{ISPP}suspect.js.checkout.4

False Positive Probability: very low

This malware is forwarding order data (possibly including credit card data) from the checkout page of shop software (e. g. Magento) to an attackers server. It is injected as hidden/crypted JavaScript into the shop page(s).