Reminder: The static detection of the APP may result in incomplete findings. If you have any doubts or suggestions, contact us.

File Information

File name TubeVPN 3.3.2 com.tubevpn.client.apk
Size 19.74MB
MD5 4dd27ee6b2214d383f57f183ba55f8ea
SHA1 5e0d6a15c707ddef7629759c1454487496b79594
SHA256 35a514ef3f52c4a406ea86fdec0f1958dd26740a5f0a88ea403db4850a511028

APK Information

App name TubeVPN
Package name com.tubevpn.client
Main activity com.github.shadowsocks.test
Version 3.3.2
Domain Clues 4 records
View
URL Clues 1 records
View
Email Clues 7 records
View
Phone Clues 0 records
View

Domain Clues

Domain Domain query IP Location Location query
stripe.com 198.137.150.141 United States of America - New York
github.com 20.205.243.166 Singapore - Singapore
tubevpn-feaac.firebaseio.com 35.201.97.85 United States of America - Missouri
mikepenz.com 104.21.27.65 United States of America - California

Email Clues

Emails File path
name@site.ru
Mogua Engine V1
ambrop7@gmail.com
lib/arm64-v8a/libtun2socks.so
ambrop7@gmail.com
lib/armeabi-v7a/libtun2socks.so
p.a.rombouts@home.nl
lib/x86/libpdnsd.so
tmoestl@gmx.net
lib/x86/libpdnsd.so
ambrop7@gmail.com
lib/x86/libtun2socks.so
p.a.rombouts@home.nl
lib/x86_64/libpdnsd.so
tmoestl@gmx.net
lib/x86_64/libpdnsd.so
ambrop7@gmail.com
lib/x86_64/libtun2socks.so

Phone Clues

Code Decompile

AndroidManifest View
Java Source View -- Download

Signature Certificate

APK已签名
v1 签名: True
v2 签名: True
v3 签名: True
找到 1 个唯一证书
主题: C=CN, ST=ciyrmc, L=ciyrmc, O=ciyrmc, OU=ciyrmc, CN=ciyrmc
签名算法: rsassa_pkcs1v15
有效期自: 2022-10-04 08:19:08+00:00
有效期至: 2047-09-28 08:19:08+00:00
发行人: C=CN, ST=ciyrmc, L=ciyrmc, O=ciyrmc, OU=ciyrmc, CN=ciyrmc
序列号: 0x5650d30e
哈希算法: sha256
md5值: 7fb53041953d0ac0dc8e5f3527c48329
sha1值: b0a51a00abbab1a23a8a96b50aff4d9b18abe448
sha256值: c5adcae0b4a5066b1981c3069f5136eec162ab05a4c17138de09e1b0b98bb032
sha512值: 02dcec85225eb85c8ba1f4277f1bf572a53099ed4223fa3cdf750ef37fc6e1402a82aa2942ebdfe2cded4ae3f8eb101b2c42fc8eb53a4572b446229dc3b7a021
公钥算法: rsa
密钥长度: 2048
指纹: 3b896592c7c8f00fb66002137e638703f068edb392eedb2ed2f9d378f5a18172

Leaked Information

"firebase_database_url" : "https://tubevpn-feaac.firebaseio.com"
"frontproxy_password" : "Password"
"frontproxy_username" : "Username"
"google_api_key" : "AIzaSyC5tClnSAO0ImMZ6kiGLGT0JwJjwSp4AAo"
"google_crash_reporting_api_key" : "AIzaSyC5tClnSAO0ImMZ6kiGLGT0JwJjwSp4AAo"
"library_AndroidIconics_author" : "Mike Penz"
"library_AndroidIconics_authorWebsite" : "http://mikepenz.com/"
"library_fastadapter_author" : "Mike Penz"
"library_fastadapter_authorWebsite" : "http://mikepenz.com/"
"library_materialdrawer_author" : "Mike Penz"
"library_materialdrawer_authorWebsite" : "http://mikepenz.com/"
"library_materialize_author" : "Mike Penz"
"library_materialize_authorWebsite" : "http://mikepenz.com/"
"onetime_auth" : "One-time Authentication"
"onetime_auth_summary" : "Enable one-time authentication"
"password" : "Change Password"
"sitekey" : "Password"
"stripe_failure_reason_authentication" : "We are unable to authenticate your payment method. Please choose a different payment method and try again."
"frontproxy_password" : "パスワード"
"frontproxy_username" : "ユーザー名"
"onetime_auth" : "ワンタイム認証"
"onetime_auth_summary" : "ワンタイム認証を使用する"
"sitekey" : "パスワード"
"frontproxy_password" : "пароль"
"frontproxy_username" : "имя пользователя"
"onetime_auth" : "Единоразовая Аутентификация"
"onetime_auth_summary" : "Включить единоразовую аутентификацию"
"sitekey" : "Пароль"
"frontproxy_password" : "密码"
"frontproxy_username" : "用户名"
"onetime_auth" : "一次性认证"
"onetime_auth_summary" : "启用一次性认证"
"password" : "修改密码"
"sitekey" : "密码"
"frontproxy_password" : "密碼"
"frontproxy_username" : "用戶名"
"onetime_auth" : "單次驗證"
"onetime_auth_summary" : "啟用單次驗證"
"sitekey" : "密碼"
"password" : "Change Password"

Shells Analysis

Plugins Analysis

Dangerous Actions

Permissions Is Dangerous Category Information
android.permission.QUERY_ALL_PACKAGES Normal 允许查询设备上的任何普通应用程序,无论清单声明如何
android.permission.FORCE_STOP_PACKAGES signature 强制停止其他应用程序 允许一个应用程序强行停止其他应用程序
android.permission.INTERNET Normal 互联网接入 允许应用程序创建网络套接字
android.permission.ACCESS_NETWORK_STATE Normal 查看网络状态 允许应用程序查看所有网络的状态
android.permission.RECEIVE_BOOT_COMPLETED Normal 开机时自动启动 允许应用程序在系统完成启动后立即启动。这可能会使启动手机需要更长的时间,并允许应用程序通过始终运行来减慢整个手机的速度
android.permission.NFC Normal 控制近场通信 允许应用程序与近场通信 (NFC) 标签,卡和读卡器进行通信
android.permission.CAMERA Dangerous 拍照和录像 允许应用程序用相机拍照和录像。这允许应用程序收集相机随时看到的图像
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS Normal 应用程序必须持有的权限才能使用 Settings.ACTION_REQUEST_IGNORE_BATTERY_OPTIMIZATIONS。
android.permission.REQUEST_INSTALL_PACKAGES Dangerous 允许应用程序请求安装包。 恶意应用程序可以利用它来尝试诱骗用户安装其他恶意软件包。
android.permission.FOREGROUND_SERVICE Normal 允许常规应用程序使用 Service.startForeground。
android.permission.WRITE_EXTERNAL_STORAGE Dangerous 读取/修改/删除外部存储内容 允许应用程序写入外部存储
android.permission.READ_EXTERNAL_STORAGE Dangerous 读取外部存储器内容 允许应用程序从外部存储读取
android.permission.MOUNT_UNMOUNT_FILESYSTEM unknown unknown
android.permission.ACCESS_WIFI_STATE Normal 查看Wi-Fi状态 允许应用程序查看有关 Wi-Fi 状态的信息
android.permission.READ_PHONE_STATE Dangerous 读取电话状态和身份 允许应用访问设备的电话功能。具有此权限的应用程序可以确定此电话的电话号码和序列号,呼叫是否处于活动状态,呼叫所连接的号码等
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION unknown unknown
android.permission.KILL_BACKGROUND_PROCESSES Normal 杀死后台进程 允许应用程序杀死其他应用程序的后台进程,即使内存不低
android.permission.RESTART_PACKAGES Normal 杀死后台进程 允许应用程序杀死其他应用程序的后台进程,即使内存不低
android.permission.WAKE_LOCK Normal 防止手机睡眠 允许应用程序防止手机进入睡眠状态
com.google.android.c2dm.permission.RECEIVE signature C2DM 权限 云到设备消息传递的权限
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE unknown unknown