JS/MalRedir.C!tr.dldr

Alias/esTrojan-Downloader.JS.Pegel.f (Kaspersky), Trojan.JS.Redirector.U (BitDefender)
Release DateJan 28, 2010
Detection Availability
Active DatabaseExtended Database
FortiGatelowhigh
FortiClient
FortiMailN/A
Current Antivirus Definition Database Version: 11.573
Description

Visible Symptoms

  • Possible firewall alert that an executable is attempting to connect to the internet.

Detailed Analysis


JS/MalRedir.C!tr.dldr is classified as a Trojan.

  • It includes an encryped script with malicious URLs embedded.

  • It connects to other URLs in the background to download malicious files or display more advertisement web pages.

  • Examples of the embedded URLs are the following:

    • hubpa{Removed}ttop.ru:8080
    • banko{Removed}psite.ru:8080


Description Last Updated Date: Feb 02, 2010
Reference: ID - 1502395