-
Notifications
You must be signed in to change notification settings - Fork 11
BIN HEX Exploit
Munir Njiru edited this page Jul 18, 2014
·
1 revision
Location: mod/popup/bh.php
Initial bh.php file is inserted into a page using index.php include ("bh.php");?> between
FIRST on, build the file mod/popup/bh/bh.html, which needs to be built with the help of your addon Applications bin2hex (progs/bin2hex.exe ). Open the file in notepad mod/bh/bh.html, look for the line (This file must be converted with BinHex 4.0), after which type characters are unclear : && 4 & 8e3Z49K &!% P & 66p * 3Ndr! *!% $ J & 3 "8P569U!!!%! N! -%!"!! Rrm!!%! "! ! '3! & 3) i!! N! -1 (LS1!, 3 * c5'i! 8c0) A4SDA-JF ( [Ch * KE5 "MB @ jZEh3JBQ8JFR9 ......
- This is the hex code for a Trojan. Now we put our Trojan (let's use web.exe) in folder progs
- run bin2hex.exe
- click F2
- select web.exe
- click Open and close prog. We got a file web.HQX
- open it with Notepad
- copy all the text and replace it with the strange symbols that were in mod /popup/bh/bh.html.
Decoded and recompiled by the Martian