http://dol.{BLOCKED}1.us:8081/update/base64.js
Publish Date: 19 Mai 2013
URL gesperrt am/um:Freitag, 3. Mai 2013 20:20:00 GMT-8
Bewertung:: Hoch
Domäne:: ns01.us
Kategorie: Disease Vector
Beschreibung:
JS_EXPLOIT.MEA loads this site where its component for decoding base64 can be found. This malicious script was inserted onto a legitimate website of the US Department of Labor and downloads a Poison Ivy backdoor.