Is this a Javascript virus?
I received a random email,(probably automated) that said:
"How are things? I was visiting your website on 4/9/2016 and I'm very interested. I'm currently looking for work either full-time or as an intern to get experience in the field. Please review my resume and let me know what you think.”
Then a javascript file is attached. I scanned it on VirusTotal finding only 1/55. I have opened the file to look at the text and have copy-pasted it into this dump file as it is quite long. Can Anyone confirm whether its a javascript virus or a not?
It most certainly is malware rather than a javascript virus . It uses JavaScript with ActiveX* and VBScript to download and execute a stage two payload that does something else. Although it is written in JavaScript, it is not executed in the browser. Instead, it is executed in the Windows Script Host when it is double-clicked. This is the deobfuscated and abridged version of the function zQlMdib from the file: There is no such thing as a Javascript virus. But, you still can run some scripts to collect some data. The most widespread example is to use JS to get like on FB etc. it's simple and nothing like a javascript virus, however, it's a trick and you can try it on your system. Hint: you can use CharCode() to trick noncomputer guys. There is a sample CharCode in my profile, take a look to get the basic idea.