保卫萝卜.apk分析结果

温馨提示：APP静态检测会有结果不完整的现象，如有疑问或建议，可加入我们的微信群讨论

APP图标

下载APP

文件信息

文件名 202410241021021pv22.apk
文件大小 83.78MB
MD5值 c7162cd62e3785e414c3a677a1e6f91c
SHA1值 7b6af6a04d52fceae54f1f689106b5325bbbd272
SHA256值 e4daf6c844b835d7aaed2421dc27e57e5c906206707eff00fbd8ceeaf293a4bc

APK信息

APK名称保卫萝卜
包名 com.carrot.carrotfantasy
主活动 com.carrot.carrotfantasy.Agreement
安卓版本名称 2.0.18

域名线索 47 条

查看

URL线索 63 条

查看

邮箱线索 4 条

查看

手机号线索 0 条

查看

域名线索

域名	ip	地区
zhan.vivo.com.cn	61.182.134.194	China - Hebei
risk-fp-openapi.vivo.com.cn	123.125.51.176	China - Beijing
cs-nebula.737.com	47.100.83.133	China - Shanghai
promotion-partner.kuaishou.com	103.102.202.71	China - Beijing
pay.vivo.com.cn	123.125.51.226	China - Beijing
qzonestyle.gtimg.cn	221.204.15.113	China - Shanxi
tdid.m.qq.com	60.29.240.40	China - Tianjin
dev-gate-nebula.qyy.com	没有ip信息	没有地区信息
gate-nebula.737.com	139.224.210.47	China - Shanghai
ulog-sdk.gifshow.com	103.102.202.118	China - Beijing
android.bugly.qq.com	124.95.225.169	China - Liaoning
dev-cs-nebula.qyy.com	没有ip信息	没有地区信息
rqd.uu.qq.com	60.28.219.32	China - Tianjin
dlog.737.com	106.14.252.102	China - Shanghai
qzs.gdtimg.com	61.49.23.102	China - Beijing
sdk.e.qq.com	220.194.116.72	China - Tianjin
apps.oceanengine.com	175.19.126.235	China - Jilin
open.e.kuaishou.com	116.136.202.194	China - Nei Mongol
appstore.vivo.com.cn	101.73.103.156	China - Hebei
www.w3.org	104.18.22.19	United States of America - California
imgcache.qq.com	42.236.6.191	China - Henan
sit-cs-nebula.737.com	47.100.204.201	China - Shanghai
apps.samsung.com	104.17.142.17	United States of America - California
sf6-ttcdn-tos.pstatp.com	121.18.236.112	China - Hebei
usrsysjoint.vivo.com.cn	123.125.50.64	China - Beijing
qzs.qq.com	221.204.15.88	China - Shanxi
topic.vivo.com.cn	27.222.17.188	China - Shandong
xmlpull.org	185.199.108.153	United States of America - Pennsylvania
clientcdn.cairot.com	221.204.14.200	China - Shanxi
st-offlinegame.vivo.com.cn	114.250.59.173	China - Beijing
wifi.vivo.com.cn	120.52.95.246	China - Hebei
shop.vivo.com.cn	220.194.72.100	China - Tianjin
v.gdt.qq.com	220.194.116.38	China - Tianjin
i.snssdk.com	60.222.11.204	China - Shanxi
100000189777.retail.n.weimob.com	212.64.63.139	China - Beijing
joint.vivo.com.cn	221.204.16.102	China - Shanxi
joint-account.vivo.com.cn	116.196.152.170	China - Zhejiang
st-onlinegame.vivo.com.cn	123.125.51.104	China - Beijing
www.samsungapps.com	52.18.136.34	Ireland - Dublin
appdetailh5.vivo.com.cn	211.93.211.178	China - Beijing
adsdk.vivo.com.cn	123.126.99.172	China - Beijing
sit-gate-nebula.737.com	47.100.204.201	China - Shanghai
ssp.vivo.com.cn	116.131.60.106	China - Beijing
github.com	20.205.243.166	Singapore - Singapore
static.yximgs.com	61.240.144.168	China - Hebei
s.e.kuaishou.com	103.102.202.151	China - Beijing
win.gdt.qq.com	220.194.116.80	China - Tianjin

