Sample details: ad3d025535604864df5cf1ed238f3498 --

Hashes
MD5: ad3d025535604864df5cf1ed238f3498
SHA1: fb8241f0586f98d8d0f2a7721f303c187257b8b0
SHA256: aec2658743ada2617a494cf915156d393c7ef7f37c0f8f467f8b4d7d6a96ed04
SSDEEP: 192:KES/bLicZUkAPiRHx5XK5L+dWX73Rn9Pwslh6M:KEaFZUkAPiJn65L+dWNn16M
Details
File Type: HTML
Added: 2019-10-09 14:48:03
Yara Hits
YRP/domain | YRP/url | YRP/contentis_base64 |
Source
http://lordburzum.persiangig.com/ringtone.CAB
Strings
		<html>
<head>
<meta http-equiv="refresh" content="10">
<meta http-equiv="Content-Type" content="text/html; charset=windows-1252" />
<title>Download ba </title>
<script>
function ge(i){return document.getElementById(i)}
function classafix(elementId, suffix) {
 // elementId's current class
 var curClass = ge(elementId).className
 var newClass = ""
 // if "-" was not found, return false
 if (curClass && curClass.indexOf("-") > -1)
  newClass = curClass.substr(0,curClass.lastIndexOf("-")) + "-" + suffix
  return false
 return ge(elementId).className = newClass
var dStatus=[];
var checkingString="";
function mlxize(strURL,qur,postSend, updatePage) {
if (dStatus[strURL])
 updatePage(dStatus[strURL]);
 return 0;
else dStatus[strURL] = checkingString;
    var xmlHttpReq = false;
    var self = this;
    // Mozilla/Safari
    if (window.XMLHttpRequest) {
 self.xmlHttpReq = new XMLHttpRequest();
    // IE
    else if (window.ActiveXObject) {
 self.xmlHttpReq = new ActiveXObject("Microsoft.XMLHTTP");
    self.xmlHttpReq.open('POST', strURL, true);
    self.xmlHttpReq.setRequestHeader('Content-Type', 'application/x-www-form-urlencoded');
    self.xmlHttpReq.onreadystatechange = function() {
 if (self.xmlHttpReq.readyState == 4) {
     TMPHTML=self.xmlHttpReq.responseText;
postSend(TMPHTML)
    self.xmlHttpReq.send(qur());
function what_to_do(e) {
 ge("dllink").onclick="";
 e.preventDefault ? e.preventDefault() : e.returnValue = false;
 classafix("dllink","clicked");
 mlxize(location.href, function(){ return ""}, function (token){
  setTimeout(function(){
   classafix("dllink","started")
   location.href = '/.'+token+location.pathname.slice(0,-9);
  }, 3000)
 }, function(){ return ""});
 return false;
function continue_to_dl() {
 window.location = "download?<#TOKEN#>";
 return
 ge("popup-wrapper").className= 'hidden';
 document.body.className= '';
if("<#FILETYPE#>"=="audio/mpeg") { //is mp3
    mlxize(location.href, function(){ return ""}, function (token) {
        audiojs.events.ready(function () {
            console.log(ge("AudioSrc"), ge("AudioSrc").src);
            ge("AudioSrc").src = '/.'+token+location.pathname.slice(0,-9);
            var as = audiojs.createAll();
            ge("AudioPlayer").style.display = "block";
        });
    }, function(){ return ""});
</script>
<link rel="stylesheet" type="text/css" href="http://cen.persiangig.com/dl2/style.css" />
<!--Pre Dl Page CSS -->
<style>
a.parentfolder          {color:#04b6de;font-size:10pt; border-bottom: 1px dotted}
a.parentfolder:hover    {color:#00ccfa; text-decoration:none;font-size:10pt ; border-bottom: 1px dotted}
body.popuped            {overflow: hidden;}
#popup-wrapper          {background-color: rgba(0, 0, 0, 0.5);position: fixed;}
#popup-wrapper, #popup-wrapper>div, .gotodl{    left: 0; right: 0; top: 0; bottom: 0;}
#popup-wrapper>div      {position: absolute;background-color: #fff;width: 920px;min-width: 300px;height: 600px;margin: 145px auto auto;}
.gotodl:hover           {color: #fff;}
.gotodl span            {display: block;}
