Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php goto ud3Lw; aCBFM: $result = curl_exec($ch); goto BZ0up; ud3Lw: require "\x63\x6f\..

Decoded Output download

<?php 
 goto ud3Lw; aCBFM: $result = curl_exec($ch); goto BZ0up; ud3Lw: require "config/koneksi_rw.php"; goto P7itk; Md1va: header("Content-Type: application/json; charset=utf-8"); goto LATHH; G1Za2: if ($proxy == '') { $optArray = array(CURLOPT_URL => $url, CURLOPT_RETURNTRANSFER => true); } else { $optArray = array(CURLOPT_URL => $url, CURLOPT_RETURNTRANSFER => true, CURLOPT_PROXY => "{$proxy}"); } goto bEB10; CsiVB: $url = "https://api.telegram.org/{$token}/sendMessage?parse_mode=markdown&chat_id={$chat_id}&text={$pesan}"; goto dQs5f; DmHa2: if ($resultService["STATUS"] == "ON") { if (!isset($_SERVER["PHP_AUTH_USER"])) { $response = json_encode(array("GetBillRs" => array("STATUS" => "01"))); $insertLog = mysqli_query($con, "INSERT INTO tbpermata_log(CAT,VA_NO,RESPONSE_CODE,`MESSAGE`,IP,`DATE`,`TIME`) VALUES ('Inquiry','{$VI_VANUMBER}','01','Decline','{$IP}','{$DATE}','{$TIME}')"); if ($insertLog) { $pesan = "|PERMATA|Inquiry|" . $VI_VANUMBER . "|Decline"; } echo $response; } else { $check = mysqli_query($con, "SELECT * FROM tbpermata_auth"); $result = mysqli_fetch_array($check); if (isset($result)) { if ($_SERVER["PHP_AUTH_USER"] == $result["USERNAME"] && hash("sha256", $_SERVER["PHP_AUTH_PW"], false) == $result["PASSWORD"]) { if ($_SERVER["REQUEST_METHOD"] == "POST") { function getUserIpAddr() { if (!empty($_SERVER["HTTP_CLIENT_IP"])) { $ip = $_SERVER["HTTP_CLIENT_IP"]; } elseif (!empty($_SERVER["HTTP_X_FORWARDED_FOR"])) { $ip = $_SERVER["HTTP_X_FORWARDED_FOR"]; } else { $ip = $_SERVER["REMOTE_ADDR"]; } return $ip; } $rawJSON = file_get_contents("php://input"); $json = json_decode($rawJSON, TRUE); $INSTCODE = !empty($json["GetBillRq"]["INSTCODE"]) ? $json["GetBillRq"]["INSTCODE"] : ''; $VI_VANUMBER = !empty($json["GetBillRq"]["VI_VANUMBER"]) ? $json["GetBillRq"]["VI_VANUMBER"] : ''; $VI_TRACENO = !empty($json["GetBillRq"]["VI_TRACENO"]) ? $json["GetBillRq"]["VI_TRACENO"] : ''; $VI_TRNDATE = !empty($json["GetBillRq"]["VI_TRNDATE"]) ? $json["GetBillRq"]["VI_TRNDATE"] : ''; $VI_DELCHANNEL = !empty($json["GetBillRq"]["VI_DELCHANNEL"]) ? $json["GetBillRq"]["VI_DELCHANNEL"] : ''; $IP = getUserIpAddr(); $DATE = date("Y-m-d"); $TIME = date("G:i:s"); $check = mysqli_query($con, "SELECT * FROM tbpermata where VA_NO='{$VI_VANUMBER}'"); $result = mysqli_fetch_array($check); if (isset($result)) { $insert = mysqli_query($con, "INSERT INTO tbpermata_inquiry(NO_TRANS,INSTCODE,VI_VANUMBER,VI_TRACENO,VI_TRNDATE,VI_DELCHANNEL,`DATE`,`TIME`,IP) VALUES (null,'{$INSTCODE}','{$VI_VANUMBER}','{$VI_TRACENO}','{$VI_TRNDATE}','{$VI_DELCHANNEL}','{$DATE}','{$TIME}','{$IP}')"); $response = json_encode(array("GetBillRs" => array("CUSTNAME" => $result["DEBITNAME"], "BILL_AMOUNT" => "0", "VI_CCY" => "360", "RefInfo" => '', "STATUS" => "00"))); $insertLog = mysqli_query($con, "INSERT INTO tbpermata_log(CAT,VA_NO,RESPONSE_CODE,`MESSAGE`,IP,`DATE`,`TIME`) VALUES ('Inquiry','{$VI_VANUMBER}','00','Success','{$IP}','{$DATE}','{$TIME}')"); if ($insertLog) { $pesan = "|PERMATA|Inquiry|" . $VI_VANUMBER . "|Success"; } echo $response; } else { $response = json_encode(array("GetBillRs" => array("CUSTNAME" => '', "BILL_AMOUNT" => "0", "VI_CCY" => "360", "RefInfo" => '', "STATUS" => "00"))); $insertLog = mysqli_query($con, "INSERT INTO tbpermata_log(CAT,VA_NO,RESPONSE_CODE,`MESSAGE`,IP,`DATE`,`TIME`) VALUES ('Inquiry','{$VI_VANUMBER}','00','Bill Not Found','{$IP}','{$DATE}','{$TIME}')"); if ($insertLog) { $pesan = "|PERMATA|Inquiry|" . $VI_VANUMBER . "|Bill Not Found"; } echo $response; } } else { $response = json_encode(array("GetBillRs" => array("STATUS" => "66"))); $insertLog = mysqli_query($con, "INSERT INTO tbpermata_log(CAT,VA_NO,RESPONSE_CODE,`MESSAGE`,IP,`DATE`,`TIME`) VALUES ('Inquiry','{$VI_VANUMBER}','66','General Error','{$IP}','{$DATE}','{$TIME}')"); if ($insertLog) { $pesan = "|PERMATA|Inquiry|" . $VI_VANUMBER . "|General Error"; } echo $response; } } else { $response = json_encode(array("GetBillRs" => array("STATUS" => "01"))); $insertLog = mysqli_query($con, "INSERT INTO tbpermata_log(CAT,VA_NO,RESPONSE_CODE,`MESSAGE`,IP,`DATE`,`TIME`) VALUES ('Inquiry','{$VI_VANUMBER}','01','Decline','{$IP}','{$DATE}','{$TIME}')"); if ($insertLog) { $pesan = "|PERMATA|Inquiry|" . $VI_VANUMBER . "|Decline"; } echo $response; } } } } else { $response["value"] = 999; $response["message"] = "Service Status OFF"; echo json_encode($response); } goto pZPY3; bEB10: curl_setopt_array($ch, $optArray); goto aCBFM; BZ0up: $err = curl_error($ch); goto VKRr3; P7itk: header("Access-Control-Allow-Headers: Authorization, Content-Type"); goto Zm7EG; LATHH: header("Accept: application/json"); goto NmeH6; E5aYu: $resultService = mysqli_fetch_array($checkService); goto DmHa2; gj79S: header("Access-Control-Allow-Methods: POST"); goto Md1va; NmeH6: $checkService = mysqli_query($con, "SELECT * FROM tbservice WHERE LAYANAN='VA-PERMATA'"); goto E5aYu; pZPY3: $token = "bot" . "1106659026:AAEOe4Td4hEUdtNVNC_0E69rS88I_4q63B4"; goto bsMS0; dQs5f: $ch = curl_init(); goto G1Za2; bsMS0: $chat_id = "821077600"; goto CsiVB; Zm7EG: header("Access-Control-Allow-Origin: *"); goto gj79S; VKRr3: curl_close($ch); ?>

Did this file decode correctly?

Original Code

<?php
 goto ud3Lw; aCBFM: $result = curl_exec($ch); goto BZ0up; ud3Lw: require "\x63\x6f\156\x66\151\147\57\153\x6f\156\x65\x6b\x73\151\137\162\167\x2e\160\150\x70"; goto P7itk; Md1va: header("\x43\x6f\x6e\164\x65\156\x74\x2d\x54\171\160\145\x3a\40\141\x70\x70\154\x69\x63\x61\x74\x69\157\156\x2f\152\x73\x6f\156\73\x20\x63\x68\141\x72\x73\x65\164\x3d\165\164\x66\55\70"); goto LATHH; G1Za2: if ($proxy == '') { $optArray = array(CURLOPT_URL => $url, CURLOPT_RETURNTRANSFER => true); } else { $optArray = array(CURLOPT_URL => $url, CURLOPT_RETURNTRANSFER => true, CURLOPT_PROXY => "{$proxy}"); } goto bEB10; CsiVB: $url = "\x68\164\x74\x70\163\x3a\57\57\x61\160\151\56\164\145\154\x65\147\162\141\155\x2e\157\x72\147\57{$token}\x2f\x73\145\x6e\x64\115\145\163\163\141\147\x65\77\160\141\x72\163\x65\x5f\x6d\157\144\x65\75\155\141\x72\x6b\144\x6f\167\x6e\x26\143\150\141\164\x5f\151\x64\x3d{$chat_id}\x26\164\x65\x78\164\x3d{$pesan}"; goto dQs5f; DmHa2: if ($resultService["\123\x54\101\124\125\123"] == "\117\x4e") { if (!isset($_SERVER["\120\110\x50\137\x41\x55\124\x48\137\125\x53\105\122"])) { $response = json_encode(array("\x47\x65\164\x42\151\154\154\122\x73" => array("\123\124\x41\124\x55\123" => "\60\x31"))); $insertLog = mysqli_query($con, "\111\116\123\x45\x52\x54\40\x49\x4e\124\117\40\x74\142\160\145\162\x6d\x61\164\x61\x5f\x6c\157\x67\50\103\x41\124\x2c\x56\x41\x5f\x4e\x4f\54\122\105\x53\x50\117\x4e\123\x45\x5f\103\117\x44\x45\54\140\x4d\105\123\123\101\x47\x45\x60\54\x49\120\x2c\x60\x44\x41\124\x45\140\54\140\124\111\x4d\105\140\x29\40\126\x41\114\x55\x45\123\x20\x28\x27\111\156\x71\165\x69\162\171\47\54\x27{$VI_VANUMBER}\47\x2c\47\x30\61\47\x2c\x27\104\145\143\154\x69\x6e\145\47\x2c\x27{$IP}\x27\x2c\47{$DATE}\47\54\x27{$TIME}\47\51"); if ($insertLog) { $pesan = "\x7c\x50\x45\122\115\101\124\101\x7c\111\156\161\x75\151\x72\x79\174" . $VI_VANUMBER . "\x7c\x44\x65\143\154\x69\156\x65"; } echo $response; } else { $check = mysqli_query($con, "\123\x45\x4c\x45\103\124\x20\52\40\106\122\x4f\115\x20\x74\x62\x70\145\162\x6d\x61\164\141\x5f\141\x75\164\x68"); $result = mysqli_fetch_array($check); if (isset($result)) { if ($_SERVER["\120\x48\120\x5f\101\x55\124\110\x5f\x55\x53\x45\x52"] == $result["\x55\x53\105\x52\116\101\115\105"] && hash("\163\150\141\x32\x35\x36", $_SERVER["\120\x48\120\x5f\x41\x55\x54\110\137\120\127"], false) == $result["\120\x41\x53\123\x57\x4f\x52\104"]) { if ($_SERVER["\x52\105\121\125\x45\123\x54\x5f\x4d\x45\x54\110\117\x44"] == "\x50\117\x53\x54") { function getUserIpAddr() { if (!empty($_SERVER["\x48\x54\x54\120\137\x43\x4c\111\105\x4e\124\137\111\x50"])) { $ip = $_SERVER["\110\124\124\x50\137\103\x4c\x49\x45\x4e\x54\x5f\x49\120"]; } elseif (!empty($_SERVER["\110\x54\x54\x50\137\x58\x5f\x46\117\122\x57\101\122\104\105\x44\x5f\x46\117\x52"])) { $ip = $_SERVER["\110\x54\x54\120\137\130\x5f\x46\117\x52\127\x41\122\104\x45\104\x5f\x46\x4f\x52"]; } else { $ip = $_SERVER["\x52\x45\115\117\124\x45\137\x41\104\x44\122"]; } return $ip; } $rawJSON = file_get_contents("\160\x68\x70\72\57\57\x69\156\x70\x75\164"); $json = json_decode($rawJSON, TRUE); $INSTCODE = !empty($json["\x47\145\164\102\x69\x6c\154\x52\x71"]["\x49\x4e\123\x54\x43\x4f\104\105"]) ? $json["\x47\145\164\102\151\x6c\154\x52\161"]["\111\x4e\123\124\103\x4f\104\105"] : ''; $VI_VANUMBER = !empty($json["\x47\x65\164\102\x69\154\x6c\x52\x71"]["\x56\x49\137\126\x41\x4e\x55\x4d\102\105\122"]) ? $json["\x47\x65\164\x42\151\154\154\122\161"]["\x56\x49\x5f\x56\x41\x4e\125\x4d\x42\x45\122"] : ''; $VI_TRACENO = !empty($json["\x47\x65\164\102\x69\x6c\154\x52\x71"]["\x56\111\137\124\122\101\103\105\x4e\117"]) ? $json["\107\x65\164\102\x69\x6c\154\122\x71"]["\x56\x49\x5f\x54\x52\101\103\x45\116\x4f"] : ''; $VI_TRNDATE = !empty($json["\x47\145\x74\102\x69\154\154\122\x71"]["\126\x49\137\124\122\116\104\x41\124\105"]) ? $json["\x47\x65\x74\102\151\x6c\154\x52\x71"]["\126\x49\137\x54\122\x4e\104\x41\124\105"] : ''; $VI_DELCHANNEL = !empty($json["\107\145\164\x42\151\x6c\x6c\122\x71"]["\126\x49\x5f\104\105\114\x43\110\x41\x4e\x4e\105\x4c"]) ? $json["\107\x65\164\x42\151\154\x6c\122\x71"]["\126\x49\x5f\104\x45\114\x43\110\x41\116\x4e\x45\x4c"] : ''; $IP = getUserIpAddr(); $DATE = date("\x59\55\x6d\55\x64"); $TIME = date("\x47\72\x69\x3a\163"); $check = mysqli_query($con, "\x53\x45\114\105\103\124\x20\52\40\x46\x52\x4f\x4d\x20\x74\x62\160\145\162\155\141\164\141\40\x77\150\145\162\145\x20\126\101\x5f\x4e\117\75\47{$VI_VANUMBER}\47"); $result = mysqli_fetch_array($check); if (isset($result)) { $insert = mysqli_query($con, "\111\x4e\123\x45\122\x54\40\x49\116\124\117\40\164\x62\x70\x65\x72\155\141\164\x61\x5f\x69\156\x71\165\x69\x72\171\50\x4e\117\x5f\124\x52\101\x4e\x53\54\111\116\x53\x54\x43\117\x44\105\x2c\x56\111\137\x56\x41\x4e\x55\115\102\105\122\x2c\x56\111\x5f\124\122\101\x43\x45\116\117\x2c\126\111\x5f\x54\x52\x4e\104\101\124\x45\54\126\x49\137\x44\x45\x4c\103\x48\x41\x4e\116\x45\x4c\x2c\140\104\101\124\105\140\54\x60\124\x49\115\x45\140\54\x49\120\51\40\126\x41\x4c\x55\x45\123\40\50\x6e\x75\x6c\154\54\47{$INSTCODE}\x27\54\47{$VI_VANUMBER}\47\54\x27{$VI_TRACENO}\47\54\47{$VI_TRNDATE}\47\x2c\47{$VI_DELCHANNEL}\x27\x2c\x27{$DATE}\x27\54\47{$TIME}\x27\x2c\47{$IP}\47\x29"); $response = json_encode(array("\107\x65\164\102\151\154\x6c\x52\x73" => array("\103\x55\123\x54\x4e\x41\115\x45" => $result["\104\105\102\111\124\x4e\x41\115\105"], "\x42\x49\114\114\x5f\101\x4d\x4f\x55\x4e\124" => "\x30", "\x56\x49\137\103\x43\x59" => "\x33\x36\x30", "\x52\x65\x66\111\156\146\157" => '', "\x53\124\101\124\x55\x53" => "\60\60"))); $insertLog = mysqli_query($con, "\111\116\x53\105\x52\x54\x20\111\116\x54\117\x20\x74\x62\x70\x65\162\x6d\141\x74\141\x5f\x6c\157\147\50\x43\x41\x54\54\x56\x41\137\116\117\54\122\105\x53\x50\117\x4e\x53\105\137\103\x4f\104\x45\x2c\140\115\105\x53\123\101\x47\x45\x60\x2c\111\120\x2c\140\104\x41\x54\x45\x60\x2c\x60\124\111\115\105\140\51\x20\x56\101\x4c\x55\x45\x53\x20\x28\47\111\156\x71\x75\x69\162\x79\47\x2c\x27{$VI_VANUMBER}\x27\x2c\x27\60\x30\47\54\47\123\x75\143\143\145\x73\x73\47\54\x27{$IP}\x27\54\47{$DATE}\x27\54\x27{$TIME}\47\x29"); if ($insertLog) { $pesan = "\174\x50\105\x52\x4d\x41\x54\x41\x7c\111\x6e\161\x75\x69\162\171\174" . $VI_VANUMBER . "\174\123\165\143\x63\145\x73\x73"; } echo $response; } else { $response = json_encode(array("\107\x65\164\x42\x69\154\x6c\122\163" => array("\103\x55\x53\x54\116\x41\115\105" => '', "\102\111\114\114\137\x41\115\117\x55\x4e\x54" => "\60", "\126\x49\137\103\x43\131" => "\x33\66\60", "\122\x65\146\111\156\x66\x6f" => '', "\123\x54\x41\124\x55\x53" => "\x30\x30"))); $insertLog = mysqli_query($con, "\111\116\x53\105\x52\x54\40\x49\116\x54\x4f\40\x74\x62\160\x65\162\x6d\141\164\x61\x5f\154\x6f\147\50\103\101\124\54\126\101\137\x4e\x4f\54\x52\x45\x53\120\x4f\x4e\123\105\x5f\103\117\x44\x45\54\x60\115\105\x53\x53\x41\x47\105\x60\x2c\x49\x50\x2c\140\x44\101\124\105\140\54\140\x54\111\x4d\x45\x60\51\40\x56\101\x4c\125\105\x53\x20\x28\47\111\156\161\x75\x69\162\171\x27\x2c\x27{$VI_VANUMBER}\x27\x2c\x27\60\x30\47\54\47\x42\x69\x6c\154\x20\x4e\157\164\x20\106\157\165\x6e\x64\47\54\x27{$IP}\47\54\x27{$DATE}\x27\54\47{$TIME}\x27\51"); if ($insertLog) { $pesan = "\x7c\x50\105\x52\115\x41\124\x41\174\x49\156\161\165\x69\x72\x79\x7c" . $VI_VANUMBER . "\x7c\x42\x69\x6c\x6c\40\116\157\x74\40\x46\x6f\x75\156\144"; } echo $response; } } else { $response = json_encode(array("\x47\x65\164\x42\151\154\x6c\122\163" => array("\x53\124\x41\x54\125\123" => "\66\x36"))); $insertLog = mysqli_query($con, "\111\x4e\x53\105\122\124\x20\x49\x4e\124\117\40\x74\x62\x70\145\162\x6d\141\164\141\137\x6c\x6f\x67\50\x43\101\x54\x2c\x56\x41\137\116\x4f\54\122\105\x53\120\117\116\123\x45\137\x43\117\x44\x45\54\140\x4d\105\x53\123\101\107\105\140\54\111\120\x2c\140\104\101\x54\105\140\54\140\x54\111\115\x45\140\51\x20\126\x41\x4c\125\x45\x53\40\50\x27\x49\x6e\161\x75\151\162\171\x27\x2c\47{$VI_VANUMBER}\47\x2c\47\66\66\x27\54\x27\x47\145\x6e\145\x72\141\x6c\x20\105\x72\x72\157\x72\x27\x2c\x27{$IP}\47\54\x27{$DATE}\47\x2c\47{$TIME}\x27\x29"); if ($insertLog) { $pesan = "\174\x50\105\x52\x4d\101\124\x41\174\111\156\x71\165\x69\x72\171\174" . $VI_VANUMBER . "\x7c\107\145\x6e\145\x72\x61\x6c\x20\105\x72\x72\x6f\162"; } echo $response; } } else { $response = json_encode(array("\107\x65\x74\x42\151\x6c\154\x52\163" => array("\123\x54\101\124\x55\123" => "\60\61"))); $insertLog = mysqli_query($con, "\x49\116\x53\105\122\x54\40\x49\x4e\124\117\40\x74\x62\x70\145\162\x6d\141\x74\141\x5f\154\x6f\x67\50\x43\x41\124\x2c\126\101\137\x4e\117\54\122\105\123\120\117\116\x53\x45\137\x43\117\104\105\x2c\140\115\x45\123\123\101\107\105\140\54\111\120\x2c\140\x44\101\124\x45\140\x2c\140\x54\111\x4d\x45\x60\x29\x20\x56\101\x4c\125\105\x53\x20\x28\47\x49\x6e\161\165\151\x72\x79\47\54\47{$VI_VANUMBER}\x27\x2c\47\x30\x31\x27\54\47\104\x65\143\154\151\156\x65\47\x2c\47{$IP}\47\54\x27{$DATE}\x27\54\x27{$TIME}\x27\x29"); if ($insertLog) { $pesan = "\174\x50\105\122\x4d\101\x54\101\x7c\x49\x6e\x71\165\151\x72\171\174" . $VI_VANUMBER . "\174\104\145\143\x6c\x69\x6e\x65"; } echo $response; } } } } else { $response["\166\141\x6c\x75\x65"] = 999; $response["\155\145\x73\x73\141\x67\x65"] = "\x53\x65\162\166\x69\x63\x65\x20\x53\x74\x61\164\x75\x73\x20\117\106\106"; echo json_encode($response); } goto pZPY3; bEB10: curl_setopt_array($ch, $optArray); goto aCBFM; BZ0up: $err = curl_error($ch); goto VKRr3; P7itk: header("\x41\143\x63\x65\163\163\x2d\103\x6f\156\x74\x72\x6f\x6c\x2d\x41\154\x6c\x6f\x77\x2d\110\145\x61\144\145\162\163\x3a\40\x41\x75\x74\150\x6f\x72\151\x7a\x61\x74\151\157\156\x2c\40\103\157\x6e\164\145\156\x74\55\x54\171\160\x65"); goto Zm7EG; LATHH: header("\x41\x63\x63\x65\160\x74\x3a\40\x61\x70\x70\154\x69\x63\141\x74\151\157\156\57\x6a\163\157\x6e"); goto NmeH6; E5aYu: $resultService = mysqli_fetch_array($checkService); goto DmHa2; gj79S: header("\x41\x63\143\145\x73\x73\x2d\103\157\x6e\x74\162\157\154\55\101\154\154\157\167\x2d\x4d\x65\x74\150\x6f\144\163\x3a\40\120\x4f\123\x54"); goto Md1va; NmeH6: $checkService = mysqli_query($con, "\x53\105\x4c\105\103\x54\40\52\x20\x46\122\x4f\115\x20\x74\x62\x73\x65\x72\x76\x69\143\145\40\x57\x48\105\122\105\x20\x4c\101\131\x41\x4e\101\116\x3d\47\126\x41\x2d\x50\x45\x52\115\101\x54\101\47"); goto E5aYu; pZPY3: $token = "\x62\x6f\x74" . "\x31\x31\60\x36\x36\x35\71\x30\62\66\x3a\x41\101\x45\x4f\x65\64\124\144\64\150\105\x55\144\x74\x4e\126\x4e\x43\x5f\60\105\x36\x39\162\123\x38\70\111\137\64\161\66\x33\x42\64"; goto bsMS0; dQs5f: $ch = curl_init(); goto G1Za2; bsMS0: $chat_id = "\70\62\x31\x30\67\67\x36\x30\60"; goto CsiVB; Zm7EG: header("\101\143\x63\x65\163\x73\x2d\x43\157\156\164\x72\x6f\x6c\x2d\x41\x6c\154\x6f\x77\55\117\162\x69\x67\151\156\72\40\52"); goto gj79S; VKRr3: curl_close($ch);

Function Calls

None

Variables

None

Stats

MD5 4e6a0f1af9f2cef1b661c8b20ad8d632
Eval Count 0
Decode Time 53 ms