http://dol.{BLOCKED}1.us:8081/update/base64.js
Publish date: 19 de mayo de 2013
Fecha/hora de bloqueo de la URL viernes, 3 de mayo de 2013 20:20:00 GMT-8
Clasificación: : High
Dominio : ns01.us
Categoría: Disease Vector
Descripción:
JS_EXPLOIT.MEA loads this site where its component for decoding base64 can be found. This malicious script was inserted onto a legitimate website of the US Department of Labor and downloads a Poison Ivy backdoor.