Legal Disclamer:
The author does not hold any responsibility for the bad use of this tool, remember that attacking targets without prior consent is illegal and punished by law.
This module takes one existing image.jpg and one payload.exe (input by user) and builds a new payload (agent.jpg.exe) that if executed it will trigger the download of the 2 previous files stored into apache2 webserver (image.jpg + payload.exe). This module also changes the agent Icon to match one file.jpg icon. Then uses ‘hide known file extensions’ to hidde the .exe extension (final: agent.jpg.exe) ..
Exploitation:
FakeImageExploiter stores all files in apache2 webroot, zips (.zip) the agent, starts apache2 and metasploit services(handler), and provides a URL to send to target (triggers agent.zip download). As soon as the victim runs our executable, our picture will be downloaded and opened in the default picture viewer, our malicious payload will be executed, and we will get a meterpreter session.
But it also stores the agent (not ziped) into FakeImageExploiter/output folder if we wish to deliver agent.jpg.exe using another diferent attack vector.
‘This tool also builds a cleaner.rc file to delete payloads left in target’ HINT: migrate to another process before using cleaner to delete payload.exe
FakeImageExploiter
Distros Supported : Linux Ubuntu, Kali, Mint, Parrot OS
Dependencies:
– xterm, zenity, apache2, mingw32[64], ResourceHacker(wine)
– ‘Auto-Installs ResourceHacker.exe under ../.wine/Program Files/.. directorys’
Usage:
git clone https://github.com/r00t-3xp10it/FakeImageExploiter.git && cd FakeImageExploiter sudo chmod +x *.sh Config FakeImageExploiter settings nano settings sudo ./FakeImageExploiter.sh
Source: https://github.com/r00t-3xp10it