Find this useful? Enter your email to receive occasional updates for securing PHP code.
Signing you up...
Thank you for signing up!
PHP Decode
<?php goto HqVfg; HqVfg: ?> <!doctypehtml><html><head><title>Tata Neu</title><style>*{f..
Decoded Output download
<?php
goto HqVfg; HqVfg: ?>
<!doctypehtml><html><head><title>Tata Neu</title><style>*{font-size:50px}h1{font-size:70px}button,input{border-radius:40px;height:10vh;width:25vw;min-width:700px;display:block}input{font-size:5vh;text-align:center;margin-bottom:1vh}</style></head><body><center><h1>Tata Neu</h1></center><center><form action=""method="post"><label for="phone">Enter Phone Number:</label> <input id="phone"maxlength="10"name="phone"oninput='this.value=this.value.replace(/[^0-9]/g,"")'required> <input type="submit"value="Submit"></form></center><?php goto aAmJ2; aAmJ2: if ($_SERVER["REQUEST_METHOD"] == "POST") { $phone = $_POST["phone"]; $url = "https://api.tatadigital.com/api/v2/sso/change-phone"; $headers = array("Accept: */*", "Accept-Encoding: gzip, deflate, br", "Accept-Language: en-US,en;q=0.9", "Authorization: Bearer 04d9409f-38e9-4e69-8cc1-a29a713d0456", "Client_id: TCP-WEB-APP", "Content-Type: application/json; charset=utf-8", "Neu-App-Version: 5.1.0", "Origin: https://www.tatadigital.com", "Referer: https://www.tatadigital.com/", "Referring-Client: https://www.tatadigital.com", "Sec-Ch-Ua: "Chromium";v="122", "Not(A:Brand";v="24", "Microsoft Edge";v="122"", "Sec-Ch-Ua-Mobile: ?1", "Sec-Ch-Ua-Platform: "Android"", "Sec-Fetch-Dest: empty", "Sec-Fetch-Mode: cors", "Sec-Fetch-Site: same-site", "User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/122.0.0.0 Mobile Safari/537.36 Edg/122.0.0.0"); $payload = json_encode(array("countryCode" => "+91", "phone" => $phone)); $ch = curl_init($url); curl_setopt($ch, CURLOPT_POST, true); curl_setopt($ch, CURLOPT_POSTFIELDS, $payload); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_HTTPHEADER, $headers); $response = curl_exec($ch); $status_code = curl_getinfo($ch, CURLINFO_HTTP_CODE); curl_close($ch); $data = json_decode($response, true); if (isset($data["userType"])) { if ($data["userType"] === "new") { echo "<h1><center>New account </center></h1>"; } else { echo "<h1><center>Old account </center></h1>"; } } else { echo " <h1><center> Error Occured</center></h1>"; } } goto cU82v; cU82v: ?>
</body></html>
Did this file decode correctly?
Original Code
<?php
goto HqVfg; HqVfg: ?>
<!doctypehtml><html><head><title>Tata Neu</title><style>*{font-size:50px}h1{font-size:70px}button,input{border-radius:40px;height:10vh;width:25vw;min-width:700px;display:block}input{font-size:5vh;text-align:center;margin-bottom:1vh}</style></head><body><center><h1>Tata Neu</h1></center><center><form action=""method="post"><label for="phone">Enter Phone Number:</label> <input id="phone"maxlength="10"name="phone"oninput='this.value=this.value.replace(/[^0-9]/g,"")'required> <input type="submit"value="Submit"></form></center><?php goto aAmJ2; aAmJ2: if ($_SERVER["\122\x45\121\125\x45\123\124\137\x4d\x45\x54\x48\x4f\104"] == "\x50\x4f\x53\x54") { $phone = $_POST["\x70\150\x6f\x6e\145"]; $url = "\x68\164\164\160\163\x3a\x2f\57\141\160\151\56\164\141\164\x61\x64\x69\x67\x69\164\141\154\x2e\x63\157\155\x2f\x61\160\x69\x2f\x76\62\57\163\x73\x6f\x2f\x63\150\x61\x6e\x67\145\x2d\160\x68\157\x6e\x65"; $headers = array("\101\143\x63\145\160\164\72\x20\x2a\57\x2a", "\x41\x63\143\145\160\x74\55\105\x6e\x63\157\x64\x69\x6e\147\72\x20\147\172\151\160\54\x20\144\x65\146\x6c\x61\164\145\x2c\x20\x62\162", "\x41\x63\143\x65\160\x74\x2d\x4c\141\x6e\147\x75\141\147\145\x3a\x20\x65\156\x2d\x55\123\x2c\145\x6e\x3b\x71\x3d\60\x2e\71", "\101\165\164\150\157\162\151\172\141\x74\x69\157\x6e\72\40\102\x65\x61\162\x65\x72\40\60\64\x64\x39\64\60\x39\146\x2d\x33\x38\145\71\x2d\64\x65\66\71\55\70\143\x63\x31\55\141\62\71\x61\67\61\63\x64\x30\64\x35\66", "\x43\x6c\x69\145\x6e\x74\x5f\151\144\x3a\40\124\x43\120\x2d\x57\x45\x42\55\101\x50\120", "\103\x6f\156\164\145\x6e\164\x2d\124\x79\x70\145\x3a\40\x61\160\x70\x6c\151\143\x61\x74\151\x6f\x6e\57\x6a\163\x6f\x6e\73\40\x63\x68\x61\162\x73\145\x74\x3d\165\x74\x66\55\70", "\x4e\x65\165\55\x41\160\x70\55\x56\145\162\163\x69\157\156\72\40\x35\56\x31\56\60", "\117\162\x69\147\151\x6e\72\40\150\164\x74\160\163\72\x2f\x2f\x77\x77\167\x2e\x74\141\x74\141\144\151\147\x69\x74\141\x6c\x2e\x63\157\x6d", "\x52\x65\x66\x65\x72\x65\162\x3a\x20\x68\164\164\x70\163\72\57\x2f\x77\167\x77\x2e\x74\x61\164\141\144\x69\147\x69\x74\x61\x6c\x2e\143\157\155\x2f", "\x52\145\146\x65\x72\x72\x69\156\147\55\x43\x6c\x69\145\156\164\72\40\x68\x74\164\160\163\x3a\57\57\167\x77\x77\x2e\x74\141\x74\x61\x64\151\x67\x69\164\x61\x6c\56\143\157\x6d", "\123\145\x63\x2d\103\x68\55\125\141\x3a\x20\x22\103\150\x72\x6f\155\151\165\155\x22\x3b\166\x3d\42\x31\62\62\42\x2c\40\42\116\x6f\x74\x28\101\x3a\102\x72\141\x6e\x64\x22\x3b\166\x3d\x22\x32\64\42\x2c\40\42\x4d\x69\143\162\157\163\x6f\x66\x74\x20\x45\x64\x67\x65\42\x3b\166\75\x22\61\62\62\x22", "\x53\145\143\55\103\150\x2d\x55\x61\55\x4d\x6f\142\151\x6c\x65\72\40\x3f\x31", "\x53\x65\x63\x2d\103\150\55\x55\x61\55\120\154\141\164\x66\x6f\162\x6d\x3a\x20\42\101\x6e\144\162\157\x69\144\x22", "\123\145\143\55\x46\x65\x74\x63\150\55\x44\145\x73\164\x3a\40\145\155\160\164\x79", "\123\x65\143\x2d\x46\145\164\143\150\x2d\x4d\157\x64\145\x3a\40\143\x6f\162\163", "\123\x65\143\55\106\x65\x74\143\x68\55\x53\151\164\x65\72\40\163\x61\155\x65\55\x73\151\x74\145", "\x55\163\x65\162\x2d\x41\147\145\x6e\164\72\x20\115\x6f\172\151\154\x6c\x61\57\65\x2e\x30\40\x28\x4c\x69\156\x75\x78\73\40\101\x6e\144\162\157\x69\x64\x20\x36\56\60\x3b\x20\x4e\145\x78\x75\x73\x20\65\x20\102\165\x69\x6c\x64\57\115\122\x41\65\70\116\51\40\101\160\x70\154\x65\x57\145\x62\113\151\x74\x2f\65\63\67\56\x33\x36\x20\50\113\x48\124\115\114\54\40\154\151\x6b\x65\x20\107\x65\143\153\x6f\x29\40\103\x68\162\157\x6d\x65\x2f\61\x32\x32\56\60\x2e\60\x2e\60\40\x4d\x6f\x62\151\x6c\145\40\x53\141\x66\x61\162\151\57\x35\63\x37\56\63\66\x20\105\x64\x67\57\x31\62\62\x2e\x30\56\x30\56\x30"); $payload = json_encode(array("\x63\x6f\x75\x6e\x74\162\171\103\x6f\x64\x65" => "\x2b\x39\61", "\160\x68\157\156\x65" => $phone)); $ch = curl_init($url); curl_setopt($ch, CURLOPT_POST, true); curl_setopt($ch, CURLOPT_POSTFIELDS, $payload); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_HTTPHEADER, $headers); $response = curl_exec($ch); $status_code = curl_getinfo($ch, CURLINFO_HTTP_CODE); curl_close($ch); $data = json_decode($response, true); if (isset($data["\x75\x73\x65\x72\124\x79\x70\x65"])) { if ($data["\x75\163\x65\162\124\171\x70\x65"] === "\156\145\167") { echo "\74\150\61\x3e\x3c\143\x65\x6e\164\x65\162\x3e\x4e\x65\x77\40\141\x63\x63\x6f\x75\x6e\x74\x20\74\x2f\x63\145\x6e\164\145\162\x3e\x3c\x2f\150\61\76"; } else { echo "\x3c\150\61\76\74\143\145\x6e\164\145\162\76\x4f\154\144\40\141\x63\x63\x6f\165\x6e\164\40\x3c\x2f\143\x65\156\164\145\x72\x3e\74\x2f\x68\x31\x3e"; } } else { echo "\x20\74\x68\61\x3e\x3c\143\145\x6e\164\145\162\76\x20\105\x72\162\157\162\x20\117\x63\x63\x75\x72\145\x64\74\x2f\143\145\156\x74\145\x72\x3e\74\57\x68\x31\76"; } } goto cU82v; cU82v: ?>
</body></html>
Function Calls
None |
Stats
MD5 | d20fa247ea7a4eec72ab30c8b54130fa |
Eval Count | 0 |
Decode Time | 74 ms |