The HookAds malvertising campaign | Malwarebytes Labs
Tags
| maec-delivery-vectors: | Watering Hole |
| attack-pattern: | Domains - T1583.001 Domains - T1584.001 Ip Addresses - T1590.005 Malvertising - T1583.008 Malware - T1587.001 Malware - T1588.001 Server - T1583.004 Server - T1584.004 |
Common Information
| Type | Value |
|---|---|
| UUID | dbc7ce07-6945-4cbf-be88-108185ad8c91 |
| Fingerprint | b9b908f1bc13eefa |
| Analysis status | DONE |
| Considered CTI value | 2 |
| Text language | |
| Published | Nov. 1, 2016, midnight |
| Added to db | Jan. 18, 2023, 8:34 p.m. |
| Last updated | Sept. 4, 2024, 8:04 a.m. |
| Headline | The HookAds malvertising campaign |
| Title | The HookAds malvertising campaign | Malwarebytes Labs |
| Detected Hints/Tags/Attributes | 37/2/315 |
Source URLs
URL Provider
Attributes
| Details | Type | #Events | CTI | Value |
|---|---|---|---|---|
| Details | Domain | 2 | topdns.me |
|
| Details | Domain | 1 | adbreak.info |
|
| Details | Domain | 1 | adsads.info |
|
| Details | Domain | 1 | adsgodzilla.info |
|
| Details | Domain | 1 | adsjam.info |
|
| Details | Domain | 1 | adsloop.info |
|
| Details | Domain | 1 | adspaces.info |
|
| Details | Domain | 1 | adsplaces.info |
|
| Details | Domain | 1 | adsstock.info |
|
| Details | Domain | 1 | adsyndicate.info |
|
| Details | Domain | 1 | adszones.info |
|
| Details | Domain | 1 | adultadspace.info |
|
| Details | Domain | 1 | adultbanner.info |
|
| Details | Domain | 1 | adultmedia.info |
|
| Details | Domain | 1 | adultspace.info |
|
| Details | Domain | 1 | adzones.info |
|
| Details | Domain | 1 | bannerplant.info |
|
| Details | Domain | 1 | basicclicks.net |
|
| Details | Domain | 1 | besthookup.info |
|
| Details | Domain | 1 | betterad.info |
|
| Details | Domain | 1 | bonbonads.info |
|
| Details | Domain | 1 | bonuscpm.info |
|
| Details | Domain | 1 | bonusmedia.info |
|
| Details | Domain | 1 | boostedads.info |
|
| Details | Domain | 1 | brothermedia.info |
|
| Details | Domain | 1 | bucksdelivery.info |
|
| Details | Domain | 1 | bulbcpm.info |
|
| Details | Domain | 1 | canelonads.info |
|
| Details | Domain | 1 | chooseyourads.info |
|
| Details | Domain | 1 | clickandjoy.info |
|
| Details | Domain | 1 | clickerbonus.info |
|
| Details | Domain | 1 | clickspoint.info |
|
| Details | Domain | 1 | cometamedia.info |
|
| Details | Domain | 1 | comspacecom.info |
|
| Details | Domain | 1 | coolads.info |
|
| Details | Domain | 1 | coolbanner.info |
|
| Details | Domain | 1 | cooperloop.info |
|
| Details | Domain | 1 | cozyads.info |
|
| Details | Domain | 1 | crazycpm.info |
|
| Details | Domain | 1 | crazymedia.info |
|
| Details | Domain | 1 | deluxeads.info |
|
| Details | Domain | 1 | doodleads.info |
|
| Details | Domain | 1 | endcpm.info |
|
| Details | Domain | 1 | entropymedia.info |
|
| Details | Domain | 1 | exxtraprofit.info |
|
| Details | Domain | 1 | famousads.info |
|
| Details | Domain | 1 | fancyads.info |
|
| Details | Domain | 1 | ferroad.info |
|
| Details | Domain | 1 | ferromedia.info |
|
| Details | Domain | 1 | findsilver.info |
|
| Details | Domain | 1 | flashspots.info |
|
| Details | Domain | 1 | fortynn.info |
|
| Details | Domain | 1 | foxycpm.info |
|
| Details | Domain | 1 | freehookuper.info |
|
| Details | Domain | 1 | freshcpm.info |
|
| Details | Domain | 1 | freshmedias.info |
|
| Details | Domain | 1 | frogbigfrog.info |
|
| Details | Domain | 1 | front-page.info |
|
| Details | Domain | 1 | frontrows.info |
|
| Details | Domain | 1 | frtyd.info |
|
| Details | Domain | 1 | frtyegt.info |
|
| Details | Domain | 1 | frtyeht.info |
|
| Details | Domain | 1 | frtyff.info |
|
| Details | Domain | 1 | frtyffe.info |
|
| Details | Domain | 1 | frtyfr.info |
|
| Details | Domain | 1 | frtys.info |
|
| Details | Domain | 1 | frtysvn.info |
|
| Details | Domain | 1 | frtysx.info |
|
| Details | Domain | 1 | frtyten.info |
|
| Details | Domain | 1 | fruitsmedia.info |
|
| Details | Domain | 1 | fullpagecpm.info |
|
| Details | Domain | 1 | funnycpms.info |
|
| Details | Domain | 1 | geniusmedia.info |
|
| Details | Domain | 1 | globuscpm.info |
|
| Details | Domain | 1 | gogobanner.info |
|
| Details | Domain | 1 | goldcpm.info |
|
| Details | Domain | 1 | goldenmedias.info |
|
| Details | Domain | 1 | hookupfind.info |
|
| Details | Domain | 1 | hookupmatch.info |
|
| Details | Domain | 1 | hookupsearch.info |
|
| Details | Domain | 1 | hopstops.info |
|
| Details | Domain | 1 | jockermedia.info |
|
| Details | Domain | 1 | kilomedia.info |
|
| Details | Domain | 1 | luxuryads.info |
|
| Details | Domain | 1 | madiabonus.info |
|
| Details | Domain | 1 | mamasmedia.info |
|
| Details | Domain | 1 | mediadelux.info |
|
| Details | Domain | 1 | mediaoffer.info |
|
| Details | Domain | 1 | mediaqboost.info |
|
| Details | Domain | 1 | mediasforest.info |
|
| Details | Domain | 1 | mediashouse.info |
|
| Details | Domain | 1 | mediaspot.info |
|
| Details | Domain | 1 | mediasupply.info |
|
| Details | Domain | 1 | mediaszone.info |
|
| Details | Domain | 1 | mediaszones.info |
|
| Details | Domain | 1 | mediawonder.info |
|
| Details | Domain | 1 | mightycpm.info |
|
| Details | Domain | 1 | mindflash.info |
|
| Details | Domain | 1 | monkeybusy.info |
|
| Details | Domain | 1 | monstercpm.info |
|
| Details | Domain | 1 | multiads.info |
|
| Details | Domain | 1 | okandok.info |
|
| Details | Domain | 1 | pandasmedia.info |
|
| Details | Domain | 1 | papasads.info |
|
| Details | Domain | 1 | parishads.info |
|
| Details | Domain | 1 | penads.info |
|
| Details | Domain | 1 | pointofprofit.info |
|
| Details | Domain | 1 | popularmedias.info |
|
| Details | Domain | 1 | porkymedia.info |
|
| Details | Domain | 1 | postermedia.info |
|
| Details | Domain | 1 | profitbanner.info |
|
| Details | Domain | 1 | promolinks.info |
|
| Details | Domain | 1 | promorobot.info |
|
| Details | Domain | 1 | prormohookup.info |
|
| Details | Domain | 1 | pushtheads.info |
|
| Details | Domain | 1 | randomads.info |
|
| Details | Domain | 1 | rangoomedia.info |
|
| Details | Domain | 1 | rearmedia.info |
|
| Details | Domain | 1 | revolverads.info |
|
| Details | Domain | 1 | richcpm.info |
|
| Details | Domain | 1 | safemedia.info |
|
| Details | Domain | 1 | scrollpgp.com |
|
| Details | Domain | 1 | sensecpm.info |
|
| Details | Domain | 1 | shockdelivery.info |
|
| Details | Domain | 1 | silentmedia.info |
|
| Details | Domain | 1 | silvermedias.info |
|
| Details | Domain | 1 | smarterads.info |
|
| Details | Domain | 1 | sputnikads.info |
|
| Details | Domain | 1 | standupmedia.info |
|
| Details | Domain | 1 | startmedia.info |
|
| Details | Domain | 1 | staycold.info |
|
| Details | Domain | 1 | supperpromo.info |
|
| Details | Domain | 1 | swagads.net |
|
| Details | Domain | 1 | sweeptip.info |
|
| Details | Domain | 1 | swipeflirts.info |
|
| Details | Domain | 1 | swipesflirt.info |
|
| Details | Domain | 1 | takemeup.info |
|
| Details | Domain | 1 | thousandads.info |
|
| Details | Domain | 1 | trafficprofit.info |
|
| Details | Domain | 1 | trustedmedias.info |
|
| Details | Domain | 1 | ugetmore.info |
|
| Details | Domain | 1 | uniquemedias.info |
|
| Details | Domain | 1 | vertigoads.info |
|
| Details | Domain | 1 | whitecpm.info |
|
| Details | Domain | 1 | wideads.info |
|
| Details | Domain | 1 | wildwildmedia.info |
|
| Details | Domain | 1 | yoursbanner.info |
|
| Details | File | 1 | adbreak.inf |
|
| Details | File | 1 | adsads.inf |
|
| Details | File | 1 | adsgodzilla.inf |
|
| Details | File | 1 | adsjam.inf |
|
| Details | File | 1 | adsloop.inf |
|
| Details | File | 1 | adspaces.inf |
|
| Details | File | 1 | adsplaces.inf |
|
| Details | File | 1 | adsstock.inf |
|
| Details | File | 1 | adsyndicate.inf |
|
| Details | File | 1 | adszones.inf |
|
| Details | File | 1 | adultadspace.inf |
|
| Details | File | 1 | adultbanner.inf |
|
| Details | File | 1 | adultmedia.inf |
|
| Details | File | 1 | adultspace.inf |
|
| Details | File | 1 | adzones.inf |
|
| Details | File | 1 | bannerplant.inf |
|
| Details | File | 1 | besthookup.inf |
|
| Details | File | 1 | betterad.inf |
|
| Details | File | 1 | bonbonads.inf |
|
| Details | File | 1 | bonuscpm.inf |
|
| Details | File | 1 | bonusmedia.inf |
|
| Details | File | 1 | boostedads.inf |
|
| Details | File | 1 | brothermedia.inf |
|
| Details | File | 1 | bucksdelivery.inf |
|
| Details | File | 1 | bulbcpm.inf |
|
| Details | File | 1 | canelonads.inf |
|
| Details | File | 1 | chooseyourads.inf |
|
| Details | File | 1 | clickandjoy.inf |
|
| Details | File | 1 | clickerbonus.inf |
|
| Details | File | 1 | clickspoint.inf |
|
| Details | File | 1 | cometamedia.inf |
|
| Details | File | 1 | comspacecom.inf |
|
| Details | File | 1 | coolads.inf |
|
| Details | File | 1 | coolbanner.inf |
|
| Details | File | 1 | cooperloop.inf |
|
| Details | File | 1 | cozyads.inf |
|
| Details | File | 1 | crazycpm.inf |
|
| Details | File | 1 | crazymedia.inf |
|
| Details | File | 1 | deluxeads.inf |
|
| Details | File | 1 | doodleads.inf |
|
| Details | File | 1 | endcpm.inf |
|
| Details | File | 1 | entropymedia.inf |
|
| Details | File | 1 | exxtraprofit.inf |
|
| Details | File | 1 | famousads.inf |
|
| Details | File | 1 | fancyads.inf |
|
