First posted on 01 June 2017.
There are no other names known for Backdoor:ASP/Seasharpee.A.
The presence of this threat indicates that a remote attacker successfully gained unauthorized access and installed this backdoor in the server. In the wild, we have seen this backdoor installed in hacked Microsoft Exchange Server.
Allows backdoor access and control
This threat is an ASPX web shell backdoor which provides the remote attacker the ability to control and execute remote commands over a compromised server. This threat can give a malicious hacker access and control of your PC. They can then do a number of different actions, such as:
- Execute 'cmd' command
- Upload, download, save and delete file
- Modify files such as time stamps using GetCreationTime, GetLastAccessTime, GetLastWriteTime, SetCreationTime, SetLastAccessTime and SetLastWriteTime methods
- Start new process
This malware description was published using the analysis of file SHA1 3bcc33430bbc9bfa9f39590534741d795db02ced.
Analysis by Meths Ferrer
Last update 01 June 2017