文件信息
文件名称 quanminmiejiangshi_itmop.com.apk应用信息
应用名称 全民灭僵尸证书信息
二进制文件已签名
v1 签名: True
v2 签名: False
v3 签名: False
v4 签名: False
主题: C=US, ST=California, L=Mountain View, O=Android, OU=Android, CN=Android, E=android@android.com
签名算法: rsassa_pkcs1v15
有效期自: 2008-02-29 01:33:46+00:00
有效期至: 2035-07-17 01:33:46+00:00
发行人: C=US, ST=California, L=Mountain View, O=Android, OU=Android, CN=Android, E=android@android.com
序列号: 0x936eacbe07f201df
哈希算法: sha1
证书MD5: e89b158e4bcf988ebd09eb83f5378e87
证书SHA1: 61ed377e85d386a8dfee6b864bd85b0bfaa5af81
证书SHA256: a40da80a59d170caa950cf15c18c454d47a39b26989d8b640ecd745ba71bf5dc
证书SHA512: 5216ccb62004c4534f35c780ad7c582f4ee528371e27d4151f0553325de9ccbe6b34ec4233f5f640703581053abfea303977272d17958704d89b7711292a4569
找到 1 个唯一证书应用程序权限
| 权限名称 | 安全等级 | 权限内容 | 权限描述 | 关联代码 |
|---|---|---|---|---|
| android.permission.INTERNET | 危险 | 完全互联网访问 | 允许应用程序创建网络套接字。 | 显示文件 |
| android.permission.ACCESS_NETWORK_STATE | 普通 | 获取网络状态 | 允许应用程序查看所有网络的状态。 |
显示文件
cn/egame/terminal/sdk/log/aa.java
cn/egame/terminal/sdk/log/aj.java
cn/play/dserv/CheckTool.java
cn/play/dserv/DsReceiver.java
com/appabc/island/JapanZombie.java
com/chinaMobile/MobileAgent.java
com/chinaMobile/g.java
com/chinaMobile/m.java
com/example/assetexam/LoginUser.java
com/example/assetexam/Welcome.java
com/example/assetexam/WelcomeEx.java
mm/sms/purchasesdk/f/b.java
mm/sms/purchasesdk/f/c.java
mm/sms/purchasesdk/f/f.java
|
| android.permission.ACCESS_WIFI_STATE | 普通 | 查看Wi-Fi状态 | 允许应用程序查看有关Wi-Fi状态的信息。 | 显示文件 |
| android.permission.READ_PHONE_STATE | 危险 | 读取手机状态和标识 | 允许应用程序访问设备的手机功能。有此权限的应用程序可确定此手机的号码和序列号,是否正在通话,以及对方的号码等。 | 显示文件 |
| android.permission.SEND_SMS | 危险 | 发送短信 | 允许应用程序发送短信。恶意应用程序可能会不经您的确认就发送信息,给您带来费用。 | 显示文件 |
| android.permission.WRITE_EXTERNAL_STORAGE | 危险 | 读取/修改/删除外部存储内容 | 允许应用程序写入外部存储。 | 显示文件 |
| android.permission.MOUNT_UNMOUNT_FILESYSTEMS | 危险 | 装载和卸载文件系统 | 允许应用程序装载和卸载可移动存储器的文件系统。 | |
| android.permission.ACCES_COARSE_LOCATION | 未知 | 未知权限 | 来自 android 引用的未知权限。 | |
| android.permission.ACCESS_FINE_LOCATION | 危险 | 获取精确位置 | 通过GPS芯片接收卫星的定位信息,定位精度达10米以内。恶意程序可以用它来确定您所在的位置。 | |
| android.permission.GET_TASKS | 危险 | 检索当前运行的应用程序 | 允许应用程序检索有关当前和最近运行的任务的信息。恶意应用程序可借此发现有关其他应用程序的保密信息。 | 显示文件 |
| android.permission.DISABLE_KEYGUARD | 危险 | 禁用键盘锁 | 允许应用程序停用键锁和任何关联的密码安全设置。例如,在手机上接听电话时停用键锁,在通话结束后重新启用键锁。 | |
| android.permission.ACCESS_COARSE_LOCATION | 危险 | 获取粗略位置 | 通过WiFi或移动基站的方式获取用户错略的经纬度信息,定位精度大概误差在30~1500米。恶意程序可以用它来确定您的大概位置。 | |
| android.permission.READ_LOGS | 危险 | 读取系统日志文件 | 允许应用程序从系统的各日志文件中读取信息。这样应用程序可以发现您的手机使用情况,这些信息还可能包含用户个人信息或保密信息,造成隐私数据泄露。 | |
| android.permission.CALL_PHONE | 危险 | 直接拨打电话 | 允许应用程序直接拨打电话。恶意程序会在用户未知的情况下拨打电话造成损失。但不被允许拨打紧急电话。 |
证书分析
| 标题 | 严重程度 | 描述信息 |
|---|---|---|
| 已签名应用 | 信息 | 应用程序已使用代码签名证书进行签名 |
| 应用程序存在Janus漏洞 | 高危 | 应用程序使用了v1签名方案进行签名,如果只使用v1签名方案,那么它就容易受到安卓5.0-8.0上的Janus漏洞的攻击。在安卓5.0-7.0上运行的使用了v1签名方案的应用程序,以及同时使用了v2/v3签名方案的应用程序也同样存在漏洞。 |
MANIFEST分析
| 序号 | 问题 | 严重程度 | 描述信息 | 操作 |
|---|---|---|---|---|
| 1 |
应用程序可以安装在有漏洞的已更新 Android 版本上 Android 2.2-2.2.3, [minSdk=8] |
警告 | 该应用程序可以安装在具有多个未修复漏洞的旧版本 Android 上。这些设备不会从 Google 接收合理的安全更新。支持 Android 版本 => 10、API 29 以接收合理的安全更新。 | |
| 2 |
应用程序数据存在被泄露的风险 未设置[android:allowBackup]标志 |
警告 | 这个标志 [android:allowBackup]应该设置为false。默认情况下它被设置为true,允许任何人通过adb备份你的应用程序数据。它允许已经启用了USB调试的用户从设备上复制应用程序数据。 | |
| 3 |
Activity (VideoActivity) 未被保护。 存在一个intent-filter。 |
警告 | 发现 Activity与设备上的其他应用程序共享,因此让它可以被设备上的任何其他应用程序访问。intent-filter的存在表明这个Activity是显式导出的。 | |
| 4 | Activity (cn.play.dserv.EmpActivity) is vulnerable to StrandHogg 2.0 | 高危 | 已发现活动存在 StrandHogg 2.0 栈劫持漏洞的风险。漏洞利用时,其他应用程序可以将恶意活动放置在易受攻击的应用程序的活动栈顶部,从而使应用程序成为网络钓鱼攻击的易受攻击目标。可以通过将启动模式属性设置为“singleInstance”并设置空 taskAffinity (taskAffinity="") 来修复此漏洞。您还可以将应用的目标 SDK 版本 (8) 更新到 29 或更高版本以在平台级别修复此问题。 | |
| 5 |
Activity (cn.play.dserv.EmpActivity) 未被保护。 [android:exported=true] |
警告 | 发现 Activity与设备上的其他应用程序共享,因此使其对设备上的任何其他应用程序都可访问。 | |
| 6 |
Broadcast Receiver (cn.play.dserv.DsReceiver) 未被保护。 存在一个intent-filter。 |
警告 | 发现 Broadcast Receiver与设备上的其他应用程序共享,因此让它可以被设备上的任何其他应用程序访问。intent-filter的存在表明这个Broadcast Receiver是显式导出的。 | |
| 7 |
Broadcast Receiver (com.appabc.island.NetWorkChangeBroadcastReceiver) 未被保护。 存在一个intent-filter。 |
警告 | 发现 Broadcast Receiver与设备上的其他应用程序共享,因此让它可以被设备上的任何其他应用程序访问。intent-filter的存在表明这个Broadcast Receiver是显式导出的。 | |
| 8 |
Service (com.appabc.island.JapanService) 未被保护。 存在一个intent-filter。 |
警告 | 发现 Service与设备上的其他应用程序共享,因此让它可以被设备上的任何其他应用程序访问。intent-filter的存在表明这个Service是显式导出的。 | |
| 9 |
Service (com.baidu.location.f) 未被保护。 存在一个intent-filter。 |
警告 | 发现 Service与设备上的其他应用程序共享,因此让它可以被设备上的任何其他应用程序访问。intent-filter的存在表明这个Service是显式导出的。 | |
| 10 |
高优先级的Intent (1000) [android:priority] |
警告 | 通过设置一个比另一个Intent更高的优先级,应用程序有效地覆盖了其他请求。 | |
| 11 |
高优先级的Intent (1000) [android:priority] |
警告 | 通过设置一个比另一个Intent更高的优先级,应用程序有效地覆盖了其他请求。 |
可浏览的ACTIVITIES
| ACTIVITY | INTENT |
|---|
网络安全配置
| 序号 | 范围 | 严重级别 | 描述 |
|---|
API调用分析
源代码分析
动态库分析
| 序号 | 动态库 | NX(堆栈禁止执行) | STACK CANARY(栈保护) | RELRO | RPATH(指定SO搜索路径) | RUNPATH(指定SO搜索路径) | FORTIFY(常用函数加强检查) | SYMBOLS STRIPPED(裁剪符号表) |
|---|---|---|---|---|---|---|---|---|
| 1 | armeabi/libdserv.so | True
info 二进制文件设置了 NX 位。这标志着内存页面不可执行,使得攻击者注入的 shellcode 不可执行。 |
True
info 这个二进制文件在栈上添加了一个栈哨兵值,以便它会被溢出返回地址的栈缓冲区覆盖。这样可以通过在函数返回之前验证栈哨兵的完整性来检测溢出 |
Full RELRO
info 此共享对象已完全启用 RELRO。 RELRO 确保 GOT 不会在易受攻击的 ELF 二进制文件中被覆盖。在完整 RELRO 中,整个 GOT(.got 和 .got.plt 两者)被标记为只读。 |
None
info 二进制文件没有设置运行时搜索路径或RPATH |
None
info 二进制文件没有设置 RUNPATH |
False
warning 二进制文件没有任何加固函数。加固函数提供了针对 glibc 的常见不安全函数(如 strcpy,gets 等)的缓冲区溢出检查。使用编译选项 -D_FORTIFY_SOURCE=2 来加固函数。这个检查对于 Dart/Flutter 库不适用 |
False
warning 符号可用 |
| 2 | armeabi/libegamepay.so | True
info 二进制文件设置了 NX 位。这标志着内存页面不可执行,使得攻击者注入的 shellcode 不可执行。 |
True
info 这个二进制文件在栈上添加了一个栈哨兵值,以便它会被溢出返回地址的栈缓冲区覆盖。这样可以通过在函数返回之前验证栈哨兵的完整性来检测溢出 |
Full RELRO
info 此共享对象已完全启用 RELRO。 RELRO 确保 GOT 不会在易受攻击的 ELF 二进制文件中被覆盖。在完整 RELRO 中,整个 GOT(.got 和 .got.plt 两者)被标记为只读。 |
None
info 二进制文件没有设置运行时搜索路径或RPATH |
None
info 二进制文件没有设置 RUNPATH |
False
warning 二进制文件没有任何加固函数。加固函数提供了针对 glibc 的常见不安全函数(如 strcpy,gets 等)的缓冲区溢出检查。使用编译选项 -D_FORTIFY_SOURCE=2 来加固函数。这个检查对于 Dart/Flutter 库不适用 |
False
warning 符号可用 |
| 3 | armeabi/liblocSDK4d.so | True
info 二进制文件设置了 NX 位。这标志着内存页面不可执行,使得攻击者注入的 shellcode 不可执行。 |
True
info 这个二进制文件在栈上添加了一个栈哨兵值,以便它会被溢出返回地址的栈缓冲区覆盖。这样可以通过在函数返回之前验证栈哨兵的完整性来检测溢出 |
Full RELRO
info 此共享对象已完全启用 RELRO。 RELRO 确保 GOT 不会在易受攻击的 ELF 二进制文件中被覆盖。在完整 RELRO 中,整个 GOT(.got 和 .got.plt 两者)被标记为只读。 |
None
info 二进制文件没有设置运行时搜索路径或RPATH |
None
info 二进制文件没有设置 RUNPATH |
False
warning 二进制文件没有任何加固函数。加固函数提供了针对 glibc 的常见不安全函数(如 strcpy,gets 等)的缓冲区溢出检查。使用编译选项 -D_FORTIFY_SOURCE=2 来加固函数。这个检查对于 Dart/Flutter 库不适用 |
False
warning 符号可用 |
| 4 | armeabi/libsmsiap.so | True
info 二进制文件设置了 NX 位。这标志着内存页面不可执行,使得攻击者注入的 shellcode 不可执行。 |
True
info 这个二进制文件在栈上添加了一个栈哨兵值,以便它会被溢出返回地址的栈缓冲区覆盖。这样可以通过在函数返回之前验证栈哨兵的完整性来检测溢出 |
Full RELRO
info 此共享对象已完全启用 RELRO。 RELRO 确保 GOT 不会在易受攻击的 ELF 二进制文件中被覆盖。在完整 RELRO 中,整个 GOT(.got 和 .got.plt 两者)被标记为只读。 |
None
info 二进制文件没有设置运行时搜索路径或RPATH |
None
info 二进制文件没有设置 RUNPATH |
False
warning 二进制文件没有任何加固函数。加固函数提供了针对 glibc 的常见不安全函数(如 strcpy,gets 等)的缓冲区溢出检查。使用编译选项 -D_FORTIFY_SOURCE=2 来加固函数。这个检查对于 Dart/Flutter 库不适用 |
False
warning 符号可用 |
| 5 | armeabi/libypiap.so | True
info 二进制文件设置了 NX 位。这标志着内存页面不可执行,使得攻击者注入的 shellcode 不可执行。 |
True
info 这个二进制文件在栈上添加了一个栈哨兵值,以便它会被溢出返回地址的栈缓冲区覆盖。这样可以通过在函数返回之前验证栈哨兵的完整性来检测溢出 |
Full RELRO
info 此共享对象已完全启用 RELRO。 RELRO 确保 GOT 不会在易受攻击的 ELF 二进制文件中被覆盖。在完整 RELRO 中,整个 GOT(.got 和 .got.plt 两者)被标记为只读。 |
None
info 二进制文件没有设置运行时搜索路径或RPATH |
None
info 二进制文件没有设置 RUNPATH |
False
warning 二进制文件没有任何加固函数。加固函数提供了针对 glibc 的常见不安全函数(如 strcpy,gets 等)的缓冲区溢出检查。使用编译选项 -D_FORTIFY_SOURCE=2 来加固函数。这个检查对于 Dart/Flutter 库不适用 |
False
warning 符号可用 |
文件分析
| 序号 | 问题 | 文件 |
|---|
VIRUSTOTAL扫描
检出率: 25 / 63 完整报告
| 反病毒引擎 | 检出结果 |
|---|---|
| AhnLab-V3 | PUP/Android.SmsReg.47443 |
| Antiy-AVL | Trojan/Generic.ASMalwAD.7 |
| Avast-Mobile | APK:RepMalware [Trj] |
| Avira | PUA/ANDR.SMSReg.FOLU.Gen |
| BitDefenderFalx | Android.Riskware.SMSReg.NN |
| CAT-QuickHeal | Android.Smsreg.BZ (PUP) |
| Cynet | Malicious (score: 99) |
| DrWeb | Android.RemoteCode.173.origin |
| ESET-NOD32 | a variant of Android/SMSreg.LL potentially unsafe |
| F-Secure | PotentialRisk.PUA/ANDR.SMSReg.FOLU.Gen |
| Fortinet | Android/Generic.Z.6B416E!tr |
| Ikarus | AdWare.AndroidOS.SMSreg |
| Jiangmin | Trojan.Generic.gwsly |
| K7GW | Adware ( 005328591 ) |
| MAX | malware (ai score=95) |
| McAfee | Artemis!3E5A0825178A |
| Microsoft | PUA:Win32/Puwaders.C!ml |
| NANO-Antivirus | Trojan.Android.MLW.edwwlk |
| Skyhigh | RDN/Generic.dx |
| Sophos | Android SmsPay (PUA) |
| Symantec | Trojan.Gen.MBT |
| SymantecMobileInsight | AppRisk:Generisk |
| Trustlook | Android.PUA.Trojan |
| VirIT | Android.Trj.RemoteCode.YZ |
| Yandex | Trojan.Etecer.bSZdzR.4 |
滥用权限
恶意软件常用权限 是被已知恶意软件广泛滥用的权限。
其它常用权限 是已知恶意软件经常滥用的权限。
IP地图
域名检测
| 域名 | 状态 | 中国境内 | 位置信息 | 解析 |
|---|---|---|---|---|
| www.gamebox6.com |
安全 |
否 | 没有可用的地理位置信息。 |
|
| da.mmarket.com |
安全 |
是 |
IP地址: 120.232.188.83 国家: China 地区: Guangdong 城市: Guangzhou 查看: 高德地图 |
|
| www.talkingdata.net |
安全 |
是 |
IP地址: 116.196.122.26 国家: China 地区: Beijing 城市: Beijing 查看: 高德地图 |
|
| dserv.cc6c.net |
安全 |
否 |
IP地址: 173.224.214.155 国家: United States of America 地区: California 城市: Walnut 查看: Google 地图 |
|
| tj.box6.com |
安全 |
否 | 没有可用的地理位置信息。 |
|
| gaandroid.talkingdata.net |
安全 |
是 |
IP地址: 116.198.14.107 国家: China 地区: Beijing 城市: Beijing 查看: 高德地图 |
|
| open.play.cn |
安全 |
是 |
IP地址: 180.96.49.16 国家: China 地区: Jiangsu 城市: Nanjing 查看: 高德地图 |
|
| u.talkingdata.net |
安全 |
否 | 没有可用的地理位置信息。 |
|
手机号码
| 手机号 | 源码文件 |
|---|---|
|
15919724391
|
com/appabc/island/JapanZombie.java |
|
15919724391
|
自研引擎分析结果 |
网址
| 网址信息 | 源码文件 |
|---|---|
|
http://open.play.cn/api/v2/egame/log.json http://open.play.cn/api/v2/egame/log/config.json?app_key= |
cn/egame/terminal/sdk/log/s.java |
|
http://da.mmarket.com/mmsdk/mmsdk?func=mmsdk:feedback |
com/chinaMobile/i.java |
|
http://da.mmarket.com/mmsdk/mmsdk?func=mmsdk:getappparameter&appkey= 10.0.0.172 http://da.mmarket.com/mmsdk/mmsdk?func=mmsdk:postactlog http://da.mmarket.com/mmsdk/mmsdk?func=mmsdk:posterrlog http://da.mmarket.com/mmsdk/mmsdk?func=mmsdk:posteventlog http://da.mmarket.com/mmsdk/mmsdk?func=mmsdk:postsyslog |
com/chinaMobile/MobileAgent.java |
|
http://tj.box6.com/Mobile/callback.aspx?Sign= http://www.gamebox6.com:8088/statistics/stscrackgameinstalllog.php?time= http://www.gamebox6.com:8088/getplatupdateinfo.php?time= |
com/example/assetexam/LoginUser.java |
|
http://da.mmarket.com/mmsdk/mmsdk?func=mmsdk:getappparameter&appkey= data:// 211.151.121.43 https://u.talkingdata.net/ota/b/android/dynamic/ver http://open.play.cn/api/v2/egame/log.json http://da.mmarket.com/mmsdk/mmsdk?func=mmsdk:feedback https://u.talkingdata.net/ota/b/android/dynamic/sdk.zip data://close http://www.gamebox6.com:8088/getplatupdateinfo.php?time= http://gaandroid.talkingdata.net/g/d?crc= data://uri/ http://da.mmarket.com/mmsdk/mmsdk?func=mmsdk:posteventlog javascript:parseMessage(' data://app http://www.gamebox6.com:8088/statistics/stscrackgameinstalllog.php?time= http://open.play.cn/api/v2/egame/log/config.json?app_key= http://lba.baidu.com/ http://da.mmarket.com/mmsdk/mmsdk?func=mmsdk:posterrlog 10.0.0.200 10.0.0.172 data://app/ data://uri www.talkingdata.net http://da.mmarket.com/mmsdk/mmsdk?func=mmsdk:postsyslog http://tj.box6.com/Mobile/callback.aspx?Sign= http://da.mmarket.com/mmsdk/mmsdk?func=mmsdk:postactlog http://10.10.32.105:9092/api/inappMsg/ 3.0.0.53 |
自研引擎分析结果 |
|
http://dserv.cc6c.net:8080/plserver/PS |
lib/armeabi/libdserv.so |
FIREBASE实例
邮箱
追踪器
| 名称 | 类别 | 网址 |
|---|---|---|
| Baidu Location | https://reports.exodus-privacy.eu.org/trackers/97 | |
| TalkingData | Analytics, Advertisement | https://reports.exodus-privacy.eu.org/trackers/293 |
密钥凭证
活动列表
已显示 4 个activities
1、 com.appabc.island.JapanZombie
2、 VideoActivity
3、 cn.egame.terminal.paysdk.EgamePayActivity
4、 cn.play.dserv.EmpActivity
服务列表
已显示 3 个services
1、 cn.play.dserv.DService
2、 com.appabc.island.JapanService
3、 com.baidu.location.f
广播接收者列表
已显示 2 个receivers
1、 cn.play.dserv.DsReceiver
2、 com.appabc.island.NetWorkChangeBroadcastReceiver
内容提供者列表
第三方SDK
| SDK名称 | 开发者 | 描述信息 |
|---|---|---|
| cocos2d-cpp | cocos2d-cpp | cocos2d-cpp 是用 C++ 14 编写的 2D 便携式游戏引擎,适用于 Android,iOS,Linux,MacOS 和 Windows。 |
文件列表
META-INF/MANIFEST.MF
META-INF/CERT.SF
META-INF/CERT.RSA
assets/aiPlay.png
assets/mmiap/03/horizontal/purchasedialog.xml
assets/mmiap/03/horizontal/savingdialog.xml
assets/soundFiles/at4.mp3
assets/soundFiles/guardok.mp3
assets/image/ChooseRelatedImages/BigMapImages.plist
assets/mmiap/02/title1_bg.png
assets/image/NewZombieImages/ShowZombieImages.plist
assets/soundFiles/unlockgun.mp3
assets/image/SpecialPackImages/ship.data
assets/image/ChooseRelatedImages/BigMapImages/map3.data
assets/soundFiles/win2.mp3
assets/mmiap/02/vertical/purchasedialog.xml
assets/mmiap/03/button1_confirm_press.9.png
lib/armeabi/libsmsiap.so
assets/mmiap/01/horizontal/savingdialog.xml
res/drawable-hdpi-v4/egame_sdk_popup_btn_grey_pressed.9.png
assets/image/NewZombieImages/ZombieAssistImages.plist
assets/config/LevelDesignInfo/enemyWayPointLevel7.csv
assets/vertical_bg.png
assets/image/Numbers/playGameGoldNumbers.plist
assets/image/fntWords/rankWords.data
assets/image/PlayScene_Background/playScene_bg_12.d2
res/drawable-hdpi-v4/egame_sdk_popup_orange_bg.9.png
assets/mmiap/02/horizontal/failresultdialog.xml
assets/image/BatteryImages/battery3.data
assets/image/PlayScene_Background/playScene_bg_7.d2
assets/soundFiles/equipgun.mp3
assets/image/homeFireTexture.data
assets/mmiap/03/title1_bg.png
assets/mmiap/02/logo1.png
assets/image/GiftImages.data
assets/image/PlayScene_Background/Background_Hide_images.data
res/drawable/egame_sdk_progress_loading_style.xml
assets/image/PlayScene_Background/playScene_bg_4.d2
assets/mmiap/03/btn_blue01.png
assets/mmpay.xml
assets/image/PlayScene_Background/flashlight.data
assets/image/SmallLoadingImages.plist
assets/image/ChooseRelatedImages/ChooseRelateImages.data
assets/mmiap/03/btn_gray.png
assets/start_game_bg.png
assets/soundFiles/at1.mp3
assets/image/StartRelatedImages/home_bg.d2
assets/mmiap/02/vertical/progressdialog.xml
assets/image/PlayScene_Background/playScene_bg_10.d2
assets/soundFiles/plane1.mp3
assets/image/ChooseRelatedImages/BigLoadingImages.data
assets/soundFiles/dialog.mp3
res/drawable-hdpi-v4/egame_sdk_icon_pay_phone.png
assets/image/Numbers/levelNumbers.plist
assets/config/LevelDesignInfo/enemyWayPointLevel1.csv
assets/soundFiles/nuclearready.mp3
res/drawable-xhdpi-v4/icon.png
res/drawable-hdpi-v4/egame_sdk_pressed.9.png
assets/config/LevelDesignInfo/enemyWayPointLevel6.csv
assets/soundFiles/die3.mp3
assets/config/RandomName/soldier_name_m.csv
assets/mmiap/03/vertical/purchasedialog.xml
assets/soundFiles/airdropget.mp3
assets/image/ThrowBombImages.plist
assets/config/RandomName/soldier_name_g.csv
res/drawable-hdpi-v4/ic_launcher.png
assets/image/Numbers/zombieNumbers.data
assets/mmiap/02/vertical/savingdialog.xml
assets/image/ChooseRelatedImages/BigLoadingImages.plist
assets/image/GameSettingImages.plist
assets/image/GameResultImages/gameLoseAndRevive.plist
assets/config/enemyNormalInfo.csv
assets/soundFiles/smload.mp3
assets/image/Numbers/goldNumbers.plist
assets/soundFiles/last.mp3
assets/mmiap/02/horizontal/progressdialog.xml
assets/image/GameResultImages/gameLoseAndRevive.data
assets/mmiap/01/horizontal/purchasedialog.xml
assets/image/ChooseRelatedImages/ChooseRelateBgImages.data
assets/config/LevelDesignInfo/levelDesign11.csv
assets/image/SkillAttackAnimation/slowAttackImages.plist
assets/soundFiles/unequipgun.mp3
assets/config/LevelDesignInfo/levelDesign6.csv
assets/mmiap/02/horizontal/sucresultdialog.xml
assets/image/BatteryImages/battery6.data
assets/soundFiles/gun8.mp3
assets/soundFiles/plane2.mp3
assets/mmiap/03/horizontal/failresultdialog.xml
assets/soundFiles/at5.mp3
com/tencent/mm/sdk/platformtools/rep5402863540997075488.tmp
assets/soundFiles/lose2.mp3
assets/image/SkillAttackAnimation/slowAttackImages.data
assets/egame/EGAME_103.jar
assets/image/Numbers/goldNumbers.data
assets/image/GunImages/ShowGunHeadImages.data
assets/image/fntWords/bossName.fnt
assets/image/GunImages/ShowGunImages.data
assets/mmiap/03/vertical/savingdialog.xml
assets/soundFiles/at2.mp3
assets/soundFiles/gun4.mp3
assets/soundFiles/s.mp3
assets/mmiap/01/bg.png
assets/image/GiftImages.plist
assets/mmiap/01/vertical/sucresultdialog.xml
assets/soundFiles/die6.mp3
assets/image/NewZombieImages/ZombieBossImages.plist
assets/image/SkillAttackAnimation/supportAttackImages.plist
assets/config/lotteryInfo.csv
assets/image/NewZombieImages/ZombieNormalImages.plist
assets/mmiap/03/loading.png
assets/soundFiles/levelup.mp3
assets/image/CommonImages.plist
assets/soundFiles/ice.mp3
AndroidManifest.xml
assets/soundFiles/gun7.mp3
res/drawable-hdpi-v4/egame_sdk_popup_loading.png
assets/soundFiles/die5.mp3
assets/config/LevelDesignInfo/enemyWayPointLevel12.csv
assets/mmiap/02/logo_02.png
assets/mmiap/01/vertical/progressdialog.xml
assets/config/LevelDesignInfo/enemyWayPointLevel13.csv
classes.dex
assets/image/SpecialPackImages/throughAll_bg.data
assets/image/Numbers/zombieNumbers.plist
assets/config/LevelDesignInfo/enemyWayPointLevel3.csv
assets/config/LevelDesignInfo/enemyWayPointLevel11.csv
assets/soundFiles/gun6.mp3
assets/image/ChooseRelatedImages/BigMapImages/map0.data
assets/image/GameAccountImages.data
assets/image/fntWords/map_names.data
assets/egame_ds.dat
assets/image/PlayScene_Background/bg_3_2.data
assets/image/ChooseRelatedImages/BigMapImages/map7.data
assets/soundFiles/boss2.mp3
assets/mmiap/02/vertical/sucresultdialog.xml
assets/mmiap/03/line.png
assets/mmiap/03/logo3.png
assets/image/starTexture.data
assets/mmiap/02/close_click.png
assets/mmiap/03/icon_false.png
res/drawable-hdpi-v4/egame_sdk_icon_pay_alipay.png
assets/blackbg.png
assets/soundFiles/changegun.mp3
assets/image/Numbers/diamondNumbers.data
assets/mmiap/03/bg2.png
assets/config/LevelDesignInfo/levelDesign1.csv
assets/soundFiles/hit1.mp3
res/drawable/egame_sdk_btn_close_selector.xml
assets/soundFiles/boss1.mp3
assets/soundFiles/hited.mp3
assets/image/ChooseRelatedImages/BigMapImages/map5.data
res/drawable-hdpi-v4/egame_sdk_popup_white_bg.9.png
lib/armeabi/liblocSDK4d.so
assets/image/GameResultImages/promotionRank.plist
assets/soundFiles/gun2.mp3
assets/mmiap/03/button_back.png
assets/image/fntWords/map_names.fnt
assets/appabc.jpg
assets/soundFiles/airdrop.mp3
assets/image/NewZombieImages/ShowZombieImages.data
assets/image/ChooseRelatedImages/BigMapImages/map11.data
assets/config/LevelDesignInfo/enemyWayPointLevel4.csv
assets/image/Numbers/timeSecNumbers.data
assets/image/GameShopMallImages.plist
assets/image/GunImages/GunFireImages.plist
assets/config/gunsInfo.csv
assets/feeInfo.dat
assets/META-INF/AIR/extensions/com.vampire.play189billing/META-INF/ANE/Android-ARM/META-INF/MANIFEST.MF
assets/image/SmallLoadingImages.data
assets/mmiap/03/vertical/failresultdialog.xml
assets/soundFiles/win1.mp3
assets/config/soundFileNames.csv
assets/image/NewZombieImages/FightAssistImages.data
assets/soundFiles/at3.mp3
assets/image/Numbers/promotionRankNumbers.plist
assets/mmiap/02/horizontal/savingdialog.xml
assets/egame/EGAME_103.dat
assets/mmiap/02/vertical/failresultdialog.xml
assets/config/LevelDesignInfo/levelDesign13.csv
res/drawable-hdpi-v4/egame_sdk_popup_dotted_line.png
assets/image/PlayScene_Background/playScene_bg_8.d2
assets/config/LevelDesignInfo/levelDesign2.csv
assets/soundFiles/die4.mp3
assets/image/Numbers/playGameLifeValueNumbers.data
assets/soundFiles/fan1.mp3
assets/image/Background_Introduce_Images.plist
assets/image/CommonImages.data
assets/image/bigMap_seaWater.plist
assets/image/PlayGameImages.data
assets/soundFiles/lose1.mp3
assets/image/Numbers/playGameLifeValueNumbers.plist
assets/image/homeFire.plist
assets/soundFiles/login.mp3
assets/mmiap/03/icon_success.png
assets/mmiap/03/infobg.9.png
assets/image/PlayScene_Background/playScene_bg_5.d2
res/drawable-hdpi-v4/icon.png
assets/image/GameRankAndInfoImages.data
assets/image/fntWords/bossName.data
assets/mmiap/03/infoline.png
assets/image/BatteryImages/battery2.data
assets/image/ChooseRelatedImages/sea.d2
assets/image/BatteryImages/battery5.data
assets/soundFiles/money1.mp3
assets/config/LevelDesignInfo/levelDesign10.csv
assets/image/Numbers/diamondNumbers.plist
assets/image/PlayScene_Background/playScene_bg_1.d2
assets/image/PlayScene_Background/playScene_bg_9.d2
res/drawable-hdpi-v4/egame_sdk_popup_btn_green_normal.9.png
assets/config/RandomName/soldier_firstname.csv
assets/image/PlayScene_Background/playScene_bg_0.d2
assets/image/ChooseRelatedImages/BigMapImages/map10.data
assets/mmiap/01/btn_gray_click.9.png
assets/config/LevelDesignInfo/enemyWayPointLevel2.csv
assets/image/Numbers/levelNumbers.data
assets/image/SpecialPackImages/cloud_left.data
assets/mmiap/02/btn_orange_click.9.png
assets/crack_bg.png
res/drawable-hdpi-v4/egame_sdk_icon_pay_more.png
assets/image/SpecialPackImages/buyLife_bg.data
assets/mmiap/02/icon_success.png
assets/image/Numbers/LVNumbers.data
assets/mmiap/02/bg.png
assets/image/Numbers/lifeNumbers.data
assets/soundFiles/die0.mp3
assets/image/winAllGameParticle.plist
assets/image/ChooseRelatedImages/BigMapImages.data
assets/mmiap/03/logo1.png
assets/image/waterTexture.data
assets/soundFiles/die2.mp3
assets/mmiap/01/vertical/savingdialog.xml
assets/soundFiles/level.mp3
assets/mmiap/splash/splash_v.jpg
assets/mmiap/03/title2_bg.png
assets/image/NewZombieImages/FightAssistImages.plist
assets/soundFiles/paratroops.mp3
assets/mmiap/02/horizontal/purchasedialog.xml
res/drawable-ldpi-v4/icon.png
assets/image/Numbers/lifeNumbers.plist
assets/image/GameResultImages/finalSuccess.data
assets/soundFiles/button.mp3
assets/soundFiles/gun9.mp3
assets/soundFiles/gun1.mp3
assets/image/ChooseRelatedImages/BigMapImages/map2.data
assets/image/PlayScene_Background/playScene_bg_2.d2
assets/image/Numbers/continueSkillZombieNumbers.plist
assets/image/BatteryImages/battery_side.data
assets/image/StartRelatedImages/StartRelatedImaes.plist
assets/image/PlayScene_Background/playScene_bg_13.d2
assets/image/ChooseRelatedImages/New_BigLoadingImages.data
assets/soundFiles/fire.mp3
assets/mmiap/splash/horizontal/splashdialog.xml
res/drawable-hdpi-v4/egame_sdk_popup_parting.png
res/drawable/egame_sdk_btn_green_selector.xml
assets/image/PlayScene_Background/Background_Hide_images.plist
assets/mmiap/03/btn_gray_click.png
assets/image/SkillAttackAnimation/supportAttackImages.data
res/layout/vedioview.xml
res/drawable-hdpi-v4/egame_sdk_popup_btn_close_pressed.png
assets/config/LevelDesignInfo/levelDesign4.csv
res/drawable-hdpi-v4/egame_sdk_popup_btn_close_normal.png
assets/config/rescuesInfo.csv
assets/image/Background_Introduce_Images.data
res/drawable-mdpi-v4/icon.png
assets/image/Numbers/shopDiamondNumbers.plist
assets/mmiap/02/close.png
assets/soundFiles/w1.mp3
assets/image/GunImages/GunFireImages.data
assets/image/GameRankAndInfoImages.plist
assets/mmiap/01/vertical/purchasedialog.xml
assets/config/enemyALevelInfo.csv
res/drawable/egame_sdk_list_item_selector.xml
assets/image/GameAccountImages.plist
res/drawable-hdpi-v4/egame_sdk_popup_title.9.png
assets/image/GunImages/NPCImages.plist
assets/image/ThrowBombImages.data
assets/config/LevelDesignInfo/enemyWayPointLevel9.csv
assets/mmiap/splash/vertical/splashdialog.xml
assets/soundFiles/low.mp3
assets/config/LevelDesignInfo/levelDesign3.csv
assets/image/Numbers/shopDiamondNumbers.data
assets/mmiap/01/button1_confirm.9.png
assets/mmiap/01/vertical/failresultdialog.xml
assets/horizontal_bg.png
assets/config/LevelDesignInfo/levelDesign5.csv
assets/image/ChooseRelatedImages/BigMapImages/map13.data
assets/mmiap/03/horizontal/sucresultdialog.xml
assets/image/ChooseRelatedImages/New_BigLoadingImages.plist
assets/config/LevelDesignInfo/enemyWayPointLevel0.csv
assets/mmiap/02/icon_info.png
assets/image/SpecialPackImages/new_guide_bg.data
assets/image/SpecialPackImages/contribution_icon.data
assets/image/PlayScene_Background/playScene_bg_3.d2
assets/soundFiles/gun5.mp3
assets/config/LevelDesignInfo/enemyWayPointLevel8.csv
assets/image/fntWords/rankWords.fnt
assets/soundFiles/gun3.mp3
assets/image/GameResultImages/gameSuccess.plist
assets/image/GameResultImages/finalSuccess.plist
assets/config/LevelDesignInfo/levelDesign9.csv
res/drawable-hdpi-v4/egame_sdk_popup_btn_green_pressed.9.png
assets/image/Numbers/playGameProgressNumbers.data
assets/config/LevelDesignInfo/levelDesign0.csv
assets/image/ChooseRelatedImages/BigMapImages/map8.data
res/drawable-hdpi-v4/egame_sdk_popup_import_box.9.png
assets/image/ChooseRelatedImages/BigMapImages/map1.data
assets/soundFiles/skillup.mp3
assets/mmiap/01/horizontal/sucresultdialog.xml
assets/mmiap/03/button_back_press.png
assets/image/Numbers/promotionRankNumbers.data
assets/image/Numbers/timeSecNumbers.plist
lib/armeabi/libypiap.so
assets/image/ChooseRelatedImages/BigMapImages/map6.data
assets/image/Numbers/playGameGoldNumbers.data
assets/config/LevelDesignInfo/enemyWayPointLevel10.csv
assets/image/ChooseRelatedImages/ChooseRelateBgImages.plist
assets/abresource/META-INF/MANIFEST.MF
assets/image/PlayScene_Background/playScene_bg_6.d2
assets/mmiap/01/btn_blue.9.png
assets/image/ChooseRelatedImages/BigMapImages/map9.data
assets/image/Numbers/LVNumbers.plist
assets/image/NewZombieImages/ZombieAssistImages.data
resources.arsc
assets/image/GameResultImages/promotionRank.data
assets/mmiap/03/vertical/sucresultdialog.xml
assets/soundFiles/fan5.mp3
assets/mmiap/02/btn_orange.9.png
assets/config/LevelDesignInfo/levelDesign8.csv
assets/mmiap/01/btn_gray.9.png
assets/Platform.apk
assets/image/ChooseRelatedImages/BigMapImages/map4.data
assets/image/Numbers/continueSkillZombieNumbers.data
assets/mmiap/02/btn_gray.9.png
assets/mmiap/03/icon_info.png
assets/image/GameResultImages/gameSuccess.data
assets/image/GameSettingImages.data
assets/image/GunImages/ShowGunImages.plist
res/layout/egame_sdk_fee_layout.xml
assets/image/GameResultImages/jinbi.plist
assets/image/ChooseRelatedImages/BigMapImages/map12.data
assets/config/LevelDesignInfo/levelDesign7.csv
assets/image/GunImages/GunBodyImages.plist
assets/image/SpecialPackImages/cloud.data
assets/mmiap/01/horizontal/progressdialog.xml
assets/mmiap/03/vertical/progressdialog.xml
assets/mmiap/01/horizontal/failresultdialog.xml
res/drawable-hdpi-v4/egame_sdk_egame_logo.png
assets/mmiap/01/button1_confirm_press.9.png
assets/image/GameShopMallImages.data
assets/image/GameResultImages/jinbi.data
assets/image/SpecialPackImages/cloud_right.data
assets/mmiap/03/button1_confirm.9.png
assets/soundFiles/hit.mp3
assets/mmiap/03/bg.png
assets/image/BatteryImages/battery4.data
assets/image/GunImages/GunBodyImages.data
res/drawable/egame_sdk_btn_grey_selector.xml
assets/image/Numbers/playGameProgressNumbers.plist
assets/image/GunImages/NPCImages.data
res/drawable-hdpi-v4/egame_sdk_icon_arrow_right.png
assets/image/NewZombieImages/ZombieBossImages.data
assets/image/GunImages/ShowGunHeadImages.plist
assets/mmiap/01/btn_blue_click.9.png
lib/armeabi/libegamepay.so
assets/soundFiles/airack.mp3
assets/soundFiles/unclearbomb.mp3
assets/soundFiles/unclearfly.mp3
assets/image/StartRelatedImages/StartRelatedImaes.data
assets/soundFiles/life.mp3
res/drawable-hdpi-v4/egame_sdk_popup_btn_grey_normal.9.png
assets/image/ChooseRelatedImages/ChooseRelateImages.plist
assets/config/upgradesInfo.csv
assets/image/PlayGameImages.plist
assets/soundFiles/die1.mp3
assets/mmiap/03/btn_blue01_click.png
assets/config/LevelDesignInfo/levelDesign12.csv
assets/image/NewZombieImages/ZombieNormalImages.data
assets/mmiap/03/horizontal/progressdialog.xml
assets/whiteBg.png
assets/image/PlayScene_Background/playScene_bg_11.d2
res/layout/web_login.xml
assets/mmiap/02/line.png
assets/mmiap/02/btn_gray_click.9.png
assets/config/LevelDesignInfo/enemyWayPointLevel5.csv
lib/armeabi/libcocos2dcpp.so
assets/soundFiles/gun10.mp3
assets/image/BatteryImages/battery0.data
lib/armeabi/libdserv.so
assets/config/WinGameRewardGoldRate.csv
assets/mmiap/splash/splash_h.jpg
污点分析
当apk较大时,代码量会很大,造成数据流图(ICFG)呈现爆炸式增长,所以该功能比较耗时,请先喝杯咖啡,耐心等待……| 规则名称 | 描述信息 | 操作 |
|---|---|---|
| 病毒分析 | 使用安卓恶意软件常用的API进行污点分析 | 开始分析 |
| 漏洞挖掘 | 漏洞挖掘场景下的污点分析 | 开始分析 |
| 隐私合规 | 隐私合规场景下的污点分析:组件内污点传播、组件间污点传播、组件与库函数之间的污点传播 | 开始分析 |
| 密码分析 | 分析加密算法是否使用常量密钥、静态初始化的向量(IV)、加密模式是否使用ECB等 | 开始分析 |
| Callback | 因为Android中系统级的Callback并不会出现显式地进行回调方法的调用,所以如果需要分析Callback方法需要在声明文件中将其声明,这里提供一份AndroidCallbacks.txt文件,里面是一些常见的原生回调接口或类,如果有特殊接口需求,可以联系管理员 | 开始分析 |