SiteCheck Signatures

  1. Home
  2. Signatures
  3. SiteCheck Signatures
  4. mwjs-include-pastebin

mwjs-include-pastebin

Description: An unsafe javascript remote include call was identified in the site. It it used to load malware from pastebin pages (via raw view).

Not very common type of malware. Some URLs:


http://pastebin.com/raw.php?i=cEmuLWPu
http://pastebin.com/raw.php?i=cEmuLWwq
.. a few more..

Those are often used to redirect the browser to spammy sites. However, since this is a generic rule, the malware can
change from site to site.

Affecting: Any web site (no specific target).

Clean up: Nothing specific.

Last update: Aug/2012

Malware dump: