Malware Signatures

  1. Home
  2. Docs
  3. Malware Signatures
  4. rex.create_function.003


Rearranged, and lightly obfuscated this malware is used to create malicious PHP functions inside legit PHP files. It creates a function which is gzuncompress-ed and base64 encoded. It is injected inside all kind of functional PHP files and then it can be used for injecting SPAM-SEO, unwanted ads and even more harmful code such as backdoors and loading client side browser exploits.