1 00:00:00,600 --> 00:00:01,830 Instructor: Welcome back. 2 00:00:01,830 --> 00:00:04,050 As I already mentioned in this section 3 00:00:04,050 --> 00:00:07,110 we're going to be using an Android virtual machine 4 00:00:07,110 --> 00:00:09,990 in order to make this accessible to everyone. 5 00:00:09,990 --> 00:00:11,310 And as you might notice 6 00:00:11,310 --> 00:00:13,860 I already have the Android virtual machine 7 00:00:13,860 --> 00:00:15,900 created right here, but right now 8 00:00:15,900 --> 00:00:18,690 I'm going to show you how you can do that as well. 9 00:00:18,690 --> 00:00:20,400 So the first thing that we need 10 00:00:20,400 --> 00:00:22,290 is we need to actually download 11 00:00:22,290 --> 00:00:24,510 the Android operating system. 12 00:00:24,510 --> 00:00:25,740 In order to do that, 13 00:00:25,740 --> 00:00:28,270 we can navigate to this link right here 14 00:00:29,190 --> 00:00:31,980 and on this page, if we scroll a little bit down 15 00:00:31,980 --> 00:00:33,270 we're going to be able to see 16 00:00:33,270 --> 00:00:36,870 all of the previous Android versions that came out. 17 00:00:36,870 --> 00:00:39,390 Now we are not going to be downloading the newest one, 18 00:00:39,390 --> 00:00:43,740 but let's say that we can use the version 7.1, 19 00:00:43,740 --> 00:00:46,530 which is the newest version of the Android 7. 20 00:00:46,530 --> 00:00:48,990 And to download it for the VirtualBox, 21 00:00:48,990 --> 00:00:50,520 we can click right here 22 00:00:50,520 --> 00:00:53,193 and we are going to download the 64-bit version. 23 00:00:55,530 --> 00:00:57,780 In just a few seconds, our download will start 24 00:00:57,780 --> 00:00:59,760 and since I already have it downloaded, 25 00:00:59,760 --> 00:01:02,880 I'm not going to be waiting for this as it is rather large. 26 00:01:02,880 --> 00:01:04,530 It is 600 megabytes. 27 00:01:04,530 --> 00:01:07,620 So I'm just going to cancel this, close this page, 28 00:01:07,620 --> 00:01:09,210 and once you have it downloaded, 29 00:01:09,210 --> 00:01:11,940 you will have a file like this. 30 00:01:11,940 --> 00:01:14,670 In order to get the actual virtual machine, 31 00:01:14,670 --> 00:01:16,290 you must extract the file 32 00:01:16,290 --> 00:01:20,250 and you will end up with this VDI file. 33 00:01:20,250 --> 00:01:23,910 It is the Android x86 7.1 R3, 34 00:01:23,910 --> 00:01:26,400 which is the exact version that we downloaded. 35 00:01:26,400 --> 00:01:28,620 And if we go to our VirtualBox, 36 00:01:28,620 --> 00:01:31,260 in order to actually create a virtual machine, 37 00:01:31,260 --> 00:01:33,270 we need to click on new as usual 38 00:01:33,270 --> 00:01:36,330 and you will notice that this creation of virtual machine 39 00:01:36,330 --> 00:01:38,100 will be rather different. 40 00:01:38,100 --> 00:01:39,750 Because if you just create it 41 00:01:39,750 --> 00:01:42,750 like any other virtual machine that we created by now, 42 00:01:42,750 --> 00:01:44,670 it might actually not work. 43 00:01:44,670 --> 00:01:47,040 And it didn't work for me at the first time. 44 00:01:47,040 --> 00:01:48,750 I will show you, of course, what I did 45 00:01:48,750 --> 00:01:51,210 in order to get this to work. 46 00:01:51,210 --> 00:01:52,680 The first thing that we are going to do 47 00:01:52,680 --> 00:01:54,750 is going to name the machine. 48 00:01:54,750 --> 00:01:56,430 I'm just going to name it Android2 49 00:01:56,430 --> 00:01:59,040 since I already have one Android machine. 50 00:01:59,040 --> 00:02:02,190 I'm going to select the operating system to be Linux, 51 00:02:02,190 --> 00:02:07,190 and I'm going to select the version to be other Linux 64-bit 52 00:02:07,530 --> 00:02:10,350 since we downloaded the 64-bit of Android. 53 00:02:10,350 --> 00:02:11,730 Let's click on next. 54 00:02:11,730 --> 00:02:15,060 Here I will select two gigabytes of RAM 55 00:02:15,060 --> 00:02:17,190 and I will proceed to the next step. 56 00:02:17,190 --> 00:02:18,570 And under the hard disk, 57 00:02:18,570 --> 00:02:21,630 we want to click on use an existing virtual hard disk, 58 00:02:21,630 --> 00:02:25,680 and here we want to find our Android version. 59 00:02:25,680 --> 00:02:27,330 And here it is. 60 00:02:27,330 --> 00:02:28,770 If you don't see it right here, 61 00:02:28,770 --> 00:02:31,200 as usual, you can click on add and then navigate 62 00:02:31,200 --> 00:02:34,050 to the directory where you downloaded the version. 63 00:02:34,050 --> 00:02:35,370 Select it from there. 64 00:02:35,370 --> 00:02:36,750 Select it right here. 65 00:02:36,750 --> 00:02:39,123 And once you select it, click on create. 66 00:02:40,110 --> 00:02:42,060 Now before we start this machine, 67 00:02:42,060 --> 00:02:44,040 there are few things that we need to do. 68 00:02:44,040 --> 00:02:46,080 First of all, go to settings. 69 00:02:46,080 --> 00:02:49,410 As usual, first let's change the network to Bridged Adapter. 70 00:02:49,410 --> 00:02:51,993 Select your name of the adapter right here. 71 00:02:52,860 --> 00:02:55,650 The next thing is under the display settings, 72 00:02:55,650 --> 00:02:58,320 which is the thing that differentiates this installation 73 00:02:58,320 --> 00:03:00,090 from the previous virtual machines 74 00:03:00,090 --> 00:03:04,230 is that in case you leave it by default, which is this, 75 00:03:04,230 --> 00:03:06,480 it might actually not work. 76 00:03:06,480 --> 00:03:08,730 So what I found to work for me 77 00:03:08,730 --> 00:03:13,350 is I increased the video memory to 40 megabytes 78 00:03:13,350 --> 00:03:16,050 and I change the graphics controller 79 00:03:16,050 --> 00:03:19,293 from the VMSVGA to VBoxSVGA. 80 00:03:20,580 --> 00:03:22,740 Now, even though once it changed this 81 00:03:22,740 --> 00:03:25,620 it says invalid settings detected. 82 00:03:25,620 --> 00:03:28,260 If I leave it on the default one, 83 00:03:28,260 --> 00:03:32,430 which is VM SVGA, my machine will not work. 84 00:03:32,430 --> 00:03:36,570 But once I changed it to this and clicked on okay, 85 00:03:36,570 --> 00:03:38,220 my machine worked. 86 00:03:38,220 --> 00:03:39,690 So let's give it a try. 87 00:03:39,690 --> 00:03:41,730 Once we set all of those settings there, 88 00:03:41,730 --> 00:03:43,323 let's start our machine. 89 00:03:44,550 --> 00:03:46,260 Now if you're running it for the first time, 90 00:03:46,260 --> 00:03:49,080 it might actually take a few seconds or minutes 91 00:03:49,080 --> 00:03:50,610 in order to boot up 92 00:03:50,610 --> 00:03:52,770 and you don't want to be clicking on anything 93 00:03:52,770 --> 00:03:55,140 during this installation. 94 00:03:55,140 --> 00:03:59,100 We can remove this and let's enlarge the screen, 95 00:03:59,100 --> 00:04:01,380 and you'll see this Android pop up, 96 00:04:01,380 --> 00:04:03,240 this command like look like, 97 00:04:03,240 --> 00:04:05,340 and don't type anything there. 