Scribd
Upload
995 views

Csploit

The document describes log entries related to uninstalling, reinstalling, and launching an app called "org.csploit.android". It shows the app being uninstalled, its data being cleaned up, then a new version being installed from an APK file. When launched, the app attempts to start some network scanning tools but they fail to run. It then downloads an update for its native libraries but is unable to connect to the native daemon.

Uploaded by

Jamie Mcgaughey
Copyright
© © All Rights Reserved
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
995 views

Csploit

The document describes log entries related to uninstalling, reinstalling, and launching an app called "org.csploit.android". It shows the app being uninstalled, its data being cleaned up, then a new version being installed from an APK file. When launched, the app attempts to start some network scanning tools but they fail to run. It then downloads an update for its native libraries but is unable to connect to the native daemon.

Uploaded by

Jamie Mcgaughey
Copyright
© © All Rights Reserved
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 4

01-29 20:58:58.

433 I/ActivityManager(512): START u0


{act=android.intent.action.DELETE dat=package:org.csploit.android flg=0x10800000
cmp=com.android.packageinstaller/.UninstallerActivity} from pid 733
01-29 20:58:59.453 I/ActivityManager(512): Force stopping org.csploit.android
appid=10144 user=-1: uninstall pkg
01-29 20:58:59.683 W/PackageManager(512): Couldn't delete native library
directory /data/app-lib/org.csploit.android
01-29 20:59:01.433 I/ActivityManager(512): Force stopping org.csploit.android
appid=10144 user=0: pkg removed
01-29 20:59:01.813 D/VoicemailCleanupService(4445): Cleaning up data for package:
org.csploit.android
01-29 20:59:03.423 I/LocationSettingsChecker(1052): Removing dialog suppression
flag for package org.csploit.android
01-29 20:59:03.653 I/Icing (1052): doRemovePackageData org.csploit.android
01-29 20:59:03.693 D/BackupManagerService(512): Received broadcast Intent
{ act=android.intent.action.PACKAGE_REMOVED dat=package:org.csploit.android
flg=0x4000010 (has extras) }
01-29 20:59:04.303 I/Finsky (6652): [1]
com.google.android.finsky.wear.WearSupportService.a(310): Wear auto uninstall
disabled for package org.csploit.android
01-29 20:59:09.503 I/ActivityManager(512): START u0 {act=android.intent.action.VIEW
dat=file:///storage/emulated/0/Download/cSploit-release.apk
typ=application/vnd.android.package-archive
cmp=com.android.packageinstaller/.PackageInstallerActivity (has extras)} from pid
8183
01-29 20:59:12.593 I/ActivityManager(512): START u0
{dat=file:///storage/emulated/0/Download/cSploit-release.apk
cmp=com.android.packageinstaller/.InstallAppProgress (has extras)} from pid 8099
01-29 20:59:12.763 W/ActivityManager(512): No content provider found for permission
revoke: file:///storage/emulated/0/Download/cSploit-release.apk
01-29 20:59:15.163 I/Finsky (6652): [1]
com.google.android.vending.verifier.ak.c(195): Verification complete: id=10,
package_name=org.csploit.android
01-29 20:59:15.253 W/ActivityManager(512): No content provider found for permission
