Analysis of malicious advertisements on telegraaf.nl
Tags
attack-pattern: Domains - T1583.001 Domains - T1584.001 Exploits - T1587.004 Exploits - T1588.005 Malware - T1587.001 Malware - T1588.001
Show in Graph
Common Information
Type Value
UUID de9e5966-d8de-40b1-a143-2d5974fabc92
Fingerprint 948179590ba967e3
Analysis status DONE
Considered CTI value 2
Text language
Published Aug. 1, 2013, 5:12 p.m.
Added to db Jan. 18, 2023, 8:28 p.m.
Last updated Oct. 28, 2024, 5:56 p.m.
Headline Analysis of malicious advertisements on telegraaf.nl
Title Analysis of malicious advertisements on telegraaf.nl
Detected Hints/Tags/Attributes 14/1/38
Source URLs
Redirection Url
Details Source https://blog.fox-it.com/2013/08/01/analysis-of-malicious-advertisements-on-telegraaf-nl/
URL Provider
Details Provider Source level domain
Details fox-it.com blog.fox-it.com
Attributes
Details Type #Events CTI Value
Details CVE 41 
cve-2012-1723
Details CVE 14 
cve-2013-2423
Details Domain 1 
telegraaf.nl
Details Domain 2 
www.telegraaf.nl
Details Domain 1 
ads1337.com
Details Domain 1 
youradserv.com
Details Domain 1 
sopixocyz.nl
Details Domain 1 
ubaduroqi.nl
Details Domain 3 
static.avast.com
Details Domain 1 
obofonaxy.nl
Details Domain 1 
aqaxiboqe.nl
Details Domain 1 
codudiref.nl
Details Domain 1 
ducyqaxas.nl
Details Domain 1 
fojavexuz.nl
Details Domain 1 
obyfyfexe.nl
Details File 1 
cpvload2.php
Details File 1 
form-close.png
Details File 75 
favicon.ico
Details File 1 
79dffb97cdemt7z7dtrwcysmb9.jar
Details File 1 
rysxtbciqycmxeedc.dll
Details File 1 
rysxtbciqycmxeedc.exe
Details md5 1 
a5df4884c44a4c812a4cc7a1c133238e
Details md5 1 
0e12760912ffeb6febe1bb790169eb35
Details md5 1 
a516e257177d6aa3d7edf3ff80c88304
Details md5 1 
dda3b490cd01690e12b280e5bb935bce
Details IPv4 1 
128.204.202.41
Details IPv4 1 
46.182.106.96
Details Url 1 
http://www.telegraaf.nl
Details Url 1 
http://s.ads1337.com/s4a2npr35gmiogggggw0w0g8cw
Details Url 1 
http://youradserv.com/adserver/cpvload2.php
Details Url 1 
http://sopixocyz.nl/0ha4hiozw1dzxegaehdg
Details Url 1 
http://ubaduroqi.nl/gk1mxwyeskomx9vohca
Details Url 1 
http://static.avast.com/web/i/form-close.png
Details Url 1 
http://youradserv.com/favicon.ico
Details Url 1 
http://ubaduroqi.nl/m2d1yiscwd
Details Url 1 
http://ubaduroqi.nl/79dffb97cdemt7z7dtrwcysmb9.jar
Details Url 1 
http://ubaduroqi.nl/fc43a11b2f0maovn8u9ieje7
Details Url 1 
http://obofonaxy.nl/x3se7pftynh5lm1tb2jvzm9dyxh5lm4