记 云伏源(传销) APK静态分析

AndroidManifest.xml

<?xml version="1.0" encoding="utf-8"?>
<manifest android:versionCode="20211218" android:versionName="3.1" android:compileSdkVersion="23" android:compileSdkVersionCodename="6.0-2438415" package="com.mpoitw35ldy9bu4f0" platformBuildVersionCode="30" platformBuildVersionName="11"
  xmlns:android="http://schemas.android.com/apk/res/android">
    <uses-sdk android:minSdkVersion="19" android:targetSdkVersion="29" />
    <uses-permission android:name="android.permission.INTERNET" />
    <uses-permission android:name="android.permission.WRITE_EXTERNAL_STORAGE" />
    <uses-permission android:name="android.permission.READ_EXTERNAL_STORAGE" />
    <uses-permission android:name="android.permission.ACCESS_NETWORK_STATE" />
    <uses-permission android:name="android.permission.ACCESS_FINE_LOCATION" />
    <uses-permission android:name="android.permission.ACCESS_COARSE_LOCATION" />
    <uses-permission android:name="android.permission.READ_PHONE_STATE" />
    <uses-permission android:name="android.permission.ACCESS_WIFI_STATE" />
    <uses-permission android:name="android.permission.CAMERA" />
    <uses-permission android:name="android.permission.REQUEST_INSTALL_PACKAGES" />
    <application android:theme="@style/AppThemeHasBackground" android:label="@string/app_name" android:icon="@mipmap/icon" android:name="com.web.WebTest.app.CommonAppContext" android:allowBackup="true" android:supportsRtl="true" android:usesCleartextTraffic="true" android:appComponentFactory="androidx.core.app.CoreComponentFactory">
        <activity android:name="com.web.WebTest.ui.CustomWebActivity" android:exported="true" android:screenOrientation="portrait" android:windowSoftInputMode="adjustPan" />
        <activity android:theme="@style/AppThemeNoBackground" android:name="com.web.WebTest.ui.MainActivity" android:exported="true" android:screenOrientation="portrait">
            <intent-filter>
                <action android:name="android.intent.action.MAIN" />
                <category android:name="android.intent.category.LAUNCHER" />
            </intent-filter>
        </activity>
        <provider android:name="com.just.agentweb.AgentWebFileProvider" android:exported="false" android:authorities="com.mpoitw35ldy9bu4f0.AgentWebFileProvider" android:grantUriPermissions="true">
            <meta-data android:name="android.support.FILE_PROVIDER_PATHS" android:resource="@xml/web_files_public" />
        </provider>
        <activity android:theme="@style/actionActivity" android:name="com.just.agentweb.ActionActivity" android:exported="false" android:launchMode="standard" android:configChanges="keyboardHidden|orientation|screenSize" android:windowSoftInputMode="stateAlwaysHidden" />
        <provider android:name="com.download.library.DownloadFileProvider" android:exported="false" android:authorities="com.mpoitw35ldy9bu4f0.DownloadFileProvider" android:grantUriPermissions="true">
            <meta-data android:name="android.support.FILE_PROVIDER_PATHS" android:resource="@xml/download_files_public" />
        </provider>
    </application>
</manifest>

签名证书

APK is signed
v1 signature: True
v2 signature: True
v3 signature: False
Found 1 unique certificates
Subject: C=(RP), ST=(QDUN), L=(SMDX), O=(QHJS), OU=(ZWXN), CN=(SPOM)
Signature Algorithm: rsassa_pkcs1v15
Valid From: 2021-12-18 07:07:21+00:00
Valid To: 2031-12-16 07:07:21+00:00
Issuer: C=(RP), ST=(QDUN), L=(SMDX), O=(QHJS), OU=(ZWXN), CN=(SPOM)
Serial Number: 0x754a3c41
Hash Algorithm: sha256
md5: c17281267ecf1f3a7e7fb089837348b3
sha1: 06d7d4646ccfd9bb70b3d8b5ec77c49d0c0a1ba6
sha256: 78ac65475e258170f39fdf87e650b354e9f0c7ddd4254fa1d251a939b7318dfb
sha512: b05e62112defb7680058fbca93b5137a8a262f3132731417208d555735ab7c98a82e4a7877bd6cdd2907d52a053701203e0611d692cc191a0edef9addaf92339
PublicKey Algorithm: rsa
Bit Size: 4096
Fingerprint: 60141a9bb75095e16d60722eae9e4b3896fe60986122748d46232c78da09fd9d

 加壳分析

活动(Activity)