SiteCheck Signatures

  1. Home
  2. SiteCheck Signatures
  3. malware-entry-mwanomalysp8

malware-entry-mwanomalysp8

Description:

A suspicious block of javascript or iframe code was identified. It loads a (possibly malicious) code from external web sites that was detected by our anomaly behaviour engine.

Those types of code are often used to distribute malware from external web sites while not being visible to the user.

 

Signature:

This is not a signature-based rule, but looks at anomaly behaviors on how the web site is being loaded. Our engine found it to be malicious (related to remote includes).

 

Affecting:

Any web site sites (no specific target)

 

Clean up:

This malware is generally hidden inside the javascript files. Sign up here to get it clean up: Signup

 

Malware dump (sample of malware):