JS/Kryptik.AVZ [Threat Name] go to Threat

JS/Kryptik.AVZ [Threat Variant Name]

Category trojan
Aliases JS:Includer-BKW (Avast)
Short description

JS/Kryptik.AVZ is detection of malicious obfuscated JavaScript code embedded in HTML pages. The trojan tries to download and execute several files from the Internet.


The trojan does not create any copies of itself.

The program code of the malware is usually embedded in HTML pages.

Other information

JS/Kryptik.AVZ is a trojan which tries to download other malware from the Internet.

The trojan contains a URL address. It tries to download a file from the address.

The file is stored in the following location:

  • %temp%\­%temp_filename%

The file is then decrypted and executed. The HTTP protocol is used.

It exploits the CVE-2014-6332 vulnerability.

The trojan may exploit following vulnerabilities using another malware modules downloaded from the Internet according to the installed software:

  • CVE-2015-0336
  • CVE-2015-3090

The following applications are vulnerable:

  • Microsoft Internet Explorer
  • Adobe Flash Player

Please enable Javascript to ensure correct displaying of this content and refresh this page.