generic_javascript_obfuscation5 in www.lisboa.pt

On 2020-05-12T14:59:18.384472+00:00 we found pattern generic_javascript_obfuscation5, type: Suspicious, (JavaScript obfuscation is frequently used to hide malicious code (or with hope to protect intellectual property)) in the page https://www.lisboa.pt/typo3conf/ext/boo… referenced from https://lisboa.pt/ .

Code sample:

b'["Width","Span","Fill","Gap","Rule","RuleColor","RuleStyle","RuleWidth","BreakBefore","BreakAfter","BreakInside"],r=0;r<n.length;r++)e=n[r].toLowerCase(),t=z("column"+n[r]),"breakbefore"!==e&&"breakafter"!==e&&"breakinside"!==e||(t=t||z(n[r])),l.addTest("csscolumns."+e,t)}(),l.addTest("flexbox",z("flexBasis","1px",!0)),l.addTest("picture",'

This feature is experimental so please feel free to contact us if you feel any of the reported issues is a false positive or you want to suggest a pattern that should be detected (we are using Yara standard).

Fully automated RESTful API is now available. Subscribe for your free trial today!