JS/IFrame.gen

This page shows details and results of our analysis on the malware JS/IFrame.gen

Overview

This is a trojan detection. Unlike viruses, trojans do not self-replicate. They are spread manually, often under the premise that they are beneficial or wanted. The most common installation methods involve system or security exploitation, and unsuspecting users manually executing unknown programs. Distribution channels include email, malicious or hacked web pages, Internet Relay Chat (IRC), peer-to-peer networks, etc.


Minimum DAT

5486 (2009-01-05)

Updated DAT

6740 (2012-06-12)

Minimum Engine

5400.1158

File Length

Description Added

2009-01-05

Description Modified

2009-02-23

Malware Proliferation

Characteristics

This is a generic detection for obfuscated JavaScript that points to an Iframe to a remote site.

The signature is based on specfic characteristics of the encryption.

Because this is a generic detection there is no specific description of the activity undertaken by JavaScript detected under this name, however these can include malicious activity such as downloading and executing files or scripts.

Symptoms

Because this is a generic detection there is no specific description of the activity undertaken by JavaScript detected under this name, however these can include malicious activity such as downloading and executing files or scripts.

Method of Infection

Distribution channels include email, malicious or hacked web pages, Internet Relay Chat (IRC), peer-to-peer networks, etc.

Removal

Variants