趣记花.apk分析结果

温馨提示：APP静态检测会有结果不完整的现象，如有疑问或建议，可加入我们的微信群讨论

APP图标

下载APP

文件信息

文件名 app-guanfang-debug.apk
文件大小 50.19MB
MD5值 582ea2283ce36672c2f838748c3b18b7
SHA1值 7478b0b501c8647a4b23a1248b3e9597e919ed61
SHA256值 bbbadbf9f819a8d67df5553e2840d34fa8521612347d997cdcec5bb8ce8ed33d

APK信息

APK名称趣记花
包名 com.bjt.qjh
主活动 com.bjt.mvvmarch.SplashActivity
安卓版本名称 1.0.0

域名线索 52 条

查看

URL线索 65 条

查看

邮箱线索 0 条

查看

手机号线索 2 条

查看

域名线索

域名	ip	地区
api.253.com	106.15.158.4	China - Zhejiang
xml.apache.org	151.101.2.132	United States of America - California
mgw.realperson.antdigital.com	47.110.174.32	China - Zhejiang
i.snssdk.com	123.125.216.195	China - Beijing
apps.bytesfield.com	125.39.135.112	China - Tianjin
aaid.umeng.com	223.109.148.139	China - Jiangsu
apilocate.amap.com	106.11.43.81	China - Beijing
sf6-ttcdn-tos.pstatp.com	183.255.33.73	China - Hainan
www.samsungapps.com	54.229.93.185	Ireland - Dublin
errlogos.umeng.com	47.246.110.96	Singapore - Singapore
pslog.umeng.com	59.82.29.248	China - Zhejiang
apps.oceanengine.com	116.136.186.203	China - Nei Mongol
dualstack-arestapi.amap.com	203.119.169.174	China - Zhejiang
material.io	216.239.34.21	United States of America - California
qujh.oss-cn-hangzhou.aliyuncs.com	101.67.61.154	China - Zhejiang
javax.xml.xmlconstants	没有ip信息	没有地区信息
ulogs.umeng.com	223.109.148.141	China - Jiangsu
ouplog.umeng.com	47.246.110.93	Singapore - Singapore
abroad.apilocate.amap.com	59.82.44.11	China - Shanghai
developer.umeng.com	59.82.31.92	China - Zhejiang
errnewlogos.umeng.com	47.246.110.96	Singapore - Singapore
schemas.android.com	没有ip信息	没有地区信息
errlog.umeng.com	223.109.148.180	China - Jiangsu
test-oss.hhdfinance.com	没有ip信息	没有地区信息
adiu.amap.com	110.253.189.146	China - Hebei
ulogs.umengcloud.com	223.109.148.130	China - Jiangsu
alogus.umeng.com	223.109.148.179	China - Jiangsu
alogsus.umeng.com	223.109.148.179	China - Jiangsu
yuntuapi.amap.com	没有ip信息	没有地区信息
dualstack-a.apilocate.amap.com	106.11.43.81	China - Beijing
errnewlog.umeng.com	223.109.148.142	China - Jiangsu
ttxs-pro.oss-cn-chengdu.aliyuncs.com	116.169.131.138	China - Beijing
apistore.amap.com	110.253.188.148	China - Hebei
cgicol.amap.com	110.253.188.147	China - Hebei
wb.amap.com	110.253.188.148	China - Hebei
restsdk.amap.com	203.119.169.174	China - Zhejiang
cn-hangzhou-mgs-gw.cloud.alipay.com	116.62.206.189	China - Zhejiang
mgw.mpaas.cn-hangzhou.aliyuncs.com	47.118.173.135	China - Zhejiang
plbslog.umeng.com	36.156.202.68	China - Jiangsu
apiinit.amap.com	203.119.169.174	China - Zhejiang
www.example.com	61.213.168.56	Japan - Osaka
gw.alipayobjects.com	116.142.234.200	China - Beijing
apps.bytesfield-b.com	123.6.22.126	China - Henan
render.alipay.com	119.167.250.244	China - Shandong
mdap.mpaas.cn-hangzhou.aliyuncs.com	118.31.168.191	China - Zhejiang
m5.amap.com	106.11.35.98	China - Zhejiang
lz.xlsltech.com	125.39.27.205	China - Tianjin
static.253.com	101.67.61.200	China - Zhejiang
cn-shanghai-aliyun-cloudauth.oss-cn-shanghai.aliyuncs.com	140.206.110.66	China - Shanghai
information-test.xlsltech.com	125.39.27.208	China - Tianjin
restapi.amap.com	203.119.169.174	China - Zhejiang
lbs.amap.com	110.253.188.147	China - Hebei

URL线索

URL信息	Url所在文件
https://material.io/design/components/dialogs.html	com/afollestad/materialdialogs/MaterialDialog.java
https://mgw.mpaas.cn-hangzhou.aliyuncs.com	com/alipay/alipaysecuritysdk/common/config/Configuration.java
https://adiu.amap.com/ws/device/adius	com/amap/api/col/s/ds.java
http://apiinit.amap.com/v3/log/init	com/amap/api/col/s/by.java
http://restsdk.amap.com/v3	com/amap/api/col/s/m.java
https://restsdk.amap.com/v3	com/amap/api/col/s/m.java
http://restsdk.amap.com/v4	com/amap/api/col/s/m.java
https://restsdk.amap.com/v4	com/amap/api/col/s/m.java
http://restsdk.amap.com/v5	com/amap/api/col/s/m.java
https://restsdk.amap.com/v5	com/amap/api/col/s/m.java
http://yuntuapi.amap.com	com/amap/api/col/s/m.java
https://yuntuapi.amap.com	com/amap/api/col/s/m.java
http://restsdk.amap.com/rest/me/cpoint	com/amap/api/col/s/m.java
https://restsdk.amap.com/rest/me/cpoint	com/amap/api/col/s/m.java
http://apistore.amap.com	com/amap/api/col/s/m.java
https://apistore.amap.com	com/amap/api/col/s/m.java
http://m5.amap.com/ws/mapapi/shortaddress/transform	com/amap/api/col/s/m.java
https://m5.amap.com/ws/mapapi/shortaddress/transform	com/amap/api/col/s/m.java
https://restsdk.amap.com/sdk/compliance/params	com/amap/api/col/s/dh.java
http://restsdk.amap.com/sdk/compliance/params	com/amap/api/col/s/dh.java
https://restapi.amap.com/rest/aaid/get	com/amap/api/col/s/cq.java
http://restapi.amap.com/rest/aaid/get	com/amap/api/col/s/cq.java
https://restsdk.amap.com/v3/iasdkauth	com/amap/api/col/s/bx.java
https://dualstack-arestapi.amap.com/v3/iasdkauth	com/amap/api/col/s/bx.java
http://wb.amap.com/?r=%f,%f,%s,%f,%f,%s,%d,%d,%d,%s,%s,%s&sourceapplication=openapi/0	com/amap/api/col/s/bt.java
http://wb.amap.com/?q=%f,%f,%s&sourceapplication=openapi/0	com/amap/api/col/s/bt.java
http://wb.amap.com/?n=%f,%f,%f,%f,%d&sourceapplication=openapi/0	com/amap/api/col/s/bt.java
http://wb.amap.com/?p=%s,%f,%f,%s,%s&sourceapplication=openapi/0	com/amap/api/col/s/bt.java
http://lbs.amap.com/api/android-location-sdk/guide/utilities/errorcode/	com/amap/api/location/AMapLocation.java
https://test-oss.hhdfinance.com/test/open/domain/	com/bjt/commonmodule/BuildConfig.java
https://qujh.oss-cn-hangzhou.aliyuncs.com/open/domain/	com/bjt/commonmodule/BuildConfig.java
https://information-test.xlsltech.com/pageBlacklistDetailTwo?type=	com/bjt/commonmodule/utils/WebUrlUtil.java
https://lz.xlsltech.com/pageBlacklistDetailTwo?type=	com/bjt/commonmodule/utils/WebUrlUtil.java
https://ttxs-pro.oss-cn-chengdu.aliyuncs.com/open/domain/	com/bjt/commonmodule/constant/Constants.java
https://ttxs-pro.oss-cn-chengdu.aliyuncs.com/open/domain/	com/bjt/commonmodule/di/NetworkModule.java
https://ttxs-pro.oss-cn-chengdu.aliyuncs.com/open/domain/	com/bjt/mvvmarch/SplashActivity.java
https://ttxs-pro.oss-cn-chengdu.aliyuncs.com/open/domain/	com/bjt/homemodule/MainActivity.java
https://ttxs-pro.oss-cn-chengdu.aliyuncs.com/open/domain/	com/bjt/homemodule/vm/OcrViewModel.java
https://ttxs-pro.oss-cn-chengdu.aliyuncs.com/open/domain/	com/bjt/homemodule/vm/MainViewModel.java
https://ttxs-pro.oss-cn-chengdu.aliyuncs.com/open/domain/	com/bjt/homemodule/ui/activity/MainActPure.java
https://ttxs-pro.oss-cn-chengdu.aliyuncs.com/open/domain/hxqb/	com/bjt/homemodule/repository/HomeRepository$getDynamicDomain$2.java
https://test-oss.hhdfinance.com/test/open/domain/	com/bjt/oremodule/ui/act/SettingAct$initEventAndData$8.java
https://qujh.oss-cn-hangzhou.aliyuncs.com/open/domain/	com/bjt/oremodule/ui/act/SettingAct$initEventAndData$8.java
https://test-oss.hhdfinance.com/test/open/domain/	com/bjt/oremodule/ui/act/SettingAct.java
https://qujh.oss-cn-hangzhou.aliyuncs.com/open/domain/	com/bjt/oremodule/ui/act/SettingAct.java
http://xml.apache.org/xslt	com/blankj/utilcode/util/LogUtils.java
https://i.snssdk.com/	com/bytedance/sdk/openadsdk/downloadnew/core/AdBaseConstants.java
http://javax.xml.XMLConstants/feature/secure-processing	com/chuckerteam/chucker/internal/support/FormatUtils.java
http://xml.apache.org/xslt	com/chuckerteam/chucker/internal/support/FormatUtils.java
https://www.example.com	com/chuckerteam/chucker/internal/data/entity/HttpTransactionTuple.java
https://render.alipay.com/p/f/fd-j8l9yjja/index.html	com/dtf/face/config/NavigatePage.java
https://mgw.mpaas.cn-hangzhou.aliyuncs.com/mgw.htm	com/dtf/face/network/NetworkPresenter.java
https://cn-hangzhou-mgs-gw.cloud.alipay.com/mgw.htm	com/dtf/face/network/NetworkPresenter.java
https://mgw.realperson.antdigital.com/mgw.htm	com/dtf/face/network/NetworkPresenter.java
https://gw.alipayobjects.com/render/p/yuyan_npm/@alipay_dtfconfig/1.0.1/lib/toyger.face.android.wasm	com/dtf/face/utils/ModelDownloadUtil.java
https://cn-shanghai-aliyun-cloudauth.oss-cn-shanghai.aliyuncs.com/model/toyger.face.dat	com/dtf/face/utils/ModelDownloadUtil.java
https://api.253.com	com/chuanglan/sdk/face/constants/RequestConstant.java
https://static.253.com/chuanglan/sdk-policy.html	com/chuanglan/sdk/face/view/PrivacyActivity.java
http://schemas.android.com/apk/res/android	com/hjq/permissions/AndroidManifestParser.java
https://adiu.amap.com/ws/device/adius	com/loc/bn.java
http://cgicol.amap.com/collection/collectData?src=baseCol&ver=v74&	com/loc/dd.java
http://apilocate.amap.com/mobile/binary	com/loc/ft.java
http://dualstack-a.apilocate.amap.com/mobile/binary	com/loc/ft.java
http://abroad.apilocate.amap.com/mobile/binary	com/loc/ft.java
https://restsdk.amap.com/sdk/compliance/params	com/loc/ax.java
http://restsdk.amap.com/sdk/compliance/params	com/loc/ax.java
http://restsdk.amap.com/v3/place/text?	com/loc/a.java
http://restsdk.amap.com/v3/config/district?	com/loc/a.java
http://restsdk.amap.com/v3/place/around?	com/loc/a.java
http://restsdk.amap.com	com/loc/v.java
https://restapi.amap.com/rest/aaid/get	com/loc/af.java
http://restapi.amap.com/rest/aaid/get	com/loc/af.java
https://restsdk.amap.com/v3/iasdkauth	com/loc/m.java
https://dualstack-arestapi.amap.com/v3/iasdkauth	com/loc/m.java