revoke: file:///storage/emulated/0/Download/cSploit-release.apk
01-29 20:59:16.093 I/PackageManager(512): Package installed with second ABI
Library: 10146org.csploit.android
01-29 20:59:16.103 I/PackageManager(512): Running dexopt on: org.csploit.android
01-29 20:59:17.573 I/dalvikvm(8455): DexOpt: illegal method access (call
Landroid/support/v4/app/FragmentActivity;.onActivityResult
(IILandroid/content/Intent;)V from Lorg/csploit/android/SettingsActivity$6$1;)
01-29 20:59:18.083 I/ActivityManager(512): Force stopping org.csploit.android
appid=10146 user=-1: update pkg
01-29 20:59:18.213 W/PackageManager(512): Unknown permission
android.permission.ACCESS_SUPERUSER in package org.csploit.android
01-29 20:59:18.213 W/PackageManager(512): Not granting permission
android.permission.READ_LOGS to package org.csploit.android (protectionLevel=50
flags=0x8be44)
01-29 20:59:19.193 D/BackupManagerService(512): Received broadcast Intent
{ act=android.intent.action.PACKAGE_ADDED dat=package:org.csploit.android
flg=0x4000010 (has extras) }
01-29 20:59:20.313 I/Finsky (6652): [1]
com.google.android.finsky.wear.WearSupportService.a(307): Wear auto install
disabled for package org.csploit.android
01-29 20:59:20.453 I/Finsky (6652): [1]
com.google.android.finsky.utils.bq.run(2300): Package state data is missing for
org.csploit.android
01-29 20:59:20.563 I/InstallAppProgress(8099): Finished installing
org.csploit.android
01-29 20:59:33.093 I/ActivityManager(512): START u0 {act=android.intent.action.MAIN
cat=[android.intent.category.LAUNCHER] flg=0x10200000
cmp=org.csploit.android/.MainActivity (has extras)} from pid 733
01-29 20:59:33.203 D/dalvikvm(8597): Process 8597 nice name: org.csploit.android
01-29 20:59:33.203 I/ActivityManager(512): Start proc org.csploit.android for
activity org.csploit.android/.MainActivity: pid=8597 uid=10146 gids={50146, 3003,
1028, 1015}
01-29 20:59:33.323 D/ACRA (8597): ACRA is enabled for org.csploit.android,
initializing...
01-29 20:59:33.343 D/ACRA (8597): Looking for error files in
/data/data/org.csploit.android/files
01-29 20:59:33.373 D/ACRA (8597): Looking for error files in
/data/data/org.csploit.android/files
01-29 20:59:33.373 D/ACRA (8597): Looking for error files in
/data/data/org.csploit.android/files
01-29 20:59:33.373 D/CSPLOIT[core.System.init](8597): initializing System...
01-29 20:59:33.433 D/CSPLOIT[tools.NMap.synScan](8597): synScan - -sS -P0
--privileged --send-ip --system-dns -vvv 192.168.1.73
01-29 20:59:33.433 W/CSPLOIT[tools.Tool.async](8597): nmap: disabled
01-29 20:59:33.433 E/CSPLOIT[core.System.errorLogging](8597): cannot start commands
01-29 20:59:33.433 E/CSPLOIT[core.System.errorLogging](8597):
org.csploit.android.core.ChildManager$ChildNotStartedException: cannot start
commands
01-29 20:59:33.433 E/CSPLOIT[core.System.errorLogging](8597): at
org.csploit.android.tools.Tool.async(Tool.java:48)
01-29 20:59:33.433 E/CSPLOIT[core.System.errorLogging](8597): at
org.csploit.android.tools.NMap.synScan(NMap.java:142)
01-29 20:59:33.433 E/CSPLOIT[core.System.errorLogging](8597): at
org.csploit.android.tools.NMap.synScan(NMap.java:146)
01-29 20:59:33.433 E/CSPLOIT[core.System.errorLogging](8597): at
org.csploit.android.services.NetworkRadar$2.run(NetworkRadar.java:90)
01-29 20:59:33.433 E/CSPLOIT[core.System.errorLogging](8597): at
java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1112)
01-29 20:59:33.433 E/CSPLOIT[core.System.errorLogging](8597): at
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:587)
01-29 20:59:33.433 E/CSPLOIT[core.System.errorLogging](8597): at
java.lang.Thread.run(Thread.java:841)
01-29 20:59:33.443 D/CSPLOIT[tools.NMap.synScan](8597): synScan - -sS -P0
--privileged --send-ip --system-dns -vvv 192.168.1.254
01-29 20:59:33.443 W/CSPLOIT[tools.Tool.async](8597): nmap: disabled
01-29 20:59:33.613 D/CSPLOIT[tools.NMap.synScan](8597): synScan - -sS -P0
--privileged --send-ip --system-dns -vvv 192.168.1.254
01-29 20:59:33.613 D/CSPLOIT[tools.NMap.synScan](8597): synScan - -sS -P0
--privileged --send-ip --system-dns -vvv 192.168.1.73
01-29 20:59:33.613 W/CSPLOIT[tools.Tool.async](8597): nmap: disabled
01-29 20:59:33.613 W/CSPLOIT[tools.Tool.async](8597): nmap: disabled
01-29 20:59:33.613 D/CSPLOIT[services.UpdateChecker.run](8597): Service started.
01-29 20:59:33.623 D/CSPLOIT[net.RemoteReader.run](8597):
RemoteReader[api.github.com] started
01-29 20:59:33.623 I/CSPLOIT[net.RemoteReader.run](8597): fetching
'https://api.github.com/repos/cSploit/android/releases'
01-29 20:59:33.743 D/CSPLOIT[core.System.readFirstLine](8597):
/data/data/org.csploit.android/files/msf/VERSION: open failed: ENOENT (No such file
or directory)
01-29 20:59:33.753 D/CSPLOIT[core.System.readFirstLine](8597):
/data/data/org.csploit.android/files/msf/VERSION: open failed: ENOENT (No such file
or directory)
01-29 20:59:34.683 D/CSPLOIT[services.UpdateChecker.getApkUpdate](8597):
localVersion = 1.6.6-rc.2
01-29 20:59:34.683 D/CSPLOIT[services.UpdateChecker.getApkUpdate](8597):
remoteVersion = 1.6.5
01-29 20:59:34.693 D/CSPLOIT[core.System.readFirstLine](8597):
/data/data/org.csploit.android/files/VERSION: open failed: ENOENT (No such file or
directory)
01-29 20:59:34.693 I/CSPLOIT[net.RemoteReader.run](8597): fetching
'https://api.github.com/repos/cSploit/android.native/releases'
01-29 20:59:34.983 W/CSPLOIT[services.UpdateChecker.getCoreUpdate](8597):
unsupported platform ( android19.armeabi-v7a )
01-29 20:59:34.983 D/CSPLOIT[services.UpdateChecker.getCoreUpdate](8597): trying
with 'android16.armeabi-v7a'
01-29 20:59:34.983 D/CSPLOIT[services.UpdateChecker.getCoreUpdate](8597):
localVersion = null
01-29 20:59:34.983 D/CSPLOIT[services.UpdateChecker.getCoreUpdate](8597):
remoteVersion = 1.0.11
01-29 20:59:35.003 D/CSPLOIT[services.UpdateChecker.run](8597): Service stopped.
01-29 20:59:40.233 I/CSPLOIT[services.UpdateService.downloadFile](8597):
downloading
'https://github.com/cSploit/android.native/releases/download/v1.0.11/core-
v1.0.11.android16.armeabi-v7a.tar.xz' to '/storage/emulated/0/core.tar.xz'
01-29 20:59:46.473 I/CSPLOIT[services.UpdateService.downloadFile](8597): download
finished successfully
01-29 20:59:46.473 I/CSPLOIT[services.UpdateService.verifyArchiveIntegrity](8597):
verifying archive integrity
01-29 20:59:59.303 D/dalvikvm(8597): Trying to load lib /data/app-
lib/org.csploit.android-1/libcSploitCommon.so 0xa4fcc678
01-29 20:59:59.373 D/dalvikvm(8597): Added shared lib /data/app-
lib/org.csploit.android-1/libcSploitCommon.so 0xa4fcc678
01-29 20:59:59.373 D/dalvikvm(8597): No JNI_OnLoad found in /data/app-
lib/org.csploit.android-1/libcSploitCommon.so 0xa4fcc678, skipping init
01-29 20:59:59.373 D/dalvikvm(8597): Trying to load lib /data/app-
lib/org.csploit.android-1/libcSploitClient.so 0xa4fcc678
01-29 20:59:59.373 D/dalvikvm(8597): Added shared lib /data/app-
lib/org.csploit.android-1/libcSploitClient.so 0xa4fcc678
01-29 20:59:59.383 E/cSploitClient(8597): connect_unix: connect: No such file or
directory
01-29 20:59:59.393 I/CSPLOIT[services.UpdateService.extract](8597): extracting
'/storage/emulated/0/core.tar.xz' to '/data/data/org.csploit.android/files'
01-29 21:00:13.693 I/CSPLOIT[services.UpdateService.extract](8597): extraction
completed
01-29 21:00:13.693 I/CSPLOIT[services.UpdateService.extract](8597): .nomedia
created
01-29 21:00:13.713 E/cSploitClient(8597): connect_unix: connect: No such file or
directory
01-29 21:00:15.673 W/ActivityManager(512): Activity pause timeout for
ActivityRecord{5317a4d8 u0 org.csploit.android/.MainActivity t22}
01-29 21:00:19.063 D/CSPLOIT[core.System.startCoreDaemon](8597): 'ACCESS GRANTED'
found
01-29 21:00:19.063 W/CSPLOIT[core.System.startCoreDaemon](8597): STDERR:
./start_daemon.sh[37]: ./cSploitd: not executable: magic 7F45
01-29 21:00:19.073 E/CSPLOIT[MainActivity.startCore](8597): core daemon returned 1
01-29 21:00:19.073 D/CSPLOIT[tools.NMap.synScan](8597): synScan - -sS -P0
--privileged --send-ip --system-dns -vvv 192.168.1.254
01-29 21:00:19.073 W/CSPLOIT[tools.Tool.async](8597): nmap: disabled
01-29 21:00:19.073 D/CSPLOIT[tools.NMap.synScan](8597): synScan - -sS -P0
--privileged --send-ip --system-dns -vvv 192.168.1.73
01-29 21:00:19.073 W/CSPLOIT[tools.Tool.async](8597): nmap: disabled
01-29 21:00:19.083 W/CSPLOIT[tools.Tool.async](8597): network-radar: disabled
01-29 21:00:19.083 E/CSPLOIT[services.NetworkRadar.start](8597): cannot start
commands
01-29 21:00:19.083 D/CSPLOIT[services.UpdateService.finishNotification](8597):
deleting notifications
01-29 21:00:19.093 D/CSPLOIT[services.UpdateChecker.run](8597): Service started.
01-29 21:00:19.093 D/CSPLOIT[services.UpdateChecker.getApkUpdate](8597):
localVersion = 1.6.6-rc.2
01-29 21:00:19.093 D/CSPLOIT[services.UpdateChecker.getApkUpdate](8597):
remoteVersion = 1.6.5
01-29 21:00:19.093 W/CSPLOIT[services.UpdateChecker.getCoreUpdate](8597):
unsupported platform ( android19.armeabi-v7a )
01-29 21:00:19.093 D/CSPLOIT[services.UpdateChecker.getCoreUpdate](8597): trying
with 'android16.armeabi-v7a'
01-29 21:00:19.093 D/CSPLOIT[services.UpdateChecker.getCoreUpdate](8597):
localVersion = 1.0.11
01-29 21:00:19.103 D/CSPLOIT[services.UpdateChecker.getCoreUpdate](8597):
remoteVersion = 1.0.11
01-29 21:00:19.103 D/CSPLOIT[services.UpdateChecker.run](8597): Service stopped.
01-29 21:00:19.113 D/CSPLOIT[core.System.readFirstLine](8597):
/data/data/org.csploit.android/files/msf/VERSION: open failed: ENOENT (No such file
or directory)
01-29 21:00:19.173 I/ActivityManager(512): Activity reported stop, but no longer
stopping: ActivityRecord{5317a4d8 u0 org.csploit.android/.MainActivity t22}

You might also like