SessionManager
Description
(Palo Alto) SessionManager is a unique custom backdoor that allows its operators to run commands, as well as uploading files to and downloading them from the web server. This threat also allows attackers to use the web server as a proxy to communicate with additional systems on the network.
Names
| Name |
|---|
| SessionManager |
Category
Malware
Type
- Backdoor
Information
- https://unit42.paloaltonetworks.com/rare-possible-gelsemium-attack-targets-se-asia/
- https://securelist.com/the-sessionmanager-iis-backdoor/106868/
Malpedia
Other Information
Uuid
6bb6d05c-cfa7-40a7-91c2-92d94b3e2f38
Last Card Change
2023-10-13