Rearranged, and lightly obfuscated this malware is used to create malicious PHP functions inside legit PHP files. It creates a function which is gzuncompress-ed and base64 encoded. It is injected inside all kind of functional PHP files and then it can be used for injecting SPAM-SEO, unwanted ads and even more harmful code such as backdoors and loading client side browser exploits.
Severity
HIGH