SecurityHome.eu Trojan:JS/Sdiper.A

Home / malware PDF

Trojan:JS/Sdiper.A

First posted on 03 February 2012.
Source: Microsoft
Aliases :
There are no other names known for Trojan:JS/Sdiper.A.
Explanation :
Trojan:JS/Sdiper.A is a malicious JavaScript that is embedded inside Google Chrome and Mozilla Firefox plugins. It redirects to another file, which is detected as Trojan:JS/Sdiper.B.

Top

Trojan:JS/Sdiper.A is a malicious JavaScript that is embedded inside Google Chrome and Mozilla Firefox plugins. It redirects to another file, which is detected as Trojan:JS/Sdiper.B.

Installation

Trojan:JS/Sdiper.A is embedded inside Google Chrome or Mozilla Firefox plugins.

In Google Chrome it is present as the file "essentials.crx/go.js", while in Mozilla Firefox, it is present as the file "essentials.xpi/content/youtube.js". The plugin name for both browsers is "Essentials".

Payload

Redirects the browser

Trojan:JS/Sdiper.A redirects the browser to another malicious JavaScript file in "buzz<removed>france.info/f.js". This file is detected as Trojan:JS/Sdiper.B.

Analysis by Horea Coroiu

Last update 03 February 2012

TOP

Malware :

Last 20

Trojan:JS/Sdiper.A

Aliases :

Explanation :

Malware :

Family: