Skip to content
MalwareWiki

Malware

SUPERNOVA

According to CISA, SUPERNOVA is a malicious webshell backdoor that allows a remote operator to dynamically inject C# source code into a web portal to subsequently inject code.

SUPERNOVA is a Windows malware family.

Background

CISA characterizes SUPERNOVA as a malicious webshell backdoor that lets a remote operator dynamically inject C# source code into a web portal in order to run additional code. APT actors leverage SUPERNOVA for reconnaissance, domain mapping, and the theft of sensitive data and credentials.

Source: Malpedia (Fraunhofer FKIE).