Hi! Hello Dolly itself is not a malware. But a malware could have infected the plugin via SQL-Injection. If you take a look at the plugin, you’ll see it’s named hello.php, not dolly.php. Treat it as suspicious. The Hello Dolly plugin is just 1 file, hello.php. Dolly.php is not part of it, likely to be a hackers attempt to hide in plain sight.
