Shell Uploading in Web Server through PhpMyAdmin - Hacking Articles
Tags
attack-pattern: Data Regsvr32 - T1218.010 Server - T1583.004 Server - T1584.004 Social Media - T1593.001 Software - T1592.002 Tool - T1588.002 Regsvr32 - T1117
Show in Graph
Common Information
Type Value
UUID aef82d75-2e24-442f-8647-4a6585abe1ae
Fingerprint 6d3b185aa5a171af
Analysis status DONE
Considered CTI value 0
Text language
Published Feb. 1, 2017, 2:46 p.m.
Added to db Jan. 19, 2023, 12:11 a.m.
Last updated Nov. 7, 2024, 10:45 p.m.
Headline Hacking Articles
Title Shell Uploading in Web Server through PhpMyAdmin - Hacking Articles
Detected Hints/Tags/Attributes 29/1/12
Source URLs
Redirection Url
Details Source http://www.hackingarticles.in/shell-uploading-web-server-phpmyadmin/
URL Provider
Details Provider Source level domain
Details hackingarticles.in www.hackingarticles.in
Attributes
Details Type #Events CTI Value
Details Domain 1 
www.phpmyadmin.net
Details File 43 
www.php
Details File 1 
c:\\xampp\\htdocs\\backdoor.php
Details File 16 
backdoor.php
Details File 62 
scrobj.dll
Details IPv4 30 
192.168.1.101
Details IPv4 17 
192.168.1.104
Details Url 1 
https://www.phpmyadmin.net
Details Url 1 
http://192.168.1.101:81/backdoor.php
Details Url 1 
http://192.168.1.101:81/backdoor.php?cmd=dir
Details Url 1 
http://192.168.1.104:8080/svw72p3irzbscv.sct
Details Url 1 
http://192.168.1.101:81/backdoor.php?cmd=regsvr32