Zerion Mini Shell

Zerion Mini Shell (version 1.0) is a very simple and lightweight PHP web shell. It is a malicious/backdoor script that allows remote control over a web server after being uploaded (usually through a vulnerability like file upload flaw, RCE or compromised credentials).

Main Purpose
Provides a basic web-based file manager interface to attackers so they can: Browse server directories
Upload, download, view, edit and delete files
Change file permissions (chmod)
Rename files and folders
View file contents directly in browser

It is commonly found in compromised WordPress sites, penetration testing challenges, CTF machines and real-world malware incidents (2021–2025 documented cases).

Key Features
Directory navigation with clickable path breadcrumbs
File upload form (very basic)
File & folder listing with size, permissions display (color-coded: green = writable, red = not readable)
Permission viewer & changer (chmod)
File rename
File content viewer (read source)
File editor (simple textarea)
File/folder delete
Very small size (~5-8 KB), easy to hide
No authentication (completely open once uploaded!)
Unix-style permission string display (e.g. rwxr-xr-x)
Cute/funny emoticon title styling (old-school hacker aesthetic)