SiteCheck Signatures

  1. Home
  2. Docs
  3. SiteCheck Signatures
  4. malware-entry-mwiframehd13



Javascript encoded code used to hide an iframe from And a few different domains. This is used to load malware from external web sites while not being visible to the user.



VBulletin and WordPress sites.


Clean up:

This malware is generally hidden inside the template footer or header.


Malware dump (sample of malware):