SecurityHome.eu Trojan:JS/Redirector.CR

Home / malware PDF

Trojan:JS/Redirector.CR

First posted on 04 May 2010.
Source: SecurityHome
Aliases :
Trojan:JS/Redirector.CR is also known as HTML/IFrame.L (Authentium (Command)), JS.Redirector.Gen (VirusBuster), HTML/Infected.WebPage.Gen (Avira), Hack.Exploit.Script.HTML.IFrame.o (Rising AV), Troj/JSRedir-BD (Sophos), Trojan-Downloader.HTML.Agent.k (Sunbelt Software), JS_GUMBLAR.SMNY (Trend Micro).
Explanation :
Trojan:JS/Redirector.CR is a detection for obfuscated JavaScript contained within Web pages. This JavaScript may be present on a malicious Web site, and may redirect users to Web sites that the user did not elect to visit.
Top

Trojan:JS/Redirector.CR is a detection for obfuscated JavaScript contained within Web pages. This JavaScript may be present on a malicious Web site, and may redirect users to Web sites that the user did not elect to visit. Trojan:JS/Redirector.CR generates dynamic JavaScript code that redirects the browser to a malicious domain of the attacker's choice. In the wild, we observed variations of Trojan:JS/Redirector.CR being used to direct users to the following domains:
kinopoisk.ru

washingtonpost.com

helphomecare.at

Analysis by Tim Liu
Last update 04 May 2010

TOP

Malware :

Last 20

Trojan:JS/Redirector.CR

Aliases :

Explanation :

Malware :

Family: