In this post we cover 3 recently detected malicious scripts on scanned websites. The payload of each decoded malware shown below downloads remote .html or .php file without user consent.
You can find similar web threats analysis in our other posts: malicious iframes generation.
Malicious iframes are often used to distribute malware hosted on external web resources(websites).
Blacklisting statusThe website is Suspicious on Google Safe Browsing - report link
|Google Safe Browsing diagnostic report|
Blacklisting statusThe website is detected by BitDefender and Sophos as per VirusTotal report.
|VirusTotal - URL analysis report|