The Latest in IT Security

New JS/HiddenLink Script detected

19
Sep
2013

A recently detected a new script as JS/HiddenLink – but is it a false positive?

Unfortunately not, this is part of a BlackHole Exploit Kit (BHEK). The script is injected and hidden by BHEK into the affected system.

JS/HiddenLink is a new family we’ve created for injections such as these. In the past, similar scripts were identified as JS/Redir.

The purpose of this script is to hide the link which follows after dnnViewSate function. Please note that the function name varies.

Luckily, the script in question is not running due to a bug in the code.

AVG Viruslab Research Team

Leave a reply


Categories

WEDNESDAY, DECEMBER 12, 2018
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments

Social Networks