SquirrelVPN.apk分析结果

温馨提示：APP静态检测会有结果不完整的现象，如有疑问或建议，可加入我们的微信群讨论

APP图标

下载APP

文件信息

文件名 SquirrelVPN-Android-1.0.0-168-release.apk
文件大小 58.94MB
MD5值 67a685bb538bd20c480199744a0da6a2
SHA1值 577ae200a152fdfecb35cb36344b110b0f29ebac
SHA256值 f740c17c03c85c6ca80456fa589fe9f688bf6fa416b24a612cd27ccb7bd457b4

APK信息

APK名称 SquirrelVPN
包名 com.squirrel
主活动 com.squirrelvpn.MainActivity
安卓版本名称 1.0.0

域名线索 11 条

查看

URL线索 15 条

查看

邮箱线索 1 条

查看

手机号线索 0 条

查看

域名线索

域名	ip	地区
pinterest.com	202.160.130.145	Singapore - Singapore
twitter.com	202.160.128.203	Singapore - Singapore
plus.google.com	162.125.2.3	United States of America - California
api.login.yahoo.com	74.6.160.138	United States of America - New York
github.com	20.205.243.166	United States of America - Washington
www.facebook.com	157.240.12.35	Brazil - Sao Paulo
www.example.com	93.184.216.34	United States of America - Virginia
ns.adobe.com	没有ip信息	没有地区信息
docs.swmansion.com	172.67.142.188	United States of America - California
cfg.flurry.com	98.136.147.20	United States of America - New York
data.flurry.com	69.147.80.15	United States of America - New York

URL线索

URL信息	Url所在文件
https://twitter.com/intent/tweet?text=	cl/json/social/TwitterShare.java
https://www.facebook.com/sharer/sharer.php?u=	cl/json/social/FacebookPagesManagerShare.java
https://www.facebook.com/sharer/sharer.php?u=	cl/json/social/FacebookShare.java
https://plus.google.com/share?url=	cl/json/social/GooglePlusShare.java
https://pinterest.com/pin/create/button/?url=	cl/json/social/PinterestShare.java
https://cfg.flurry.com/sdk/v1/config	com/flurry/sdk/by.java
http://www.example.com	com/flurry/sdk/ed.java
https://data.flurry.com/v1/flr.do	com/flurry/sdk/br.java
https://cfg.flurry.com/sdk/v1/config	com/flurry/sdk/cl.java
https://api.login.yahoo.com/oauth2/device_session	com/flurry/sdk/ef.java
https://github.com/software-mansion/react-native-screens/issues/17	com/swmansion/rnscreens/ScreenFragment.java
https://github.com/software-mansion/react-native-screens/issues/17	com/swmansion/rnscreens/ScreenStackFragment.java
https://docs.swmansion.com/react-native-gesture-handler/docs/guides/migrating-off-rnghenabledroot	com/swmansion/gesturehandler/react/RNGestureHandlerEnabledRootView.java
https://github.com/rust-lang/rust/issues/39364assertion	lib/armeabi-v7a/libtrunkandroid.so
http://ns.adobe.com/xap/1.0/	lib/armeabi-v7a/libnative-imagetranscoder.so

邮箱线索

邮箱地址	所在文件
appro@openssl.org	lib/arm64-v8a/libtrunkandroid.so

手机线索

代码反编译

AndroidManifest配置查看

Java源代码查看 -- 下载

APK文件会员可下载

签名证书

APK is signed
v1 signature: True
v2 signature: True
v3 signature: False
Found 1 unique certificates
Subject: OU=squirrel, O=wcn, L=Wilmington, ST=Delaware, C=US, CN=www.squirrelvpn.com
Signature Algorithm: rsassa_pkcs1v15
Valid From: 2019-09-18 04:38:44+00:00
Valid To: 2119-08-25 04:38:44+00:00
Issuer: OU=squirrel, O=wcn, L=Wilmington, ST=Delaware, C=US, CN=www.squirrelvpn.com
Serial Number: 0x7840e260
Hash Algorithm: sha256
md5: 65d1e71aa30fc76c3f877f2b2754ab28
sha1: 80a74b7bd096b65ea5b439bce3f05ca7c8a57cf1
sha256: 7e750d7c0297fd1eae69d5cf862badd372c2996ddbfec0fe2961cab6d39f3404
sha512: dd5a68f5ba987e2bb9b67e5196638af29f4edfee241a3e552de9480ef61a67e60b965540127624e0d089608934ec22f3a395b7893ed4ab703e74a7835dfc1706
PublicKey Algorithm: rsa
Bit Size: 2048
Fingerprint: d848f6ccdaacb7206d4f3830f2017ab34230a7c7c27eb4b017c8e28845f31f96

硬编码敏感信息

加壳分析

会员可查看

第三方插件

会员可查看

危险动作

向手机申请的权限	是否危险	类型	详细情况
android.permission.INTERNET	正常	互联网接入	允许应用程序创建网络套接字
android.permission.CHANGE_NETWORK_STATE	正常	更改网络连接	允许应用程序更改网络连接状态。
android.permission.ACCESS_NETWORK_STATE	正常	查看网络状态	允许应用程序查看所有网络的状态
android.permission.VIBRATE	正常	可控震源	允许应用程序控制振动器
android.permission.WRITE_EXTERNAL_STORAGE	危险	读取/修改/删除外部存储内容	允许应用程序写入外部存储
android.permission.READ_EXTERNAL_STORAGE	危险	读取外部存储器内容	允许应用程序从外部存储读取
com.google.android.c2dm.permission.RECEIVE	合法	C2DM 权限	云到设备消息传递的权限
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE	未知		调用了未知的操作