SiteCheck Signatures

  1. Home
  2. Signatures
  3. SiteCheck Signatures
  4. mwjs-encoded-hex1

mwjs-encoded-hex1

Description: Our scanners identified an hex encoded javascript include call. This is used to hide the domain being called to try to make it harder to identify.

Not seeing it often or on many sites (Sep/2012).


http://li122.cn/vv.js

Affecting: No specific targeted.

Clean up: Malware is hidden at the javascript files.

Last update: Sep/2012.

Malware dump: