好粮有网.apk分析结果

温馨提示：APP静态检测会有结果不完整的现象，如有疑问或建议，可加入我们的微信群讨论

APP图标

下载APP

文件信息

文件名 haoliangyouwang.apk
文件大小 6.38MB
MD5值 2fe452e0bf7bb5b128f25ba9b4befdd0
SHA1值 bfbb63504c3a4de982b799bf1bb786b7ad54b6bc
SHA256值 e0bbe50be645ac44b9567a7ff795accf226ac4a94bdf73fb26ea96baab14839b

APK信息

APK名称好粮有网
包名 com.eboai.cp.sdls.mall
主活动 com.eboai.cp.sdls.mall.activity.MainActivity
安卓版本名称 1.0.18

域名线索 58 条

查看

URL线索 61 条

查看

邮箱线索 2 条

查看

手机号线索 0 条

查看

域名线索

域名	ip	地区
m.alipay.com	203.209.245.74	China - Zhejiang
log.tbs.qq.com	124.95.231.218	China - Liaoning
cgi.connect.qq.com	60.28.215.27	China - Tianjin
long.open.weixin.qq.com	112.65.193.150	China - Shanghai
mobilegw.stable.alipay.net	没有ip信息	没有地区信息
debugx5.qq.com	60.29.240.122	China - Tianjin
api.weibo.cn	114.250.52.125	China - Beijing
mobilegw.alipay.com	203.209.250.2	China - Zhejiang
apilocate.amap.com	106.11.43.81	China - Beijing
www.haoliangyou.com	60.208.114.125	China - Shandong
huatuocode.huatuo.qq.com	没有ip信息	没有地区信息
login.imgcache.qq.com	42.236.89.188	China - Henan
100.69.168.33	100.69.168.33	- - -
mobilegw-1-64.test.alipay.net	没有ip信息	没有地区信息
schemas.android.com	没有ip信息	没有地区信息
www.baidu.com	110.242.70.57	China - Hebei
cgi.qplus.com	没有ip信息	没有地区信息
oss-cn-.aliyuncs.comor	没有ip信息	没有地区信息
dev.haoliangyou.com	124.128.58.149	China - Guangxi Zhuangzu
100.69.165.28	100.69.165.28	- - -
cfg.imtt.qq.com	60.29.240.17	China - Tianjin
service.weibo.com	123.125.107.13	China - Beijing
mta.oa.com	141.144.196.217	Netherlands - Noord-Holland
restapi.amap.com	203.119.169.174	China - Zhejiang
lkme.cc	120.53.207.65	China - Shandong
h5.m.taobao.com	221.194.162.215	China - Hebei
adiu.amap.com	110.253.189.146	China - Hebei
xmlpull.org	185.199.109.153	United States of America - Pennsylvania
test.haoliangyou.com	124.128.58.149	China - Guangxi Zhuangzu
api.weibo.com	116.133.8.18	China - Beijing
abroad.apilocate.amap.com	59.82.44.11	China - Shanghai
schemas.polites.com	192.0.78.25	United States of America - California
fusion.qq.com	116.130.229.204	China - Beijing
agoodm.wapa.taobao.com	没有ip信息	没有地区信息
wappaygw.alipay.com	116.196.141.48	China - Zhejiang
adash.man.aliyuncs.com	59.82.40.77	China - Shanghai
mobilegw.alipaydev.com	110.75.132.131	China - Zhejiang
ug.edm.weibo.cn	123.125.107.13	China - Beijing
mobilegw.aaa.alipay.net	没有ip信息	没有地区信息
mta.qq.com	0.0.0.1	- - -
mqqad.html5.qq.com	0.0.0.1	- - -
debugtbs.qq.com	60.29.240.122	China - Tianjin
mclient.alipay.com	124.95.170.203	China - Liaoning
mcgw.alipay.com	116.196.141.50	China - Zhejiang
soft.tbs.imtt.qq.com	119.167.147.86	China - Shandong
agoodm.m.taobao.com	59.82.122.8	China - Zhejiang
pingma.qq.com	0.0.0.1	- - -
oss-cn-hangzhou.aliyuncs.com	118.31.219.236	China - Zhejiang
lbs.amap.com	110.253.189.212	China - Hebei
mdc.html5.qq.com	116.130.223.178	China - Beijing
wup.imtt.qq.com	125.39.104.63	China - Tianjin
192.168.50.177	192.168.50.177	- - -
open.weixin.qq.com	220.196.132.78	China - Jiangsu
appsupport.qq.com	60.28.215.27	China - Tianjin
open.weibo.cn	123.125.107.13	China - Beijing
docs.google.com	199.59.148.96	United States of America - California
openmobile.qq.com	60.28.215.27	China - Tianjin
image.cnamedomain.com	没有ip信息	没有地区信息

