ABIT China Web site Attacked by IE7 Zero Day
Threat Type: Malicious Web Site / Malicious Code
Screenshot of the infected site:
This is the infected site's source code, displaying the top of the page:
This is a screenshot of the source code at the end of the page:
When a user visits the site, the payload runs automatically and downloads a malicious file. This file is then executed without the user's knowledge. The download location is currently down, but could come back or change at any moment.
Screenshot of the shell code:
Websense Messaging and Websense Web Security customers are protected against this attack.