abcdin.cl;JS/Spy.Banker.KJ

[JM_22 0]

Good afternoon, Please your help, since ESET is detecting the ABCDIN.CL site as malicious and when performing the validation in virustotal it appears clean.

 

 

[Marcos 4,548]

The detection is correct, the website was compromised.

Unfortunately I'm not allowed to open the website to tell you how to look up the malicious code, getting 405 as a response.

[JM_22 0]

Hi marcos,

Thanks for your answer. Please can you tell me since when the abcdin site is blocked by ESET?.

[Marcos 4,548]

The website is not blacklisted by ESET. It's a malicious JavaScript on the website which is detected and blocked. The first detection JS/Spy.Banker.KJ was added in January 2022, however, it doesn't tell anything about when your website was compromised.

[Nevermind 7]

Look for 'Ly9yZWd0ZWNoLnNicw' in the source code of main page. You will find malicious part.

[JM_22 0]

Thank you very much Marco and Nevermind for all your help. The code of the site has already been removed.

[JM_22 0]

Thanks Nevermind!!!