Emulate calling of global functions through window object

svent / jsdetox

A Javascript malware analysis tool

https://svent.dev/projects/jsdetox/

591 stars 79 forks source link

Emulate calling of global functions through window object #4

Closed svent closed 11 years ago

svent commented 11 years ago

Javascript supports calling global functions through the window object. Example:

function asd() {
  eval("...");
}

window.asd();

JSDetox should emulate this behavior. Thanks to Evild3ad (evild3ad.com) for reporting this - a problem analyzing a sample of the Blackhole Exploit Kit 2 boiled down to this.