Upload your payload (EXE, PDF, DOCX). The generator encrypts it using RC4 + Custom Base64, hides it inside a fake Adobe/Office template, and spits out an HTML file. Bypasses email filters — seamlessly sent via Gmail. Browser-side decryption upon target execution.
Configure payload format, encryption level, display template, and download method in one clean interface.
Get your generated payload instantly along with active tracking, view statistics, and direct share links.
The simplest and most powerful workflow to convert any executable into an evasive HTML document.
Drop any file into the HTML Builder. Select your preferred Format (Single, Multi-OS, or Remote), choose the Encryption Level (e.g. Stealth 1), and pick a Template like Adobe PDF. You can also configure the File Name, Display Extension, and Download Method (Save Dialog vs Direct). Optional features like "Wrap file in ZIP" and "Hide HTML source" are available.
Click "Build & Download". The payload is encrypted and wrapped in the selected template. The Build Ready screen instantly provides your file information, active status, and dedicated Share Links for direct running or downloading. Track your views and downloads in real-time through the built-in statistics panel.
Disguise your HTML file as a legitimate document viewer.
| Template | Extension | Description | Notes |
|---|---|---|---|
| Adobe Acrobat | .html |
A realistic Adobe PDF viewer overlay demanding a click to "decrypt" the document. | High trust |
| Microsoft Office | .html |
Spoofs Word, Excel, or OneDrive interfaces asking the user to confirm their session. | Enterprise targets |
| Google Drive | .html |
Simulates a locked Google Drive file that requires user interaction to download. | Cloud service trust |
| Dropbox | .html |
Mimics the Dropbox file preview interface with a fake download button. | File sharing trust |
The generated HTML file relies on native browser features to reconstruct the file in-memory and trigger the download, without any backend server.
The file is securely packed inside the HTML template. Every build generates a unique JavaScript decoder structure to evade static signatures.
rc4 defaultThe core executable is encrypted using RC4 with a randomized hex key. The key rotates automatically per generation.
custom_b64Instead of standard Base64, the platform generates a randomized 64-character alphabet for every build to bypass pattern recognition.
chunk_shuffleThe encrypted payload is sliced into random 60-100 character chunks, shuffled out of order, and reassembled dynamically in the browser.
The payload is encoded using 1 to 3 layers of Custom Base64 plus Chunk Shuffling and RC4. The alphabet is regenerated per build.
The generated HTML file uses purely client-side JavaScript. No connection to a C2 is needed during execution, avoiding network signatures.
Easily bypass email attachments filters. Send the .html payload as an attachment via Gmail or Outlook without being flagged.
Wrap any file type: EXE, PDF, DOCX, ZIP, MP4. The builder parses the binary and perfectly embeds it within the HTML.
Choose your download method. Force an immediate Save As dialog, trigger a direct silent drop, or require a button click.
No external dependencies. The generated HTML contains the full encrypted binary, the decryption routine, and the HTML template.
A full walkthrough — from uploading the payload to generating the evasive HTML delivery template.
All plans include full panel access, unlimited stager generation, all execution methods, and all obfuscation layers.
HTML Dropper is available by request. Reach out with your use case and we'll provision an account.