Home / malware Virus:HTML/Virut.BM
First posted on 25 March 2019.
Source: MicrosoftAliases :
Virus:HTML/Virut.BM is also known as HTML/Iframe, Trojan-Clicker.HTML.IFrame.ait, JS/Iframe.K, IFrame.Exploit, HTML_IFRAME.DDI, HTM.Virut.AA.
Explanation :
Virus:HTML/Virut.BM is a detection for HTML script appended to Web pages by Virus:Win32/Virut.BM. The appended script contains an IFrame and redirection URL that attempts to download other malware. InstallationThis HTML script is inserted into local Web pages by Virus:Win32/Virut.BM. When an HTML page is viewed, the IFrame script is run which may redirect the browser to an exploit web page at the address "jL.chura.pl". Payload Downloads other malwareIf exploits from the site "jL.chura.pl" are successful, it could result in downloading of arbitrary malware such as TrojanDownloader:Win32/Swif.AA. Additional InformationFor more information about Virus:Win32/Virut.BM, see the description elsewhere in the encyclopedia. Analysis by Aaron Putnam
Last update 25 March 2019