http://abroad.apilocate.amap.com/mobile/binary	com/loc/fz.java
http://abroad.apilocate.amap.com/mobile/binary	com/loc/fm.java
http://dualstack-arestapi.amap.com/v3/geocode/regeo	com/loc/fo.java
http://restsdk.amap.com/v3/geocode/regeo	com/loc/fo.java
https://errnewlog.umeng.com/api/crashsdk/logcollect	com/efs/sdk/base/core/f/c.java
https://errnewlogos.umeng.com/api/crashsdk/logcollect	com/efs/sdk/base/core/controller/ControllerCenter.java
https://errnewlog.umeng.com/api/crashsdk/logcollect	com/efs/sdk/base/core/controller/ControllerCenter.java
https://i.snssdk.com/	com/ss/android/downloadad/api/constant/AdBaseConstants.java
https://sf6-ttcdn-tos.pstatp.com/obj/ad-tetris-site/personal-privacy-page.html	com/ss/android/downloadlib/addownload/compliance/AppPrivacyPolicyActivity.java
https://apps.oceanengine.com/customer/api/app/pkg_info?	com/ss/android/downloadlib/addownload/compliance/a.java
https://apps.bytesfield.com	com/ss/android/downloadlib/addownload/compliance/kf.java
https://apps.bytesfield-b.com	com/ss/android/downloadlib/addownload/compliance/kf.java
https://www.samsungapps.com/appquery/appDetail.as?appId=	com/ss/android/downloadlib/h/p.java
http://xml.apache.org/xslt	com/readystatesoftware/chuck/internal/support/FormatUtils.java
https://errlog.umeng.com	com/uc/crashsdk/a/d.java
https://errlogos.umeng.com	com/uc/crashsdk/a/d.java
http://developer.umeng.com/docs/66650/cate/66650	com/umeng/analytics/pro/j.java
https://errnewlog.umeng.com	com/umeng/umcrash/UMCrashContent.java
https://errnewlogos.umeng.com	com/umeng/umcrash/UMCrashContent.java
https://errnewlogos.umeng.com/upload	com/umeng/umcrash/UMCrash.java
https://errnewlogos.umeng.com	com/umeng/umcrash/UMCrash.java
https://errnewlog.umeng.com/upload	com/umeng/umcrash/UMCrash.java
https://errnewlog.umeng.com	com/umeng/umcrash/UMCrash.java
https://developer.umeng.com/docs/66632/detail/	com/umeng/commonsdk/debug/UMLogUtils.java
https://developer.umeng.com/docs/119267/detail/182050	com/umeng/commonsdk/debug/UMLogCommon.java
https://ulogs.umeng.com	com/umeng/commonsdk/statistics/UMServerURL.java
https://ulogs.umengcloud.com	com/umeng/commonsdk/statistics/UMServerURL.java
https://alogus.umeng.com	com/umeng/commonsdk/statistics/UMServerURL.java
https://alogsus.umeng.com	com/umeng/commonsdk/statistics/UMServerURL.java
https://plbslog.umeng.com	com/umeng/commonsdk/stateless/a.java
https://ulogs.umeng.com	com/umeng/commonsdk/stateless/a.java
https://ouplog.umeng.com	com/umeng/commonsdk/stateless/a.java
https://pslog.umeng.com	com/umeng/commonsdk/vchannel/a.java
https://pslog.umeng.com/	com/umeng/commonsdk/vchannel/a.java
https://aaid.umeng.com/api/updateZdata	com/umeng/umzid/ZIDManager.java
https://aaid.umeng.com/api/postZdata	com/umeng/umzid/ZIDManager.java
https://mdap.mpaas.cn-hangzhou.aliyuncs.com/loggw/logUpload.do	facadeverify/d.java
http://localhost/	retrofit2/Response.java
https://render.alipay.com/p/yuyan/180020010001208736/zolozFacewelcome.html	摸瓜V1引擎

