The C2EXFIL Command
To exfiltrate arbitrary files from the device to Cloud C2 there is a convenient C2EXFIL tool.
C2EXFIL (optional)"STRING" (required)<PATH> (optional) <PAYLOAD SOURCE>
- file path
- (always first arg if given) STRIING flag - tells Cloud C2 this file contains text and allow viewing in Cloud C2 web interface.
- (always last arg if given) <Payload Source> - name of the payload this file came from.
C2EXFIL STRING /tmp/somefile.txt PayloadXYZ
- STRING - send a file containing text
- /tmp/somefile.txt - filepath
- PayloadXYZ
C2EXFIL STRING /tmp/somefile.txt
- STRING - send a file containing text
- /tmp/somefile.txt - filepath
- (Undefined Payload Source)
C2EXFIL /tmp/somefile.txt
- /tmp/somefile.txt - filepath
C2EXFIL /tmp/somefile.txt PayloadXYZ
- /tmp/somefile.txt - filepath
- PayloadXYZ