generic_javascript_obfuscation5 in creative.cmrdr.com

On 2020-05-11T11:54:26.431301+00:00 we found pattern generic_javascript_obfuscation5, type: Suspicious, (JavaScript obfuscation is frequently used to hide malicious code (or with hope to protect intellectual property)) in the page https://creative.cmrdr.com/widgets/stri… referenced from https://go.schjmp.com/ .

Code sample:

b'["de","fr","es","it","ru","pt","ja","nl","pl","ro","no","sv","el","ar","hu","cs","tr",'

This feature is experimental so please feel free to contact us if you feel any of the reported issues is a false positive or you want to suggest a pattern that should be detected (we are using Yara standard).