JS_BLACOLE.SMKE
June 19, 2013
ALIASES:
Trojan:JS/IframeRef.I(Microsoft), Trojan.Webkit!html(Norton), JS/Exploit-Blacole.gg(McAfee), Mal/JSRedir-M(Sophos), JS/Blacole.HT!exploit(Fortinet)
PLATFORM:
Windows 2000, Windows Server 2003, Windows XP (32-bit, 64-bit), Windows Vista (32-bit, 64-bit), Windows 7 (32-bit, 64-bit)
OVERALL RISK RATING:
DAMAGE POTENTIAL:
DISTRIBUTION POTENTIAL:
REPORTED INFECTION:
Threat Type: Trojan
Destructiveness: No
Encrypted:
In the wild: Yes
OVERVIEW
This Trojan may be hosted on a website and run when a user accesses the said website.
This is the Trend Micro detection for files that contain a malicious script. It redirects browsers to certain sites.
TECHNICAL DETAILS
File Size: 4,896 bytes
File Type: HTML, HTM
Initial Samples Received Date: 14 Jan 2013
Arrival Details
This Trojan may be hosted on a website and run when a user accesses the said website.
Other Details
This is the Trend Micro detection for files that contain a malicious script.
It redirects browsers to the following sites:
- http://{BLOCKED}akergrow.ru:8080/forum/links/column.php