SiteCheck Signatures

  1. Home
  2. Signatures
  3. SiteCheck Signatures
  4. malware-entry-mwiframehd207

malware-entry-mwiframehd207

Description:

Javascript code used to hide a malicious iframe from http://img514.img.com and other domains.
This is used to load malware from external web sites wile not being visible to the user.

 

Affecting:

WordPress site (hidden at the header.php)

Clean up:

This malware is generally hidden inside the template footer or header.

Malware dump (sample of malware):

var caaB,BaaBcBacB,BBBaBcBB, caaaBcac; BBBaBcBB = eval;..