SiteCheck Signatures

  1. Home
  2. Signatures
  3. SiteCheck Signatures
  4. malware-entry-mwiframehd438

malware-entry-mwiframehd438

Description:

Malicious iframe encoded inside a javascript block and using an encryptor/decryptor function. It is used to distribute malware from external web sites while not being visible to the user (also known as HTTP Malicious Toolkit Variant).

 

Domains used in this attack:


http://hu587tiugi.vv.cc/QQkFBg0AAQ0MBA0DEkcJBQYNAgAGBQUBDA==
(and many others)

Affecting:

Any web site sites (no specific target)

 

Clean up:

This malware is generally hidden inside the javascript files. Sign up here to get it clean up: Signup

 

Malware dump (sample of malware):