If you use Metasploit, I'm sure you know about creating a binary file which contains a payload. If you wanted a shell on the system you're attacking, you'd select a reverse_tcp payload which would send a shell back to your machine through a TCP connection. Obviously if you want this to happen, you stick your IP address into the payload so it knows where to send the shell to.
My question is - if a victim had the backdoored file on their computer, could they somehow pull your IP address out of the payload within the file?
Comments
I think you should try this:
Make a VM, Open the payload there and try looking for the IP.
edit, downloading hxd and metasploit into virtualbox now ill let you know what i find
Notepad
Might not work.
This sounds hopeful If I could be bothered, I'd be checking for myself. In fact, that might be one thing I do with my day today.
I think the next thing I need to take a look at is how to hide backdoors well. Of course, you should probably get rid of them after you've used them for whatever evil plans you have up your sleeve Anyone have any experience using backdoors?