Online PHP and Javascript Decoder decode hidden script to uncover its real functionality


     

$non = "\033[1;0m";
$mr = "\033[1;31m";
$abu = "\033[1;30m";
$hj = "\033[1;32m";
$put = "\033[1;33m";
$br = "\033[1;34m";
$lub = "\033[1;35m";
$cy = "\033[1;36m";
$pt = "\033[1;37m";
$ijo = "\033[1;38m";
$htm = "\033[0;39m";
$pr = "\033[1;40m";
$kn = "\033[1;41m";
$pp = "\033[1;42m";


$false = "{$abu}[{$mr}x{$abu}]{$mr}";
$true = "{$abu}[{$hj}+{$abu}]{$hj}";
$pentung = "{$abu}[{$kn}!{$abu}]{$kn}";

$run = "{$pt}===========================================
[•] ᴄʀᴇᴀᴛᴏʀ     :     sᴛᴀʀ_ʙʀᴏ !
[•] sᴜᴘᴘᴏʀᴛ ʙʏ  :     ǫᴜʀʙᴀɴ_ᴀʟɪ
[•] ʙᴏᴛ ɴᴀᴍᴇ    :     ᴜᴘᴛᴏᴄᴏɪɴ ᴄʟᴀɪᴍ
[•] sᴄʀɪᴘᴛ ɪɴғᴏ :     ᴠᴇʀsɪᴏɴ. v1.0
===========================================
[•] ʏᴏᴜᴛᴜʙᴇ_ᴄʜᴀɴɴᴇʟ: ᴛᴇᴄʜᴀɴɪᴄᴀʟ-sᴛᴀʀ
[•] ᴛᴇʟᴇɢʀᴀᴍ_ɢʀᴏᴜᴘ : @stylishboy90
===========================================";
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, "https://pastebin.com/raw/Gbyiz7EL");
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
$result = curl_exec($ch);
curl_close($ch);
$linkpassword = $result;

$pastebin = "https://pastebin.com/raw/RxJRkGa1";
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $pastebin);
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
$result = curl_exec($ch);
curl_close($ch);
$ps = $result;

$cx=system("clear");
if(!file_exists("key")){
  pass:
  echo "$run\n";
  echo "{$pt}download new key: {$hj}".$linkpassword."{$pt}\n";
  $key=readline("input key : ");
  if($ps === $key){
  sleep(2);
  $file=fopen("key","w");
  fwrite($file,$key);
  fclose($file);
  system("termux-open https://youtube.com/channel/UCZVDRQwqYURlHXCWpa9yxww");
  }else{
  sleep(1);
  system("clear");
    goto pass;
       exit;
}
}else{
  if($ps !== file_get_contents("key")){
    sleep(2);
    system("rm key");
    goto pass;
  }
}

if(!file_exists("config.php")){
    
  $file=fopen("config.php","w");
  fwrite($file,''.PHP_EOL.'$TRXToken = "'.$tRXToken.'";
  '.PHP_EOL.'$PHPSESSID_ = "'.$hPHPSESSID_.'";
  '.PHP_EOL.'
  '.PHP_EOL.'$DOGEToken = "'.$DOGEToken.'";
  '.PHP_EOL.'$PHPSESSID = "'.$hPHPSESSID.'";
  '.PHP_EOL.'
  ');
  fclose($file);
}

if ($dataaa=="nx"){
cfg:
system("clear");
echo "$run\n";
echo " \n";

echo "{$hj}       session Doge Coin\n";
echo " \n";

$DOGEToken=readline("{$cy}DOGEToken :{$pt} ");
$hPHPSESSID=readline("{$cy}PHPSESSID :{$pt} ");
system("clear");
echo "$run\n";
echo " \n";
echo "{$hj}       session TRX Coin\n";
echo " \n";
$tRXToken=readline("{$cy}TRXToken :{$pt} ");
  $hPHPSESSID_=readline("{$cy}PHPSESSID :{$pt} ");
system("rm config.php");
  $file=fopen("config.php","w");
  fwrite($file,''.PHP_EOL.'$TRXToken = "'.$tRXToken.'";
  '.PHP_EOL.'$PHPSESSID_ = "'.$hPHPSESSID_.'";
  '.PHP_EOL.'
  '.PHP_EOL.'$DOGEToken = "'.$DOGEToken.'";
  '.PHP_EOL.'$PHPSESSID = "'.$hPHPSESSID.'";
  '.PHP_EOL.'
  ');
  fclose($file);

}
require('config.php');
system("clear");
echo "$run\n";
sleep(1);
mane:
system("clear");
echo "$run\n";
$data=readline("{$put}new data update (y/n) :{$pt} ");

if ($data=="y"){
system("termux-open https://uptocoin.tk/ec/?r=EC-UserId-81122");

goto cfg;
}

if ($data=="n"){
system("clear");
echo "$run\n";
echo " \n";
while(true){
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, "https://uptocoin.tk/ec/claim.php?coin=DOGE");
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_POST, 1);
$header = array();
$header[] = "user-agent: Mozilla/5.0 (Linux; Android 8.1.0; CPH1909) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.101 Mobile Safari/537.36";
$header[] = "cookie: Ref=EC-UserId-81122";
$header[] = "cookie: ".$DOGEToken."";
$header[] = "cookie: ".$PHPSESSID."";
curl_setopt($ch, CURLOPT_HTTPHEADER, $header);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
$result = curl_exec($ch);
curl_close($ch);

$bl = explode('<div class="col ThirdLayer card">Balance: <br>',$result);
$bl1 = explode(' </div>',$bl[1]);

if ($bl1[0] != null){
echo "{$true} {$cy}your have balance {$hj}{$bl1[0]} \n";

     }else{
 }

$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, "https://uptocoin.tk/ec/claim.php?coin=TRX");
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_POST, 1);
$header = array();
$header[] = "user-agent: Mozilla/5.0 (Linux; Android 8.1.0; CPH1909) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/87.0.4280.101 Mobile Safari/537.36";
$header[] = "cookie: Ref=EC-UserId-81122";
$header[] = "cookie: ".$TRXToken."";
$header[] = "cookie: ".$PHPSESSID_."";
curl_setopt($ch, CURLOPT_HTTPHEADER, $header);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, 0);
$result = curl_exec($ch);
curl_close($ch);
$trx1 = explode('<div class="col ThirdLayer card">Balance: <br>',$result);
$trx = explode('</div>',$trx1[1]);

if ($trx[0] != null){
echo "{$true} {$cy}your have balance {$hj}{$trx[0]} \n";

     }else{
 }
for ($time=60;$time>-1;$time--){
  echo "\r                                         \r";
  echo "\r[••••••]  ".$time." \033[1;32mWait watching \033[1;37m";
  
 if ( $time == 77 or $time == 71 or $time == 65 or $time == 59 or $time == 53 or $time == 47 or $time == 41 or $time == 35 or $time == 29 or $time == 23 or $time == 17 or $time == 11 or $time == 5){echo "••";}
  if ($time == 76 or $time == 70 or $time == 64 or $time == 58 or $time == 52 or $time == 46 or $time == 40 or $time == 34 or $time == 28 or $time == 22 or $time == 16 or $time == 10 or $time == 4){echo "•••";}
  if ($time == 75 or $time == 69 or $time == 63 or $time == 57 or $time == 51 or $time == 45 or $time == 39 or $time == 33 or $time == 27 or $time == 21 or $time == 15 or $time == 9 or $time == 3){echo "••••";}
  if ($time == 74 or $time == 68 or $time == 62 or $time == 56 or $time == 50 or $time == 44 or $time == 38 or $time == 32 or $time == 26 or $time == 20 or $time == 14 or $time == 8 or $time == 2){echo "•••••";}
  if ($time == 73 or $time == 67 or $time == 61 or $time == 55 or $time == 49 or $time == 43 or $time == 37 or $time == 31 or $time == 25 or $time == 19 or $time == 13 or $time == 7 or $time == 1){echo "••••••";}
  if ($time == 72 or $time == 66 or $time == 60 or $time == 54 or $time == 48 or $time == 42 or $time == 36 or $time == 30 or $time == 24 or $time == 18 or $time == 12 or $time == 6 or $time == 0){echo "•\r";}
  sleep(1);
    }
  }
}
goto mane;



© 2021 Quttera Ltd. All rights reserved.