URL线索

URL信息	Url所在文件
https://sit-gate-nebula.737.com/open/getConfig	c/b/a/a/c.java
https://gate-nebula.737.com/open/getConfig	c/b/a/a/c.java
http://dev-gate-nebula.qyy.com/open/getConfig	c/b/a/a/c.java
https://dlog.737.com/mt	c/b/a/a/c.java
https://sit-cs-nebula.737.com	c/b/c/d/a.java
https://cs-nebula.737.com	c/b/c/d/a.java
http://dev-cs-nebula.qyy.com	c/b/c/d/a.java
http://dev-gate-nebula.qyy.com/open	c/b/b/e/b.java
https://sit-gate-nebula.737.com/open	c/b/b/e/b.java
https://gate-nebula.737.com/open	c/b/b/e/b.java
http://xmlpull.org/v1/doc/features.html	c/e/a/f/c.java
https://joint.vivo.com.cn/ops/getAttributionInfo	c/c/a/a/b.java
https://promotion-partner.kuaishou.com/rest/n/promotion/p?adid=7348&imei=__IMEI2__&idfa=__IDFA2__&oaid=__OAID__&ip=__IP__&mac=__MAC2__&androidId=__ANDROIDID2__&callback=__CALLBACK__&siteSet=XXX	com/kwad/components/core/ec/model/EcKwaiInfo.java
https://open.e.kuaishou.com	com/kwad/sdk/b.java
https://s.e.kuaishou.com	com/kwad/sdk/b.java
https://open.e.kuaishou.com/rest/e/v3/open/sdk2	com/kwad/sdk/api/loader/Loader.java
https://static.yximgs.com/udata/pkg/KS-Android-KSAdSDk/ks_so-appStatusArm64v8aRelease-3.3.14.apk	com/kwad/sdk/collector/d.java
https://static.yximgs.com/udata/pkg/KS-Android-KSAdSDk/ks_so-appStatusArmeabiv7aRelease-3.3.14.apk	com/kwad/sdk/collector/d.java
https://github.com/danikula/AndroidVideoCache/issues/88.	com/kwad/sdk/core/videocache/h.java
https://github.com/danikula/AndroidVideoCache/issues/43.	com/kwad/sdk/core/videocache/h.java
https://github.com/danikula/AndroidVideoCache/issues.	com/kwad/sdk/core/videocache/h.java
https://static.yximgs.com/udata/pkg/KS-Android-KSAdSDk/ks_so-exceptionArm64v8aRelease-3.3.23.apk	com/kwad/sdk/crash/f.java
https://static.yximgs.com/udata/pkg/KS-Android-KSAdSDk/ks_so-exceptionArmeabiv7aRelease-3.3.23.apk	com/kwad/sdk/crash/f.java
https://ulog-sdk.gifshow.com/rest/log/sdk/file/token	com/kwad/sdk/crash/report/upload/c.java
https://ulog-sdk.gifshow.com/rest/log/sdk/file/upload	com/kwad/sdk/crash/report/upload/b.java
http://apps.samsung.com/appquery/appDetail.as?appId=	com/kwad/sdk/utils/d.java
https://static.yximgs.com/udata/pkg/commercial_res_test/ks_so-TachikomaArm64v8aRelease-3.3.13.apk	com/kwad/c/a/a.java
https://static.yximgs.com/udata/pkg/commercial_res_test/ks_so-TachikomaArmeabiv7aRelease-3.3.13.apk	com/kwad/c/a/a.java
http://clientcdn.cairot.com/loop/lb1/android.html	com/carrot/carrotfantasy/ZYWebView.java
http://clientcdn.cairot.com/policy/agetip.html	com/carrot/carrotfantasy/ZYWebView.java
http://clientcdn.cairot.com/policy_baicai/index.html	com/carrot/carrotfantasy/ZYWebView.java
http://clientcdn.cairot.com/policy/index.html	com/carrot/carrotfantasy/Agreement.java
https://github.com/lingochamp/FileDownloader/wiki/filedownloader.properties	com/kwai/filedownloader/services/a.java
http://v.gdt.qq.com/gdt_stats.fcg	com/qq/e/comm/plugin/H/v/e.java
http://qzonestyle.gtimg.cn/qzone/biz/gdt/mob/sdk/v2/android01/download.html	com/qq/e/comm/plugin/apkmanager/v/a.java
http://imgcache.qq.com/qzone/biz/gdt/dev/sdk/cdn/resources/common/SdkSplashAdLogo.png	com/qq/e/comm/plugin/util/C0751h.java
http://imgcache.qq.com/qzone/biz/gdt/dev/sdk/cdn/resources/common/SdkRewardAdLogo.png	com/qq/e/comm/plugin/util/C0751h.java
http://imgcache.qq.com/qzone/biz/gdt/dev/sdk/cdn/resources/common/SdkNativeAdLogo.png	com/qq/e/comm/plugin/util/C0751h.java
http://imgcache.qq.com/qzone/biz/gdt/dev/sdk/cdn/resources/common/SdkRewardBrowseAdLogo.png	com/qq/e/comm/plugin/util/C0751h.java
http://win.gdt.qq.com/win_notice.fcg	com/qq/e/comm/plugin/util/C0757n.java
https://100000189777.retail.n.weimob.com/saas/retail/100000189777/21036777/goods/detail,https://46a79741.fyeds3.com/	com/qq/e/comm/plugin/model/RewardADData.java
https://qzs.gdtimg.com/union/res/union_temp_v2/page/ANTempMob/tempMob.html	com/qq/e/comm/plugin/E/d.java
https://qzs.gdtimg.com/union/res/union_temp_v2/page/ANTempMob/videoPlay.html	com/qq/e/comm/plugin/E/d.java
https://qzs.gdtimg.com/union/res/union_temp_v2/page/ANTempMob/videoPlay.js	com/qq/e/comm/plugin/E/d.java
https://qzs.gdtimg.com/union/res/union_temp_v2/page/ANTempMob/tempMob.js	com/qq/e/comm/plugin/E/d.java
https://qzs.gdtimg.com/union/res/union_temp_v2/page/ANTempMob/tempMob.package.json	com/qq/e/comm/plugin/E/d.java
http://qzs.qq.com/union/res/union_cdn/page/images/loading_2x.gif	com/qq/e/comm/plugin/r/m/i.java
https://sdk.e.qq.com/mediation?version=1	com/qq/e/comm/plugin/x/d/d.java
https://sdk.e.qq.com/mediation?version=2	com/qq/e/comm/plugin/x/d/d.java
http://sdk.e.qq.com	com/qq/e/comm/plugin/B/g.java
http://sdk.e.qq.com/disp	com/qq/e/comm/plugin/B/g.java
http://sdk.e.qq.com/click	com/qq/e/comm/plugin/B/g.java
http://sdk.e.qq.com/msg	com/qq/e/comm/plugin/B/g.java
http://qzonestyle.gtimg.cn/qzone/biz/gdt/mob/sdk/v2/android03/js-release/%s/native.js	com/qq/e/comm/plugin/gdtnativead/k.java
https://sdk.e.qq.com/launch	com/qq/e/comm/b/a.java
https://sdk.e.qq.com/activate	com/qq/e/comm/b/a.java
https://www.samsungapps.com/appquery/appDetail.as?appId=	com/ss/android/downloadlib/g/h.java
https://apps.oceanengine.com/customer/api/app/pkg_info?	com/ss/android/downloadlib/addownload/compliance/b.java
https://sf6-ttcdn-tos.pstatp.com/obj/ad-tetris-site/personal-privacy-page.html	com/ss/android/downloadlib/addownload/compliance/AppPrivacyPolicyActivity.java
https://i.snssdk.com/	com/ss/android/downloadad/api/constant/AdBaseConstants.java
http://rqd.uu.qq.com/rqd/sync	com/tencent/bugly/crashreport/common/strategy/StrategyBean.java
http://android.bugly.qq.com/rqd/async	com/tencent/bugly/crashreport/common/strategy/StrategyBean.java
https://tdid.m.qq.com?mc=2	com/tencent/turingfd/sdk/ams/au/C0779j.java
https://adsdk.vivo.com.cn	com/vivo/ad/a.java
https://wifi.vivo.com.cn/generate_204	com/vivo/ic/dm/p/a.java
http://appstore.vivo.com.cn/appinfo/downloadApkFile?id=69112&stype=3&v_d_s_f=yes&app_version=1021&imei=865407010000009&model=vivo+X7Plus&elapsedtime=285813496&cs=0&av=23&an=6.0.1&u=150100434a4e42345207c969b41a4300&nt=WIFI&sourword=%E7%B3%97%E4%BA%8B%E7%99%BE%E7%A7%91&listpos=99&page_index=5&target=local&cfrom=35&related=-1&update=-1&module_id=2&v_d_f_f=final&tryTime=1&s=2%7C3134493712	com/vivo/ic/minidownload/MiniDownloader.java
https://github.com/danikula/AndroidVideoCache/issues/88.	com/vivo/mobilead/m/i.java
https://github.com/danikula/AndroidVideoCache/issues/43.	com/vivo/mobilead/m/i.java
https://github.com/danikula/AndroidVideoCache/issues.	com/vivo/mobilead/m/i.java
https://github.com/danikula/AndroidVideoCache/issues/134.	com/vivo/mobilead/m/l.java
https://ssp.vivo.com.cn	com/vivo/mobilead/model/a.java
https://risk-fp-openapi.vivo.com.cn/deviceprofile/v4	com/vivo/mobilead/util/q0.java
https://risk-fp-openapi.vivo.com.cn/v3/cloudconf	com/vivo/mobilead/util/q0.java
https://shop.vivo.com.cn/wap	com/vivo/mobilead/util/j.java
https://adsdk.vivo.com.cn	com/vivo/mobilead/util/k0.java
https://adsdk.vivo.com.cn/videoplay	com/vivo/mobilead/util/k0.java
https://adsdk.vivo.com.cn	com/vivo/mobilead/util/w.java
https://adsdk.vivo.com.cn	com/vivo/mobilead/web/VivoADSDKWebView.java
https://adsdk.vivo.com.cn/clickinh5	com/vivo/mobilead/web/VivoADSDKWebView.java
https://adsdk.vivo.com.cn	com/vivo/mobilead/manager/c.java
https://joint.vivo.com.cn/game-subaccount-login	com/vivo/sdkplugin/a.java
https://topic.vivo.com.cn/joint/TP32em3gbsibi0/index.html	com/vivo/sdkplugin/k/b.java
https://pay.vivo.com.cn	com/vivo/unionsdk/g.java
https://joint.vivo.com.cn	com/vivo/unionsdk/g.java
https://joint-account.vivo.com.cn	com/vivo/unionsdk/g.java
https://joint.vivo.com.cn/base/sdkUpdateCheck	com/vivo/unionsdk/m/d/c/c/a.java
https://joint.vivo.com.cn/game-subaccount-login	com/vivo/unionsdk/m/a/c.java
https://usrsysjoint.vivo.com.cn/realNameAuth/isAuthed	com/vivo/unionsdk/m/a/c.java
https://pay.vivo.com.cn/vcoin/wap/cashier	com/vivo/unionsdk/n/a.java
https://appdetailh5.vivo.com.cn/detail/1873310	com/vivo/unionsdk/cmd/JumpUtils.java
https://joint.vivo.com.cn/ops/allowChannelInfo	com/vivo/unionsdk/k/d.java
https://zhan.vivo.com.cn/gameactivity/wk230925affe4e19	com/vivo/unionsdk/shortcuts/ui/ShortcutsRouterActivity.java
https://st-offlinegame.vivo.com.cn	com/vivo/unionsdk/u/a.java
https://st-onlinegame.vivo.com.cn	com/vivo/unionsdk/u/a.java

邮箱线索

邮箱地址	所在文件
.apk@classes.dex	com/kuaishou/weapon/p0/C0219.java
danikula@gmail.com	com/kwad/sdk/core/videocache/h.java
.apk@classes.dex	com/tencent/turingfd/sdk/ams/au/p0.java
danikula@gmail.com	com/vivo/mobilead/m/i.java

手机线索

代码反编译

AndroidManifest配置查看

Java源代码查看 -- 下载

APK文件会员可下载

签名证书

APK已签名
v1 签名: True
v2 签名: True
v3 签名: False
找到 1 个唯一证书
主题: C=CN, ST=Beijing, L=Beijing, O=com.cairot.www, OU=cairot, CN=taozi
签名算法: rsassa_pkcs1v15
有效期自: 2012-12-17 07:27:49+00:00
有效期至: 2095-02-05 07:27:49+00:00
发行人: C=CN, ST=Beijing, L=Beijing, O=com.cairot.www, OU=cairot, CN=taozi
序列号: 0x50cec975
哈希算法: sha1
md5值: 4c29e20d1ff98a2b9eeaebc35b6d7e16
sha1值: 22151ad7979067d48df6adb1597c32c81c1342be
sha256值: 954b8860c8d1a8532addb61ae9158bceaa782ec9aeb1c1aff7ae89b7574aa25f
sha512值: 49cbca03b9f88ec65f362e6c80d339bcc17fef48f0710ffe4c5f436fcb876f1f68eec97359e75f31b9c2437d68dd6ef156a5432bb6cc05bb24e28ba5fa85c67a
公钥算法: rsa
密钥长度: 1024
指纹: 977039d2eae0fa8361ba28a45b0aa8f70643fb64f73211b039151470107a14cf

硬编码敏感信息

"getcdkey" : "正在获取兑换码,请稍候......"

加壳分析

会员可查看

第三方插件

会员可查看

危险动作

向手机申请的权限	是否危险	类型	详细情况
android.permission.WAKE_LOCK	正常	防止手机睡眠	允许应用程序防止手机进入睡眠状态
android.permission.INTERNET	正常	互联网接入	允许应用程序创建网络套接字
android.permission.ACCESS_NETWORK_STATE	正常	查看网络状态	允许应用程序查看所有网络的状态
android.permission.ACCESS_WIFI_STATE	正常	查看Wi-Fi状态	允许应用程序查看有关 Wi-Fi 状态的信息
android.permission.VIBRATE	正常	可控震源	允许应用程序控制振动器
android.permission.CHANGE_WIFI_STATE	正常	更改Wi-Fi状态	允许应用程序连接和断开 Wi-Fi 接入点,并对配置的 Wi-Fi 网络进行更改
android.permission.CHANGE_NETWORK_STATE	正常	更改网络连接	允许应用程序更改网络连接状态。
android.permission.DISABLE_KEYGUARD	正常		如果键盘不安全,允许应用程序禁用它。
android.permission.SYSTEM_ALERT_WINDOW	危险	显示系统级警报	允许应用程序显示系统警报窗口。恶意应用程序可以接管手机的整个屏幕
android.permission.SEND_DOWNLOAD_COMPLETED_INTENTS	未知		调用了未知的操作
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION	未知		调用了未知的操作
vivo.game.permission.OPEN_JUMP_INTENTS	未知		调用了未知的操作
com.asus.msa.SupplementaryDID.ACCESS	未知		调用了未知的操作
android.permission.GET_TASKS	危险	检索正在运行的应用程序	允许应用程序检索有关当前和最近运行的任务的信息。可能允许恶意应用程序发现有关其他应用程序的私人信息
android.permission.QUERY_ALL_PACKAGES	正常		允许查询设备上的任何普通应用程序,无论清单声明如何
android.permission.REQUEST_INSTALL_PACKAGES	危险	允许应用程序请求安装包。	恶意应用程序可以利用它来尝试诱骗用户安装其他恶意软件包。
android.permission.REORDER_TASKS	正常	重新排序正在运行的应用程序	允许应用程序将任务移动到前台和后台。恶意应用程序可以在不受您控制的情况下将自己强加于前
android.permission.ACCESS_COARSE_LOCATION	危险	粗定位	访问粗略位置源,例如移动网络数据库,以确定大概的电话位置（如果可用）。恶意应用程序可以使用它来确定您的大致位置
com.carrot.carrotfantasy.openadsdk.permission.TT_PANGOLIN	未知		调用了未知的操作
android.permission.READ_PHONE_STATE	危险	读取电话状态和身份	允许应用访问设备的电话功能。具有此权限的应用程序可以确定此电话的电话号码和序列号,呼叫是否处于活动状态,呼叫所连接的号码等
android.permission.WRITE_EXTERNAL_STORAGE	危险	读取/修改/删除外部存储内容	允许应用程序写入外部存储
android.permission.READ_EXTERNAL_STORAGE	危险	读取外部存储器内容	允许应用程序从外部存储读取
android.permission.ACCESS_FINE_LOCATION	危险	精细定位（GPS）	访问精细位置源,例如手机上的全球定位系统,如果可用。恶意应用程序可以使用它来确定您的位置,并可能消耗额外的电池电量
android.permission.FOREGROUND_SERVICE	正常		允许常规应用程序使用 Service.startForeground。
freemme.permission.msa	未知		调用了未知的操作