SHARE
THIS ON

Facebook Twitter Google Plus

Trojan.Downloader.JS.JH

MEDIUM
LOW
2kB - 30kB
(Trojan-Downloader.JS.Agent.bsh, JS/TrojanDownloader.Iframe.EY.gen, TR/Dldr.Agent.bsg, JS_AGENT.AGUA, HEUR/Exploit.HTML)

Symptoms

Not applicable.

Removal instructions:

Please let BitDefender delete the infected files.

Analyzed By

Andrei DAMIAN-FEKETE, virus researcher

Technical Description:

Trojan.Downloader.JS.JH it is an obfuscated JavaScript.

Files containing it are served from different websites, so they are probably created by a malware kit.

The script's "payload" differ from case to case (iframe injections, different exploits, etc.). Main purpose of the script is to install malware on the user's computer.

The script tries to protect itself from modification by using it's own code as an parameter for the decryption of the payload. It is not unusual to have multiple layers of encryption to make analysis harder and more time consuming.
Antivirus Software For Home Users
Business Security Solutions
Latest News
Tools & Resources