Jump to content

JS/Agent.OZD trojan


santoso
 Share

Recommended Posts

hello,

 

I browsing this web https://restabessmg.jateng.polri.go.id/libas/

Eset found threat JS/Agent.OZD trojan

Try to scan url with virustotal but Eset says it clean
https://www.virustotal.com/gui/url/5e0297a004ded5fdfd67a690776433a92df2f01c1ee647d8b3f6273972656088?nocache=1

Is this website compromised or it is false alarm?

 

Thank you

Link to comment
Share on other sites

  • Administrators

The detection is correct. The website was compromised and contains malware.

One of the infected files is wp-emoji-release.min.js for instance.

Link to comment
Share on other sites

On 11/16/2021 at 7:25 AM, Marcos said:

The detection is correct. The website was compromised and contains malware.

One of the infected files is wp-emoji-release.min.js for instance.

Hi Marcos,

I am interested how you found out which file is infected?

Are there any tools/tutorials you can recommend?

Kind regards,

Katzi ~Meow~

Link to comment
Share on other sites

  • Administrators
3 minutes ago, Katzi said:

I am interested how you found out which file is infected?

Just open the website in a browser and browse through it until the detection is triggered. Then check the Detections log for information about the file that the threat was detected in.

Link to comment
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...