New Frebniis Malware Abuses Microsoft IIS Feature to Establish Backdoor
New Frebniis Malware Abuses Microsoft IIS Feature to Establish Backdoor
17 February 2023
Frebniis ensures Failed Request Tracing is enabled and then accesses w3wp.exe (IIS) process memory, obtaining the address of where the Failed Request Event Buffering code (iisfreb.dll) is loaded.