Assalam o Alaikum!
Now i will tell you how to trace hacker's Ip address from any malware data or malware injected app. Sometime hackers embed their malware in any social app like facebook, whatsapp etc apps and send to victim for installation.
How cyber expert trace any malware during investigation, it 'll also help you in malware reverse engineering how to trace ip adress from malware data...
Let start how to trace ip adress of any attacker from social app as a cyber expert.
I am using metasploit payload in linux operating system, i am inside demo directory 'by typing ls command you will see msf.apk file exist.
Next i 'll change extension apk to zip file by typing command
" root@kali:~/Demo# mv msf.apk name.zip"
First we need to unzip however we unzip file using command
" root@kali:~/Demo# unzip name.apk"
Now type ls and hit enter
Here you can see after unzip there are different files, also classes.dex file exist actually when any application created and compiled one copy goes in classes.dex file.
Now we open the file using nano editor
Type command.
" root@kali:~/Demo# nano classes.dex"
Now it 'll open in new terminal
Now there is encryption on file no one can read this file press "ctrl+w" from keyboard and search
Tcp
Tcp is transmission control protocol when hackers creat payload they use revese_tcp connection from victom, there are many method use in hacking to make a connection with victim but most of use reverse_tcp connection.
Here you can see that ip adress found whicH used in hacking
Sometime hacker encrypt their ip adress anonymously but it can be trace.
THANKS FOR VISITING
No comments:
Post a Comment