Sucuri Malware Labs

Sucuri on Twitter Sucuri on Facebook Sucuri on LinkedIn

Malware entry: MW:JS:IFRAME:INJECTED691Home  |  Notes  |  Malware data  |  Signatures  |  Tools  |  About

Description: A Remote and malicious iframe was identified. It uses javascript to generate the iframe dynamically on the browser of anyone visiting the compromised site.
We are seeing it often on outdated Joomla and WordPress sites.

Affecting: Any web site (most common on WordPress).

Clean up: Malware is hidden at the index.php, index.html or at the bottom of the .js files.

Last update: Dec/2012

Malware dump:

For all our web-based malware signatures, go here: