken=$num$ HTML document text c376103a47be7744ae39e9b38729f271
FEEDBACK

Comments