URL线索

URL信息	Url所在文件
http://oss-cn-****.aliyuncs.com',or	com/alibaba/sdk/android/oss/OSSClient.java
http://image.cnamedomain.com'!	com/alibaba/sdk/android/oss/OSSClient.java
http://oss-cn-hangzhou.aliyuncs.com	com/alibaba/sdk/android/oss/common/OSSConstants.java
https://adash.man.aliyuncs.com/man/api?ak=23356390&s=	com/alibaba/sdk/android/utils/AMSDevReporter.java
https://mobilegw.alipaydev.com/mgw.htm	com/alipay/sdk/cons/a.java
http://m.alipay.com/?action=h5quit	com/alipay/sdk/cons/a.java
https://wappaygw.alipay.com/home/exterfaceAssign.htm?	com/alipay/sdk/cons/a.java
https://mclient.alipay.com/home/exterfaceAssign.htm?	com/alipay/sdk/cons/a.java
https://mobilegw.alipay.com/mgw.htm	com/alipay/sdk/cons/a.java
https://mcgw.alipay.com/sdklog.do	com/alipay/sdk/packet/impl/d.java
https://h5.m.taobao.com/mlapp/olist.html	com/alipay/sdk/data/a.java
http://mobilegw.stable.alipay.net/mgw.htm	com/alipay/apmobilesecuritysdk/b/a.java
https://mobilegw.alipay.com/mgw.htm	com/alipay/apmobilesecuritysdk/b/a.java
http://mobilegw-1-64.test.alipay.net/mgw.htm	com/alipay/apmobilesecuritysdk/b/a.java
http://mobilegw.aaa.alipay.net/mgw.htm	com/alipay/apmobilesecuritysdk/b/a.java
http://lbs.amap.com/api/android-location-sdk/guide/utilities/errorcode/	com/amap/api/location/AMapLocation.java
https://www.baidu.com/	com/eboai/cp/sdls/mall/superfileview/LoadFileModel.java
https://dev.haoliangyou.com/mobile/	com/eboai/cp/sdls/mall/app/Constants.java
http://192.168.50.177:8080/	com/eboai/cp/sdls/mall/app/Constants.java
https://test.haoliangyou.com/mobile/	com/eboai/cp/sdls/mall/app/Constants.java
https://www.haoliangyou.com/mobile/	com/eboai/cp/sdls/mall/app/Constants.java
https://api.weibo.com/oauth2/default.html	com/eboai/cp/sdls/mall/share/WeiBoConstants.java
http://docs.google.com/gviewembedded=true&url=	com/eboai/cp/sdls/mall/activity/NewPageActivity.java
https://adiu.amap.com/ws/device/adius	com/loc/bi.java
http://apilocate.amap.com/mobile/binary	com/loc/dg.java
http://abroad.apilocate.amap.com/mobile/binary	com/loc/dg.java
http://restapi.amap.com	com/loc/t.java
http://abroad.apilocate.amap.com/mobile/binary	com/loc/dk.java
http://abroad.apilocate.amap.com/mobile/binary	com/loc/cz.java
http://restapi.amap.com/v3/geocode/regeo	com/loc/db.java
https://restapi.amap.com/v3/iasdkauth	com/loc/m.java
http://restapi.amap.com/v3/iasdkauth	com/loc/m.java
https://lkme.cc	com/microquation/linkedme/android/referral/PrefHelper.java
https://lkme.cc/i	com/microquation/linkedme/android/referral/PrefHelper.java
http://lkme.cc/i/	com/microquation/linkedme/android/b/m.java
https://api.weibo.cn/2/sdk/login	com/sina/weibo/sdk/network/intercept/GuestParamInterception.java
http://api.weibo.cn/2/sdk/login	com/sina/weibo/sdk/network/intercept/GuestParamInterception.java
https://api.weibo.cn/2/sdk/login	com/sina/weibo/sdk/network/intercept/CommonParamInterception.java
https://ug.edm.weibo.cn/api/gettoken	com/sina/weibo/sdk/network/intercept/RequestTokenInterception.java
https://ug.edm.weibo.cn/api/refreshtoken	com/sina/weibo/sdk/network/intercept/RequestTokenInterception.java
https://api.weibo.com/2/proxy/sdk/statistic.json	com/sina/weibo/sdk/statistic/LogReport.java
https://api.weibo.com/oauth2/getaid.json	com/sina/weibo/sdk/utils/AidTask.java
http://service.weibo.com/share/mobilesdk.php	com/sina/weibo/sdk/web/param/ShareWebViewRequestParam.java
http://service.weibo.com/share/mobilesdk_uppic.php	com/sina/weibo/sdk/web/param/ShareWebViewRequestParam.java
https://open.weibo.cn/oauth2/authorize?	com/sina/weibo/sdk/auth/BaseSsoHandler.java
https://api.weibo.com/oauth2/access_token	com/sina/weibo/sdk/auth/AccessTokenKeeper.java
http://100.69.165.28/agoo/report	com/taobao/accs/b/a.java
http://agoodm.m.taobao.com/agoo/report	com/taobao/accs/b/a.java
http://agoodm.wapa.taobao.com/agoo/report	com/taobao/accs/b/a.java
http://100.69.168.33/agoo/report	com/taobao/accs/b/a.java
https://openmobile.qq.com/oauth2.0/me	com/tencent/connect/UnionInfo.java
http://openmobile.qq.com/oauth2.0/m_jump_by_version?	com/tencent/connect/common/BaseApi.java
http://login.imgcache.qq.com/ptlogin/static/qzsjump.html?	com/tencent/connect/common/BaseApi.java
http://login.imgcache.qq.com/ptlogin/static/qzsjump.html?	com/tencent/connect/auth/a.java
https://openmobile.qq.com/oauth2.0/m_authorize?	com/tencent/connect/auth/AuthAgent.java
https://openmobile.qq.com/user/user_login_statis	com/tencent/connect/auth/AuthAgent.java
https://openmobile.qq.com/v3/user/get_info	com/tencent/connect/auth/AuthAgent.java
http://appsupport.qq.com/cgi-bin/qzapps/mapp_addapp.cgi	com/tencent/connect/auth/AuthAgent.java
http://fusion.qq.com/cgi-bin/qzapps/unified_jump?appid=%1$s&from=%2$s&isOpenAppID=1	com/tencent/connect/share/QQShare.java
http://fusion.qq.com/cgi-bin/qzapps/unified_jump?appid=%1$s&from=%2$s&isOpenAppID=1	com/tencent/connect/share/QzoneShare.java
http://login.imgcache.qq.com/open/mobile/request/sdk_request.html?	com/tencent/open/SocialApiIml.java
http://login.imgcache.qq.com/open/mobile/invite/sdk_invite.html?	com/tencent/open/SocialApiIml.java
http://login.imgcache.qq.com/open/mobile/sendstory/sdk_sendstory_v1.3.html?	com/tencent/open/SocialApiIml.java
http://login.imgcache.qq.com	com/tencent/open/SocialApiIml.java
https://openmobile.qq.com/cgi-bin/qunopensdk/unbind	com/tencent/open/SocialOperation.java
https://openmobile.qq.com/cgi-bin/qunopensdk/check_group	com/tencent/open/SocialOperation.java
https://huatuocode.huatuo.qq.com	com/tencent/open/a/d.java
http://cgi.connect.qq.com/qqconnectopen/openapi/policy_conf	com/tencent/open/utils/f.java
https://openmobile.qq.com/	com/tencent/open/utils/HttpUtils.java
http://cgi.qplus.com/report/report	com/tencent/open/utils/k.java
http://debugtbs.qq.com	com/tencent/smtt/sdk/WebView.java
http://debugx5.qq.com	com/tencent/smtt/sdk/WebView.java
http://debugtbs.qq.com?10000\	com/tencent/smtt/sdk/WebView.java
http://mdc.html5.qq.com/mh?channel_id=50079&u=	com/tencent/smtt/sdk/a/d.java
http://mdc.html5.qq.com/d/directdown.jsp?channel_id=11041	com/tencent/smtt/sdk/b/a/d.java
http://mdc.html5.qq.com/d/directdown.jsp?channel_id=11047	com/tencent/smtt/sdk/b/a/d.java
http://log.tbs.qq.com/ajax?c=pu&v=2&k=	com/tencent/smtt/utils/x.java
http://log.tbs.qq.com/ajax?c=pu&tk=	com/tencent/smtt/utils/x.java
http://wup.imtt.qq.com:8080	com/tencent/smtt/utils/x.java
http://log.tbs.qq.com/ajax?c=dl&k=	com/tencent/smtt/utils/x.java
http://cfg.imtt.qq.com/tbs?v=2&mk=	com/tencent/smtt/utils/x.java
http://log.tbs.qq.com/ajax?c=ul&v=2&k=	com/tencent/smtt/utils/x.java
http://mqqad.html5.qq.com/adjs	com/tencent/smtt/utils/x.java
http://log.tbs.qq.com/ajax?c=ucfu&k=	com/tencent/smtt/utils/x.java
http://soft.tbs.imtt.qq.com/17421/tbs_res_imtt_tbs_DebugPlugin_DebugPlugin.tbs	com/tencent/smtt/utils/j.java
http://pingma.qq.com:80/mstat/report	com/tencent/stat/StatConfig.java
http://mta.qq.com/mta/api/ctr_feedback/add_feedback	com/tencent/stat/d.java
http://mta.qq.com/mta/api/ctr_feedback/get_feedback	com/tencent/stat/d.java
http://mta.qq.com/mta/api/ctr_feedback/reply_feedback	com/tencent/stat/d.java
http://mta.qq.com/	com/tencent/stat/StatServiceImpl.java
http://mta.oa.com/	com/tencent/stat/StatServiceImpl.java
http://mta.qq.com/mta/api/ctr_feedback	com/tencent/stat/common/StatConstants.java
http://pingma.qq.com:80/mstat/report	com/tencent/stat/common/StatConstants.java
http://mta.qq.com/	com/tencent/wxop/stat/StatServiceImpl.java
http://mta.oa.com/	com/tencent/wxop/stat/StatServiceImpl.java
http://pingma.qq.com:80/mstat/report	com/tencent/wxop/stat/StatConfig.java
http://pingma.qq.com:80/mstat/report	com/tencent/wxop/stat/common/StatConstants.java
https://long.open.weixin.qq.com/connect/l/qrconnect?f=json&uuid=%s	com/tencent/mm/opensdk/diffdev/a/f.java
https://open.weixin.qq.com/connect/sdk/qrconnect?appid=%s&noncestr=%s&timestamp=%s&scope=%s&signature=%s	com/tencent/mm/opensdk/diffdev/a/d.java
http://xmlpull.org/v1/doc/features.html	com/ta/utdid2/b/a/a.java
http://xmlpull.org/v1/doc/features.html	com/ta/utdid2/b/a/e.java
http://schemas.android.com/apk/res/android	com/polites/GestureImageView.java
http://schemas.polites.com/android	com/polites/GestureImageView.java
http://localhost/	retrofit2/Response.java
https://dev.haoliangyou.com	摸瓜V1引擎

邮箱线索

邮箱地址	所在文件
liwei31@staff.weibo	com/sina/weibo/sdk/network/intercept/RequestTokenInterception.java
ctwap@mycdma.cn	com/tencent/mid/a/b.java

手机线索

代码反编译

AndroidManifest配置查看

Java源代码查看 -- 下载

APK文件会员可下载

签名证书

APK已签名
v1 签名: True
v2 签名: False
v3 签名: False
找到 1 个唯一证书
主题: O=wenyu
签名算法: rsassa_pkcs1v15
有效期自: 2018-07-31 11:18:56+00:00
有效期至: 2043-07-25 11:18:56+00:00
发行人: O=wenyu
序列号: 0x6e333868
哈希算法: sha256
md5值: bc1e0cc84ae18edb4073dbdaadbd7705
sha1值: a126acc02130f20144cb365f33472a709ec05db1
sha256值: 1bddf5a6429346b3018b43feda5ea18f888de45bd278caa7d585ea807888312c
sha512值: c3eae86734fe5a908ffddb8319f487f43874c597c2d83723e366cf499183808dfecc76d335b83ed4b6ee6fdbcb6c4175ab23605439462ae4271a736db1a886ed

硬编码敏感信息

加壳分析

会员可查看

第三方插件

会员可查看

危险动作

向手机申请的权限	是否危险	类型	详细情况
android.permission.RECEIVE_USER_PRESENT	未知		调用了未知的操作
android.permission.INTERNET	正常	互联网接入	允许应用程序创建网络套接字
android.permission.WAKE_LOCK	正常	防止手机睡眠	允许应用程序防止手机进入睡眠状态
android.permission.READ_PHONE_STATE	危险	读取电话状态和身份	允许应用访问设备的电话功能。具有此权限的应用程序可以确定此电话的电话号码和序列号,呼叫是否处于活动状态,呼叫所连接的号码等
android.permission.GET_TASKS	危险	检索正在运行的应用程序	允许应用程序检索有关当前和最近运行的任务的信息。可能允许恶意应用程序发现有关其他应用程序的私人信息
android.permission.READ_EXTERNAL_STORAGE	危险	读取外部存储器内容	允许应用程序从外部存储读取
android.permission.VIBRATE	正常	可控震源	允许应用程序控制振动器
android.permission.MOUNT_UNMOUNT_FILESYSTEMS	危险	装载和卸载文件系统	允许应用程序为可移动存储安装和卸载文件系统
android.permission.ACCESS_NETWORK_STATE	正常	查看网络状态	允许应用程序查看所有网络的状态
android.permission.WRITE_SETTINGS	危险	修改全局系统设置	允许应用程序修改系统设定数据。恶意应用可能会损坏你的系统的配置。
android.permission.ACCESS_WIFI_STATE	正常	查看Wi-Fi状态	允许应用程序查看有关 Wi-Fi 状态的信息
android.permission.CALL_PHONE	危险	直接拨打电话号码	允许应用程序在没有您干预的情况下拨打电话号码。恶意应用程序可能会导致您的电话账单出现意外呼叫。请注意,这不允许应用程序拨打紧急电话号码
android.permission.CAMERA	危险	拍照和录像	允许应用程序用相机拍照和录像。这允许应用程序收集相机随时看到的图像
android.permission.WRITE_EXTERNAL_STORAGE	危险	读取/修改/删除外部存储内容	允许应用程序写入外部存储
android.permission.REQUEST_INSTALL_PACKAGES	危险	允许应用程序请求安装包。	恶意应用程序可以利用它来尝试诱骗用户安装其他恶意软件包。
android.permission.ACCESS_DOWNLOAD_MANAGER	未知		调用了未知的操作
android.permission.BLUETOOTH	正常	创建蓝牙连接	允许应用程序连接到配对的蓝牙设备
android.permission.GET_ACCOUNTS	危险	列出帐户	允许访问账户服务中的账户列表
android.permission.RECEIVE_BOOT_COMPLETED	正常	开机时自动启动	允许应用程序在系统完成启动后立即启动。这可能会使启动手机需要更长的时间,并允许应用程序通过始终运行来减慢整个手机的速度
android.permission.REORDER_TASKS	正常	重新排序正在运行的应用程序	允许应用程序将任务移动到前台和后台。恶意应用程序可以在不受您控制的情况下将自己强加于前
android.permission.ACCESS_COARSE_LOCATION	危险	粗定位	访问粗略位置源,例如移动网络数据库,以确定大概的电话位置（如果可用）。恶意应用程序可以使用它来确定您的大致位置
android.permission.ACCESS_FINE_LOCATION	危险	精细定位（GPS）	访问精细位置源,例如手机上的全球定位系统,如果可用。恶意应用程序可以使用它来确定您的位置,并可能消耗额外的电池电量
android.permission.CHANGE_WIFI_STATE	正常	更改Wi-Fi状态	允许应用程序连接和断开 Wi-Fi 接入点,并对配置的 Wi-Fi 网络进行更改
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS	正常	访问额外的位置提供程序命令	访问额外的位置提供程序命令，恶意应用程序可能会使用它来干扰 GPS 或其他位置源的操作
android.permission.BLUETOOTH_ADMIN	正常	蓝牙管理	允许应用程序发现和配对蓝牙设备。