SiteCheck Signatures

  1. Home
  2. Docs
  3. SiteCheck Signatures
  4. mwjs-encoded-dadong1


Description: Our scanners identified an encrypted (encoded) javascript block that used the Dadong's JSXX 0.XX encoder. This code is often seeing on compromised sites with the latest 0-day exploit for Java.

We have been seeing it on other infections, but not very frequently (Aug/2012).

Affecting: No specific targeted.

Clean up: Malware is hidden at the javascript files.

Last update: Aug/2012.

Malware dump: