JS/Kryptik.AWD [Threat Name] go to Threat

JS/Kryptik.AWD [Threat Variant Name]

Category trojan
Short description

JS/Kryptik.AWD is detection of malicious obfuscated JavaScript code embedded in HTML pages. The trojan tries to download and execute several files from the Internet.

Installation

The trojan does not create any copies of itself.


The program code of the malware is usually embedded in HTML pages.

Other information

JS/Kryptik.AWD is a trojan which tries to download other malware from the Internet.


The trojan contains a URL address. It tries to download a file from the address.


The file is stored in the following location:

  • %temp%\­%variable%

The file is then decrypted and executed. The HTTP protocol is used.


A string with variable content is used instead of %variable% .


The trojan may exploit following vulnerabilities using another malware modules downloaded from the Internet according to the installed software:

  • CVE-2014-6332
  • CVE-2014-4130
  • CVE-2015-0336
  • CVE-2015-3090

The following applications are vulnerable:

  • Microsoft Internet Explorer
  • Adobe Flash Player

Please enable Javascript to ensure correct displaying of this content and refresh this page.