Home Testimonials Company Support 1–888–873–0817
PRICING SUPPORT LOGIN
Home Notes Malware Signatures About

Malware entry: MW:JS:DEPACK

Description:Encoded javascript using a packer by Dean Edwards. This packer can be used on legitimate applications, but is often deployed by attackers to hide their scripts.
 
In this case we found it to hide remote javascript/iframe calls to malicious web sites (very common on WordPress sites compromised via the timthumb.php vulnerability).
 
Domains distributing malware:
Affecting: Any web site (no specific target).
 
Malware dump:

For all our web-based malware signatures, go here: http://labs.sucuri.net/?malwaredb