| Details | File | 1 | ferroad.inf |
|
| Details | File | 1 | ferromedia.inf |
|
| Details | File | 1 | findsilver.inf |
|
| Details | File | 1 | flashspots.inf |
|
| Details | File | 1 | fortynn.inf |
|
| Details | File | 1 | foxycpm.inf |
|
| Details | File | 1 | freehookuper.inf |
|
| Details | File | 1 | freshcpm.inf |
|
| Details | File | 1 | freshmedias.inf |
|
| Details | File | 1 | frogbigfrog.inf |
|
| Details | File | 1 | front-page.inf |
|
| Details | File | 1 | frontrows.inf |
|
| Details | File | 1 | frtyd.inf |
|
| Details | File | 1 | frtyegt.inf |
|
| Details | File | 1 | frtyeht.inf |
|
| Details | File | 1 | frtyff.inf |
|
| Details | File | 1 | frtyffe.inf |
|
| Details | File | 1 | frtyfr.inf |
|
| Details | File | 1 | frtys.inf |
|
| Details | File | 1 | frtysvn.inf |
|
| Details | File | 1 | frtysx.inf |
|
| Details | File | 1 | frtyten.inf |
|
| Details | File | 1 | fruitsmedia.inf |
|
| Details | File | 1 | fullpagecpm.inf |
|
| Details | File | 1 | funnycpms.inf |
|
| Details | File | 1 | geniusmedia.inf |
|
| Details | File | 1 | globuscpm.inf |
|
| Details | File | 1 | gogobanner.inf |
|
| Details | File | 1 | goldcpm.inf |
|
| Details | File | 1 | goldenmedias.inf |
|
| Details | File | 1 | hookupfind.inf |
|
| Details | File | 1 | hookupmatch.inf |
|
| Details | File | 1 | hookupsearch.inf |
|
| Details | File | 1 | hopstops.inf |
|
| Details | File | 1 | jockermedia.inf |
|
| Details | File | 1 | kilomedia.inf |
|
| Details | File | 1 | luxuryads.inf |
|
| Details | File | 1 | madiabonus.inf |
|
| Details | File | 1 | mamasmedia.inf |
|
| Details | File | 1 | mediadelux.inf |
|
| Details | File | 1 | mediaoffer.inf |
|
| Details | File | 1 | mediaqboost.inf |
|
| Details | File | 1 | mediasforest.inf |
|
| Details | File | 1 | mediashouse.inf |
|
| Details | File | 1 | mediaspot.inf |
|
| Details | File | 1 | mediasupply.inf |
|
| Details | File | 1 | mediaszone.inf |
|
| Details | File | 1 | mediaszones.inf |
|
| Details | File | 1 | mediawonder.inf |
|
| Details | File | 1 | mightycpm.inf |
|
| Details | File | 1 | mindflash.inf |
|
| Details | File | 1 | monkeybusy.inf |
|
| Details | File | 1 | monstercpm.inf |
|
| Details | File | 1 | multiads.inf |
|
| Details | File | 1 | okandok.inf |
|
| Details | File | 1 | pandasmedia.inf |
|
| Details | File | 1 | papasads.inf |
|
| Details | File | 1 | parishads.inf |
|
| Details | File | 1 | penads.inf |
|
| Details | File | 1 | pointofprofit.inf |
|
| Details | File | 1 | popularmedias.inf |
|
| Details | File | 1 | porkymedia.inf |
|
| Details | File | 1 | postermedia.inf |
|
| Details | File | 1 | profitbanner.inf |
|
| Details | File | 1 | promolinks.inf |
|
| Details | File | 1 | promorobot.inf |
|
| Details | File | 1 | prormohookup.inf |
|
| Details | File | 1 | pushtheads.inf |
|
| Details | File | 1 | randomads.inf |
|
| Details | File | 1 | rangoomedia.inf |
|
| Details | File | 1 | rearmedia.inf |
|
| Details | File | 1 | revolverads.inf |
|
| Details | File | 1 | richcpm.inf |
|
| Details | File | 1 | safemedia.inf |
|
| Details | File | 1 | sensecpm.inf |
|
