http://dol.{BLOCKED}1.us:8081/update/base64.js
Publish Date: 19 de maja de 2013
URL gesperrt am/um: viernes, 3 de mayo de 2013 20:20:00 GMT-8
Bewertung: : High
Domain: : ns01.us
Category: Disease Vector
DESCRIPTION:
JS_EXPLOIT.MEA loads this site where its component for decoding base64 can be found. This malicious script was inserted onto a legitimate website of the US Department of Labor and downloads a Poison Ivy backdoor.