PossibleExecutable in s.h2.pdim.gs

On 2019-01-31T07:22:30.843401+00:00 we found pattern PossibleExecutable, type: Suspicious, (Attempt to load a Windows executable file from a web page that may me malware or potentially unwanted software or benign plug-in such as Adobe Flash) in the page https://s.h2.pdim.gs/muse/js/indexnext.… referenced from https://www.panda.tv/ .

Code sample:

b'.exe"' … b'.exe"' … b'<object classid='

This feature is experimental so please feel free to contact us if you feel any of the reported issues is a false positive or you want to suggest a pattern that should be detected (we are using Yara standard).

Fully automated RESTful API is now available. Subscribe for your free trial today!