JS_FRAMELD.SMD
ALIASES:
IFrame.gen (FProt), HTML/ScrInject.4728 (AntiVir), Trojan JS/FrameLoad.A (Norman)
PLATFORM:
Windows 2000, XP, Server 2003
OVERALL RISK RATING:
DAMAGE POTENTIAL:
DISTRIBUTION POTENTIAL:
REPORTED INFECTION:
Threat Type: Trojan
Destructiveness: No
Encrypted: No
In the wild: Yes
OVERVIEW
This Trojan may be hosted on a website and run when a user accesses the said website.
It inserts an IFRAME tag that redirects users to certain URLs.
TECHNICAL DETAILS
File Size: Varies
File Type: HTML, HTM
Memory Resident: No
Initial Samples Received Date: 04 Jan 2011
Arrival Details
This Trojan may be hosted on a website and run when a user accesses the said website.
Other Details
This Trojan inserts an IFRAME tag that redirects users to the following URLs:
- http://{BLOCKED}ddons.qip.ru/download.php