generic_javascript_obfuscation5 in ws.sharethis.com

On 2018-03-18T02:05:02.606095+00:00 we found pattern generic_javascript_obfuscation5, type: Suspicious, (JavaScript obfuscation is frequently used to hide malicious code (or with hope to protect intellectual property)) in the page http://ws.sharethis.com/button/buttons.… referenced from https://tamilyogi.fm/category/tamilyogi… .

Code sample:

b'["1","2","3","4","5","6","7","8","9","0","A","B","C","D","E","F","G","H","I","J","K","L","M","N","O","P","Q","R","S","T","U","V","W","X","Y","Z","a","b","c","d","e","f","g","h","i","j","k","l","m","n","o","p","q","r","s","t","u","v","w","x","y","z"],servicePreferences:{\xc2\x96)\xc3\xa4y\xc3\x98\xc2\xa7:"param",stumbleupon:"param",'

This feature is experimental so please feel free to contact us if you feel any of the reported issues is a false positive or you want to suggest a pattern that should be detected (we are using Yara standard).

Fully automated RESTful API is now available. Subscribe for your free trial today!