0/61

Threat

com.intsig.camscanner

CamScanner

Analyzed on 2022-01-22T14:14:09.957872

17

permissions

170

activities

23

services

13

receivers

184

domains

File sums

MD5 5cfd4e551fbb2f6acb4d322fcc415448
SHA1 a90bbeb29290a758a15912a91c049315d92d5fe9
SHA256 31cb25b992fd69e76df0b3d0b797182f38c399ef0c373fac1f4d15936f94be48
Size 50.11MB

APKiD

Information computed with APKiD.

/tmp/tmp0ypmhbbj!classes.dex
anti_vm
  • Build.FINGERPRINT check
  • Build.MODEL check
  • Build.MANUFACTURER check
  • Build.PRODUCT check
  • Build.BOARD check
  • possible Build.SERIAL check
  • SIM operator check
  • network operator name check
  • device ID check
  • possible VM check
obfuscator
  • unreadable field names
compiler
  • r8 without marker (suspicious)
/tmp/tmp0ypmhbbj!classes2.dex
anti_disassembly
  • illegal class name
anti_vm
  • Build.FINGERPRINT check
  • Build.MODEL check
  • Build.MANUFACTURER check
  • Build.PRODUCT check
  • Build.TAGS check
  • SIM operator check
  • network operator name check
  • device ID check
anti_debug
  • Debug.isDebuggerConnected() check
compiler
  • r8 without marker (suspicious)
/tmp/tmp0ypmhbbj!classes3.dex
anti_vm
  • Build.FINGERPRINT check
  • Build.MODEL check
  • Build.MANUFACTURER check
  • Build.PRODUCT check
  • possible Build.SERIAL check
  • Build.TAGS check
  • SIM operator check
  • network operator name check
  • device ID check
obfuscator
  • unreadable field names
anti_debug
  • Debug.isDebuggerConnected() check
compiler
  • r8 without marker (suspicious)

SSdeep

Information computed with ssdeep.

APK file 1572864:Y/a4zQIxxRGyvQKfu69V5HYAQoRcThOxCMGb3+:Y/bvTgyoKG69Vx3PfCMGb3+
Manifest 768:zQzL1AnKs2F44O/pUQtus7R9N7yna9aKVdL7BlMKlKj3ExV3WVNrshLjftcdsiRh:…
classes.dex 98304:fUErfwPo5uffQ46rpZj9K6279Zz54+j/GJiaZ:tTwAwUaLV4R9
classes2.dex 98304:sGmlPrIh53ouK8QVmnL/fhykwOJYUhMg8AzGqhcw6mm1qnmLWfOCadqevQLrgVk…
classes3.dex 49152:CvFpZ31Bz8BwR8Vo/qzHhfqX6Uv8clAGB+2eGBppact6muKOb9UjqaNlKavMRT:…

Dexofuzzy

Information computed with Dexofuzzy.

APK file 12288:cVvmuGnWDqR08HEbbbbGmSLCbfIcc4+6tZvbxwVOYWU:AQRtHEbbbbGmhbfI/mv…
classes.dex 3072:xTa7EGOhe1sqvSuwizLTdF58OYiwwW4muV6//a+tZc9VxTPPX11ynQl6EaM//oMr…
classes2.dex 6144:bVQpwLI8K09mHo6yJbbbbGiAI7SkkhdkYkcyPffIFr22T4+plX:bqR08HEbbbbGm…
classes3.dex 6144:vA5vn8QSqut27AyZ+SoAxw4+OYNgFLwwjuk1s:itZvbxwVOYWU

APK details

Information computed with AndroGuard and Pithus.

Package com.intsig.camscanner
App name CamScanner
Version name 5.8.7.20181212
Version code 5871
SDK 18 - 27
UAID 7e05298de22e423d6558ceef16d2cc69e5f23c33
Signature Signature V1 Signature V2
Frosting Not frosted
Blocks found within V2 signature:
  • 0x7109871a: Unknown
  • 0x42726577: Verity padding
  • 0x881155ff: Unknown

Certificate details

Information computed with AndroGuard.

MD5 27d438581be7acd1b07eaac45da3a233
SHA1 3573b53feb45b6bc34f56abcae5584c0071df854
SHA256 7fb4c4f789b7258fc63d300a8e94f393a6a8ec2f29d86dd0cafd1f36347ea23f
Issuer Common Name: IntSig; Organizational Unit: IntSig Information Co.,Ltd; Organization: www.intsig.com; Locality: Shanghai; State/Province: Shanghai; Country: CN
Not before 2010-01-07T01:46:34+00:00
Not after 2064-10-10T01:46:34+00:00

Manifest analysis

Information computed with MobSF.

Medium Application Data can be Backed up[android:allowBackup] flag is missing.
The flag [android:allowBackup] should be set to false. By default it is set to true and allows anyone to backup your application data via adb. It allows users who have enabled USB debugging to copy application data off of the device.
High Activity (com.intsig.camscanner.launcher.WelcomePremiumActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Activity (com.intsig.camscanner.launcher.WelcomePrestigeActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Activity (com.intsig.camscanner.MainMenuActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Activity (com.intsig.camscanner.CaptureActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Activity (com.intsig.camscanner.DocumentActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Activity-Alias (com.intsig.camscanner.ShareMultiPageActivity) is not Protected. [android:exported=true]
An Activity-Alias is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.intsig.camscanner.ImageScannerActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Content Provider (com.intsig.camscanner.openapi.OpenApiProvider) is not Protected. [android:exported=true]
A Content Provider is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.intsig.camscanner.BillingHelpActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Activity (com.intsig.camscanner.onecloud.BoxActionCreateActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Broadcast Receiver (com.intsig.camscanner.onecloud.BoxActionReceiver) is not Protected.An intent-filter exists.
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Broadcast Receiver is explicitly exported.
High Activity (com.intsig.webstorage.googleaccount.RedirectUriReceiverActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Launch Mode of Activity (com.intsig.webstorage.googleaccount.AuthorizationManagementActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (com.intsig.tsapp.LoginActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Launch Mode of Activity (com.intsig.purchase.NewPurchaseMethodActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (com.intsig.purchase.NewPurchaseMethodActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Launch Mode of Activity (com.intsig.camscanner.SonyCaptureActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (com.intsig.camscanner.SonyCaptureActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Broadcast Receiver (com.intsig.gcm.GCMBroadcastReceiver) is not Protected.An intent-filter exists.
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Broadcast Receiver is explicitly exported.
High Launch Mode of Activity (com.tencent.tauth.AuthActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (com.tencent.tauth.AuthActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Activity (com.intsig.camscanner.FeedbackActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Activity (com.intsig.camscanner.UriRedirectActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Activity (com.intsig.webview.WebUrlRedirectActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Content Provider (com.facebook.FacebookContentProvider) is not Protected. [android:exported=true]
A Content Provider is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.intsig.camscanner.shortcut.CaptureWidgetProvider) is not Protected.An intent-filter exists.
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Broadcast Receiver is explicitly exported.
High Activity (com.intsig.camscanner.openapi.OCROpenApiActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Activity (com.intsig.camscanner.openapi.ImageOpenApiActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Activity-Alias (com.intsig.camscanner.Scan2PDFActivity) is not Protected. [android:exported=true]
An Activity-Alias is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.intsig.camscanner.DocumentShortCutActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Launch Mode of Activity (com.intsig.camscanner.DialogHintActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.dropbox.core.android.AuthActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (com.dropbox.core.android.AuthActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Broadcast Receiver (com.google.android.gms.analytics.CampaignTrackingReceiver) is not Protected. [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.appsflyer.SingleInstallBroadcastReceiver) is not Protected. [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.microsoft.aad.adal.ApplicationReceiver) is not Protected.An intent-filter exists.
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Broadcast Receiver is explicitly exported.
High Broadcast Receiver (com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.INSTALL_PACKAGES [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Broadcast Receiver (com.google.firebase.iid.FirebaseInstanceIdReceiver) is Protected by a permission, but the protection level of the permission should be checked.
Permission: com.google.android.c2dm.permission.SEND [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Service (com.google.firebase.iid.FirebaseInstanceIdService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (io.presage.mraid.browser.ShortcutActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.

Browsable activities

Information computed with MobSF.

com.intsig.camscanner.MainMenuActivity

Hosts: resource.intsig.net short.intsig.net cn2.me www.camscanner.net www.camscanner.com w12013.camscanner.com cooper

Schemes: http:// https:// camscannerco://

Mime types: application/pdf

com.intsig.webstorage.googleaccount.RedirectUriReceiverActivity

Schemes: com.googleusercontent.apps.179807108306://

com.intsig.tsapp.LoginActivity

Hosts: www.camscanner.me www.camscanner.com www.camscanner.net w12013.camscanner.com site

Schemes: https:// http:// camscannerco://

com.intsig.purchase.NewPurchaseMethodActivity

Hosts: @string/a_return_url_hosts

Schemes: com.intsig.camscanner://

com.tencent.tauth.AuthActivity

Schemes: tencent100525599://

com.intsig.camscanner.UriRedirectActivity

Hosts: cs

Schemes: camscanner://

com.intsig.webview.WebUrlRedirectActivity

Hosts: *.camscanner.com *.camscanner.me *.camcard.com *.camcard.me

Schemes: http:// https://

com.dropbox.core.android.AuthActivity

Schemes: db-6pfdijigsauhc9u://

Main Activity

Information computed with AndroGuard. 

com.intsig.camscanner.launcher.WelcomeDefaultActivity

Activities

Information computed with AndroGuard. 

com.intsig.camscanner.WelcomeActivity
com.intsig.camscanner.launcher.WelcomeDefaultActivity
com.intsig.camscanner.launcher.WelcomePremiumActivity
com.intsig.camscanner.launcher.WelcomePrestigeActivity
com.intsig.camscanner.AppLaunchActivity
com.intsig.camscanner.MainMenuActivity
com.intsig.camscanner.MovePageActivity
com.intsig.camscanner.CaptureActivity
com.intsig.camscanner.DocumentActivity
com.intsig.camscanner.BatchModeActivity
com.intsig.camscanner.HelpActivity
com.intsig.camscanner.ImageScannerActivity
com.intsig.camscanner.ImagePageViewActivity
com.intsig.camscanner.settings.pad.PadSettingActivity
com.intsig.camscanner.BillingHelpActivity
com.intsig.camscanner.FaxChargeActivity
com.intsig.camscanner.TaskStateActivity
com.intsig.payment.PayMainActivity
com.intsig.payment.ActivateActivity
com.intsig.payment.PayOnMobileActivity
com.intsig.payment.PreVerifyActivity
com.intsig.payment.PayOnPCActivity
com.intsig.camscanner.onecloud.BoxActionCreateActivity
com.intsig.camscanner.UploadFaxPrintActivity
com.intsig.camscanner.SelectPagesActivity
com.intsig.camscanner.settings.UploadAccountSetActivity
com.intsig.webstorage.googleaccount.RedirectUriReceiverActivity
com.intsig.webstorage.googleaccount.AuthorizationManagementActivity
com.intsig.webstorage.box.BoxAuthActivity
com.intsig.webstorage.baidu.BaiduAuthActivity
com.intsig.webstorage.microsoft.MicrosoftAuthActivity
com.intsig.camscanner.LikeActivity
com.intsig.tsapp.LoginActivity
com.intsig.tsapp.CheckStateActivity
com.intsig.tsapp.RegisterActivity
com.intsig.tsapp.RegisterNewActivity
com.intsig.tsapp.FindPasswordActivity
com.intsig.tsapp.ChangePasswordActivity
com.intsig.tsapp.VerifyPhoneActivity
com.intsig.tsapp.SyncStateActivity
com.intsig.tsapp.RegisterBenefitActivity
com.intsig.camscanner.GuideActivity
com.intsig.camscanner.DocPropertyActivity
com.intsig.camscanner.SyncErrorActivity
com.intsig.purchase.NewPurchaseMethodActivity
com.intsig.purchase.WebPurchaseActivity
com.intsig.camscanner.settings.UpgradeAndChargeSettingActivity
com.intsig.camscanner.settings.OcrSettingActivity
com.intsig.camscanner.settings.PdfSettingActivity
com.intsig.camscanner.RewardActivity
com.intsig.camscanner.PurchaseMainActivity
com.intsig.camscanner.WaterMarkActivity
com.intsig.camscanner.ImageShareActivity
com.intsig.snslogin.tencent.TencentSSOActivity
com.intsig.snslogin.weibo.WeiboSSOActivity
com.intsig.camscanner.ViewDocFromTagActivity
com.intsig.tsapp.collaborate.AddCollaboratorActivity
com.intsig.camscanner.SonyCaptureActivity
com.intsig.gcm.GCMHelperActivity
com.intsig.tsapp.collaborate.RecentCollaActivity
com.intsig.camscanner.MultiCapturePreviewActivity
com.intsig.camscanner.SecureLinkActivity
com.intsig.share.view.SecureLinkActivity
com.intsig.camscanner.settings.ImageScanSettingActivity
com.intsig.camscanner.settings.DocumentManagerActivity
com.intsig.camscanner.settings.HelpSettingActivity
com.intsig.camscanner.settings.ExportDocumentSettingActivity
com.intsig.camscanner.settings.SecuritySettingActivity
com.intsig.camscanner.settings.AutoUploadSettingActivity
com.intsig.camscanner.autocomposite.AutoCompositeTemplateActivity
com.intsig.camscanner.autocomposite.AutoCompositePreViewActivity
com.intsig.camscanner.TagSettingActivity
com.tencent.tauth.AuthActivity
com.tencent.connect.common.AssistActivity
com.intsig.camscanner.QRLoginSuccessActivity
com.intsig.camscanner.FeedbackActivity
com.intsig.camscanner.UriRedirectActivity
com.intsig.camscanner.settings.CacheCleanActivity
com.intsig.camscanner.settings.DeepCleanActivity
com.intsig.webview.WebViewActivity
com.intsig.webview.WebUrlRedirectActivity
com.intsig.camscanner.GalleryTipsDialogActivity
com.intsig.camscanner.settings.MainSettingActivity
com.intsig.camscanner.settings.AccountInfoSettingActivity
com.intsig.camscanner.settings.EditAccountInfoActivity
com.intsig.camscanner.shortcut.CaptureWidgetActivity
com.intsig.camscanner.openapi.OCROpenApiActivity
com.intsig.camscanner.openapi.ImageOpenApiActivity
com.intsig.camscanner.ImportSinglePageActivity
com.intsig.camscanner.DocumentShortCutActivity
com.intsig.tsapp.VerifyCodeRegisterActivity
com.intsig.tsapp.SetPasswordActivity
com.intsig.tsapp.purchase.AccountPurchaseActivity
com.intsig.tsapp.purchase.SchemeAccountPurchaseActivity
com.intsig.camscanner.ScannerEffectGuideActivity
com.intsig.attention.WeiXinGuidActivity
com.intsig.camscanner.RegisterGuideActivity
com.intsig.gallery.CustomGalleryActivity
com.intsig.gallery.CustomGalleryFolderActivity
com.intsig.camscanner.OcrRegionActivity
com.intsig.camscanner.NewGuideActivity
com.intsig.attention.FBGuidActivity
com.intsig.camscanner.DocJsonTestActivity
com.intsig.camscanner.MoveOrCopyDocActivity
com.intsig.camscanner.settings.DeveloperActivity
com.intsig.camscanner.ReLoginDialogActivity
com.intsig.camscanner.eventbus.CloudLimitDialogActivity
com.intsig.camscanner.DialogHintActivity
com.intsig.camscanner.settings.DocNameSettingActivity
com.intsig.camscanner.CompanyVersionIntroduceActivity
com.intsig.camscanner.UpgradeDescriptionActivity
com.intsig.camscanner.CameraSelectActivity
com.intsig.tsapp.VerifyLoginActivity
com.intsig.tsapp.VerifyCodeActivity
com.intsig.camscanner.ExperienceGuidActivity
com.intsig.camscanner.FastTryActivity
com.intsig.camscanner.SystemMessageActivity
com.intsig.camscanner.TeamActivity
com.intsig.tsapp.SafetyVerificationActivity
com.intsig.camscanner.TeamMemberActivity
com.intsig.camscanner.RewardedWebViewActivity
com.intsig.camscanner.PPTPreviewActivity
com.intsig.camscanner.ShowOcrResultActivity
com.intsig.camscanner.OcrResultActivity
com.intsig.mode_ocr.OcrResultActivity
com.intsig.camscanner.CheckAndEditActivity
com.intsig.camscanner.DraftEditActivity
com.intsig.camscanner.PrivacyPolicyActivity
com.inmobi.rendering.InMobiAdActivity
com.intsig.camscanner.signature.SignatureActivity
com.intsig.camscanner.topic.TopicScannerActivity
com.intsig.camscanner.topic.TopicInchSelectActivity
com.intsig.camscanner.signature.SignatureEditActivity
com.intsig.util.InstallApkHelperActivity
com.intsig.camscanner.settings.thirdservice.ThirdServiceActivity
com.intsig.camscanner.settings.thirdservice.humantranslate.HTEntranceActivity
com.intsig.camscanner.settings.thirdservice.humantranslate.chooselang.ChooseLangActivity
com.intsig.business.mode.eevidence.preview.EEvidencePreviewActivity
com.intsig.camscanner.topic.TopicPreviewActivity
com.intsig.camscanner.RecommendToFriendsQRCodeActivity
com.intsig.camscanner.RedeemInViteCodeActivity
com.cmic.sso.sdk.activity.OAuthActivity
com.cmic.sso.sdk.activity.LoginAuthActivity
com.intsig.camscanner.DocumentFinishActivity
com.intsig.camscanner.autocomposite.idcard.faithless.CheckFaithlessActivity
com.intsig.camscanner.autocomposite.idcard.fact.CheckFactActivity
com.intsig.camscanner.autocomposite.idcard.faithless.CheckFaithlessResultActivity
com.intsig.camscanner.autocomposite.idcard.fact.CheckFactResultActivity
com.intsig.purchase.PurchaseActivity
com.intsig.camscanner.booksplitter.BookResultActivity
com.intsig.camscanner.booksplitter.BookEditActivity
com.dropbox.core.android.AuthActivity
com.evernote.client.android.EvernoteOAuthActivity
com.evernote.client.android.login.EvernoteLoginActivity
com.google.android.gms.ads.AdActivity
com.applovin.adview.AppLovinInterstitialActivity
com.applovin.adview.AppLovinConfirmationActivity
com.mobvista.msdk.activity.MVCommonActivity
com.mobvista.msdk.mvjscommon.authority.activity.MVAuthorityActivity
com.facebook.FacebookActivity
com.facebook.CustomTabMainActivity
com.facebook.CustomTabActivity
com.facebook.ads.AudienceNetworkActivity
com.microsoft.aad.adal.AuthenticationActivity
com.google.android.gms.common.api.GoogleApiActivity
io.presage.EulaActivity
io.presage.interstitial.InterstitialActivity
io.presage.interstitial.InterstitialAndroid8TransparentActivity
io.presage.interstitial.InterstitialAndroid8RotableActivity
io.presage.mraid.browser.ShortcutActivity

Receivers

Information computed with AndroGuard. 

com.intsig.camscanner.onecloud.BoxActionReceiver
com.intsig.gcm.GCMBroadcastReceiver
com.intsig.camscanner.shortcut.CaptureWidgetProvider
com.google.android.gms.analytics.CampaignTrackingReceiver
com.appsflyer.SingleInstallBroadcastReceiver
com.microsoft.aad.adal.ApplicationReceiver
com.google.android.gms.analytics.AnalyticsReceiver
com.google.android.gms.measurement.AppMeasurementReceiver
com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver
com.google.firebase.iid.FirebaseInstanceIdReceiver
io.presage.receiver.AlarmReceiver
io.presage.common.profig.schedule.ProfigAlarmReceiver
com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

Services

Information computed with AndroGuard. 

com.intsig.camscanner.service.UploadService
com.intsig.camscanner.service.BuyVipService
com.intsig.camscanner.service.PrintQueryService
com.intsig.camscanner.service.BackScanService
com.intsig.camscanner.service.ImageRegisterService
com.intsig.camscanner.service.FaxService
com.intsig.camscanner.service.FaxQueryService
com.intsig.camscanner.service.PrintService
com.intsig.tsapp.message.MessageService
com.intsig.tsapp.sync.SyncService
com.intsig.ocrapi.NewOcrService
com.intsig.util.ServiceWrapperForO
com.inmobi.ads.ApkDownloader$ApkDownloadService
com.google.android.gms.analytics.CampaignTrackingService
com.google.android.gms.analytics.AnalyticsService
com.google.android.gms.analytics.AnalyticsJobService
com.google.firebase.components.ComponentDiscoveryService
com.google.android.gms.measurement.AppMeasurementService
com.google.android.gms.measurement.AppMeasurementJobService
com.google.firebase.iid.FirebaseInstanceIdService
io.presage.PSD
io.presage.common.profig.schedule.ProfigSyncIntentService
io.presage.common.profig.schedule.ProfigJobService

Sample timeline

Certificate valid not before Jan. 7, 2010, 1:46 a.m.
First submission on VT Dec. 13, 2018, 9:11 a.m.
Last submission on VT Oct. 4, 2019, 5:24 p.m.
Upload on Pithus Jan. 22, 2022, 2:14 p.m.
Certificate valid not after Oct. 10, 2064, 1:46 a.m.

NIAP analysis

Information computed with MobSF.

FCS_RBG_EXT.1.1 The application implement DRBG functionality for its cryptographic operations.
Random Bit Generation Services
FCS_STO_EXT.1.1 The application invoke the functionality provided by the platform to securely store credentials to non-volatile memory.
Storage of Credentials
FCS_CKM_EXT.1.1 The application implement asymmetric key generation.
Cryptographic Key Generation Services
FDP_DEC_EXT.1.1 The application has access to ['network connectivity', 'camera'].
Access to Platform Resources
FDP_DEC_EXT.1.2 The application has access to no sensitive information repositories.
Access to Platform Resources
FDP_NET_EXT.1.1 The application has user/application initiated network communications.
Network Communications
FDP_DAR_EXT.1.1 The application implement functionality to encrypt sensitive data in non-volatile memory.
Encryption Of Sensitive Application Data
FMT_MEC_EXT.1.1 The application invoke the mechanisms recommended by the platform vendor for storing and setting configuration options.
Supported Configuration Mechanism
FTP_DIT_EXT.1.1 The application does encrypt some transmitted data with HTTPS/TLS/SSH between itself and another trusted IT product.
Protection of Data in Transit
FCS_RBG_EXT.2.1
FCS_RBG_EXT.2.2		 The application perform all deterministic random bit generation (DRBG) services in accordance with NIST Special Publication 800-90A using Hash_DRBG. The deterministic RBG is seeded by an entropy source that accumulates entropy from a platform-based DRBG and a software-based noise source, with a minimum of 256 bits of entropy at least equal to the greatest security strength (according to NIST SP 800-57) of the keys and hashes that it will generate.
Random Bit Generation from Application
FCS_CKM.1.1(1) The application generate asymmetric cryptographic keys not in accordance with FCS_CKM.1.1(1) using key generation algorithm RSA schemes and cryptographic key sizes of 1024-bit or lower.
Cryptographic Asymmetric Key Generation
FCS_COP.1.1(1) The application perform encryption/decryption not in accordance with FCS_COP.1.1(1), AES-ECB mode is being used.
Cryptographic Operation - Encryption/Decryption
FCS_COP.1.1(2) The application perform cryptographic hashing services not in accordance with FCS_COP.1.1(2) and uses the cryptographic algorithm RC2/RC4/MD4/MD5.
Cryptographic Operation - Hashing
FCS_COP.1.1(3) The application perform cryptographic signature services (generation and verification) in accordance with a specified cryptographic algorithm RSA schemes using cryptographic key sizes of 2048-bit or greater.
Cryptographic Operation - Signing
FCS_COP.1.1(4) The application perform keyed-hash message authentication with cryptographic algorithm ['HMAC-SHA1'] .
Cryptographic Operation - Keyed-Hash Message Authentication
FCS_HTTPS_EXT.1.1 The application implement the HTTPS protocol that complies with RFC 2818.
HTTPS Protocol
FCS_HTTPS_EXT.1.2 The application implement HTTPS using TLS.
HTTPS Protocol
FCS_HTTPS_EXT.1.3 The application notify the user and not establish the connection or request application authorization to establish the connection if the peer certificate is deemed invalid.
HTTPS Protocol
FIA_X509_EXT.1.1 The application invoked platform-provided functionality to validate certificates in accordance with the following rules: ['The certificate path must terminate with a trusted CA certificate'].
X.509 Certificate Validation
FIA_X509_EXT.2.1 The application use X.509v3 certificates as defined by RFC 5280 to support authentication for HTTPS , TLS.
X.509 Certificate Authentication
FPT_TUD_EXT.2.1 The application shall be distributed using the format of the platform-supported package manager.
Integrity for Installation and Update

Code analysis

Information computed with MobSF.

Low
CVSS:7.5
The App logs information. Sensitive information should never be logged.
MASVS: MSTG-STORAGE-3
CWE-532 Insertion of Sensitive Information into Log File
Files: 
 net/vrallev/android/task/TargetMethodFinder.java
 com/microsoft/aad/adal/PRNGFixes.java
 com/tencent/mm/opensdk/diffdev/a/e.java
 org/slf4j/impl/AndroidLogger.java
 com/intsig/menu/d.java
 com/bumptech/glide/load/resource/d/q.java
 com/tencent/mm/opensdk/modelmsg/WXTextObject.java
 com/intsig/snslogin/c/e.java
 com/tencent/mm/opensdk/modelmsg/GetMessageFromWX.java
 com/tencent/mm/opensdk/modelbiz/JumpToBizTempSession.java
 com/tencent/mm/opensdk/diffdev/a/f.java
 com/microsoft/aad/adal/AuthenticationDialog.java
 com/bumptech/glide/load/resource/bitmap/ai.java
 com/moat/analytics/mobile/inm/as.java
 com/tencent/mm/opensdk/modelmsg/WXImageObject.java
 com/bumptech/glide/d/a/k.java
 org/greenrobot/eventbus/util/a.java
 com/bumptech/glide/load/engine/ac.java
 com/intsig/camscanner/a/j.java
 com/intsig/inappbilling/l.java
 com/dropbox/core/android/FixedSecureRandom.java
 com/intsig/camscanner/onecloud/BoxActionCreateActivity.java
 com/tencent/mm/opensdk/openapi/WXAPIFactory.java
 com/tencent/mm/opensdk/utils/a.java
 com/bumptech/glide/load/engine/l.java
 com/intsig/view/FreeMoveView.java
 com/bumptech/glide/load/engine/b/p.java
 com/intsig/menu/f.java
 com/intsig/issocket/ISSocketCallbackLooperThread.java
 com/mobvista/msdk/base/common/b/e.java
 com/tencent/mm/opensdk/modelmsg/WXGameVideoFileObject.java
 com/appsflyer/a/a.java
 com/tencent/open/utils/i.java
 com/applovin/impl/sdk/b.java
 com/intsig/inappbilling/b.java
 com/mobvista/msdk/mvnative/c/b.java
 com/tencent/mm/opensdk/modelmsg/WXMiniProgramObject.java
 com/intsig/inappbilling/v3/b.java
 com/bumptech/glide/load/resource/d/g.java
 com/tencent/mm/opensdk/modelmsg/WXEmojiSharedObject.java
 io/presage/common/PresageSdk.java
 com/applovin/impl/sdk/fx.java
 com/intsig/inappbilling/k.java
 com/bumptech/glide/load/a/a/c.java
 com/bumptech/glide/load/engine/c/f.java
 com/intsig/tianshu/base/BaseJsonObj.java
 com/bumptech/glide/load/resource/bitmap/aa.java
 com/intsig/camscanner/MainMenuActivity.java
 com/intsig/camscanner/dg.java
 pl/com/salsoft/sqlitestudioremote/a/c.java
 com/tencent/mm/opensdk/utils/c.java
 com/inmobi/commons/core/utilities/Logger.java
 com/applovin/impl/adview/a.java
 com/bumptech/glide/load/resource/bitmap/t.java
 com/bumptech/glide/manager/g.java
 com/tencent/mm/opensdk/modelbiz/WXInvoiceAuthInsert.java
 com/bumptech/glide/load/engine/GlideException.java
 com/tencent/mm/opensdk/modelmsg/LaunchFromWX.java
 com/applovin/b/n.java
 com/mobvista/msdk/click/a.java
 com/moat/analytics/mobile/ogury/ag.java
 com/intsig/webview/m.java
 com/bumptech/glide/load/engine/u.java
 com/intsig/purchase/y.java
 com/moat/analytics/mobile/inm/al.java
 com/tencent/mm/opensdk/modelmsg/SendMessageToWX.java
 com/intsig/utils/q.java
 io/presage/p014case/p015do/KyoKusanagi.java
 com/intsig/util/cq.java
 com/intsig/issocket/ISSocketAndroid.java
 com/bumptech/glide/gifdecoder/e.java
 com/tencent/mm/opensdk/diffdev/a/a.java
 com/bumptech/glide/load/b/n.java
 com/bumptech/glide/d/a/j.java
 com/intsig/camscanner/receiver/b.java
 com/bumptech/glide/load/b/bh.java
 com/tencent/mm/opensdk/modelmsg/WXWebpageObject.java
 com/dropbox/core/android/AuthActivity.java
 com/integralads/avid/library/inmobi/f/c.java
 com/mobvista/msdk/click/g.java
 com/bumptech/glide/load/a/s.java
 com/appsflyer/AFLogger.java
 com/tencent/stat/common/StatLogger.java
 com/microsoft/aad/adal/AuthenticationActivity.java
 com/tencent/open/a/e.java
 com/tencent/mm/opensdk/diffdev/a/d.java
 com/applovin/adview/c.java
 org/greenrobot/eventbus/util/c.java
 com/microsoft/services/msa/LiveAuthClient.java
 com/intsig/view/bk.java
 com/tencent/mm/opensdk/diffdev/DiffDevOAuthFactory.java
 io/presage/PSD.java
 com/intsig/inappbilling/v3/i.java
 com/bumptech/glide/manager/RequestManagerFragment.java
 com/tencent/mm/opensdk/modelbiz/WXPayInsurance.java
 com/intsig/payment/am.java
 com/bumptech/glide/load/resource/bitmap/w.java
 com/applovin/adview/AppLovinAdView.java
 com/intsig/webview/xinwang/g.java
 com/tencent/mm/opensdk/openapi/WXApiImplV10.java
 com/intsig/j/d.java
 com/microsoft/services/msa/ScreenSize.java
 com/microsoft/aad/adal/Logger.java
 com/intsig/view/bj.java
 com/bumptech/glide/gifdecoder/f.java
 com/evernote/client/android/BootstrapManager.java
 com/tencent/mm/opensdk/modelbiz/AddCardToWXCardPackage.java
 com/tencent/mm/opensdk/modelbiz/JumpToBizWebview.java
 org/greenrobot/eventbus/util/ErrorDialogManager.java
 com/intsig/tsapp/cv.java
 com/bumptech/glide/load/engine/b/j.java
 io/presage/Presage.java
 com/bumptech/glide/manager/SupportRequestManagerFragment.java
 com/intsig/tianshu/TianShuAPI.java
 com/bumptech/glide/load/a/n.java
 com/applovin/b/p.java
 com/bumptech/glide/manager/f.java
 com/microsoft/services/msa/UriBuilder.java
 com/tencent/mm/opensdk/modelmsg/WXFileObject.java
 com/bumptech/glide/load/b/y.java
 com/microsoft/aad/adal/HashMapExtensions.java
 com/mobvista/msdk/base/utils/h.java
 pl/com/salsoft/sqlitestudioremote/SQLiteStudioService.java
 com/tencent/mm/opensdk/utils/Log.java
 io/presage/helper/ChinGentsai.java
 com/tencent/mm/opensdk/channel/MMessageActV2.java
 com/tencent/mm/opensdk/modelmsg/WXEmojiPageSharedObject.java
 com/intsig/inappbilling/util/b.java
 com/applovin/impl/adview/az.java
 com/tencent/mm/opensdk/channel/a/a.java
 com/leon/channel/common/c.java
 com/bumptech/glide/load/resource/bitmap/am.java
 com/tencent/mm/opensdk/modelmsg/SendAuth.java
 com/intsig/inappbilling/BillingService.java
 com/bumptech/glide/load/engine/bc.java
 com/bumptech/glide/c.java
 com/bumptech/glide/load/b/bc.java
 com/tencent/mm/opensdk/modelbiz/SubscribeMessage.java
 com/tencent/mm/opensdk/modelbiz/ChooseCardFromWXCardPackage.java
 pl/com/salsoft/sqlitestudioremote/a/n.java
 com/moat/analytics/mobile/ogury/t.java
 com/bumptech/glide/load/b/l.java
 com/mobvista/msdk/videocommon/view/MyImageView.java
 com/bumptech/glide/manager/n.java
 com/bumptech/glide/load/resource/d/a.java
 com/microsoft/aad/adal/PackageHelper.java
 com/intsig/camscanner/b/a.java
 com/tencent/mm/opensdk/modelmsg/WXMediaMessage.java
 com/tencent/mm/opensdk/modelbiz/WXNontaxPay.java
 com/tencent/mm/opensdk/modelbiz/WXLaunchMiniProgram.java
 com/bumptech/glide/b/e.java
 com/leon/channel/helper/a.java
 com/mobvista/msdk/playercommon/PlayerView.java
 com/bumptech/glide/manager/r.java
 com/bumptech/glide/util/a/f.java
 com/mobvista/msdk/mvnative/c/c.java
 com/tencent/mm/opensdk/diffdev/a/b.java
 net/vrallev/android/task/TaskExecutor.java
 com/bumptech/glide/manager/h.java
 com/onedrive/sdk/logger/DefaultLogger.java
 com/tencent/mm/opensdk/modelpay/PayReq.java
 com/bumptech/glide/load/engine/a/p.java
 com/intsig/business/mode/a.java
 com/intsig/view/PopupListView.java
 com/bumptech/glide/load/a/b.java
 com/intsig/inappbilling/BillingReceiver.java
 com/tencent/mm/opensdk/modelmsg/WXMusicObject.java
 com/bumptech/glide/load/engine/a/m.java
 com/tencent/mm/opensdk/modelmsg/WXVideoFileObject.java
 io/presage/p014case/ChoiBounge.java
 com/intsig/camscanner/op.java
 com/intsig/issocket/ISSocketMessageCenter.java
 com/intsig/r/b.java
 com/tencent/mm/opensdk/modelmsg/WXDesignerSharedObject.java
 com/tencent/mm/opensdk/openapi/WXApiImplComm.java
 com/bumptech/glide/load/a/a/g.java
 com/tencent/mm/opensdk/modelmsg/WXVideoObject.java
 com/intsig/webview/n.java
 com/intsig/webstorage/f/b.java
 com/intsig/tianshu/purchase/b.java
 com/bumptech/glide/load/resource/bitmap/i.java
 com/intsig/menu/b.java
 com/tencent/mm/opensdk/modelmsg/WXAppExtendObject.java
 com/tencent/mm/opensdk/openapi/MMSharedPreferences.java
 com/tencent/mm/opensdk/modelbiz/JumpToBizProfile.java
 com/tencent/mm/opensdk/modelmsg/WXEmojiObject.java
 org/slf4j/helpers/d.java
 com/bumptech/glide/d/g.java
 com/bumptech/glide/load/resource/bitmap/c.java
High
CVSS:7.5
The App uses an insecure Random Number Generator.
MASVS: MSTG-CRYPTO-6
CWE-330 Use of Insufficiently Random Values
M5: Insufficient Cryptography
Files: 
 p000do/p002do/BleudeGex.java
 org/scribe/services/TimestampServiceImpl.java
 com/inmobi/commons/core/network/e.java
 com/dropbox/core/DbxRequestUtil.java
 com/inmobi/rendering/a/a.java
 com/inmobi/ads/b/l.java
 com/intsig/datastruct/t.java
 com/tencent/stat/common/k.java
 com/intsig/camscanner/ads/AdsParent.java
 com/applovin/impl/a/n.java
 com/intsig/snslogin/b/a.java
 com/dropbox/core/v2/DbxRawClientV2.java
High
CVSS:5.5
App can read/write to External Storage. Any App can read data written to External Storage.
MASVS: MSTG-STORAGE-2
CWE-276 Incorrect Default Permissions
M2: Insecure Data Storage
Files: 
 com/intsig/camscanner/fragment/fd.java
 com/tencent/open/a/f.java
 com/mobvista/msdk/base/common/d/a/a.java
 com/inmobi/ads/ApkDownloader.java
 com/tencent/connect/share/a.java
 com/applovin/impl/sdk/aa.java
 com/tencent/stat/common/k.java
 com/intsig/camscanner/control/dn.java
 com/intsig/share/type/j.java
 com/intsig/gallery/f.java
 com/tencent/open/b/c.java
 com/tencent/stat/a.java
 com/intsig/camscanner/ads/b.java
 com/intsig/camscanner/fragment/wb.java
 com/intsig/camscanner/openapi/OCROpenApiActivity.java
 com/mobvista/msdk/click/a.java
 com/intsig/util/a.java
 com/intsig/webstorage/c/a.java
 com/intsig/camscanner/f/d.java
 com/mobvista/msdk/base/utils/j.java
 com/tencent/open/a/d.java
 com/intsig/camscanner/openapi/ImageOpenApiActivity.java
 com/intsig/camscanner/control/ba.java
 com/intsig/tianshu/TianShuAPI.java
 com/intsig/utils/z.java
 com/tencent/open/utils/i.java
 com/intsig/camscanner/booksplitter/a/h.java
 com/intsig/camscanner/SonyCaptureActivity.java
 com/intsig/util/v.java
 com/tencent/open/utils/b.java
 com/intsig/util/f.java
 com/intsig/tianshu/e.java
 com/mobvista/msdk/base/utils/k.java
 com/tencent/mm/opensdk/diffdev/a/d.java
High
CVSS:5.9
App uses SQLite Database and execute raw SQL query. Untrusted user input in raw SQL queries can cause SQL Injection. Also sensitive information should be encrypted and written to the database.
CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
M7: Client Code Quality
Files: 
 com/tencent/stat/w.java
 com/tencent/open/b/f.java
 com/inmobi/commons/core/d/b.java
 com/intsig/logagent/DBCache.java
 io/presage/p024if/KyoKusanagi.java
 com/intsig/utils/a/b.java
 com/mobvista/msdk/base/b/i.java
 io/presage/BenimaruNikaido.java
 io/presage/p024if/BenimaruNikaido.java
 pl/com/salsoft/sqlitestudioremote/a/m.java
 com/intsig/camscanner/provider/b.java
High
CVSS:7.4
Files may contain hardcoded sensitive informations like usernames, passwords, keys etc.
MASVS: MSTG-STORAGE-14
CWE-312 Cleartext Storage of Sensitive Information
M9: Reverse Engineering
Files: 
 com/mobvista/msdk/base/entity/n.java
 com/onedrive/sdk/authentication/DisambiguationAuthenticator.java
 com/bumptech/glide/load/engine/az.java
 com/evernote/clients/ClientFactory.java
 com/microsoft/aad/adal/ApplicationReceiver.java
 com/intsig/camscanner/openapi/OCROpenApiActivity.java
 com/microsoft/aad/adal/Discovery.java
 net/vrallev/android/task/TaskCacheFragmentInterface.java
 com/mobvista/msdk/base/common/d/a.java
 com/evernote/client/android/login/EvernoteLoginFragment.java
 com/onedrive/sdk/authentication/MSAAuthenticator.java
 com/intsig/share/view/SecureLinkActivity.java
 com/intsig/webview/WebUrlRedirectActivity.java
