Skip to content
/ Craxsrat-IP-Extractor Public

Python script to extract C2 IP from CraxsRAT's client APK

3 stars 2 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

fareedfauzi/Craxsrat-IP-Extractor

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

10 Commits
apks
apks
 
 
README.md
README.md
 
 
craxsrat_ip_extractor.py
craxsrat_ip_extractor.py
 
 

Repository files navigation

Craxsrat-IP-Extractor

Python script to extract C2 IP from CraxsRAT's client APK

Requirements

  • Python 3.x: Ensure Python 3.x is installed on your system.
  • JADX command line: The script relies on JADX to decompile APK files. You need to download and install JADX from its GitHub repository. Make sure it's added to your system's PATH.

Usage

$ git clone https://github.com/fareedfauzi/craxsrat-ip-extractor.git
$ cd craxsrat-ip-extractor
$ python3 craxsrat_ip_extractor.py /path/to/apk/folder
  • I've placed 3 samples in the apks folder for testing.

Expected output

remnux@siftworkstation: ~/work
$ python3 craxsrat_ip_extractor.py apks/
Processing apks/test2.apk
[*] Decompiling APK...
[*] Finding the C2 IP Address...
[79e19ea25071787899ca633812570dfc]: 202.55.133.59

Processing apks/test1.apk
[*] Decompiling APK...
[*] Finding the C2 IP Address...
[7da41e25ccdfa60ef992a9c4846e6a6b]: 192.168.5.143

Processing apks/test3.apk
[*] Decompiling APK...
[*] Finding the C2 IP Address...
[1ddc5fcd0042926c149971122f0cecbe]: seyo111.hopto.org

About

Python script to extract C2 IP from CraxsRAT's client APK

Resources

Readme
Activity

Stars

3 stars

Watchers

1 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages