文件信息
文件名称 ea576a53773524b735acbe3976404d4bfd5343e59c3a8e13fd901d9696bd3570.apk文件大小 10.97MB
MD5 d3fbf7d6c8500b7a1080d97ac591e4bb
SHA1 4f4f34f61dca903efbac13466bbe8692add7ed11
SHA256 ea576a53773524b735acbe3976404d4bfd5343e59c3a8e13fd901d9696bd3570
文件信息
文件名称 ea576a53773524b735acbe3976404d4bfd5343e59c3a8e13fd901d9696bd3570.apk证书信息
二进制文件已签名
v1 签名: True
v2 签名: True
v3 签名: True
v4 签名: False
主题: C=US, ST=California, L=Mountain View, O=Google Inc., OU=Android, CN=Android
签名算法: rsassa_pkcs1v15
有效期自: 2023-09-14 04:49:49+00:00
有效期至: 2053-09-14 04:49:49+00:00
发行人: C=US, ST=California, L=Mountain View, O=Google Inc., OU=Android, CN=Android
序列号: 0xd9c82d99be741ddcccd0282a9e387c779f8142f7
哈希算法: sha256
证书MD5: 9faf886774ee4ea9c5d8c6e0950fae4c
证书SHA1: 41f586d41156e882c4ed279f35cf16964d201304
证书SHA256: a8c03bba4e8c5d62e87e07e2ce175b20dd26b1ee286d23aee35e079553ac8309
证书SHA512: be97aa03aaea52f5595d64c89cdac2afc69779cd08f319cb223f18cd426d19694f8308f179bb7321c6be6efbb2b19c20da509150f9415de2ce13195dda4eade9
公钥算法: rsa
密钥长度: 4096
指纹: b6453cb4f4b50fbbbf0f015173255111d1bf665004f8938ab22966ebf29e8d87
找到 1 个唯一证书
应用程序权限
权限名称 | 安全等级 | 权限内容 | 权限描述 | 关联代码 |
---|---|---|---|---|
android.permission.WRITE_EXTERNAL_STORAGE | 危险 | 读取/修改/删除外部存储内容 | 允许应用程序写入外部存储。 | 显示文件 |
android.permission.INTERNET | 危险 | 完全互联网访问 | 允许应用程序创建网络套接字。 | 显示文件 |
android.permission.ACCESS_NETWORK_STATE | 普通 | 获取网络状态 | 允许应用程序查看所有网络的状态。 | 显示文件 |
com.google.android.gms.permission.AD_ID | 普通 | 应用程序显示广告 | 此应用程序使用 Google 广告 ID,并且可能会投放广告。 | |
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE | 普通 | Google 定义的权限 | 由 Google 定义的自定义权限。 | |
android.permission.WAKE_LOCK | 危险 | 防止手机休眠 | 允许应用程序防止手机休眠,在手机屏幕关闭后后台进程仍然运行。 |
证书分析
标题 | 严重程度 | 描述信息 |
---|---|---|
已签名应用 | 信息 | 应用程序已使用代码签名证书进行签名 |
MANIFEST分析
序号 | 问题 | 严重程度 | 描述信息 | 操作 |
---|---|---|---|---|
1 |
应用程序可以安装在有漏洞的已更新 Android 版本上 Android 4.4-4.4.4, [minSdk=19] |
信息 | 该应用程序可以安装在具有多个未修复漏洞的旧版本 Android 上。这些设备不会从 Google 接收合理的安全更新。支持 Android 版本 => 10、API 29 以接收合理的安全更新。 | |
2 |
应用程序数据存在被泄露的风险 未设置[android:allowBackup]标志 |
警告 | 这个标志 [android:allowBackup]应该设置为false。默认情况下它被设置为true,允许任何人通过adb备份你的应用程序数据。它允许已经启用了USB调试的用户从设备上复制应用程序数据。 |
可浏览的ACTIVITIES
ACTIVITY | INTENT |
---|
网络安全配置
序号 | 范围 | 严重级别 | 描述 |
---|
API调用分析
源代码分析
动态库分析
序号 | 动态库 | NX(堆栈禁止执行) | STACK CANARY(栈保护) | RELRO | RPATH(指定SO搜索路径) | RUNPATH(指定SO搜索路径) | FORTIFY(常用函数加强检查) | SYMBOLS STRIPPED(裁剪符号表) |
---|
文件分析
序号 | 问题 | 文件 |
---|
VIRUSTOTAL扫描
检出率: 2 / 68 完整报告
反病毒引擎 | 检出结果 |
---|---|
Fortinet | Android/Agent.CSK!tr |
Ikarus | Trojan-Spy.AndroidOS.Banker |
滥用权限
恶意软件常用权限 是被已知恶意软件广泛滥用的权限。
其它常用权限 是已知恶意软件经常滥用的权限。
IP地图
网址
网址信息 | 源码文件 |
---|---|
https://developer.apple.com/library/ios/documentation/AdSupport/Reference/ASIdentifierManager_Ref/ http://jsperf.com/b64tests |
自研引擎-A |
https://%sapp.%s |
com/appsflyer/internal/AFe1gSDK.java |
https://%simpression.%s |
com/appsflyer/share/CrossPromotionHelper.java |
https://%ssdk-services.%s/validate-android-signature |
com/appsflyer/internal/AFa1dSDK.java |
https://%sdlsdk.%s/v1.0/android/ |
com/appsflyer/internal/AFb1oSDK.java |
https://%ssdk-services.%s/validate-android-signature https://%simpression.%s https://%sapp.%s https://adservice.google.com/getconfig/pubvendors https://%sdlsdk.%s/v1.0/android/ |
自研引擎-S |
FIREBASE实例
邮箱
追踪器
名称 | 类别 | 网址 |
---|---|---|
AppsFlyer | Analytics | https://reports.exodus-privacy.eu.org/trackers/12 |
Google AdMob | Advertisement | https://reports.exodus-privacy.eu.org/trackers/312 |
Google Firebase Analytics | Analytics | https://reports.exodus-privacy.eu.org/trackers/49 |
RjFun | Advertisement | https://reports.exodus-privacy.eu.org/trackers/377 |
密钥凭证
活动列表
已显示 3 个activities
1、 com.foxybubbleblaster.game3244.MainActivity
2、 org.apache.cordova.mytuil.UnReal
3、 com.google.android.gms.ads.AdActivity
服务列表
广播接收者列表
内容提供者列表
已显示 1 个providers
1、 com.google.android.gms.ads.MobileAdsInitProvider
第三方SDK
SDK名称 | 开发者 | 描述信息 |
---|---|---|
File Provider | Android | FileProvider 是 ContentProvider 的特殊子类,它通过创建 content://Uri 代替 file:///Uri 以促进安全分享与应用程序关联的文件。 |
文件列表
AndroidManifest.xml
META-INF/services/javax.ws.rs.ext.MessageBodyReader
META-INF/services/javax.ws.rs.ext.MessageBodyWriter
META-INF/services/javax.ws.rs.ext.Providers
META-INF/services/org.glassfish.jersey.internal.spi.AutoDiscoverable
assets/consentform.html
assets/l7b105950_a32.so
assets/l7b105950_a64.so
assets/l7b105950_x64.so
assets/l7b105950_x86.so
assets/www/admob_simple.js
assets/www/cordova-js-src/android/nativeapiprovider.js
assets/www/cordova-js-src/android/promptbasednativeapi.js
assets/www/cordova-js-src/exec.js
assets/www/cordova-js-src/platform.js
assets/www/cordova-js-src/plugin/android/app.js
assets/www/cordova.js
assets/www/cordova_plugins.js
assets/www/index.html
assets/www/launcher/egret_loader.js
assets/www/launcher/egret_require.js
assets/www/launcher/game-min.js
assets/www/plugins/cordova-plugin-admobpro/www/AdMob.js
assets/www/resource/assets/audio/bgsound.mp3
assets/www/resource/assets/audio/bomb.mp3
assets/www/resource/assets/audio/drop.mp3
assets/www/resource/assets/audio/eat.mp3
assets/www/resource/assets/audio/lose.mp3
assets/www/resource/assets/audio/perfect_1.mp3
assets/www/resource/assets/audio/perfect_2.mp3
assets/www/resource/assets/audio/perfect_3.mp3
assets/www/resource/assets/audio/perfect_4.mp3
assets/www/resource/assets/audio/shoot.mp3
assets/www/resource/assets/audio/step2score.mp3
assets/www/resource/assets/audio/win.mp3
assets/www/resource/assets/bomb_anim.json
assets/www/resource/assets/box_anim.json
assets/www/resource/assets/cfg/data.json
assets/www/resource/assets/egret_loader.js
assets/www/resource/assets/egret_require.js
assets/www/resource/assets/font/chapter.fnt
assets/www/resource/assets/font/chapter.png
assets/www/resource/assets/font/hit_num.fnt
assets/www/resource/assets/font/hit_num.png
assets/www/resource/assets/font/score.fnt
assets/www/resource/assets/font/score.png
assets/www/resource/assets/font/small_score.fnt
assets/www/resource/assets/font/small_score.png
assets/www/resource/assets/gamebg.jpg
assets/www/resource/assets/index.jpg
assets/www/resource/assets/item_100.json
assets/www/resource/assets/item_8.json
assets/www/resource/assets/js/scripts/ma_api.js
assets/www/resource/assets/remove_anim_bomb.json
assets/www/resource/assets/remove_anim_normal.json
assets/www/resource/assets/res.json
assets/www/resource/assets/res.png
assets/www/resource/assets/res_uncompress.json
assets/www/resource/assets/res_uncompress.png
assets/www/resource/assets/tail.json
assets/www/resource/assets/throw.json
assets/www/resource/resource.json
classes.dex
com/appsflyer/internal/a-
com/appsflyer/internal/b-
kotlin/annotation/annotation.kotlin_builtins
kotlin/collections/collections.kotlin_builtins
kotlin/coroutines/coroutines.kotlin_builtins
kotlin/internal/internal.kotlin_builtins
kotlin/kotlin.kotlin_builtins
kotlin/ranges/ranges.kotlin_builtins
kotlin/reflect/reflect.kotlin_builtins
play-services-ads-base.properties
play-services-ads-identifier.properties
play-services-ads-lite.properties
play-services-ads.properties
play-services-basement.properties
play-services-gass.properties
play-services-measurement-base.properties
play-services-measurement-sdk-api.properties
res/anim/abc_fade_in.xml
res/anim/abc_fade_out.xml
res/anim/abc_grow_fade_in_from_bottom.xml
res/anim/abc_popup_enter.xml
res/anim/abc_popup_exit.xml
res/anim/abc_shrink_fade_out_from_bottom.xml
res/anim/abc_slide_in_bottom.xml
res/anim/abc_slide_in_top.xml
res/anim/abc_slide_out_bottom.xml
res/anim/abc_slide_out_top.xml
res/anim/tooltip_enter.xml
res/anim/tooltip_exit.xml
res/color/abc_btn_colored_borderless_text_material.xml
res/color/abc_btn_colored_text_material.xml
res/color/abc_hint_foreground_material_dark.xml
res/color/abc_hint_foreground_material_light.xml
res/color/abc_primary_text_disable_only_material_dark.xml
res/color/abc_primary_text_disable_only_material_light.xml
res/color/abc_primary_text_material_dark.xml
res/color/abc_primary_text_material_light.xml
res/color/abc_search_url_text.xml
res/color/abc_secondary_text_material_dark.xml
res/color/abc_secondary_text_material_light.xml
res/color/abc_tint_btn_checkable.xml
res/color/abc_tint_default.xml
res/color/abc_tint_edittext.xml
res/color/abc_tint_seek_thumb.xml
res/color/abc_tint_spinner.xml
res/color/abc_tint_switch_track.xml
res/color/switch_thumb_material_dark.xml
res/color/switch_thumb_material_light.xml
res/color-v11/abc_background_cache_hint_selector_material_dark.xml
res/color-v11/abc_background_cache_hint_selector_material_light.xml
res/color-v23/abc_btn_colored_borderless_text_material.xml
res/color-v23/abc_btn_colored_text_material.xml
res/color-v23/abc_color_highlight_material.xml
res/color-v23/abc_tint_btn_checkable.xml
res/color-v23/abc_tint_default.xml
res/color-v23/abc_tint_edittext.xml
res/color-v23/abc_tint_seek_thumb.xml
res/color-v23/abc_tint_spinner.xml
res/color-v23/abc_tint_switch_track.xml
res/drawable/abc_btn_borderless_material.xml
res/drawable/abc_btn_check_material.xml
res/drawable/abc_btn_colored_material.xml
res/drawable/abc_btn_default_mtrl_shape.xml
res/drawable/abc_btn_radio_material.xml
res/drawable/abc_cab_background_internal_bg.xml
res/drawable/abc_cab_background_top_material.xml
res/drawable/abc_dialog_material_background.xml
res/drawable/abc_edit_text_material.xml
res/drawable/abc_ic_ab_back_material.xml
res/drawable/abc_ic_arrow_drop_right_black_24dp.xml
res/drawable/abc_ic_clear_material.xml
res/drawable/abc_ic_go_search_api_material.xml
res/drawable/abc_ic_menu_overflow_material.xml
res/drawable/abc_ic_search_api_material.xml
res/drawable/abc_ic_voice_search_api_material.xml
res/drawable/abc_item_background_holo_dark.xml
res/drawable/abc_item_background_holo_light.xml
res/drawable/abc_list_selector_background_transition_holo_dark.xml
res/drawable/abc_list_selector_background_transition_holo_light.xml
res/drawable/abc_list_selector_holo_dark.xml
res/drawable/abc_list_selector_holo_light.xml
res/drawable/abc_ratingbar_indicator_material.xml
res/drawable/abc_ratingbar_material.xml
res/drawable/abc_ratingbar_small_material.xml
res/drawable/abc_seekbar_thumb_material.xml
res/drawable/abc_seekbar_tick_mark_material.xml
res/drawable/abc_seekbar_track_material.xml
res/drawable/abc_spinner_textfield_background_material.xml
res/drawable/abc_switch_thumb_material.xml
res/drawable/abc_tab_indicator_material.xml
res/drawable/abc_text_cursor_material.xml
res/drawable/abc_textfield_search_material.xml
res/drawable/abc_vector_test.xml
res/drawable/notification_bg.xml
res/drawable/notification_bg_low.xml
res/drawable/notification_icon_background.xml
res/drawable/notification_tile_bg.xml
res/drawable/tooltip_frame_dark.xml
res/drawable/tooltip_frame_light.xml
res/drawable-anydpi-v21/app_icon_background.xml
res/drawable-ldpi-v4/app_icon_background.png
res/drawable-ldrtl-mdpi-v17/abc_ic_menu_copy_mtrl_am_alpha.png
res/drawable-ldrtl-mdpi-v17/abc_ic_menu_cut_mtrl_alpha.png
res/drawable-ldrtl-mdpi-v17/abc_spinner_mtrl_am_alpha.9.png
res/drawable-mdpi-v4/abc_ab_share_pack_mtrl_alpha.9.png
res/drawable-mdpi-v4/abc_btn_check_to_on_mtrl_000.png
res/drawable-mdpi-v4/abc_btn_check_to_on_mtrl_015.png
res/drawable-mdpi-v4/abc_btn_radio_to_on_mtrl_000.png
res/drawable-mdpi-v4/abc_btn_radio_to_on_mtrl_015.png
res/drawable-mdpi-v4/abc_btn_switch_to_on_mtrl_00001.9.png
res/drawable-mdpi-v4/abc_btn_switch_to_on_mtrl_00012.9.png
res/drawable-mdpi-v4/abc_ic_commit_search_api_mtrl_alpha.png
res/drawable-mdpi-v4/abc_ic_menu_copy_mtrl_am_alpha.png
res/drawable-mdpi-v4/abc_ic_menu_cut_mtrl_alpha.png
res/drawable-mdpi-v4/abc_ic_menu_paste_mtrl_am_alpha.png
res/drawable-mdpi-v4/abc_ic_menu_selectall_mtrl_alpha.png
res/drawable-mdpi-v4/abc_ic_menu_share_mtrl_alpha.png
res/drawable-mdpi-v4/abc_ic_star_black_16dp.png
res/drawable-mdpi-v4/abc_ic_star_black_36dp.png
res/drawable-mdpi-v4/abc_ic_star_black_48dp.png
res/drawable-mdpi-v4/abc_ic_star_half_black_16dp.png
res/drawable-mdpi-v4/abc_ic_star_half_black_36dp.png
res/drawable-mdpi-v4/abc_ic_star_half_black_48dp.png
res/drawable-mdpi-v4/abc_list_divider_mtrl_alpha.9.png
res/drawable-mdpi-v4/abc_list_focused_holo.9.png
res/drawable-mdpi-v4/abc_list_longpressed_holo.9.png
res/drawable-mdpi-v4/abc_list_pressed_holo_light.9.png
res/drawable-mdpi-v4/abc_list_selector_disabled_holo_light.9.png
res/drawable-mdpi-v4/abc_menu_hardkey_panel_mtrl_mult.9.png
res/drawable-mdpi-v4/abc_popup_background_mtrl_mult.9.png
res/drawable-mdpi-v4/abc_scrubber_control_off_mtrl_alpha.png
res/drawable-mdpi-v4/abc_scrubber_control_to_pressed_mtrl_000.png
res/drawable-mdpi-v4/abc_scrubber_control_to_pressed_mtrl_005.png
res/drawable-mdpi-v4/abc_scrubber_primary_mtrl_alpha.9.png
res/drawable-mdpi-v4/abc_scrubber_track_mtrl_alpha.9.png
res/drawable-mdpi-v4/abc_spinner_mtrl_am_alpha.9.png
res/drawable-mdpi-v4/abc_switch_track_mtrl_alpha.9.png
res/drawable-mdpi-v4/abc_tab_indicator_mtrl_alpha.9.png
res/drawable-mdpi-v4/abc_text_select_handle_left_mtrl_light.png
res/drawable-mdpi-v4/abc_text_select_handle_middle_mtrl_light.png
res/drawable-mdpi-v4/abc_text_select_handle_right_mtrl_light.png
res/drawable-mdpi-v4/abc_textfield_activated_mtrl_alpha.9.png
res/drawable-mdpi-v4/abc_textfield_default_mtrl_alpha.9.png
res/drawable-mdpi-v4/abc_textfield_search_activated_mtrl_alpha.9.png
res/drawable-mdpi-v4/abc_textfield_search_default_mtrl_alpha.9.png
res/drawable-v21/abc_action_bar_item_background_material.xml
res/drawable-v21/abc_btn_colored_material.xml
res/drawable-v21/abc_edit_text_material.xml
res/drawable-v21/abc_ratingbar_indicator_material.xml
res/drawable-v21/abc_ratingbar_material.xml
res/drawable-v21/abc_ratingbar_small_material.xml
res/drawable-v21/notification_action_background.xml
res/drawable-v23/abc_control_background_material.xml
res/layout/abc_action_bar_title_item.xml
res/layout/abc_action_bar_up_container.xml
res/layout/abc_action_bar_view_list_nav_layout.xml
res/layout/abc_action_menu_item_layout.xml
res/layout/abc_action_menu_layout.xml
res/layout/abc_action_mode_bar.xml
res/layout/abc_action_mode_close_item_material.xml
res/layout/abc_activity_chooser_view.xml
res/layout/abc_activity_chooser_view_list_item.xml
res/layout/abc_alert_dialog_button_bar_material.xml
res/layout/abc_alert_dialog_material.xml
res/layout/abc_alert_dialog_title_material.xml
res/layout/abc_dialog_title_material.xml
res/layout/abc_expanded_menu_layout.xml
res/layout/abc_list_menu_item_checkbox.xml
res/layout/abc_list_menu_item_icon.xml
res/layout/abc_list_menu_item_layout.xml
res/layout/abc_list_menu_item_radio.xml
res/layout/abc_popup_menu_header_item_layout.xml
res/layout/abc_popup_menu_item_layout.xml
res/layout/abc_screen_content_include.xml
res/layout/abc_screen_simple.xml
res/layout/abc_screen_simple_overlay_action_mode.xml
res/layout/abc_screen_toolbar.xml
res/layout/abc_search_dropdown_item_icons_2line.xml
res/layout/abc_search_view.xml
res/layout/abc_select_dialog_material.xml
res/layout/notification_action.xml
res/layout/notification_action_tombstone.xml
res/layout/notification_media_action.xml
res/layout/notification_media_cancel_action.xml
res/layout/notification_template_big_media.xml
res/layout/notification_template_big_media_custom.xml
res/layout/notification_template_big_media_narrow.xml
res/layout/notification_template_big_media_narrow_custom.xml
res/layout/notification_template_icon_group.xml
res/layout/notification_template_lines_media.xml
res/layout/notification_template_media.xml
res/layout/notification_template_media_custom.xml
res/layout/notification_template_part_chronometer.xml
res/layout/notification_template_part_time.xml
res/layout/privacy.xml
res/layout/select_dialog_item_material.xml
res/layout/select_dialog_multichoice_material.xml
res/layout/select_dialog_singlechoice_material.xml
res/layout/support_simple_spinner_dropdown_item.xml
res/layout/tooltip.xml
res/layout-v16/notification_template_custom_big.xml
res/layout-v21/abc_screen_toolbar.xml
res/layout-v21/notification_action.xml
res/layout-v21/notification_action_tombstone.xml
res/layout-v21/notification_template_custom_big.xml
res/layout-v21/notification_template_icon_group.xml
res/layout-v22/abc_alert_dialog_button_bar_material.xml
res/layout-v26/abc_screen_toolbar.xml
res/mipmap-anydpi-v26/app_icon.xml
res/mipmap-anydpi-v26/app_icon_round.xml
res/mipmap-hdpi-v4/app_icon.webp
res/mipmap-hdpi-v4/app_icon_foreground.webp
res/mipmap-hdpi-v4/app_icon_round.webp
res/mipmap-hdpi-v4/icon.png
res/mipmap-ldpi-v4/icon.png
res/mipmap-mdpi-v4/app_icon.webp
res/mipmap-mdpi-v4/app_icon_foreground.webp
res/mipmap-mdpi-v4/app_icon_round.webp
res/mipmap-mdpi-v4/icon.png
res/mipmap-xhdpi-v4/app_icon.webp
res/mipmap-xhdpi-v4/app_icon_foreground.webp
res/mipmap-xhdpi-v4/app_icon_round.webp
res/mipmap-xhdpi-v4/icon.png
res/mipmap-xxhdpi-v4/app_icon.webp
res/mipmap-xxhdpi-v4/app_icon_foreground.webp
res/mipmap-xxhdpi-v4/app_icon_round.webp
res/mipmap-xxhdpi-v4/icon.png
res/mipmap-xxxhdpi-v4/app_icon.webp
res/mipmap-xxxhdpi-v4/app_icon_foreground.webp
res/mipmap-xxxhdpi-v4/app_icon_round.webp
res/mipmap-xxxhdpi-v4/icon.png
res/xml/appsflyer_backup_rules.xml
res/xml/config.xml
res/xml/splits0.xml
resources.arsc
stamp-cert-sha256
META-INF/BNDLTOOL.SF
META-INF/BNDLTOOL.RSA
META-INF/MANIFEST.MF
污点分析
当apk较大时,代码量会很大,造成数据流图(ICFG)呈现爆炸式增长,所以该功能比较耗时,请先喝杯咖啡,耐心等待……规则名称 | 描述信息 | 操作 |
---|---|---|
病毒分析 | 使用安卓恶意软件常用的API进行污点分析 | 开始分析 |
漏洞挖掘 | 漏洞挖掘场景下的污点分析 | 开始分析 |
隐私合规 | 隐私合规场景下的污点分析:组件内污点传播、组件间污点传播、组件与库函数之间的污点传播 | 开始分析 |
密码分析 | 分析加密算法是否使用常量密钥、静态初始化的向量(IV)、加密模式是否使用ECB等 | 开始分析 |
Callback | 因为Android中系统级的Callback并不会出现显式地进行回调方法的调用,所以如果需要分析Callback方法需要在声明文件中将其声明,这里提供一份AndroidCallbacks.txt文件,里面是一些常见的原生回调接口或类,如果有特殊接口需求,可以联系管理员 | 开始分析 |