Sucuri Malware Labs

Sucuri on Twitter Sucuri on Facebook Sucuri on LinkedIn

Malware entry: MW:ANOMALY:SP8Home  |  Notes  |  Malware data  |  Signatures  |  Tools  |  About

Description:

A suspicious block of javascript or iframe code was identified. It loads a (possibly malicious) code from external web sites that was detected by our anomaly behaviour engine. Those types of code are often used to distribute malware from external web sites while not being visible to the user.

 

Signature:

This is not a signature-based rule, but looks at anomaly behaviors on how the web site is being loaded. Our engine found it to be malicious (related to remote includes).

 

Affecting:

Any web site sites (no specific target)

 

Clean up:

This malware is generally hidden inside the javascript files. Sign up here to get it clean up: Signup

 

Malware dump (sample of malware):



For all our web-based malware signatures, go here: http://labs.sucuri.net/?malwaredb