温馨提示:APP静态检测会有结果不完整的现象,如有疑问或建议, 可加入我们的微信群讨论
文件信息
文件名 AListF-v1.25.052501_arm64-v8a.apk文件大小 39.31MB
MD5值 63757ee227aa7a0fe462d995e30f9d98
SHA1值 af781ef3b09f0d16e4a4ec7d4ad51c3559f8c12f
SHA256值 b0f79eef8701176c331647fbff842f1dadb1a5cbb890775608a8fdef9acd1f01
APK信息
APK名称 AList包名 com.github.jing332.alistflutter
主活动 com.github.jing332.alistflutter.MainActivity
安卓版本名称 1.25.052501
域名线索
| 域名 | 查询域名 | ip | 地区 | 查询地区 |
|---|---|---|---|---|
| raw.githubusercontent.comhttps | 没有ip信息 | 没有地区信息 | ||
| pkg.go.dev | 34.149.140.181 | United States of America - Missouri | ||
| docs.oasis-open.org | 104.239.145.46 | United States of America - Texas | ||
| pan.baidu.comget | 没有ip信息 | 没有地区信息 | ||
| api.dingtalk.com | 106.11.35.100 | China - Zhejiang | ||
| login.microsoftonline.com | 20.190.144.164 | Korea (Republic of) - Seoul-teukbyeolsi | ||
| jsd.nn.ci | 172.67.173.235 | United States of America - California | ||
| webapi.115.com | 47.113.23.100 | China - Zhejiang | ||
| chaoxing.com | 42.62.107.228 | China - Beijing | ||
| developer.android.com | 173.194.203.101 | United States of America - California | ||
| upload.qiniup.com | 153.99.246.142 | China - Jiangsu | ||
| m.cloud.189.cn | 14.116.220.47 | China - Guangdong | ||
| www.alipan.com | 114.250.48.139 | China - Beijing | ||
| open-api-drive.uc.cncos.ap-shanghai.myqcloud.comcannot | 没有ip信息 | 没有地区信息 | ||
| cloud.189.cn | 14.18.110.142 | China - Guangdong | ||
| user.mypikpak.net | 43.160.163.241 | Singapore - Singapore | ||
| api.dogecloud.comhttps | 没有ip信息 | 没有地区信息 | ||
| dartbug.com | 216.239.38.21 | United States of America - Virginia | ||
| api.dropboxapi.comoauth2 | 没有ip信息 | 没有地区信息 | ||
| photo.baidu.com | 111.206.209.88 | China - Beijing | ||
| yun.139.com | 112.33.111.187 | China - Anhui | ||
| misskey.io | 108.160.165.173 | United States of America - California | ||
| pc.woozooo.com | 118.31.212.145 | China - Zhejiang | ||
| cdnjs.cloudflare.com | 104.17.24.14 | United States of America - California | ||
| noteyd.chaoxing.com | 45.113.20.91 | China - Beijing | ||
| open.weixin.qq.com | 140.207.191.167 | China - Shanghai | ||
| jayce.api.mediatrack.cn | 60.28.220.200 | China - Tianjin | ||
| app.v.tencent.com | 221.204.15.111 | China - Shanxi | ||
| alist-org.github.io | 185.199.109.153 | United States of America - Pennsylvania | ||
| www.example.com | 23.211.178.8 | Japan - Osaka | ||
| api.alipan.com | 114.250.48.139 | China - Beijing | ||
| qrcodeapi.115.com | 47.113.23.100 | China - Zhejiang | ||
| github.com | 20.205.243.166 | Singapore - Singapore | ||
| lixian.115.com | 47.113.23.100 | China - Zhejiang | ||
| www.123pan.com | 203.107.60.254 | China - Zhejiang | ||
| cdn.jsdelivr.net | 104.16.175.226 | United States of America - California | ||
| d.pcs.baidu.com | 110.242.69.44 | China - Hebei | ||
| gorm.io | 185.199.110.153 | United States of America - Pennsylvania | ||
| go.dev | 216.239.36.21 | United States of America - California | ||
| appversion.115.com | 47.113.23.100 | China - Zhejiang | ||
| siot-share.lenovo.com.cn | 39.105.110.92 | China - Zhejiang | ||
| www.doubao.cominvalid | 没有ip信息 | 没有地区信息 | ||
| api-pan.xunlei.com | 140.206.225.227 | China - Shanghai | ||
| music.163.com | 220.197.30.65 | China - Jiangsu | ||
| pan-yz.chaoxing.com | 45.113.20.10 | China - Beijing | ||
| mopan.sc.189.cn | 222.213.18.13 | China - Sichuan | ||
| api.ilanzou.comhttps | 没有ip信息 | 没有地区信息 | ||
| jimmy.warting.se | 172.67.217.33 | United States of America - California | ||
| www.terabox.com9ujnvj | 没有ip信息 | 没有地区信息 | ||
| schemas.xmlsoap.org | 13.107.246.73 | United States of America - Washington | ||
| xluser-ssl.xunlei.com | 140.206.225.209 | China - Shanghai | ||
| api.febbox.com | 43.154.95.27 | Hong Kong - Hong Kong | ||
| www.unicode.org | 64.182.27.164 | United States of America - Texas | ||
| pc-api.uc.cn | 203.119.169.27 | China - Zhejiang | ||
| v.anxia.com | 没有ip信息 | 没有地区信息 | ||
| github.cominvalid | 没有ip信息 | 没有地区信息 | ||
| owncloud.org | 185.125.174.106 | Germany - Bayern | ||
| www.w3.org | 104.18.22.19 | United States of America - California | ||
| g.alicdn.com | 101.72.238.66 | China - Hebei | ||
| alist.nn.ci | 104.21.30.209 | United States of America - California | ||
| proapi.115.com | 47.113.23.100 | China - Zhejiang | ||
| vod2.qcloud.com | 111.206.147.235 | China - Beijing | ||
| pan.quark.cn | 203.119.169.27 | China - Zhejiang | ||
| tjupload.pan.wo.cnuser | 没有ip信息 | 没有地区信息 | ||
| npm.elemecdn.com | 116.142.235.233 | China - Beijing | ||
| ghproxy.net | 51.195.241.253 | United Kingdom of Great Britain and Northern Ireland - England | ||
| aplayer.js.org | 104.26.9.84 | United States of America - California | ||
| user.weiyun.com | 116.130.230.125 | China - Beijing | ||
| pan.lanzoui.com | 118.31.212.253 | China - Zhejiang | ||
| cn-beijing-data.aliyundrive.net | 140.207.195.120 | China - Shanghai |
URL线索
邮箱线索
| 邮箱地址 | 所在文件 |
|---|---|
|
appro@openssl.org |
lib/arm64-v8a/libflutter.so |
|
failureping@openssh.com |
lib/arm64-v8a/libgojni.so |
手机线索
签名证书
APK已签名
v1 签名: True
v2 签名: True
v3 签名: False
找到 1 个唯一证书
主题: C=China
签名算法: rsassa_pkcs1v15
有效期自: 2023-08-12 09:03:55+00:00
有效期至: 2073-07-30 09:03:55+00:00
发行人: C=China
序列号: 0x1
哈希算法: sha256
md5值: 61bbe1d13ac9334041b7e92ef5a244a6
sha1值: 27d5db0d96feb49001dde3f1cc22e46649aef68c
sha256值: 96630836f053fbaba742d6b229f22a03c03821e53e8548469623f5f02448d1ab
sha512值: e441a08d7727f3d5f86e6350ad331ec6a4f64255d39b6a64d47e94cd22f0c9cef912b15c465cb4f680b0649ba99f45e7fbf5d7344eeab710d5cfd1945941db88
公钥算法: rsa
密钥长度: 2048
指纹: a4525e31ad210d36eabb77cc4cbef7616aeea42496c6145c0af31b481d2e0b7a硬编码敏感信息
"admin_password" : "admin 密码"
"password" : "密码"
"set_admin_pwd_for_not_running" : "⚠️启动服务器才可设置admin密码"
加壳分析
第三方插件
危险动作
| 向手机申请的权限 | 是否危险 | 类型 | 详细情况 |
|---|---|---|---|
| android.permission.FOREGROUND_SERVICE | 正常 | 允许常规应用程序使用 Service.startForeground。 | |
| android.permission.USE_EXACT_ALARM | 未知 | 调用了未知的操作 | |
| android.permission.SCHEDULE_EXACT_ALARM | 正常 | 允许应用程序使用精确的警报调度 API 来执行对时间敏感的后台工作 | |
| android.permission.RECEIVE_BOOT_COMPLETED | 正常 | 开机时自动启动 | 允许应用程序在系统完成启动后立即启动。这可能会使启动手机需要更长的时间,并允许应用程序通过始终运行来减慢整个手机的速度 |
| android.permission.QUERY_ALL_PACKAGES | 正常 | 允许查询设备上的任何普通应用程序,无论清单声明如何 | |
| android.permission.POST_NOTIFICATIONS | 未知 | 调用了未知的操作 | |
| android.permission.ACCESS_NETWORK_STATE | 正常 | 查看网络状态 | 允许应用程序查看所有网络的状态 |
| android.permission.INTERNET | 正常 | 互联网接入 | 允许应用程序创建网络套接字 |
| android.permission.READ_EXTERNAL_STORAGE | 危险 | 读取外部存储器内容 | 允许应用程序从外部存储读取 |
| android.permission.WRITE_EXTERNAL_STORAGE | 危险 | 读取/修改/删除外部存储内容 | 允许应用程序写入外部存储 |
| android.permission.READ_INTERNAL_STORAGE | 未知 | 调用了未知的操作 | |
| android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS | 正常 | 应用程序必须持有的权限才能使用 Settings.ACTION_REQUEST_IGNORE_BATTERY_OPTIMIZATIONS。 | |
| android.permission.WAKE_LOCK | 正常 | 防止手机睡眠 | 允许应用程序防止手机进入睡眠状态 |
| android.permission.MANAGE_EXTERNAL_STORAGE | 危险 | 允许应用程序广泛访问范围存储中的外部存储 | 允许应用程序广泛访问范围存储中的外部存储。旨在供少数需要代表用户管理文件的应用程序使用 |
| android.permission.READ_PHONE_STATE | 危险 | 读取电话状态和身份 | 允许应用访问设备的电话功能。具有此权限的应用程序可以确定此电话的电话号码和序列号,呼叫是否处于活动状态,呼叫所连接的号码等 |
| com.github.jing332.alistflutter.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION | 未知 | 调用了未知的操作 |