Installer/Binaries modified on third-party GitHub mirrors to include malware. due to legacy status. Conclusion

The exploit is often spread through phishing attacks or by exploiting other vulnerabilities in software. Once the exploit is installed on the server, it can be used to execute arbitrary code, allowing the attacker to take control of the server.