 com/intsig/camscanner/SecureLinkActivity.java
 com/alphab/c/b.java
 com/intsig/tsapp/sync/l.java
 org/scribe/model/OAuthConstants.java
 com/evernote/client/android/login/EvernoteLoginActivity.java
 com/mobvista/msdk/MobVistaConstans.java
 com/onedrive/sdk/authentication/ADALAuthenticator.java
 com/intsig/tsapp/sync/z.java
 com/intsig/tsapp/CheckStateActivity.java
 io/presage/p030new/p031do/BenimaruNikaido.java
 com/bumptech/glide/load/d.java
 com/tencent/open/SocialConstants.java
 com/intsig/h/f.java
 com/intsig/camscanner/fragment/SendDocsListFragment.java
 com/applovin/impl/sdk/bc.java
 com/mobvista/msdk/base/entity/CampaignEx.java
 com/intsig/camscanner/settings/EditAccountInfoActivity.java
 com/intsig/tsapp/sync/ac.java
 com/intsig/h/b.java
 com/intsig/tsapp/sync/y.java
 com/intsig/tsapp/sync/bg.java
 com/microsoft/aad/adal/AuthenticationParameters.java
 com/tencent/mm/opensdk/constants/ConstantsAPI.java
 com/tencent/connect/common/Constants.java
 com/intsig/tianshu/connection/IndustryList.java
 com/bumptech/glide/load/engine/ap.java
 com/intsig/share/b.java
 com/tencent/tauth/AuthActivity.java
 com/microsoft/services/msa/PreferencesConstants.java
 com/intsig/camscanner/settings/MainSettingActivity.java
 com/intsig/camscanner/settings/OcrSettingActivity.java
 com/intsig/tsapp/sync/av.java
 com/evernote/client/android/EvernoteOAuthActivity.java
 com/microsoft/aad/adal/AuthenticationConstants.java
 com/bumptech/glide/load/engine/g.java
 com/dropbox/core/android/AuthActivity.java
High
CVSS:4
The file is World Readable. Any App can read from the file
MASVS: MSTG-STORAGE-2
CWE-276 Incorrect Default Permissions
M2: Insecure Data Storage
Files: 
 com/intsig/a/a.java
Medium
CVSS:8.8
Insecure WebView Implementation. Execution of user controlled code in WebView is a critical Security Hole.
MASVS: MSTG-PLATFORM-7
CWE-749 Exposed Dangerous Method or Function
M1: Improper Platform Usage
Files: 
 com/intsig/purchase/WebPurchaseFragment.java
 com/intsig/camscanner/RewardedWebViewActivity.java
 com/intsig/datastruct/e.java
 com/intsig/payment/PayOnMobileFragment.java
 com/intsig/webview/WebViewFragment.java
 com/intsig/payment/PayOnPCWebFragment.java
High
CVSS:7.4
MD5 is a weak hash known to have hash collisions.
MASVS: MSTG-CRYPTO-4
CWE-327 Use of a Broken or Risky Cryptographic Algorithm
M5: Insufficient Cryptography
Files: 
 com/tencent/open/utils/g.java
 io/presage/common/profig/EcirdelAubrac.java
 com/intsig/tianshu/TianShuAPI.java
 com/appsflyer/ay.java
 com/mobvista/msdk/base/utils/d.java
 com/tencent/stat/common/k.java
 com/intsig/snslogin/tencent/a.java
 com/tencent/open/utils/i.java
 com/intsig/snslogin/c/e.java
 com/tencent/mm/opensdk/utils/b.java
 com/intsig/camscanner/a/j.java
 com/intsig/tianshu/purchase/b.java
 com/evernote/client/android/EvernoteUtil.java
 com/intsig/snslogin/b/a.java
 com/intsig/purchase/y.java
Medium
CVSS:4.3
IP Address disclosure
MASVS: MSTG-CODE-2
CWE-200 Information Exposure
Files: 
 com/appsflyer/bg.java
 com/intsig/ocrapi/NewOcrService.java
 com/tencent/stat/common/k.java
 com/intsig/tianshu/account/LoginInfo.java
 com/mobvista/msdk/base/common/net/h.java
 com/intsig/webview/WebViewFragment.java
 com/intsig/camscanner/DocJsonTestActivity.java
 com/intsig/camscanner/SystemMessageActivity.java
High
CVSS:5.9
SHA-1 is a weak hash known to have hash collisions.
MASVS: MSTG-CRYPTO-4
CWE-327 Use of a Broken or Risky Cryptographic Algorithm
M5: Insufficient Cryptography
Files: 
 com/microsoft/aad/adal/PRNGFixes.java
 com/intsig/inappbilling/v3/i.java
 com/intsig/f/b.java
 com/appsflyer/ay.java
 com/inmobi/commons/core/utilities/a/b.java
 com/intsig/inappbilling/l.java
 org/scribe/services/HMACSha1SignatureService.java
 com/intsig/snslogin/b/a.java
 org/scribe/services/RSASha1SignatureService.java
 com/intsig/utils/y.java
Low
CVSS:3.9
App can write to App Directory. Sensitive Information should be encrypted.
MASVS: MSTG-STORAGE-14
CWE-276 Incorrect Default Permissions
Files: 
 io/presage/mraid/browser/CamembertdeNormandie.java
High
CVSS:5.9
This App uses RSA Crypto without OAEP padding. The purpose of the padding scheme is to prevent a number of attacks on RSA that only work when the encryption is performed without padding.
MASVS: MSTG-CRYPTO-3
CWE-780 - Use of RSA Algorithm without OAEP
M5: Insufficient Cryptography
Files: 
 com/inmobi/commons/core/utilities/a/c.java
 com/inmobi/commons/core/utilities/a/b.java
Info
CVSS:0
This App uses SSL certificate pinning to detect or prevent MITM attacks in secure communication channel.
MASVS: MSTG-NETWORK-4
Files: 
 com/tencent/open/utils/HttpUtils.java
 com/dropbox/core/http/SSLConfig.java
 p009if/ah.java
High
CVSS:5.4
Remote WebView debugging is enabled.
MASVS: MSTG-RESILIENCE-2
CWE-919 - Weaknesses in Mobile Applications
M1: Improper Platform Usage
Files: 
 com/inmobi/rendering/RenderView.java
 com/applovin/impl/adview/f.java
High
CVSS:5.5
App creates temp file. Sensitive information should never be written into a temp file.
MASVS: MSTG-STORAGE-2
CWE-276 Incorrect Default Permissions
M2: Insecure Data Storage
Files: 
 com/evernote/client/conn/mobile/DiskBackedByteStore.java
Info
CVSS:0
This App may have root detection capabilities.
MASVS: MSTG-RESILIENCE-1
Files: 
 io/presage/p014case/RugalBernstein.java
Low
CVSS:0
This App copies data to clipboard. Sensitive data should not be copied to clipboard as other applications can access it.
MASVS: MSTG-STORAGE-10
Files: 
 com/intsig/camscanner/a/j.java
Pygal Canada: 100 Switzerland: 100 China: 4000 Czech Republic: 100 Germany: 2000 France: 400 United Kingdom: 200 Hong Kong: 500 Ireland: 700 India: 100 Netherlands: 900 Portugal: 100 Russian Federation: 200 United States: 6200