| Details | File | 1 | shockdelivery.inf |
|
| Details | File | 1 | silentmedia.inf |
|
| Details | File | 1 | silvermedias.inf |
|
| Details | File | 1 | smarterads.inf |
|
| Details | File | 1 | sputnikads.inf |
|
| Details | File | 1 | standupmedia.inf |
|
| Details | File | 1 | startmedia.inf |
|
| Details | File | 1 | staycold.inf |
|
| Details | File | 1 | supperpromo.inf |
|
| Details | File | 1 | sweeptip.inf |
|
| Details | File | 1 | swipeflirts.inf |
|
| Details | File | 1 | swipesflirt.inf |
|
| Details | File | 1 | takemeup.inf |
|
| Details | File | 1 | thousandads.inf |
|
| Details | File | 1 | trafficprofit.inf |
|
| Details | File | 1 | trustedmedias.inf |
|
| Details | File | 1 | ugetmore.inf |
|
| Details | File | 1 | uniquemedias.inf |
|
| Details | File | 1 | vertigoads.inf |
|
| Details | File | 1 | whitecpm.inf |
|
| Details | File | 1 | wideads.inf |
|
| Details | File | 1 | wildwildmedia.inf |
|
| Details | File | 1 | yoursbanner.inf |
|
| Details | File | 1 | zorroads.inf |
|
| Details | sha256 | 1 | 3d26585fac57027df4a68fa282ebfcc818aabb59ae6627325c2c4201cd2d6b80 |
|
| Details | sha256 | 1 | 329c033b15df3cb41dc9aed57272a0dd125f9c85f027ce2954b620261cf3d074 |
|
| Details | sha256 | 1 | c15710703cbcbaa17324a69cb274b262795a5bd8700a89b3fa8abcf72e613f50 |
|
| Details | sha256 | 1 | e1c7071c4449b043d2d57f6501f463481f79b49e2cc4f75b4df5acf862b03f4d |
|
| Details | sha256 | 1 | 83a9f0f488e5f1046c5914b65877fb37e8ae7fa185f334cdc683cbd7e4614869 |
|
| Details | sha256 | 1 | bd58161f66335f72614982d9f81c999cde3b2da8660e16cec15c298b2a995371 |
|
| Details | sha256 | 1 | a96b468620ffa3f3a93198d99710c83a575206412e6a958c0c09007fcea05832 |
|
| Details | sha256 | 1 | 746d859772d0a7de26e47e2dfc2bf722eea90f65e0497a0e4d87e06f4ab183b8 |
|
| Details | sha256 | 1 | c13ece2c81769af954fae66ee89ec0d2491bbb839d22f27bb9b048ea9e460d4a |
|
| Details | sha256 | 1 | f473c2b4caf126a1b82284e2914838d18005c88a739355b42da16e5dc4caa3f4 |
|
| Details | sha256 | 1 | 124e4608528c013f4e14655d90beee3ded8c8b3aa54356a24d5c483c6818502a |
|
| Details | sha256 | 1 | 03070471659084b60a05efcd5d252c3d7ed53089522dfbf816868a6eb0c947e4 |
|
| Details | sha256 | 1 | 85dd8381e73474b63aa5d70656cae94b6be5e863b6ff6287d981488538e6b99c |
|
| Details | sha256 | 1 | 7b6bea5fec6da2782db6ac4d71414a3425d4605bcd8332d2e1f518d6388cae45 |
|
| Details | sha256 | 1 | e2a2395da1b0ccac51a0ad858a8de95bc7664f753d4b9a86c8f866f8353136e6 |
|
| Details | sha256 | 1 | 4979bbceccbb991c909307d452666168ce660374079e299a13abae02c08960c1 |
|
| Details | sha256 | 1 | 429f1ec2ef25338c33bac28421e6ecb5e436211a7c56396bee3d4398ef4344ee |
|
| Details | sha256 | 1 | e8abc7a39547bc1d6949bb8e2543bd6caddec8e873c441815a1d6c3ad2d63191 |
|
| Details | sha256 | 1 | 5b62f31b10cd19548ce294929827bf39d5c9c91ce5cc18391308b983363bf80f |
|
| Details | sha256 | 1 | 94442f616763e37dc0ef7dd8358b80dfc07a4ae2b355c3fd39aa09957b300c78 |
|
| Details | sha256 | 1 | 61304505a4e2fbfc77dd4b6ce3cc01ebb1a6ab2d444b65e415bd9ac22dbeb899 |
|
| Details | IPv4 | 1 | 185.51.244.206 |
|
| Details | IPv4 | 1 | 185.51.244.207 |
|
| Details | IPv4 | 1 | 185.51.244.208 |