virus logo Virus

JS/IFrame.A!tr

description-logoAnalysis


This indicates an attempt at hidden iFrame injection. Attackers often compromise websites by injecting hidden iFrame tags into their web pages. Malicious files can be downloaded when these infected web pages are visited.

Technical Details


This malware inserts an iFrame HTML tag to the HTML document in the current browser window. The iFrame HTML tag allows the browser to connect to another URL in the background. In this case, the URL is malicious and tries to further download a trojan.

recommended-action-logoRecommended Action

    FortiGate Systems
  • Check the main screen using the web interface for your FortiGate unit to ensure that the latest AV/NIDS database has been downloaded and installed on your system - if required, enable the "Allow Push Update" option.
    FortiClient Systems
  • Quarantine/delete files that are detected and replace infected files with clean backup copies.

Telemetry logoTelemetry

Detection Availability

FortiGate
Extended
FortiClient
FortiMail
FortiSandbox
FortiWeb
Web Application Firewall
FortiIsolator
FortiDeceptor
FortiEDR

Version Updates

Date Version Detail
2024-02-06 92.01340
2022-07-12 90.04092
2022-05-03 90.01962
2022-04-13 90.01371
2021-06-08 86.00766
2021-03-08 84.00568
2020-11-16 81.87300 Sig Added
ID 387240
Released Sep 25, 2007
Description
Updated		 Aug 21, 2009
Aliases JS/IFrame.A, Exploit.HelpXSite.C, JS/Exploit.HelpXSite.C, TR/Expl.HelpXSite.C.3, Trojan.Clicker.HTML.IFrame.V, HTML/TrojanClicker.IFrame.V, TR/Click.HTML.IFrame.V
Platform Profile Java Script