Map computed by Pithus.

Domains analysis

Information computed with MobSF.

CN weibo.com 36.51.254.228
www.camscanner.me
US api.500px.com 65.9.61.63
DE rt.applovin.com 184.30.25.58
IE login.windows.net 40.126.31.141
CN long.open.weixin.qq.com 109.244.216.15
US www.camscanner.com 104.18.3.158
US api.dropbox.com 162.125.72.19
DE px.moatads.com 2.18.235.40
CN api.kaixin001.com 58.87.81.218
US developer.android.com 142.250.185.206
US gomiso.com 138.197.214.3
docs-pre.intsig.net
CN api.auth.lvjinhui.cn 182.254.215.99
CZ droid.webnode.sk 217.16.182.151
US www.camscanner.net 52.8.230.230
JP api-pre.intsig.net 52.68.201.116
CN openmobile.qq.com 203.205.239.162
resource.intsig.net
US accounts.google.com 142.250.186.45
c.isdspeed.qq.com
HK fusion.qq.com 203.205.254.103
CN blog.camscanner.com 106.75.254.223
US secure.efaxdeveloper.com 204.11.171.64
DE a.applovin.com 184.30.25.58
NL www.yammer.com 13.107.6.159
US www-sandbox.camscanner.com 104.18.2.158
RU api.vkontakte.ru 87.240.137.206
api.t.163.com
CN d2149.intsig.net 47.96.194.227
CN info.camcard.com 113.31.105.228
CN w12013.intsig.net 106.75.218.19
US api-sandbox.intsig.net 52.8.124.227
US support.google.com 142.250.185.174
DE itunes.apple.com 104.111.214.42
CN www.inmobi.cn 47.93.93.122
DE analytics.rayjump.com 8.209.68.18
RU oauth.vk.com 87.240.129.135
CN download.intsig.net 106.75.218.19
DE net.rayjump.com 18.158.125.76
CN short.intsig.net 106.75.240.147
CN sdkm.w.inmobi.cn 221.122.73.56
NL api.xing.com 109.233.159.203
US bcrs.intsig.net 52.8.247.176
US www.intsig.com 163.171.132.119
US oauth.constantcontact.com 208.75.122.88
GB data.camscanner.com 87.245.210.11
US api.linkedin.com 144.2.12.24
NL mta.oa.com 193.123.33.15
FR secure.viadeo.com 194.169.240.7
US www.plurk.com 104.17.69.3
US api.freelancer.com 34.226.21.0
US api.intsig.net 52.8.247.176
b.camcard.me
US a-sandbox.intsig.net 52.8.124.227
DE www.evernote.com 2.18.233.40
US open.camscanner.com 54.215.4.86
DE sandbox.evernote.com 2.18.233.40
CN i.w.inmobi.cn 123.57.34.132
DE www.flickr.com 143.204.201.183
US www.dropbox.com 162.125.66.18
US getglue.com 172.67.205.178
GB onedrive.live.com 13.107.42.13
CN api-t.auth.lvjinhui.cn