文件信息
文件名 吾圈pro_2025060716_release.apk文件大小 36.73MB
MD5值 c332ea4719c37474a6a69d6d9d37543d
SHA1值 9dc955d1c1f4ca618f186af3943fb422445bf397
SHA256值 1b3fc4359f0237a3b1e830b2a37377b6ed9894b7843113f6b622f1a3907323be
APK信息
APK名称 吾圈pro包名 com.kingim.fivequan
主活动 com.suxun.im.SplashActivity
安卓版本名称 \ 2025060716
域名线索
| 域名 | 查询域名 | ip | 地区 | 查询地区 |
|---|---|---|---|---|
| web.sdk.qcloud.com | 42.231.138.183 | China - Henan | ||
| api-push.meizu.com | 221.5.93.66 | China - Guangdong | ||
| open.e.189.cn | 42.123.76.87 | China - Beijing | ||
| da.dun.163.com | 59.111.248.82 | China - Guangdong | ||
| www.openssl.org | 34.49.79.89 | United States of America - California | ||
| api.ahctop.com | 没有ip信息 | 没有地区信息 | ||
| mikepenz.com | 104.21.27.65 | United States of America - California | ||
| e.189.cn | 42.123.76.65 | China - Beijing | ||
| grs.dbankcloud.com | 60.28.200.159 | China - Tianjin | ||
| 162.14.3.250 | 162.14.3.250 | China - Beijing | ||
| android.bugly.qq.com | 124.95.225.146 | China - Liaoning | ||
| api.5quan.org | 103.245.25.139 | - - - | ||
| metrics5.data.hicloud.com | 159.138.203.215 | Russian Federation - Sverdlovskaya oblast' | ||
| crash.163.com | 45.254.50.146 | China - Guangdong | ||
| im.sdk.qcloud.com | 221.204.14.81 | China - Shanxi | ||
| 27.150.128.90 | 27.150.128.90 | China - Fujian | ||
| tools.ietf.org | 104.16.44.99 | United States of America - California | ||
| 119.29.29.98 | 119.29.29.98 | Singapore - Singapore | ||
| ye.dun.163yun.com | 59.111.248.82 | China - Guangdong | ||
| 162.14.19.114 | 162.14.19.114 | China - Beijing | ||
| grs.platform.dbankcloud.ru | 没有ip信息 | 没有地区信息 | ||
| cloud.tencent.com | 60.28.220.193 | China - Tianjin | ||
| api-push.in.meizu.com | 206.161.233.191 | United States of America - Virginia | ||
| api-e189.21cn.com | 222.93.106.185 | China - Jiangsu | ||
| xml.org | 104.239.142.8 | United States of America - Texas | ||
| demos.trtc.tencent-cloud.com | 220.194.123.111 | China - Tianjin | ||
| wap.cmpassport.com | 112.33.111.233 | China - Anhui | ||
| dnsrepo-pub.alibaba.com | 106.11.43.250 | China - Beijing | ||
| msv6.wosms.cn | 123.125.99.19 | China - Beijing | ||
| api.iwuquan.com | 23.224.194.30 | United States of America - California | ||
| h.trace.qq.com | 113.56.189.246 | China - Hubei | ||
| www.tencentcloud.com | 43.175.52.13 | Hong Kong - Hong Kong | ||
| phosphoricons.com | 67.205.31.19 | United States of America - California | ||
| metrics5.dt.dbankcloud.ru | 159.138.203.215 | Russian Federation - Sverdlovskaya oblast' | ||
| rap2api.taobao.org | 47.105.93.229 | China - Zhejiang | ||
| metrics1-drcn.dt.dbankcloud.cn | 127.0.0.1 | - - - | ||
| opencloud.wostore.cn | 210.22.123.92 | China - Shanghai | ||
| datatracker.ietf.org | 104.16.44.99 | United States of America - California | ||
| data-drru.push.dbankcloud.com | 159.138.202.31 | Russian Federation - Sverdlovskaya oblast' | ||
| github.com | 127.0.0.1 | - - - | ||
| cstaticdun.126.net | 101.28.132.89 | China - Hebei | ||
| grs.dbankcloud.eu | 没有ip信息 | 没有地区信息 | ||
| resolver.msg.xiaomi.net | 39.102.218.17 | China - Zhejiang | ||
| 23.225.71.125 | 23.225.71.125 | United States of America - California | ||
| www.baidu.com | 110.242.69.21 | China - Hebei | ||
| astat.bugly.qcloud.com | 119.28.121.133 | Singapore - Singapore | ||
| metrics2.data.hicloud.com | 80.158.2.190 | Germany - Schleswig-Holstein | ||
| metrics-dra.dt.hicloud.com | 94.74.88.100 | Singapore - Singapore | ||
| data-dra.push.dbankcloud.com | 119.8.163.189 | Singapore - Singapore | ||
| cn.register.xmpush.xiaomi.com | 123.125.102.39 | China - Beijing | ||
| xmlpull.org | 185.199.108.153 | United States of America - Pennsylvania | ||
| data-drcn.push.dbankcloud.com | 121.36.117.8 | China - Beijing | ||
| long.open.weixin.qq.com | 112.65.193.150 | China - Shanghai | ||
| norma-external-collect.meizu.com | 没有ip信息 | 没有地区信息 | ||
| intl.cloud.tencent.com | 60.28.220.193 | China - Tianjin | ||
| apifoxmock.com | 121.41.83.210 | China - Zhejiang | ||
| 23.224.194.30 | 23.224.194.30 | United States of America - California | ||
| astat.bugly.cros.wr.pvp.net | 127.0.0.1 | - - - | ||
| grs.dbankcloud.asia | 49.4.35.251 | China - Guangdong | ||
| grs.dbankcloud.cn | 49.4.40.185 | China - Guangdong | ||
| data-dre.push.dbankcloud.com | 80.158.49.244 | Germany - Schleswig-Holstein | ||
| open.weixin.qq.com | 140.207.176.25 | China - Shanghai | ||
| privacy.qq.com | 42.231.138.183 | China - Henan | ||
| uq888.oss-cn-beijing.aliyuncs.com | 61.135.144.151 | China - Beijing |
URL线索
邮箱线索
手机线索
签名证书
APK已签名
v1 签名: False
v2 签名: True
v3 签名: False
找到 1 个唯一证书
主题: CN=fivequan, O=fivequan
签名算法: rsassa_pkcs1v15
有效期自: 2025-03-04 03:21:07+00:00
有效期至: 2075-02-20 03:21:07+00:00
发行人: CN=fivequan, O=fivequan
序列号: 0x1
哈希算法: sha256
md5值: b98a377e402b8e7327c3ce31ddf6f1f0
sha1值: e111b272d2c935ddc677e1b2b81039763316061b
sha256值: 2371ef5e70125b6fdbd1085dddaba4788d39a5d705a3230723839aaaaa2d01bb
sha512值: c90c8439314f43426cd8a23beb086b9c641b3c3d23f88c44efdb885b18c79b107c52802f776d3cd2fabe02e3a26c8bc659ada2524fe1e166bd8b30ae65ad86ab
公钥算法: rsa
密钥长度: 2048
指纹: 2964cca14f96cea0f42226874d0b2820442a25bcbbbada204e120fe9f772d508硬编码敏感信息
"contact_no_such_user" : "This user does not exist."
"firebase_database_url" : "******"
"google_api_key" : "******"
"google_crash_reporting_api_key" : "******"
"input_password" : "请输入密码,6~20位字母或者数字"
"library_AndroidIconics_author" : "Mike Penz"
"library_AndroidIconics_authorWebsite" : "http://mikepenz.com/"
"library_Octicons_author" : "Helena Zhang, Toby Fried"
"library_Octicons_authorWebsite" : "https://phosphoricons.com/"
"password" : "Password"
"private_group" : "Discussion Group"
"umcsdk_oauth_version_name" : "v1.4.1"
"contact_no_such_user" : "该用户不存在"
"input_password" : "请输入密码,8~20位字母+数字"
"password" : "密码"
"private_group" : "讨论组"
加壳分析
第三方插件
危险动作
| 向手机申请的权限 | 是否危险 | 类型 | 详细情况 |
|---|---|---|---|
| android.permission.REQUEST_INSTALL_PACKAGES | 危险 | 允许应用程序请求安装包。 | 恶意应用程序可以利用它来尝试诱骗用户安装其他恶意软件包。 |
| android.permission.VIBRATE | 正常 | 可控震源 | 允许应用程序控制振动器 |
| android.permission.WRITE_EXTERNAL_STORAGE | 危险 | 读取/修改/删除外部存储内容 | 允许应用程序写入外部存储 |
| com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE | 未知 | 调用了未知的操作 | |
| com.heytap.mcs.permission.RECIEVE_MCS_MESSAGE | 未知 | 调用了未知的操作 | |
| com.huawei.android.launcher.permission.CHANGE_BADGE | 正常 | 在应用程序上显示通知计数 | 在华为手机的应用程序启动图标上显示通知计数或徽章。 |
| com.kingim.fivequan.permission.MIPUSH_RECEIVE | 未知 | 调用了未知的操作 | |
| com.meizu.flyme.push.permission.RECEIVE | 未知 | 调用了未知的操作 | |
| com.kingim.fivequan.push.permission.MESSAGE | 未知 | 调用了未知的操作 | |
| com.meizu.c2dm.permission.RECEIVE | 未知 | 调用了未知的操作 | |
| com.kingim.fivequan.permission.C2D_MESSAGE | 未知 | 调用了未知的操作 | |
| android.permission.INTERNET | 正常 | 互联网接入 | 允许应用程序创建网络套接字 |
| android.permission.ACCESS_NETWORK_STATE | 正常 | 查看网络状态 | 允许应用程序查看所有网络的状态 |
| android.permission.ACCESS_WIFI_STATE | 正常 | 查看Wi-Fi状态 | 允许应用程序查看有关 Wi-Fi 状态的信息 |
| android.permission.CHANGE_NETWORK_STATE | 正常 | 更改网络连接 | 允许应用程序更改网络连接状态。 |
| android.permission.POST_NOTIFICATIONS | 未知 | 调用了未知的操作 | |
| android.permission.WAKE_LOCK | 正常 | 防止手机睡眠 | 允许应用程序防止手机进入睡眠状态 |
| com.google.android.c2dm.permission.RECEIVE | 合法 | C2DM 权限 | 云到设备消息传递的权限 |
| com.kingim.fivequan.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION | 未知 | 调用了未知的操作 | |
| com.meizu.flyme.permission.PUSH | 未知 | 调用了未知的操作 | |
| com.kingim.fivequan.permission.PROCESS_PUSH_MSG | 未知 | 调用了未知的操作 | |
| com.kingim.fivequan.permission.PUSH_PROVIDER | 未知 | 调用了未知的操作 | |
| com.hihonor.push.permission.READ_PUSH_NOTIFICATION_INFO | 未知 | 调用了未知的操作 |