ioc[.]one - OSINT Cyber Threat Intelligence Database

Backdoors in XAMPP stack (part I): PHP extensions

Tags

attack-pattern:

Server - T1583.004 Server - T1584.004

Show in Graph

Common Information

Type	Value
UUID	a69ed3c1-991b-423e-9357-23bb00d1c820
Fingerprint	368782407d333be5
Analysis status	DONE
Considered CTI value	0
Text language
Published	June 20, 2017, midnight
Added to db	Jan. 18, 2023, 11:46 p.m.
Last updated	Nov. 17, 2024, 6:50 p.m.
Headline	Backdoors in XAMPP stack (part I): PHP extensions
Title	Backdoors in XAMPP stack (part I): PHP extensions
Detected Hints/Tags/Attributes	27/1/7

Source URLs

	Redirection	Url
Details	Source	https://www.tarlogic.com/en/blog/backdoors-php-extensions/

URL Provider

Details	Provider	Source level domain
Details	tarlogic.com	www.tarlogic.com

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	24		php.net
Details	Domain	1		creado.so
Details	Domain	18		www.tarlogic.com
Details	File	33		php.ini
Details	File	1		sapi_module.reg
Details	File	41		www.tar
Details	IPv4	1441		127.0.0.1