Web Security And Awareness towards Cybercriminals: New Malware Code found on IRANIAN Blogsite (involved in Phishing): model-irani.mihanblog.com infected with Trojan.JS.StartPage.eg (Former HEUR:Trojan.Script.Generic) (IP: 5.144.133.146)

2/27/2014

New Malware Code found on IRANIAN Blogsite (involved in Phishing):
model-irani.mihanblog.com infected with
Trojan.JS.StartPage.eg (Former HEUR:Trojan.Script.Generic)
(IP: 5.144.133.146)

FOLLOWUP:
New Malicious Code:
From: HEUR:Trojan.Script.Generic
To: Trojan.JS.StartPage.eg

MALWARE: HEUR:Trojan.Script.Generic (PHISHING ACTIVITIES) IRAN

DOMAIN:

http://model-irani.mihanblog.com/

https://www.virustotal.com/de/url/87e504b01108edfe5de0f78bee9f91b014661af9abf0bcbb8625b88ceeb18258/analysis/1393498401/

INFECTION:

HEUR:Trojan.Script.Generic

https://www.virustotal.com/de/file/9ad90edf6be055ce40cdc01608f58783e6aa45bed1453e760b1afbfbbcb025b0/analysis/1393498623/

--->

http://static.mihanblog.com//public/scripts/run/g.other.v3.js

https://www.virustotal.com/de/url/0bdd1749892dbca59d44f29f3d008f5639aeb8be37ec4deb6873ada600e84505/analysis/1393498967/

PUA.Script.Packed-2

https://www.virustotal.com/de/file/9c7e6c2ebd2ac2b10978a8627e31d1cd287aa43f19e5a8233b018103dad507d2/analysis/1393498970/

FOR THE FULL REPORT CLICK THE .txt ICON:

Web Security And Awareness towards Cybercriminals

Translate

2/27/2014

New Malware Code found on IRANIAN Blogsite (involved in Phishing):
model-irani.mihanblog.com infected with
Trojan.JS.StartPage.eg (Former HEUR:Trojan.Script.Generic)
(IP: 5.144.133.146)

Keine Kommentare:

Kommentar veröffentlichen