The attackers were then able to upload a genuine, non-malicious extension by Magpleasure which allows total editing of Magento Files straight from the administration panel - granting the hacker full control of the Magento environment.
This was then followed by two webshells being uploaded to the website, allowing an attacker to add/edit/delete files within the web root.
We have outlined how you can detect this malware yourself in a technical Whitepaper which you can download using the button below.
Alternatively, we are offering a free 7 day trial of Vngo to allow you to scan your website internally for these webshells.