JS_IFRAME.AA
Trojan:JS/Redirector.E(Microsoft), Trojan.Malscript!html(Norton), Trojan-Clicker.HTML.RemoteScript(Sunbelt), JS/Redir.B!tr(Fortinet), Trojan.JS.Redirector(Ikarus)
Windows
Threat Type: Trojan
Destructiveness: No
Encrypted:
In the wild: Yes
OVERVIEW
This Trojan may be hosted on a website and run when a user accesses the said website.
This is the Trend Micro detection for files that contain malicious IFRAME tags. Once a user visits an affected Web page, this HTML script launches a hidden IFRAME that connects to a malicious URL. It redirects browsers to certain sites.
TECHNICAL DETAILS
Arrival Details
This Trojan may be hosted on a website and run when a user accesses the said website.
Other Details
This is the Trend Micro detection for files that contain malicious IFRAME tags.
Once a user visits an affected Web page, this HTML script launches a hidden IFRAME that connects to a malicious URL.
It redirects browsers to the following sites:
- http://www.{BLOCKED}2.com/cb.js