Results 1 to 5 of 5

Thread: Metasploit Gmail pdf with embedded exe

Hybrid View

  1. #1
    Senior Member
    Join Date
    Jun 2007
    Location
    UK
    Posts
    175

    Default Metasploit Gmail pdf with embedded exe

    Hi
    Trying to send an email using sendEmail and Gmail with attached PDF with embedded exe file but gmail fails with "illegal attachment on your message". This used to work, has google now blocked these things as I can't get Social Engineerig Tooolkit to send either.

    The PDF file is one I have created and this sends OK.

    The exe file is windows notepad.exe which is Not detected by AV's.
    This fails using the same Gmail set-up as when sending the pdf only.

    Using msf exploit/windows/fileformat/adobe_pdf_embedded_exe to add the exe to the PDF.

    Any pointers please

  2. #2
    Administrator sickness's Avatar
    Join Date
    Jan 2010
    Location
    Behind the screen.
    Posts
    2,921

    Default Re: Metasploit Gmail pdf with embedded exe

    I don't really understand what you sent ... but I think I know what you are trying to do.
    If you want to send a malicious .pdf with a payload incorporated in it. Gmail/Yahoo/Msn woun't work, because they have their own scanners when you attach something to an email or download an attachment.
    Either you try to encode it really good, either you find another way.
    Back|track giving machine guns to monkeys since 2007 !

    Do not read the Wiki, most your questions will not be answered there !
    Do not take a look at the: Forum Rules !

  3. #3
    Senior Member
    Join Date
    Jun 2007
    Location
    UK
    Posts
    175

    Default

    Thanks for reply I guessed this was the problem thats why I tried notepad.exe as the attachment. I have tried various encoders and even two encoders at the same time with different count values. The problem came to light when I tried running SET which I think used to work. Just wondered if I was missing something.
    thanks

    I am still having problems trying to send an Email using googlemail with an attached PDF with embedded exe.
    I am using sendEmail with just the PDF attached and this works OK.
    I have created the exe from metersploit payload and msfencode single and multi times. My AV does not detect it and tested it against Virus Total also clean.
    As soon as I try to send Email I get the message "illegal attachment"
    I am also having the same problem using SET

    I hope this is not classed as a DOUBLE POSTING as I got into trouble once before for double posting. If so I am sorry.
    I know this used to work as I have gone back through my old notes. Therefore google has blocked this please can some kind member point me in the right direction or has anyone got a working sample exe file for me to test. Wasted 2 weeks on this now. Many Thanks

    edit
    Is there another way by not using Gmail
    Last edited by Archangel-Amael; 07-24-2010 at 10:15 AM.

  4. #4
    Administrator sickness's Avatar
    Join Date
    Jan 2010
    Location
    Behind the screen.
    Posts
    2,921

    Default Re: Metasploit Gmail pdf with embedded exe

    Quote Originally Posted by parrotface View Post
    I am still having problems trying to send an Email using googlemail with an attached PDF with embedded exe.
    I am using sendEmail with just the PDF attached and this works OK.
    I have created the exe from metersploit payload and msfencode single and multi times. My AV does not detect it and tested it against Virus Total also clean.
    As soon as I try to send Email I get the message "illegal attachment"
    I am also having the same problem using SET

    I hope this is not classed as a DOUBLE POSTING as I got into trouble once before for double posting. If so I am sorry.
    I know this used to work as I have gone back through my old notes. Therefore google has blocked this please can some kind member point me in the right direction or has anyone got a working sample exe file for me to test. Wasted 2 weeks on this now. Many Thanks

    edit
    Is there another way by not using Gmail
    Google will detect those as viruses stop trying to send them via google or yahoo or msn.
    Back|track giving machine guns to monkeys since 2007 !

    Do not read the Wiki, most your questions will not be answered there !
    Do not take a look at the: Forum Rules !

  5. #5
    Member
    Join Date
    Jan 2010
    Location
    Helsinki, Finland
    Posts
    235

    Default Re: Metasploit Gmail pdf with embedded exe

    so what is name of that file you are trying to send. Try not to use sendEmail to send your file, use gmail.com

    get a virus friendly email, I dont know any. use open relay smtp servers and you can also spoof senders email. (use sendEmail and ISP smtp server. or something similar.)

Similar Threads

  1. denial of service = gmail compromise?
    By ndrwgn in forum Experts Forum
    Replies: 4
    Last Post: 06-25-2010, 07:56 AM
  2. Embedded Payload (javascript)
    By sabotage in forum Beginners Forum
    Replies: 1
    Last Post: 02-16-2010, 06:18 AM
  3. POP3 gmail
    By abacaba in forum OLD Newbie Area
    Replies: 0
    Last Post: 02-13-2010, 02:07 AM
  4. Gmail and .dat extension
    By loop4me in forum OLD General IT Discussion
    Replies: 3
    Last Post: 10-20-2009, 06:02 PM
  5. TUTORIAL: Saving embedded flash/videos in firefox
    By thegreo in forum OLD Tutorials and Guides
    Replies: 9
    Last Post: 02-21-2008, 06:10 PM

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •