search

idanr1986 / cuckoo-droid

CuckooDroid - Automated Android Malware Analysis with Cuckoo Sandbox.
577 stars 135 forks source link

not ready yet #69

Open yangyeefeng opened 6 years ago

yangyeefeng commented 6 years ago

Hi, I searched a lot about this issues. Tried and tested every method available, still cannot get rid of this issue.

System setup that I am using: Ubuntu 16.04 (Host) Running Emulator android SDK 16 armeabi-v7a

Issue that I am facing: When I run ./cuckoo.py -d on my Ubuntu terminal. Cuckoo starts successfully and loads "avd" for analysis.I use the cuckoo web interface to run analysis. Once I upload the apk and click on analyze button, cuckoo starts the "avd" using which has cuckoo agent running. It even starts the "avd" in GUI mode and then all I get is this:

2018-05-04 09:40:08,890 [root] DEBUG: Importing modules... 2018-05-04 09:40:09,415 [root] DEBUG: Imported "signatures" modules: 2018-05-04 09:40:09,415 [root] DEBUG: |-- AndroidDynamicCode 2018-05-04 09:40:09,415 [root] DEBUG: |-- AndroidDynamicCode 2018-05-04 09:40:09,415 [root] DEBUG: |-- KnownVirustotal 2018-05-04 09:40:09,415 [root] DEBUG: |-- KnownVirustotalThreshold 2018-05-04 09:40:09,415 [root] DEBUG: |-- AndroidDangerousPermissions 2018-05-04 09:40:09,416 [root] DEBUG: |-- AndroidDynamicCode 2018-05-04 09:40:09,416 [root] DEBUG: |-- AndroidGooglePlayDiff 2018-05-04 09:40:09,416 [root] DEBUG: |-- Hidden_Payload 2018-05-04 09:40:09,416 [root] DEBUG: |-- SandroRat 2018-05-04 09:40:09,416 [root] DEBUG: |-- AndroratMalware 2018-05-04 09:40:09,416 [root] DEBUG: |-- IBankingMalware 2018-05-04 09:40:09,416 [root] DEBUG: |-- AndroidNativeCode 2018-05-04 09:40:09,416 [root] DEBUG: |-- AndroidDynamicCode 2018-05-04 09:40:09,416 [root] DEBUG: |-- AndroidReflectionCode 2018-05-04 09:40:09,416 [root] DEBUG: |-- AndroidAbortBroadcast 2018-05-04 09:40:09,416 [root] DEBUG: |-- Hidden_Payload 2018-05-04 09:40:09,416 [root] DEBUG: |-- Hidden_Payload 2018-05-04 09:40:09,417 [root] DEBUG: |-- ApplicationContainsDex 2018-05-04 09:40:09,417 [root] DEBUG: |-- ApplicationContainsJar 2018-05-04 09:40:09,417 [root] DEBUG: |-- ApplicationContainsSo 2018-05-04 09:40:09,417 [root] DEBUG: |-- AndroidInstalledApps 2018-05-04 09:40:09,417 [root] DEBUG: |-- ApplicationDroppedDex 2018-05-04 09:40:09,417 [root] DEBUG: |-- ApplicationDroppedFiles 2018-05-04 09:40:09,417 [root] DEBUG: |-- ApplicationDroppedSo 2018-05-04 09:40:09,417 [root] DEBUG: |-- AndroidShellCommands 2018-05-04 09:40:09,417 [root] DEBUG: |-- AndroidPhoneNumber 2018-05-04 09:40:09,417 [root] DEBUG: |-- AndroidInstalledApps 2018-05-04 09:40:09,418 [root] DEBUG: |-- AndroidAccountInfo 2018-05-04 09:40:09,418 [root] DEBUG: |-- AndroidAppInfo 2018-05-04 09:40:09,418 [root] DEBUG: |-- AndroidPrivateInfoQuery 2018-05-04 09:40:09,418 [root] DEBUG: |-- AndroidAudio 2018-05-04 09:40:09,418 [root] DEBUG: |-- AndroidUsingReflection 2018-05-04 09:40:09,418 [root] DEBUG: |-- AndroidRegisteredReceiver 2018-05-04 09:40:09,418 [root] DEBUG: |-- AndroidInstalledApps 2018-05-04 09:40:09,418 [root] DEBUG: |-- AndroidSMS 2018-05-04 09:40:09,418 [root] DEBUG: |-- AndroidComponentEnabledSetting 2018-05-04 09:40:09,418 [root] DEBUG: |-- AndroidStopProcess 2018-05-04 09:40:09,418 [root] DEBUG: |-- ApplicationUsesLocation 2018-05-04 09:40:09,419 [root] DEBUG: |-- AndroidCamera 2018-05-04 09:40:09,419 [root] DEBUG: |-- CreatesExe 2018-05-04 09:40:09,419 [root] DEBUG: |-- SystemMetrics 2018-05-04 09:40:09,419 [root] DEBUG: |-- NetworkHTTP 2018-05-04 09:40:09,419 [root] DEBUG: |-- NetworkICMP 2018-05-04 09:40:09,419 [root] DEBUG: |-- NetworkIRC 2018-05-04 09:40:09,419 [root] DEBUG: -- NetworkSMTP 2018-05-04 09:40:09,419 [root] DEBUG: Imported "processing" modules: 2018-05-04 09:40:09,419 [root] DEBUG: |-- AnalysisInfo 2018-05-04 09:40:09,419 [root] DEBUG: |-- ApkInfo 2018-05-04 09:40:09,420 [root] DEBUG: |-- BehaviorAnalysis 2018-05-04 09:40:09,420 [root] DEBUG: |-- Debug 2018-05-04 09:40:09,420 [root] DEBUG: |-- Droidmon 2018-05-04 09:40:09,420 [root] DEBUG: |-- Dropped 2018-05-04 09:40:09,420 [root] DEBUG: |-- GooglePlay 2018-05-04 09:40:09,420 [root] DEBUG: |-- Memory 2018-05-04 09:40:09,420 [root] DEBUG: |-- NetworkAnalysis 2018-05-04 09:40:09,420 [root] DEBUG: |-- ProcessMemory 2018-05-04 09:40:09,420 [root] DEBUG: |-- Static 2018-05-04 09:40:09,420 [root] DEBUG: |-- Strings 2018-05-04 09:40:09,420 [root] DEBUG: |-- TargetInfo 2018-05-04 09:40:09,421 [root] DEBUG:-- VirusTotal 2018-05-04 09:40:09,421 [root] DEBUG: Imported "auxiliary" modules: 2018-05-04 09:40:09,421 [root] DEBUG: -- Sniffer 2018-05-04 09:40:09,421 [root] DEBUG: Imported "reporting" modules: 2018-05-04 09:40:09,421 [root] DEBUG: |-- JsonDump 2018-05-04 09:40:09,421 [root] DEBUG: |-- MAEC40Report 2018-05-04 09:40:09,421 [root] DEBUG: |-- MMDef 2018-05-04 09:40:09,421 [root] DEBUG: |-- MongoDB 2018-05-04 09:40:09,421 [root] DEBUG: |-- ReportAndroidHTML 2018-05-04 09:40:09,421 [root] DEBUG:-- ReportHTML 2018-05-04 09:40:09,421 [root] DEBUG: Imported "machinery" modules: 2018-05-04 09:40:09,422 [root] DEBUG: -- Avd 2018-05-04 09:40:09,451 [root] DEBUG: Checking for locked tasks... 2018-05-04 09:40:09,501 [root] DEBUG: Initializing Yara... 2018-05-04 09:40:09,502 [root] DEBUG: |-- index_binaries.yar 2018-05-04 09:40:09,502 [root] DEBUG:-- index_memory.yar 2018-05-04 09:40:09,503 [lib.cuckoo.core.resultserver] DEBUG: ResultServer running on 127.0.0.1:2043. 2018-05-04 09:40:09,504 [lib.cuckoo.core.scheduler] INFO: Using "avd" machine manager 2018-05-04 09:40:09,528 [lib.cuckoo.core.scheduler] INFO: Loaded 1 machine/s 2018-05-04 09:40:09,538 [lib.cuckoo.core.scheduler] INFO: Waiting for analysis tasks. 2018-05-04 09:40:30,187 [lib.cuckoo.core.scheduler] DEBUG: Processing task #4 2018-05-04 09:40:30,188 [lib.cuckoo.core.scheduler] INFO: Starting analysis of FILE "/tmp/cuckoo-tmp/upload_w5qL0q/yingyongbao_7192130.apk" (task=4) 2018-05-04 09:40:30,393 [lib.cuckoo.core.scheduler] INFO: File already exists at "/root/cuckoo/storage/binaries/8c0e1f7e4468e389a1586e2d46333d06788ae2640156acf0113489466c7117c6" 2018-05-04 09:40:30,409 [lib.cuckoo.core.scheduler] INFO: Task #4: acquired machine aosx_1 (label=aosx_1) 2018-05-04 09:40:30,422 [modules.machinery.avd] DEBUG: Starting vm aosx_1 2018-05-04 09:40:30,422 [modules.machinery.avd] DEBUG: Duplicate Reference Machine 'aosx'. 2018-05-04 09:40:30,422 [modules.machinery.avd] DEBUG: Deleting old emulator config file '/root/.android/avd/aosx_1.ini' 2018-05-04 09:40:30,422 [modules.machinery.avd] DEBUG: Deleting old emulator FS '/root/.android/avd/aosx_1.avd/' 2018-05-04 09:40:30,536 [modules.machinery.avd] DEBUG: Copy AVD reference config file '/root/.android/avd/aosx.ini' in '/root/.android/avd/aosx_1.ini'... 2018-05-04 09:40:30,536 [modules.machinery.avd] DEBUG: Duplicate the AVD internal content from '/root/.android/avd/aosx.avd/' in '/root/.android/avd/aosx_1.avd/'... 2018-05-04 09:40:31,022 [modules.machinery.avd] DEBUG: Replacing 'aosx' with 'aosx_1' in '/root/.android/avd/aosx_1.ini' 2018-05-04 09:40:31,022 [modules.machinery.avd] DEBUG: Replacing 'aosx' with 'aosx_1' in '/root/.android/avd/aosx_1.avd/hardware-qemu.ini' 2018-05-04 09:40:41,035 [modules.machinery.avd] DEBUG: Restarting ADB server... 2018-05-04 09:40:41,041 [modules.machinery.avd] DEBUG: ADB server has been killed. 2018-05-04 09:40:44,048 [modules.machinery.avd] DEBUG: ADB server has been restarted. 2018-05-04 09:40:44,049 [modules.machinery.avd] DEBUG: Waiting for device emulator-5554 to be ready. 2018-05-04 09:40:44,055 [modules.machinery.avd] DEBUG: Waiting for the emulator to be ready 2018-05-04 09:40:44,056 [modules.machinery.avd] DEBUG: - (dev.bootcomplete) 2018-05-04 09:40:59,836 [modules.machinery.avd] DEBUG: - (sys_bootcomplete) 2018-05-04 09:40:59,883 [modules.machinery.avd] DEBUG: - (init.svc.bootanim) 2018-05-04 09:41:08,064 [modules.machinery.avd] DEBUG: Emulator emulator-5554 is ready ! 