Rule Category


Alert Message

MALWARE-OTHER Php.Webshell.Ayyildiz upload attempt

Rule Explanation

detects Php.Webshell.Ayyildiz

What To Look For

detects Php.Webshell.Ayyildiz

Known Usage

No public information

False Positives

No known false positives


Cisco Talos Intelligence Group

MITRE ATT&CK Framework

Tactic: Persistence

Technique: Web Shell

For reference, see the MITRE ATT&CK vulnerability types here:

Additional Links

Rule Vulnerability


Not Applicable

CVE Additional Information