ByPassGodzilla

Description

(Kaspersky) A Chinese web shell encryptor used to obfuscate other deployed web shells to bypass detections. We were able to source different implementations of encrypted web shells in .NET and ASPX scripts from the same server. According to our telemetry, the newly discovered web shell was also associated with a campaign leveraging CVE-2023-26360 early this year targeting vulnerable servers in the Middle East.

Names

Name
ByPassGodzilla

Type

Backdoor

Information

https://securelist.com/new-tropic-trooper-web-shell-infection/113737/

Other Information

Uuid

77cc7833-6d0f-4a43-b89c-c25012dd89fa

Last Card Change

2024-10-23

Threat Intelligence Garden

Explorer

ByPassGodzilla

ByPassGodzilla

Description

Names

Category

Type

Information

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks