分析任务

分析类型 开始时间 结束时间 持续时间
文件 (apk) 2022-01-29 19:46:53 2022-01-29 19:51:57 304 秒 
2022-01-29 19:47:47,333 [root] INFO: Starting analyzer from: /data/local/tmp/vwgaj
2022-01-29 19:47:47,353 [root] INFO: Storing results at: /data/local/tmp/yalwwxb
2022-01-29 19:47:47,358 [root] INFO: Target is: /data/local/tmp/cheshi2.apk
2022-01-29 19:47:47,363 [root] INFO: No analysis package specified, trying to detect it automagically
2022-01-29 19:47:47,370 [root] INFO: Automatically selected analysis package "apk"
2022-01-29 19:47:50,239 [root] INFO: Started auxiliary module FileCollector
2022-01-29 19:47:50,291 [root] INFO: Started auxiliary module Screenshots
2022-01-29 19:47:50,311 [root] INFO: Started auxiliary module TouchSimulator
2022-01-29 19:47:50,527 [root] INFO: installing sample on emulator: pm install /data/local/tmp/cheshi2.apk
2022-01-29 19:47:52,908 [root] INFO: 
2022-01-29 19:47:52,918 [root] INFO: finished
2022-01-29 19:47:52,933 [root] INFO: executing sample on emulator:adb shell am start -n com.likuaiyun.gongsi/com.likuaiyun.gongsi.rg_qdl
2022-01-29 19:51:54,079 [root] INFO: Analysis timeout hit, terminating analysis
2022-01-29 19:51:54,152 [root] INFO: Analysis completed

魔盾分数

0.4

正常的

文件详细信息

文件名 cheshi2.apk
文件大小 29973 字节
文件类型 Zip archive data, at least v2.0 to extract
MD5 60cedd0e9f19878ca54f2772f075079b
SHA1 97af6433eb197adfe8898ca3d09a5c1830e8ffe3
SHA256 0c1418b1c2ff2307199b363252ec5fc4f2d5e5b00f699a356c1ef0955058559d
SHA512 73066c43f1fc098981e11d62841b53ae0f60b089bb52dce420eed3e5d500d59da335b291f5f61f54da8af2697d72d9421f719e285aad4509e1962748ff7b007a
CRC32 B523D30A
Ssdeep 384:vtZ5FzBo32/ilQJxnhgTtjgVpESzxo/Cpo2PXuXUIb0F3eHVix4TRIZa5SFO:vtJBoG/iW3w0o/oo2PeEIAF3eJlIZa5f
Yara 无规则匹配
样本下载

特征低危险等级 中危险等级 高危险等级

应用程序请求高风险许可权限
android.permission.WRITE_EXTERNAL_STORAGE Allows an application to write to the SD card.
发现隐藏加载
AndroidManifest.xml md5: 6b8b93a2fdecefe3ab1d7bda18678717
type: Android binary XML
name: AndroidManifest.xml
size: 2584
res/layout/rg_qdl.xml md5: 2c5b0ae151a5a7ecfb441ce2055f2d43
type: Android binary XML
name: res/layout/rg_qdl.xml
size: 968
应用程序包含了其他APK文件
AndroidManifest.xml md5: 6b8b93a2fdecefe3ab1d7bda18678717
type: Android binary XML
name: AndroidManifest.xml
size: 2584
res/layout/rg_qdl.xml md5: 2c5b0ae151a5a7ecfb441ce2055f2d43
type: Android binary XML
name: res/layout/rg_qdl.xml
size: 968

运行截图

访问主机纪录 (可点击查询WPING实时安全评级)

无主机纪录.

域名解析 (可点击查询WPING实时安全评级)

无域名信息.

META-INF/MANIFEST.MF
META-INF/VANDROID.SF
x#kjEe
META-INF/VANDROID.RSA3hbig
F51*!;
.kVRmI
AndroidManifest.xml
+N]YrX
5JMsila
ui^]v4k
res/drawable-hdpi-v4/volapp.png
dIDATX
(arJl8 5;
7oa;S'
res/drawable-ldpi-v4/volapp.png
$Rb!jO
res/drawable-mdpi-v4/volapp.png
%IDATH
res/drawable-xhdpi-v4/volapp.png
P:R~D0
Kwhev8
MX5/=-K
@-pHaYm
qlZZFv"
res/drawable-xxhdpi-v4/volapp.png
BIDATx
(Vk TE
c#/9F'?
'$eeyu
iwY0sC
f$-9wiJR
P/~vr}vg
res/layout/rg_qdl.xml
twp 1q`
resources.arsc
res/layout/rg_qdl.xml
res/drawable-ldpi-v4/volapp.png
res/drawable-mdpi-v4/volapp.png
res/drawable-hdpi-v4/volapp.png
res/drawable-xhdpi-v4/volapp.png
!!res/drawable-xxhdpi-v4/volapp.png
drawable
layout
string
volapp
rg_qdl
rg_n3335
rg_n3941
rg_n2352
vol_app_name
classes.dex
$}$-}L
jE^*jUD
),4"t2
~?}#&
1(o<59
Ue0WNa
LLnR3h
>^.c1~
o#HmDj
M6UdSm
[C>_`E
}T|h+=
{1uGB39
8|E)r$iA4&s
vM-w\0
E[gokG
YQ5{pu
H[{2_;
=UnKUW
-o<u79
H)o9.Jg
META-INF/MANIFEST.MFPK
META-INF/VANDROID.SFPK
META-INF/VANDROID.RSAPK
AndroidManifest.xml
res/drawable-hdpi-v4/volapp.pngPK
res/drawable-ldpi-v4/volapp.pngPK
res/drawable-mdpi-v4/volapp.pngPK
res/drawable-xhdpi-v4/volapp.pngPK
res/drawable-xxhdpi-v4/volapp.pngPK
res/layout/rg_qdl.xmlPK
resources.arscPK
classes.dexPK
com.likuaiyun.gongsi
没有防病毒引擎扫描信息!
Package com.likuaiyun.gongsi
Main Activity com.likuaiyun.gongsi.rg_qdl

Activities列表

Permissions列表

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1633752046 (0x616113ee)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=CN, CN=xiaohao_huoshan
        Validity
            Not Before: Jan 29 11:38:04 2022 GMT
            Not After : Jan  5 11:38:04 2122 GMT
        Subject: C=CN, CN=xiaohao_huoshan
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                Public-Key: (2048 bit)
                Modulus:
                    00:b5:b4:ab:c6:36:b0:2e:cb:eb:a9:e0:c9:3a:e0:
                    2d:8e:50:0f:0c:37:73:9a:b8:31:1a:cc:ca:08:99:
                    1d:36:8f:94:f5:74:0c:59:42:94:2e:91:39:43:f0:
                    04:25:2e:73:4c:94:ec:87:18:fe:de:1f:eb:3c:dd:
                    8b:31:53:6f:b1:2d:92:03:3a:e4:e2:89:ba:cd:ff:
                    f4:64:c1:63:f7:63:e1:1c:2e:26:6f:97:e2:08:2d:
                    52:e6:58:34:62:50:19:61:e8:be:d0:02:21:90:bb:
                    0c:3f:e0:df:e7:1b:2d:eb:9f:9a:11:b0:24:e5:2e:
                    f5:bf:ba:81:30:38:6e:0e:e4:52:bb:e0:ae:9d:1d:
                    cf:ec:a7:dd:05:6a:62:7d:74:64:ca:31:3b:6b:f7:
                    a3:4d:57:5a:55:11:fa:25:76:e5:4c:dc:5c:ea:5f:
                    3a:4a:8c:95:c8:90:73:04:a9:d8:69:f3:7c:0c:b7:
                    ba:34:12:a2:28:0a:20:8d:70:f5:f7:c9:a7:b0:4b:
                    cb:f8:5e:48:7b:31:df:f9:bf:8a:15:6e:cf:89:7a:
                    e0:fa:dc:34:bf:a6:1b:7f:e5:59:c8:41:cd:86:62:
                    1f:9f:f3:e0:e7:aa:29:36:02:5b:94:74:b7:1d:fb:
                    25:ac:74:d7:20:6e:40:b6:68:e4:f2:97:14:a2:74:
                    6a:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier: 
                54:C2:74:62:F6:7A:C7:3E:BB:86:F2:2B:57:0E:D2:CC:03:05:0A:AB
    Signature Algorithm: sha256WithRSAEncryption
         a9:5f:65:86:78:b0:a7:a4:d8:95:c4:28:3b:7d:d2:a2:59:5e:
         0d:d3:53:44:cf:59:ee:10:20:b4:6e:d4:7e:da:2a:90:1a:d0:
         64:93:54:35:1c:ea:33:0e:55:19:d2:51:df:4e:c9:7b:59:63:
         f3:3f:5f:d9:58:58:3b:bb:6c:7d:5a:c4:31:0a:c2:36:c2:18:
         45:98:a8:95:44:57:55:b6:17:ea:b4:ef:61:8e:42:f8:87:7a:
         2f:d6:6d:7e:99:be:51:06:ba:98:32:c6:e3:ef:50:ee:1d:89:
         82:33:8e:58:e6:ca:d5:7f:4d:6e:35:99:bc:f3:82:64:6d:df:
         a3:b4:6b:99:04:53:65:65:e9:80:21:8e:0c:8c:1c:e0:02:20:
         b2:a8:5a:d7:ab:6c:fc:f8:3e:21:3c:4a:c3:e5:ae:88:7a:d6:
         0c:75:47:a6:90:9e:18:e6:d5:f1:91:d8:41:92:cb:d2:0f:d6:
         dd:47:55:ad:5f:b7:81:75:28:75:c4:11:71:28:59:f8:2d:ef:
         63:84:e1:78:d9:68:53:06:0d:17:1a:8f:e0:e9:0c:e7:aa:c3:
         aa:d8:33:39:6f:dd:d2:0e:12:a0:33:23:2e:dd:bc:52:3d:e0:
         1b:36:57:e0:2b:27:bd:9b:25:d1:d9:7b:51:83:4e:d6:87:c1:
         a3:b9:46:7f

res/drawable-mdpi-v4/volapp.png md5 994036828bd4941d0dd143a77d55dbc2
type PNG image data, 48 x 48, 8-bit colormap, non-interlaced
name res/drawable-mdpi-v4/volapp.png
size 408
resources.arsc md5 1f6e926a76922aa8f92a3b1d1ea0aab8
type data
name resources.arsc
size 2064
META-INF/VANDROID.SF md5 d2b31774cffadbc905be89c033b88820
type ASCII text, with CRLF line terminators
name META-INF/VANDROID.SF
size 889
META-INF/VANDROID.RSA md5 d9ce456bc9bb52556f1665a0dc3ce302
type data
name META-INF/VANDROID.RSA
size 1163
res/drawable-hdpi-v4/volapp.png md5 f6e7e70119b9be9d121a7a08adb41c59
type PNG image data, 72 x 72, 8-bit colormap, non-interlaced
name res/drawable-hdpi-v4/volapp.png
size 1779
META-INF/MANIFEST.MF md5 b6c066623e97b4d61b2f58969f960eb4
type ASCII text, with CRLF line terminators
name META-INF/MANIFEST.MF
size 768
AndroidManifest.xml md5 6b8b93a2fdecefe3ab1d7bda18678717
type Android binary XML
name AndroidManifest.xml
size 2584
res/drawable-xxhdpi-v4/volapp.png md5 f736d3d91c5503970c81fbacd3445dbf
type PNG image data, 144 x 144, 8-bit/color RGBA, non-interlaced
name res/drawable-xxhdpi-v4/volapp.png
size 3963
res/drawable-xhdpi-v4/volapp.png md5 5ad5f6740a0c52da2dea09237325d511
type PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced
name res/drawable-xhdpi-v4/volapp.png
size 2625
res/layout/rg_qdl.xml md5 2c5b0ae151a5a7ecfb441ce2055f2d43
type Android binary XML
name res/layout/rg_qdl.xml
size 968
classes.dex md5 a6d4c92019a7edfd4026844037e5bc9a
type Dalvik dex file version 035
name classes.dex
size 34040
res/drawable-ldpi-v4/volapp.png md5 f5e99398335672f592a5eefa27fab6c6
type PNG image data, 36 x 36, 8-bit colormap, non-interlaced
name res/drawable-ldpi-v4/volapp.png
size 360
下载PCAP包

访问主机纪录 (可点击查询WPING实时安全评级)

无主机纪录.

域名解析 (可点击查询WPING实时安全评级)

无域名信息.

TCP

无TCP连接.

UDP

源地址 源端口 目标地址 目标端口
10.0.2.15 59745 10.0.2.3 53
10.0.2.15 42603 193.182.111.141 123

HTTP 请求

未发现HTTP请求.

ICMP 流量

无ICMP流量.

IRC 流量

无IRC请求.

HTTP/HTTPS 请求

请求 应答
抱歉! 没有任何文件投放。
JSON 格式报告 下载
HTML 格式报告 下载
暂时还没有评论。