Persistent backdoor for Android

I am exploting my android smartphone in same network. I have installed malicious APK in my android phone and I have also put a shell script for persistent backdoor.
But after every 30 seconds, the app automatically pop up on to screen, which is very suspicious.
Also whenever I FORCE STOP the app, the connection died.
Hiding app is of no use.

Is there is any other persistent backdoor for Android?

@imEH Tell us more about the app name. Give us all info of android and apk. What os are you using for it?

2 Likes

Attacker: kali Linux
Victim: Redmi note 4
Android version: 7.0 NRD90M
APK: random
Payload created using Evil- droid

The backdoor is working fine when app is working in open.
I have also uploaded the shell script onto the sdcard and also run it.
But as I go to home page of android (APK is still running in background) then the app pop (app restart on the screen) after every 30 seconds, as I have set in shell script.

And if I stop the app in background, the backdoor terminated.
I also hide app icon, but of no use.

If you need some more information, please tell me. I will send you all photos.

If you have kali linux installed then create a proper apk using metasploit and don’t go for apps like apk-droid etc.

@imEH Have you tried Pupy . In my opinion it is better.

2 Likes

I am currently working on a video on this, i know it has taken a while but my research has been extremely successful and i have various methods i will showcase. The video will be scheduled for release next week.

9 Likes

@alexis Cool cant wait to see it.

1 Like

Please also demonstrate the importance of shell script for persistent backdoor and ethical hacking.
I see a huge benefit of shell script but unfortunately I don’t know how to use it for android exploitation or android ethical hacking.

@imEH you can set your app as a service in the manifesto
you should take a look a this code https://github.com/frameproject/gpstracker
also, remember that an android phone is just a linux with a fancy java interface…
you can send and execute efl binnary via adb

1 Like

@alexis Hello, where can we check out your video when its ready? Thank you.

@weitz11 You can check out at Hackersploit official youtube channel.

It very easy to hack android using msfvenom
But i hate to do it on Lan cuz its sucks so i use ngrok to hack android on wan + u can also use apkbackdor or evil droid or Fat rat to bind with other apk application

Need Help
if possible… Advanced Web Attacks and Exploitation (AWAE) new video tutorial link can u send me. Thank u