Infiltration of vulnerable systems via the security issue, which was addressed by PHP maintainers in early June, was followed by the deployment of Msupedge as a pair of dynamic link libraries, an analysis from Symantec's Threat Hunter Team showed.
Article Link: Novel Msupedge backdoor deployed via patched PHP RCE exploit | SC Media