Short scripts that deliver malware to a website are nothing new, but during a recent investigation we found a script using hastebin.com, which is a domain we see used infrequently.
The script was found writing malicious contents into an image directory on a compromised website, allowing an attacker to execute other malicious commands.
The attacker was likely leveraging hastebin instead of pastebin since it’s not as frequently used.
What is Hastebin?
Hastebin is a service allowing you to save and share text coding snippets.
It is a similar open sourced version of pastebin. You can read more about Hastebin and usage here.