Malware File Transfer DEWMODE Webshell

Rule ID

1138918

Severity

High

Description

DEWMODE Webshell File Transfer, DEWMODE Webshell is a PHP webshell backdoor and is reported that the webshell was used in targeted attacks by UNC2546.

Impact

Others

Recommendation

Update vendor's patch.

IPS Category

Malware traffic

IPS Anomaly Group

N/A

IPS Rule Default Action

Deny

References

Keywords

DEWMODE

Date Created

2021/03/26

Last Updated

2024/08/30

This website uses cookies to ensure you get the best experience on our website.

Learn more