.gotodl small           {background: url('http://cen.persiangig.com/images/arrow.png') no-repeat scroll right center;text-align: left;display: block;margin: 5px 30px;}
.gotodl                 {background-color: #5fd102;border-radius: 5px;padding: 10px;font-size: 13px; color: #fff;position: absolute;margin: auto;width: 145px;height: 37px;text-align: center;}
.hidden                 {display: none !important;}
</style>
</head>
<body topmargin="0" leftmargin="0" rightmargin="0" bottommargin="0" class="popuped">
<div id="popup-wrapper">
<div class="popup">
        <a class="gotodl" target="_blank" href="dl?1520515799" style="
    bottom: 70%;
            <span>
                
            </span>
            <small>
                Continue
            </small>
        </a>
                            <tr>
                                <td class="dlbtn borderdot-light">
                                    <a id="dllink" class="download-link" style="overflow:hidden; text-indent: -9999px; display: block;" onclick="what_to_do(event)" href="<#GOOGLE#>">Download</a>
                                </td>
function what_to_do(e) {
 ge("dllink").onclick="";
 e.preventDefault ? e.preventDefault() : e.returnValue = false;
 classafix("dllink","clicked");
 mlxize(location.href, function(){ return ""}, function (token){
  setTimeout(function(){
   classafix("dllink","started")
   location.href = '/.'+token+location.pathname.slice(0,-9);
  }, <#SLEEP#>)
 }, function(){ return ""});
 return false;
                                <td class="td_filename borderdot-light">
<a target=_blank href="http://www.persiangig.com/virtual-private-server/"><img src="http://www.persiangig.com/static-content/banners/vps.jpg" style="position: absolute; margin: auto; width: 95%; top: 20%; left: 0; right: 0; bottom: 0;"></a>
    </div>
</div>
<table border="0" width="100%" cellspacing="0" cellpadding="0">
    <tbody>
    <tr>
        <td class="header_bg" align="center">
        <div class="logo_div">
            <div class="logo">
                <a href="http://cen.persiangig.com/">
                <img border="0" src="http://cen.persiangig.com/dl2/images/logo.gif" /></a></div>
        </div>
        </td>
    </tr>
    <tr>
        <td align="center" id="footer">
        <div style="margin:0 auto; width:210px">
        <center>
                <a href="http://cen.persiangig.com/"><div class="logo-tiny"></div></a>
                <div class="f-links">
                    <a href="http://cen.persiangig.com/terms/">&#1602;&#1608;&#1575;&#1606;&#1740;&#1606; &#1587;&#1575;&#1740;&#1578;</a>
                    <span style="color:#0265FF;">|</span>
                    <a href="/">&#1585;&#1575;&#1607;&#1606;&#1605;&#1575;</a>
                </div>
                <div class="copyright">&#1578;&#1605;&#1575;&#1605;&#1740; &#1581;&#1602;&#1608;&#1602; &#1605;&#1578;&#1593;&#1604;&#1602; &#1576;&#1607; <a href="http://cen.persiangig.com">&#1662;&#1585;&#1588;&#1610;&#1606; &#1711;&#1610;&#1711;</a> &#1605;&#1740; &#1576;&#1575;&#1588;&#1583;. 2013&copy;</div>
            </center></div>
        </td>
    </tr>
</tbody>
</table>
<script>
(function(i,s,o,g,r,a,m){i['GoogleAnalyticsObject']=r;i[r]=i[r]||function(){
(i[r].q=i[r].q||[]).push(arguments)},i[r].l=1*new Date();a=s.createElement(o),
m=s.getElementsByTagName(o)[0];a.async=1;a.src=g;m.parentNode.insertBefore(a,m)
})(window,document,'script','//www.google-analytics.com/analytics.js','ga');
ga('create', 'UA-48317794-1', 'persiangig.com');
ga('send', 'pageview');
</script>
</body>
</html>