Security home

 

Home / malwarePDF  

Backdoor:ASP/Seasharpee.A


First posted on 01 June 2017.
Source: Microsoft

Aliases :

There are no other names known for Backdoor:ASP/Seasharpee.A.

Explanation :

Installation

The presence of this threat indicates that a remote attacker successfully gained unauthorized access and installed this backdoor in the server. In the wild, we have seen this backdoor installed in hacked Microsoft Exchange Server.

Payload

Allows backdoor access and control

This threat is an ASPX web shell backdoor which provides the remote attacker the ability to control and execute remote commands over a compromised server. This threat can give a malicious hacker access and control of your PC. They can then do a number of different actions, such as:

  • Execute 'cmd' command
  • Upload, download, save and delete file
  • Modify files such as time stamps using GetCreationTime, GetLastAccessTime, GetLastWriteTime, SetCreationTime, SetLastAccessTime and SetLastWriteTime methods
  • Start new process


This malware description was published using the analysis of file SHA1 3bcc33430bbc9bfa9f39590534741d795db02ced.





Analysis by Meths Ferrer

Last update 01 June 2017

 

TOP

Malware :

Family: