Backdoor that uses the PHP eval() function to execute system commands passed through a POST request to the infected website.
This malware allows attackers to execute any php command or even system commands if available.
POST requests are not usually logged thus making it harder to identify the behavior on server access log files.
Severity
HIGH