98 00:04:05,340 --> 00:04:07,440 Just leave it boot up. 99 00:04:07,440 --> 00:04:09,810 Then you will see this Android sign, 100 00:04:09,810 --> 00:04:11,670 which means that you're successfully booting 101 00:04:11,670 --> 00:04:13,590 into your Android device. 102 00:04:13,590 --> 00:04:15,870 Now, in case you're having still problems 103 00:04:15,870 --> 00:04:17,940 in actually running this machine, 104 00:04:17,940 --> 00:04:20,760 I would advise you to play with this display settings. 105 00:04:20,760 --> 00:04:22,200 Either increase video memory 106 00:04:22,200 --> 00:04:24,270 or change the graphics controller. 107 00:04:24,270 --> 00:04:27,030 Just try a bunch of different settings right here 108 00:04:27,030 --> 00:04:28,980 in order to get this to work. 109 00:04:28,980 --> 00:04:30,600 These are the settings that worked for me, 110 00:04:30,600 --> 00:04:33,210 but they might not work for you. 111 00:04:33,210 --> 00:04:36,600 Nonetheless, let's go back to the Android machine. 112 00:04:36,600 --> 00:04:38,130 It'll tell us Android is starting 113 00:04:38,130 --> 00:04:39,780 so let's wait for this to finish. 114 00:04:41,160 --> 00:04:42,870 And here it is. 115 00:04:42,870 --> 00:04:45,480 Here is our Android device. 116 00:04:45,480 --> 00:04:47,790 Here you can do pretty much anything that you can do 117 00:04:47,790 --> 00:04:49,980 on an Android mobile phone. 118 00:04:49,980 --> 00:04:52,800 For example, we can go and click on this arrow. 119 00:04:52,800 --> 00:04:56,310 We can see all of the different applications right here. 120 00:04:56,310 --> 00:04:58,380 Now, this Flappy Bird right here, 121 00:04:58,380 --> 00:05:00,510 you probably won't have 122 00:05:00,510 --> 00:05:02,700 and you will see in just a few videos 123 00:05:02,700 --> 00:05:04,230 why I have this right here. 124 00:05:04,230 --> 00:05:05,400 This is not a game. 125 00:05:05,400 --> 00:05:09,210 This is actually a Trojan, or a virus for this device, 126 00:05:09,210 --> 00:05:10,470 but more about that later. 127 00:05:10,470 --> 00:05:12,750 For now, we know that we successfully 128 00:05:12,750 --> 00:05:14,970 got our Android device working. 129 00:05:14,970 --> 00:05:16,620 You can visit Google Chrome. 130 00:05:16,620 --> 00:05:18,930 You can go to images, go to Play Store. 131 00:05:18,930 --> 00:05:21,480 You can pretty much do anything that you like. 132 00:05:21,480 --> 00:05:23,582 These three buttons are the same buttons 133 00:05:23,582 --> 00:05:25,230 that the Android device has, 134 00:05:25,230 --> 00:05:27,120 so you can check out all of the tabs 135 00:05:27,120 --> 00:05:29,403 by clicking on this box right here. 136 00:05:30,270 --> 00:05:32,820 And here are all of the currently open tabs. 137 00:05:32,820 --> 00:05:35,043 So let's just close all of them. 138 00:05:36,660 --> 00:05:39,030 And we successfully got it to work. 139 00:05:39,030 --> 00:05:41,670 Now we are ready to start attacking this device. 140 00:05:41,670 --> 00:05:43,830 And we are going to start off with the first tool, 141 00:05:43,830 --> 00:05:46,860 which is the MSFvenom and the payload creation 142 00:05:46,860 --> 00:05:48,570 for the Android device. 143 00:05:48,570 --> 00:05:49,870 See you in the next video.