温馨提示:APP静态检测会有结果不完整的现象,如有疑问或建议, 可加入我们的微信群讨论
文件信息
文件名 999.apk文件大小 49.08MB
MD5值 387a18d074b0f038f192d2daaec26a0c
SHA1值 c3d0d40b4fda90be8fd73b4df4bf0bc7f7b39d9f
SHA256值 1a67adae0d7d43ecf55b8edfb6f053d9b0ad51f4d806fe69ae09208548a7ebaa
APK信息
APK名称 Spermatid Pro包名 com.csjcbs
主活动 com.csjcbs.RouteActivity
安卓版本名称 9.9.9.9
域名线索
| 域名 | 查询域名 | ip | 地区 | 查询地区 |
|---|---|---|---|---|
| id6.me | 42.123.76.150 | China - Beijing | ||
| task.tanx.com | 203.119.204.33 | China - Zhejiang | ||
| xml.apache.org | 151.101.2.132 | United States of America - California | ||
| crbug.com | 216.239.32.29 | United States of America - California | ||
| content-api.shenshiads.com | 203.107.86.92 | China - Zhejiang | ||
| passport.kuaishou.com | 103.107.218.234 | China - Beijing | ||
| www.samsungapps.com | 54.229.93.185 | Ireland - Dublin | ||
| success.ctobsnssdk.com | 42.236.86.166 | China - Henan | ||
| tobapplog.ctobsnssdk.com | 221.204.58.138 | China - Shanxi | ||
| oc-adpict.oss-cn-shanghai.aliyuncs.com | 140.206.110.74 | China - Shanghai | ||
| apmplus.volces.com | 61.182.131.163 | China - Hebei | ||
| dc.sigmob.cn | 112.126.7.24 | China - Beijing | ||
| logrcv.qquanquan.com | 125.36.181.16 | China - Tianjin | ||
| 127.0.0.1 | 127.0.0.1 | - - - | ||
| cdn-tos-cn.bytedance.net | 10.8.7.221 | - - - | ||
| static.yximgs.com | 61.182.131.224 | China - Hebei | ||
| schemas.android.com | 没有ip信息 | 没有地区信息 | ||
| cpro.baidustatic.com | 101.72.203.38 | China - Hebei | ||
| apps.bytesfield-b.com | 219.154.251.61 | China - Henan | ||
| img.alicdn.com | 60.28.226.59 | China - Tianjin | ||
| pre-sdk-config.alibaba-inc.com | 203.119.204.32 | China - Zhejiang | ||
| sf3-fe-tos.pglstatp-toutiao.com | 125.38.11.59 | China - Tianjin | ||
| www.pangle.cn | 116.136.186.205 | China - Nei Mongol | ||
| gw.alicdn.com | 119.249.53.238 | China - Hebei | ||
| rtlog.snssdk.com | 116.136.186.207 | China - Nei Mongol | ||
| static01.kuaichuanad.com | 122.156.130.197 | China - Heilongjiang | ||
| phoniex.toutiao.com | 116.136.186.206 | China - Nei Mongol | ||
| applog.snssdk.com | 116.136.186.205 | China - Nei Mongol | ||
| qfc.innotechx.com | 123.56.87.63 | China - Beijing | ||
| videoproxy.tanx.com | 106.11.23.107 | China - Zhejiang | ||
| sf6-ttcdn-tos.pstatp.com | 103.251.162.46 | China - Qinghai | ||
| ns.adobe.com | 没有ip信息 | 没有地区信息 | ||
| log.snssdk.com | 42.56.93.209 | China - Liaoning | ||
| scc.bytedance.com | 106.74.132.31 | China - Shandong | ||
| usr-api.1sapp.com | 123.56.87.63 | China - Beijing | ||
| i.snssdk.com | 111.202.5.198 | China - Beijing | ||
| sdk-config.tanx.com | 203.119.169.175 | China - Zhejiang | ||
| open.e.kuaishou.com | 116.136.202.194 | China - Nei Mongol | ||
| long.open.weixin.qq.com | 112.65.193.170 | China - Shanghai | ||
| js-ad.a.yximgs.com | 221.195.228.6 | China - Hebei | ||
| apps.bytesfield.com | 116.136.186.203 | China - Nei Mongol | ||
| apps.samsung.com | 104.17.142.17 | United States of America - California | ||
| msg.cmpassport.com | 112.33.111.188 | China - Anhui | ||
| union.baidu.com | 111.206.208.169 | China - Beijing | ||
| rtapplog.snssdk.com | 123.6.22.122 | China - Henan | ||
| api-access.pangolin-sdk-toutiao.com | 175.22.9.216 | China - Jilin | ||
| et.tanx.com | 203.119.238.225 | China - Zhejiang | ||
| style-browse-openapi.test.gifshow.com | 103.102.202.41 | China - Beijing | ||
| mp.weixin.qq.com | 140.207.176.25 | China - Shanghai | ||
| p1-lm.adkwai.com | 36.248.64.7 | China - Fujian | ||
| github.com | 20.205.243.166 | Singapore - Singapore | ||
| dsp.shenshiads.com | 没有ip信息 | 没有地区信息 | ||
| opensource.org | 104.22.65.197 | United States of America - California | ||
| sf1-amtos-cdn.bytesmanager.com | 123.126.74.240 | China - Beijing | ||
| update0.qquanquan.com | 60.29.233.147 | China - Tianjin | ||
| fy.1sapp.com | 123.56.87.63 | China - Beijing | ||
| toblog.ctobsnssdk.com | 211.90.25.203 | China - Hebei | ||
| nisportal.10010.com | 124.64.196.20 | China - Beijing | ||
| tracelog-debug.qquanquan.com | 60.29.233.224 | China - Tianjin | ||
| apps.oceanengine.com | 116.136.186.204 | China - Nei Mongol | ||
| gromore.pangolin-sdk-toutiao.com | 218.11.15.217 | China - Hebei | ||
| open.weixin.qq.com | 140.207.121.14 | China - Shanghai | ||
| www.csjplatform.com | 116.196.143.218 | China - Zhejiang | ||
| engine.tuifish.com | 47.110.6.71 | China - Zhejiang | ||
| plus.google.com | 103.56.16.112 | Hong Kong - Hong Kong | ||
| opehs.tanx.com | 203.119.238.225 | China - Zhejiang |
URL线索
邮箱线索
| 邮箱地址 | 所在文件 |
|---|---|
|
xxx@email.elided |
aegon/chrome/base/PiiElider.java |
|
auth-agent@openssh.com |
cn/hutool/extra/ssh/ChannelType.java |
|
danikula@gmail.com |
com/alimm/tanx/core/view/player/cache/videocache/HttpUrlSource.java |
|
.apk@classes.dex |
com/kuaishou/weapon/p0/ac.java |
|
danikula@gmail.com |
com/kwad/sdk/core/videocache/h.java |
|
u0013android@android.com0 |
l8/o.java |
|
u0013android@android.com |
l8/o.java |
手机线索
| 手机号 | 所在文件 |
|---|---|
|
19700101000 |
com/bytedance/sdk/component/r/fu/q.java |
|
15552000000 |
com/bytedance/sdk/openadsdk/core/j/i/i.java |
|
17179869184 |
com/kwai/video/player/KsMediaMeta.java |
|
17179869184 |
com/sun/tools/javac/tree/Pretty.java |
|
17179869184 |
com/sun/tools/javac/code/Symbol.java |
|
17179869184 |
com/sun/tools/javac/code/Flags.java |
|
17179869184 |
com/sun/tools/javac/code/b.java |
|
17179869184 |
com/sun/tools/javac/jvm/ClassReader.java |
|
17179869184 |
com/sun/tools/javac/comp/DeferredAttr.java |
|
17179869184 |
com/sun/tools/javac/comp/Resolve.java |
|
17179869184 |
com/sun/tools/javac/comp/c.java |
|
17179869184 |
com/sun/tools/javac/comp/d.java |
|
17179879616 |
oc/l.java |
|
17205037056 |
oc/l.java |
|
17205035008 |
oc/l.java |
|
17179878401 |
oc/l.java |
|
17179869188 |
oc/l.java |
|
17179869184 |
oc/l.java |
|
17512775099 |
d9/a.java |
|
17179869184 |
tv/danmaku/ijk/media/player/IjkMediaMeta.java |
签名证书
APK已签名
v1 签名: True
v2 签名: True
v3 签名: True
找到 1 个唯一证书
主题: C=US, ST=California, L=Mountain View, O=Android, OU=Android, CN=Android, E=android@android.com
签名算法: rsassa_pkcs1v15
有效期自: 2008-02-29 01:33:46+00:00
有效期至: 2035-07-17 01:33:46+00:00
发行人: C=US, ST=California, L=Mountain View, O=Android, OU=Android, CN=Android, E=android@android.com
序列号: 0x936eacbe07f201df
哈希算法: sha1
md5值: e89b158e4bcf988ebd09eb83f5378e87
sha1值: 61ed377e85d386a8dfee6b864bd85b0bfaa5af81
sha256值: a40da80a59d170caa950cf15c18c454d47a39b26989d8b640ecd745ba71bf5dc
sha512值: 5216ccb62004c4534f35c780ad7c582f4ee528371e27d4151f0553325de9ccbe6b34ec4233f5f640703581053abfea303977272d17958704d89b7711292a4569
公钥算法: rsa
密钥长度: 2048
指纹: f9f32662753449dc550fd88f1ed90e94b81adef9389ba16b89a6f3579c112e75硬编码敏感信息
"ksad_ad_default_author" : "@可爱的广告君创造的原声"
"ksad_ad_default_username" : "@可爱的广告君"
"privateKeyP2" : "#e$r"
加壳分析
第三方插件
危险动作
| 向手机申请的权限 | 是否危险 | 类型 | 详细情况 |
|---|---|---|---|
| android.permission.INTERNET | 正常 | 互联网接入 | 允许应用程序创建网络套接字 |
| android.permission.READ_EXTERNAL_STORAGE | 危险 | 读取外部存储器内容 | 允许应用程序从外部存储读取 |
| android.permission.ACCESS_NETWORK_STATE | 正常 | 查看网络状态 | 允许应用程序查看所有网络的状态 |
| android.permission.ACCESS_WIFI_STATE | 正常 | 查看Wi-Fi状态 | 允许应用程序查看有关 Wi-Fi 状态的信息 |
| android.permission.CHANGE_WIFI_STATE | 正常 | 更改Wi-Fi状态 | 允许应用程序连接和断开 Wi-Fi 接入点,并对配置的 Wi-Fi 网络进行更改 |
| android.permission.WAKE_LOCK | 正常 | 防止手机睡眠 | 允许应用程序防止手机进入睡眠状态 |
| android.permission.READ_PHONE_STATE | 危险 | 读取电话状态和身份 | 允许应用访问设备的电话功能。具有此权限的应用程序可以确定此电话的电话号码和序列号,呼叫是否处于活动状态,呼叫所连接的号码等 |
| android.permission.REQUEST_INSTALL_PACKAGES | 危险 | 允许应用程序请求安装包。 | 恶意应用程序可以利用它来尝试诱骗用户安装其他恶意软件包。 |
| android.permission.REQUEST_DELETE_PACKAGES | 正常 | 允许应用程序请求删除包 | |
| android.permission.VIBRATE | 正常 | 可控震源 | 允许应用程序控制振动器 |
| com.asus.msa.SupplementaryDID.ACCESS | 未知 | 调用了未知的操作 | |
| freemme.permission.msa | 未知 | 调用了未知的操作 | |
| android.permission.CHANGE_NETWORK_STATE | 正常 | 更改网络连接 | 允许应用程序更改网络连接状态。 |
| android.permission.REORDER_TASKS | 正常 | 重新排序正在运行的应用程序 | 允许应用程序将任务移动到前台和后台。恶意应用程序可以在不受您控制的情况下将自己强加于前 |
| com.csjcbs.openadsdk.permission.TT_PANGOLIN | 未知 | 调用了未知的操作 | |
| android.permission.SYSTEM_ALERT_WINDOW | 危险 | 显示系统级警报 | 允许应用程序显示系统警报窗口。恶意应用程序可以接管手机的整个屏幕 |
| android.permission.EXPAND_STATUS_BAR | 正常 | 展开/折叠状态栏 | 允许应用程序展开或折叠状态栏 |
| android.permission.SET_WALLPAPER | 正常 | 设置壁纸 | 允许应用程序设置系统壁纸 |
| android.permission.BLUETOOTH | 正常 | 创建蓝牙连接 | 允许应用程序连接到配对的蓝牙设备 |