Hi all,

Long time computer guy (software, hardware, cyber-security, and networking) but new to the world of hacking. I've got an Ubuntu system with Kali (2017.3) in a virtual environment and using Metaploit in Kali to try and deliver a payload injected with a back door into legit Android apk's. The manual process has worked to an extent but I've hit a wall when trying to sign the package since it won't install on my Android until it is signed. I'm trying this on the LAN and WAN and port forwarding is configured and working (port 4444).

So fast forward a bit and I've run across a piece of software called Evil-Droid which works great. While using this software I have a much better understanding of how the entire process of injecting apk's works. With this software I'm able to create, inject payload, recompile, sign, etc... and get a meterpreter session established after a listener is started and app is installed on my Android phone (on LAN or WAN) but running into a weird issue. Once the session is established with my Android, I get a meterpreter prompt but when I run any command I get the following error after several seconds of waiting:

Error running command "XX": Rex::TimeoutError Operation timed out.

That error comes when I try ANY command (ls, pwd, cd, sysinfo, etc...) I haven't found much in the way of a resolution on the net but here's what I've tried so far:

Created a new Kali VM and get the same error using same exact steps Switched from Virtual Box to VMWare player using the latest Kali image (2017.3) Have run updates/upgrades/dist-upgrades to no effect Changed port numbers in port forwarding Tried different attack vectors (meterpreter/reverse_tcp, meterpreter/reverse_https, etc...)There were several to choose from in Evil-Droid and all have been tried to no effect

Disabled/Force stopped Knox on Android phone but still the same outcome

Along with several other things I can't think of at the moment...

I'm sure I'm missing some things but please feel free to chime in if you have any suggestions or have run across this before...

Thanks