2018-05-04 09:41:08,077 [lib.cuckoo.core.guest] INFO: Starting analysis on guest (id=aosx_1, ip=127.0.0.1) 2018-05-04 09:41:08,077 [lib.cuckoo.core.guest] DEBUG: aosx_1: waiting for status 0x0001 2018-05-04 09:41:08,082 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:09,087 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:10,091 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:11,095 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:12,100 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:13,106 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:14,111 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:15,115 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:16,120 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:17,125 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:18,129 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:19,134 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:20,140 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:21,145 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:22,150 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:23,155 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:24,160 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:25,164 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:26,169 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:27,174 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:28,179 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:29,183 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:30,187 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:31,192 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:32,197 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:33,202 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:34,207 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:35,211 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:36,216 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:37,221 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:38,225 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:39,230 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:40,236 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:41,241 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:42,246 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:43,251 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:44,255 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:45,260 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:46,265 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:47,269 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:48,274 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:49,281 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:50,285 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:51,290 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:52,295 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:53,300 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:54,305 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:55,309 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:56,314 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:57,319 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:58,324 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:41:59,329 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:00,334 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:01,339 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:02,344 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:03,349 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:04,354 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:05,359 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:06,363 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:07,368 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:08,374 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:09,379 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:10,384 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:11,390 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:12,395 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:13,399 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:14,403 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:15,407 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:16,413 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:17,417 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:18,422 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:19,427 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:20,432 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:21,436 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:22,441 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:23,446 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:24,451 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:25,456 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:26,461 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:27,466 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:28,471 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:29,475 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:30,479 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:31,483 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:32,488 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:33,493 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:34,498 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:35,503 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:36,508 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:37,513 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:38,518 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:39,523 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:40,527 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:41,531 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:42,535 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:43,541 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:44,546 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:45,550 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:46,555 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:47,559 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:48,563 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:49,567 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:50,571 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:51,575 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:52,579 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:53,584 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:54,588 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:55,593 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:56,598 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:57,603 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:58,607 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:42:59,612 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:43:00,617 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:43:01,623 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:43:02,627 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:43:03,632 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:43:04,638 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:43:05,642 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:43:06,646 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:43:07,652 [lib.cuckoo.core.guest] DEBUG: aosx_1: not ready yet 2018-05-04 09:43:08,653 [lib.cuckoo.core.scheduler] ERROR: aosx_1: the guest initialization hit the critical timeout, analysis aborted. 2018-05-04 09:43:08,659 [modules.machinery.avd] DEBUG: Stopping vm aosx_1 2018-05-04 09:43:08,660 [modules.machinery.avd] INFO: Stopping AVD listening on port 5554 2018-05-04 09:43:09,703 [lib.cuckoo.core.scheduler] DEBUG: Released database task #4 with status False 2018-05-04 09:43:09,719 [lib.cuckoo.core.plugins] DEBUG: Executed processing module "AnalysisInfo" on analysis at "/root/cuckoo/storage/analyses/4" 2018-05-04 09:43:12,452 [modules.processing.apkinfo] WARNING: Dex size bigger than: None 2018-05-04 09:43:12,454 [lib.cuckoo.core.plugins] DEBUG: Executed processing module "ApkInfo" on analysis at "/root/cuckoo/storage/analyses/4" 2018-05-04 09:43:12,459 [modules.processing.behavior] WARNING: Analysis results folder does not exist at path "/root/cuckoo/storage/analyses/4/logs". 2018-05-04 09:43:12,459 [lib.cuckoo.core.plugins] DEBUG: Executed processing module "BehaviorAnalysis" on analysis at "/root/cuckoo/storage/analyses/4" 2018-05-04 09:43:12,466 [lib.cuckoo.core.plugins] DEBUG: Executed processing module "Debug" on analysis at "/root/cuckoo/storage/analyses/4" 2018-05-04 09:43:12,470 [lib.cuckoo.core.plugins] DEBUG: Executed processing module "Droidmon" on analysis at "/root/cuckoo/storage/analyses/4" 2018-05-04 09:43:12,470 [lib.cuckoo.core.plugins] DEBUG: Executed processing module "Dropped" on analysis at "/root/cuckoo/storage/analyses/4" 2018-05-04 09:43:12,507 [lib.cuckoo.core.plugins] DEBUG: Executed processing module "NetworkAnalysis" on analysis at "/root/cuckoo/storage/analyses/4" 2018-05-04 09:43:12,507 [lib.cuckoo.core.plugins] DEBUG: Executed processing module "ProcessMemory" on analysis at "/root/cuckoo/storage/analyses/4" 2018-05-04 09:43:12,508 [lib.cuckoo.core.plugins] DEBUG: Executed processing module "Static" on analysis at "/root/cuckoo/storage/analyses/4" 2018-05-04 09:43:13,008 [lib.cuckoo.core.plugins] DEBUG: Executed processing module "Strings" on analysis at "/root/cuckoo/storage/analyses/4" 2018-05-04 09:43:13,109 [lib.cuckoo.common.objects] WARNING: Unable to import pydeep (install with pip install pydeep) 2018-05-04 09:43:13,155 [lib.cuckoo.core.plugins] DEBUG: Executed processing module "TargetInfo" on analysis at "/root/cuckoo/storage/analyses/4" 2018-05-04 09:43:14,845 [lib.cuckoo.core.plugins] DEBUG: Executed processing module "VirusTotal" on analysis at "/root/cuckoo/storage/analyses/4" 2018-05-04 09:43:14,846 [lib.cuckoo.core.plugins] DEBUG: Applying signature overlays for signatures: creates_exe 2018-05-04 09:43:14,848 [lib.cuckoo.core.plugins] DEBUG: Running non-evented signatures 2018-05-04 09:43:14,848 [lib.cuckoo.core.plugins] DEBUG: Running signature "android_AirPush_Adware" 2018-05-04 09:43:14,862 [lib.cuckoo.core.plugins] DEBUG: Running signature "android_Umeng_Adware" 2018-05-04 09:43:14,863 [lib.cuckoo.core.plugins] DEBUG: Running signature "android_antivirus_virustotal" 2018-05-04 09:43:14,863 [lib.cuckoo.core.plugins] DEBUG: Running signature "android_antivirus_virustotal_threshold" 2018-05-04 09:43:14,864 [lib.cuckoo.core.plugins] DEBUG: Running signature "android_dangerous_permissions" 2018-05-04 09:43:14,864 [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature "android_dangerous_permissions" 2018-05-04 09:43:14,865 [lib.cuckoo.core.plugins] DEBUG: Running signature "android_dynamic_code" 2018-05-04 09:43:14,865 [lib.cuckoo.core.plugins] DEBUG: Running signature "android_google_play_diff" 2018-05-04 09:43:14,866 [lib.cuckoo.core.plugins] DEBUG: Running signature "android_hidden_payload" 2018-05-04 09:43:14,872 [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature "android_hidden_payload" 2018-05-04 09:43:14,873 [lib.cuckoo.core.plugins] DEBUG: Running signature "android_maware_snadrorat" 2018-05-04 09:43:14,895 [lib.cuckoo.core.plugins] DEBUG: Running signature "android_maware_androrat" 2018-05-04 09:43:14,895 [lib.cuckoo.core.plugins] DEBUG: Running signature "android_maware_iBanking" 2018-05-04 09:43:14,897 [lib.cuckoo.core.plugins] DEBUG: Running signature "android_native_code" 2018-05-04 09:43:14,897 [lib.cuckoo.core.plugins] DEBUG: Running signature "android_packer" 2018-05-04 09:43:14,901 [lib.cuckoo.core.plugins] DEBUG: Running signature "android_reflection_code" 2018-05-04 09:43:14,901 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_aborted_broadcast_receiver" 2018-05-04 09:43:14,901 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_contains_apk" 2018-05-04 09:43:14,903 [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature "application_contains_apk" 2018-05-04 09:43:14,904 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_contains_arm_binaries" 2018-05-04 09:43:14,904 [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature "application_contains_arm_binaries" 2018-05-04 09:43:14,904 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_contains_dex" 2018-05-04 09:43:14,904 [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature "application_contains_dex" 2018-05-04 09:43:14,904 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_contains_jar" 2018-05-04 09:43:14,905 [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature "application_contains_jar" 2018-05-04 09:43:14,905 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_contains_so" 2018-05-04 09:43:14,905 [lib.cuckoo.core.plugins] DEBUG: Analysis matched signature "application_contains_so" 2018-05-04 09:43:14,905 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_device_admin" 2018-05-04 09:43:14,905 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_dropped_dex" 2018-05-04 09:43:14,905 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_dropped_files" 2018-05-04 09:43:14,905 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_dropped_so" 2018-05-04 09:43:14,905 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_executed_shell_command" 2018-05-04 09:43:14,906 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_fingerprint" 2018-05-04 09:43:14,906 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_installed_app" 2018-05-04 09:43:14,906 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_queried_account_info" 2018-05-04 09:43:14,906 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_queried_installed_apps" 2018-05-04 09:43:14,906 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_queried_private_information" 2018-05-04 09:43:14,906 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_recording_audio" 2018-05-04 09:43:14,906 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_reflection" 2018-05-04 09:43:14,907 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_registered_receiver_runtime" 2018-05-04 09:43:14,907 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_root" 2018-05-04 09:43:14,907 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_sent_sms_messages" 2018-05-04 09:43:14,907 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_setComponentEnabledSetting" 2018-05-04 09:43:14,907 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_stopped_processes" 2018-05-04 09:43:14,907 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_uses_location" 2018-05-04 09:43:14,908 [lib.cuckoo.core.plugins] DEBUG: Running signature "application_using_the_camera" 2018-05-04 09:43:14,908 [lib.cuckoo.core.plugins] DEBUG: Running signature "creates_exe" 2018-05-04 09:43:14,908 [lib.cuckoo.core.plugins] DEBUG: Running signature "generic_metrics" 2018-05-04 09:43:14,908 [lib.cuckoo.core.plugins] DEBUG: Running signature "network_http" 2018-05-04 09:43:14,908 [lib.cuckoo.core.plugins] DEBUG: Running signature "network_icmp" 2018-05-04 09:43:14,908 [lib.cuckoo.core.plugins] DEBUG: Running signature "network_irc" 2018-05-04 09:43:14,909 [lib.cuckoo.core.plugins] DEBUG: Running signature "network_smtp" 2018-05-04 09:43:15,607 [lib.cuckoo.core.plugins] DEBUG: Executed reporting module "JsonDump" 2018-05-04 09:43:15,778 [lib.cuckoo.core.plugins] ERROR: Failed to run the reporting module "MongoDB": Traceback (most recent call last): File "/root/cuckoo/lib/cuckoo/core/plugins.py", line 505, in process current.run(self.results) File "/root/cuckoo/modules/reporting/mongodb.py", line 216, in run self.conn.disconnect() File "/usr/local/lib/python2.7/dist-packages/pymongo/database.py", line 1053, in call self.name, self.client.class.name)) TypeError: 'Database' object is not callable. If you meant to call the 'disconnect' method on a 'MongoClient' object it is failing because no such method exists. 2018-05-04 09:43:15,967 [lib.cuckoo.core.plugins] DEBUG: Executed reporting module "ReportAndroidHTML" 2018-05-04 09:43:15,967 [lib.cuckoo.core.scheduler] INFO: Task #4: reports generation completed (path=/root/cuckoo/storage/analyses/4) 2018-05-04 09:43:15,977 [lib.cuckoo.core.scheduler] INFO: Task #4: analysis procedure completed

I checked the FAQ, I made sure agent running and 8000 port is open。 image

cuckoo version 2.0.3

Any help would be appreciated !

Thank you.

wickywaka commented 6 years ago

The problem seems to be in subprocess.Popen in analyzer and agent.py. #53 Also os.popen is been not predictable(sometimes It doesn't do anything) in my case so I would recommend to replace it first on subprocess.popen.

I am looking into making a pull request but first need someone to confirm this issue, do let me know if you need further help.

wickywaka commented 6 years ago

Check these tutorials out, I still hadn't done the part you are having trouble in but make sure you followed these steps: https://www.youtube.com/watch?v=mUoz71KfwLg&list=PLWHO6M8IznQBPzRlcrZ99LG0n4bktm0x8