HTML_IFRAME.HH
Trojan-Clicker.HTML.IFrame.bk (Kaspersky), JS/Downloader.Agent (AVG), Mal/Iframe-F (Sophos)
Windows 2000, Windows XP, Windows Server 2003
Threat Type: Trojan
Destructiveness: No
Encrypted:
In the wild: Yes
OVERVIEW
This Trojan executes when a user accesses certain websites where it is hosted.
This is the Trend Micro detection for files that contain malicious IFRAME tags. Once a user visits an affected Web page, this HTML script launches a hidden IFRAME that connects to a malicious URL. It redirects browsers to certain sites.
TECHNICAL DETAILS
Arrival Details
This Trojan executes when a user accesses certain websites where it is hosted.
Other Details
This is the Trend Micro detection for files that contain malicious IFRAME tags.
Once a user visits an affected Web page, this HTML script launches a hidden IFRAME that connects to a malicious URL.
It redirects browsers to the following sites:
- http://{BLOCKED}rmediagroup.com/ts/in.cgi?yahoo