邮箱线索

手机线索

手机号	所在文件
14222222222	com/loc/m.java
14222222222	com/loc/fr.java
15222222222	com/loc/fr.java

代码反编译

AndroidManifest配置查看

Java源代码查看 -- 下载

APK文件会员可下载

签名证书

APK已签名
v1 签名: True
v2 签名: True
v3 签名: False
找到 1 个唯一证书
主题: CN=qjh, OU=bjt, O=bjt, L=chengdu, ST=sichuan, C=cn
签名算法: rsassa_pkcs1v15
有效期自: 2023-08-24 01:56:20+00:00
有效期至: 2048-08-17 01:56:20+00:00
发行人: CN=qjh, OU=bjt, O=bjt, L=chengdu, ST=sichuan, C=cn
序列号: 0x1
哈希算法: sha256
md5值: ad8be3fde23df4f2503a04abefa474ce
sha1值: 931b84c7f0da4d1295d5788099fb1b65aac9c77a
sha256值: cf2719f787d355354d2e72abff2c359a3ea86a6de38f634328dd087b31f42d2d
sha512值: 0477971861143aac64e9906413ab25f8d2eb6e8290672b7a5a049dccdd2242ab9f6075c2b6a33e7e99d0bbe552fad5a0587a8d033f25ce7671ffdf91a20a2328
公钥算法: rsa
密钥长度: 2048
指纹: 7ebc01c96a6c917e7db5626aae3592ccaa94be7db1fa7e9401ca7ffe257155ae

硬编码敏感信息

加壳分析

会员可查看

第三方插件

会员可查看

危险动作

向手机申请的权限	是否危险	类型	详细情况
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS	正常	访问额外的位置提供程序命令	访问额外的位置提供程序命令，恶意应用程序可能会使用它来干扰 GPS 或其他位置源的操作
android.permission.FOREGROUND_SERVICE	正常		允许常规应用程序使用 Service.startForeground。
android.permission.ACCESS_NETWORK_STATE	正常	查看网络状态	允许应用程序查看所有网络的状态
android.permission.INTERNET	正常	互联网接入	允许应用程序创建网络套接字
android.permission.ACCESS_WIFI_STATE	正常	查看Wi-Fi状态	允许应用程序查看有关 Wi-Fi 状态的信息
android.permission.READ_PHONE_STATE	危险	读取电话状态和身份	允许应用访问设备的电话功能。具有此权限的应用程序可以确定此电话的电话号码和序列号,呼叫是否处于活动状态,呼叫所连接的号码等
android.permission.REQUEST_INSTALL_PACKAGES	危险	允许应用程序请求安装包。	恶意应用程序可以利用它来尝试诱骗用户安装其他恶意软件包。
android.permission.WRITE_EXTERNAL_STORAGE	危险	读取/修改/删除外部存储内容	允许应用程序写入外部存储
android.permission.READ_EXTERNAL_STORAGE	危险	读取外部存储器内容	允许应用程序从外部存储读取
android.permission.ACCESS_COARSE_LOCATION	危险	粗定位	访问粗略位置源,例如移动网络数据库,以确定大概的电话位置（如果可用）。恶意应用程序可以使用它来确定您的大致位置
android.permission.ACCESS_FINE_LOCATION	危险	精细定位（GPS）	访问精细位置源,例如手机上的全球定位系统,如果可用。恶意应用程序可以使用它来确定您的位置,并可能消耗额外的电池电量
android.permission.CHANGE_WIFI_STATE	正常	更改Wi-Fi状态	允许应用程序连接和断开 Wi-Fi 接入点,并对配置的 Wi-Fi 网络进行更改
android.permission.READ_CONTACTS	危险	读取联系人数据	允许应用程序读取您手机上存储的所有联系人（地址）数据。恶意应用程序可以借此将您的数据发送给其他人
android.permission.CAMERA	危险	拍照和录像	允许应用程序用相机拍照和录像。这允许应用程序收集相机随时看到的图像
com.bjt.qjh.openadsdk.permission.TT_PANGOLIN	未知		调用了未知的操作
android.permission.WAKE_LOCK	正常	防止手机睡眠	允许应用程序防止手机进入睡眠状态
android.permission.POST_NOTIFICATIONS	未知		调用了未知的操作
android.permission.READ_MEDIA_IMAGES	未知		调用了未知的操作
android.permission.READ_MEDIA_AUDIO	未知		调用了未知的操作
android.permission.READ_MEDIA_VIDEO	未知		调用了未知的操作
android.permission.READ_MEDIA_VISUAL_USER_SELECTED	未知		调用了未知的操作
android.permission.VIBRATE	正常	可控震源	允许应用程序控制振动器
com.asus.msa.SupplementaryDID.ACCESS	未知		调用了未知的操作
android.permission.SYSTEM_ALERT_WINDOW	危险	显示系统级警报	允许应用程序显示系统警报窗口。恶意应用程序可以接管手机的整个屏幕