/WhatsApp-extension-manipulation-PoC

Android malware (.apk) can be spread through a fake PDF document by manipulating the file extension in the WhatsApp application. PoC is available in this repo

Primary LanguagePythonMIT LicenseMIT

WhatsApp-extension-manipulation-PoC

Android malware (.apk) can be spread through a fake PDF document by manipulating the file extension in the WhatsApp application. PoC is available in this repo

wp.test.mp4

Step 1: First, create a free account at https://user.ultramsg.com/signup.php. We will use this to manage the API

Step 2: Click the "Add Instance" button and create a new instance.

image

Step 3: Fill in the appropriate fields in wp.py with the generated API information and log in to your WhatsApp application using the QR code found under the instance information.

mJAWHAyz (1)

Step 4: Enter the target number in the "enter number" field and upload your file to the server (this can be an ngrok or python server. If you are testing locally, you can use XAMPP).

Step 5: Run the wp.py file and watch the message being sent.

python wp.py

Disclaimer

This software is provided "as is", without warranty of any kind, express or implied, including but not limited to the warranties of merchantability, fitness for a particular purpose, and noninfringement. In no event shall the authors or copyright holders be liable for any claim, damages, or other liability, whether in an action of contract, tort, or otherwise, arising from, out of, or in connection with the software or the use or other dealings in the software.