wp-includeswp-includes is a website for every WordPress fan – Tutorials, news and database all related to WordPress!

Tag: Labs Note

wp-includeswp-includes is a website for every WordPress fan – Tutorials, news and database all related to WordPress!

Smoker Backdoor: Evasion Techniques in Webshell Backdoors

By wp-includes.com Sucuri August 13, 2020

“Smoker Backdoor” is a PHP webshell backdoor that uses hexadecimal and decimal obfuscation in conjunction with the PHP function goto to evade detection from malware scanners. The hexadecimal/decimal obfuscation is clear to see when viewing the file’s PHP code. For…

PHP Binary Downloader

By wp-includes.com Sucuri August 7, 2020

When possible, an attacker will want to avoid using specific functions in their PHP code that they know are more likely to be flagged by a scanner. Some examples of suspicious functions commonly detected include system and file_put_contents. In this…