Malware
RunForestRun
aka Blackhole · Sutra
Active around 2012-2013, this family deployed small JavaScript snippets on infected websites to load exploit kit scripts from DGA-generated domains.
RunForestRun, also known as Blackhole, Sutra, is a JavaScript malware family.
Background
Operating roughly between 2012 and 2013, this family injected short JavaScript snippets into compromised websites so they would pull exploit kit code from domains produced by a DGA. Because it frequently leveraged the Blackhole exploit kit and the Sutra Traffic Distribution System (TDS), it was occasionally mislabeled as Blackhole or Sutra.
Source: Malpedia (Fraunhofer FKIE).