JS/Iframe!tr

description-logoAnalysis


  • This detection is for inserted malicious script tags in HTML documents. The malicious script tags allow the browser to connect to a remote location and execute more JavaScript codes.

  • The JavaScript file that it accesses is in the following URL:
    • http://mm.[Removed].cn/index/mm.js

    As of this writing, the above URL is no longer available.


recommended-action-logoRecommended Action

    FortiGate Systems
  • Check the main screen using the web interface for your FortiGate unit to ensure that the latest AV/NIDS database has been downloaded and installed on your system - if required, enable the "Allow Push Update" option.
    FortiClient Systems
  • Quarantine/delete files that are detected and replace infected files with clean backup copies.

Telemetry logoTelemetry

Detection Availability

FortiGate
Extended
FortiClient
FortiMail
FortiSandbox
FortiWeb
Web Application Firewall
FortiIsolator
FortiDeceptor
FortiEDR

Version Updates

Date Version Detail
2020-08-25 79.88800 Sig Updated
2020-05-22 77.61000 Sig Updated
2020-03-04 75.71900 Sig Updated
2019-10-08 72.18000 Sig Updated
2019-07-10 69.88400 Sig Updated
2019-07-09 69.85500 Sig Updated
2019-05-02 68.23200 Sig Updated