Description: The source code for the JS.SCob Trojan downloader is available. By inspecting the source code of JS.SCob you can see how the malicious JavaScript downloads the malicious program using an invisible IFRAME in order to compromise a system. In addition, how it uses the footer featured of Microsoft s IIS in order to be served to client browsers without actually modifying any files located in the IIS server. And how it uses a hidden cookie to periodically attempt connection to the remote site that contains the malware.
To Search:
File list (Check if you may need any files):
Trojan.JS.Scob.a.(斯科比)源代码\scob.html
...............................\.ource\md.htm
...............................\......\new.htm
...............................\......\shellscript.js
...............................\......\shellscript_loader.js
...............................\source
Trojan.JS.Scob.a.(斯科比)源代码