generic_javascript_obfuscation5 in igetmystuff.com

On 2020-05-23T18:36:29.758650+00:00 we found pattern generic_javascript_obfuscation5, type: Suspicious, (JavaScript obfuscation is frequently used to hide malicious code (or with hope to protect intellectual property)) in the page https://igetmystuff.com/igms/wp-content… referenced from http://igetmystuff.com/ .

Code sample:

b'["paddingLeft","\xc2\xa5\xc2\xa7]\xc2\x8ax\x11\xc2\x8a\x08m","paddingTop","paddingBottom","marginLeft","marginRight","marginTop","\xc2\x99\xc2\xaa\xc3\xa0\xc2\x8aph\xc2\xb6\xc3\x9a&","borderLeftWidth","n\xc2\x8a\xc3\x9dz\xc2\xb4b\xc2\x82\x1bV\xc2\x89\xc3\x9ba","borderTopWidth",' … b'["innerHeight","innerWidth","off","offset","on","outerHeight","outerWidth","scrollLeft",'

This feature is experimental so please feel free to contact us if you feel any of the reported issues is a false positive or you want to suggest a pattern that should be detected (we are using Yara standard).