Revisions to Malicious javascript code in my website

fixed the deobfuscation.; deleted 5 characters in body

edited Apr 18, 2010 at 7:26

32.5k
5
70
101

By itself, the code does nothing useful nor dangerous.

After manually deobfuscating:

funccount = 0; func_a = function() {   var var5func_b = function() {}; var5[100] = "_0x32lsj9";  count++;  do {  count %= 12;  var5[100] += var5[100][Math.floor(Math.random() * var5[100].length)];  return }func_b;  while (var5[100].length < 31)};     return function() { return var5[var5[100]]; }func_b; }; funcfunc_a()()()()()()()()()()()()()()()();

Looks like more an invalid attempt to keep yourthe browser busy. But very valid to keep people curious.

UPDATE: fixed the deobfuscation.

By itself, the code does nothing useful nor dangerous.

After manually deobfuscating:

func = function() {   var var5 = {}; var5[100] = "_0x32lsj9";  do {  var5[100] += var5[100][Math.floor(Math.random() * var5[100].length)];  } while (var5[100].length < 31);     return function() { return var5[var5[100]]; } }; func()()()()()()()()()()()()()()()();

Looks like more an invalid attempt to keep your browser busy.

By itself, the code does nothing useful nor dangerous.

After manually deobfuscating:

count = 0; func_a = function() { func_b = function() { count++;  count %= 12;  return func_b;  }; return func_b; }; func_a()()()()()()()()()()()()()()()();

Looks like more an invalid attempt to keep the browser busy. But very valid to keep people curious.

UPDATE: fixed the deobfuscation.

deleted 21 characters in body

Source Link

edited Apr 18, 2010 at 2:25

jweyrich

32.5k
5
70
101

By itself, the code does nothing useful nor dangerous.

After manually deobfuscating:

func = function() { var var5 = {}; var5[100] = "_0x32lsj9"; do { var5[100] += var5[100][Math.floor(Math.random() * var5[100].length)]; } while (var5[100].length < 31); return function() { return var5[var5[100]]; } }; func()()()()()()()()()()()()()()()();

Looks like more an invalid attempt to keep your browser busy on the chained calls.

By itself, the code does nothing useful nor dangerous.

After manually deobfuscating:

func = function() { var var5 = {}; var5[100] = "_0x32lsj9"; do { var5[100] += var5[100][Math.floor(Math.random() * var5[100].length)]; } while (var5[100].length < 31); return function() { return var5[var5[100]]; } }; func()()()()()()()()()()()()()()()();

Looks like more an invalid attempt to keep your browser busy on the chained calls.

By itself, the code does nothing useful nor dangerous.

After manually deobfuscating:

func = function() { var var5 = {}; var5[100] = "_0x32lsj9"; do { var5[100] += var5[100][Math.floor(Math.random() * var5[100].length)]; } while (var5[100].length < 31); return function() { return var5[var5[100]]; } }; func()()()()()()()()()()()()()()()();

Looks like more an invalid attempt to keep your browser busy.

added 8 characters in body

Source Link

edited Apr 18, 2010 at 2:17

jweyrich

32.5k
5
70
101

By itself, the code does nothing useful nor dangerous.

After manually deobfuscating:

func = function() { var var5 = {}; var5[100] = "_0x32lsj9"; do { var5[100] += var5[100][Math.floor(Math.random() * var5[100].length)]; } while (var5[100].length < 31); return function() { return var5[var5[100]]; } }; func()()()()()()()()()()()()()()()();

Looks like more an invalid attempt to keep your browser busy on the chained calls.

By itself, the code does nothing useful nor dangerous.

After manually deobfuscating:

func = function() { var var5 = {}; var5[100] = "_0x32lsj9"; do { var5[100] += var5[100][Math.floor(Math.random() * var5[100].length)]; } while (var5[100].length < 31); return function() { return var5[var5[100]]; } }; func()()()()()()()()()()()()()()()();

Looks like more an attempt to keep your browser busy on the chained calls.

By itself, the code does nothing useful nor dangerous.

After manually deobfuscating:

func = function() { var var5 = {}; var5[100] = "_0x32lsj9"; do { var5[100] += var5[100][Math.floor(Math.random() * var5[100].length)]; } while (var5[100].length < 31); return function() { return var5[var5[100]]; } }; func()()()()()()()()()()()()()()()();

Looks like more an invalid attempt to keep your browser busy on the chained calls.