SharPyShell
Description
(ClearSky) An obfuscated ASP.NET WebShell that executes commands received by an encrypted channel compiling them in memory at runtime and deploys a privilege escalation tool. This WebShell enables the attackers to download a ‘JuicyPotato’ file to the compromised machine so as to obtain extended privileges.
Names
| Name |
|---|
| SharPyShell |
Category
Malware
Type
- Backdoor
- Downloader
Information
Other Information
Uuid
ebf035b2-ad91-4908-99ee-4a29b7c40bd4
Last Card Change
2021-04-19