0/63
Threat
Analyzed on 2021-10-18T07:41:57.169021
MD5 | 3caba41095fa212d7c55cf6fb403bfc6 | |
SHA1 | 771a13131af9f6465040e38fd009bc1d9e9c7dc8 | |
SHA256 | 32fcc4b4101b27b5c4cdfe2cb2c4c50054613f5ea8a211138af7933ac168a8dc | |
Size | 20.01MB |
Information computed with APKiD.
/tmp/tmp56dut3if!classes.dex | |
anti_vm |
|
anti_debug |
|
compiler |
|
/tmp/tmp56dut3if!classes2.dex | |
anti_vm |
|
compiler |
|
Information computed with ssdeep.
APK file | 393216:Z2Vy9NoVbEG2m9FdarJoKD7p9iL8aGmS3PS4ZZV3Ag0JStfEAtH:ZxuVb92CiND7p9iE5PSiZVd0JEfTtH | |
Manifest | 768:fIeey8y6AkRxcKE6XHBbi5WMIxSbqUQt+ITmOefW+J3yNMAav1opcKFBQcJGCp7W:… | |
classes.dex | 98304:an9YgoO/tRdQv3pEvmR8uuuGj/amhQxg4azM/z99HT:a91rRdQPpYmRlOCU+7T | |
classes2.dex | 24576:UaJMocFCInLs6FhClJ6vVhtzodpHxzXZCiQ9xxWPh6nQQ5sWrZxd1DVr/4JVGb6… |
Information computed with Dexofuzzy.
Information computed with AndroGuard and Pithus.
Information computed with AndroGuard.
Information computed with MobSF.
Findings | Files |
---|---|
Certificate/Key files hardcoded inside the app. |
okhttp3/internal/publicsuffix/NOTICE |
Information computed with MobSF.
High | Activity (com.microsoft.todos.deeplinks.DeepLinkActivity) is not Protected.An intent-filter exists. An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported. |
High | Activity (com.microsoft.todos.search.SearchActivity) is not Protected.An intent-filter exists. An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported. |
High | Activity (com.microsoft.todos.ui.takenote.NoteToSelfActivity) is Protected by a permission, but the protection level of the permission should be checked.Permission: com.google.android.gm.permission.AUTO_SEND [android:exported=true] An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission. |
High | Activity (com.microsoft.todos.ui.newtodo.NewTodoActivity) is not Protected.An intent-filter exists. An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported. |
High | Activity (com.microsoft.todos.widget.configuration.WidgetConfigurationActivity) is not Protected.An intent-filter exists. An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported. |
High | Broadcast Receiver (com.microsoft.todos.sync.AlarmSyncBootReceiver) is not Protected.An intent-filter exists. A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Broadcast Receiver is explicitly exported. |
High | Broadcast Receiver (com.microsoft.todos.reminder.AlarmReceiver) is not Protected. [android:exported=true] A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. |
High | Broadcast Receiver (com.microsoft.todos.reminder.AlarmBootReceiver) is not Protected.An intent-filter exists. A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Broadcast Receiver is explicitly exported. |
High | Broadcast Receiver (com.microsoft.todos.widget.WidgetProvider) is not Protected.An intent-filter exists. A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Broadcast Receiver is explicitly exported. |
High | Service (com.microsoft.todos.tile.ToDoTile) is Protected by a permission, but the protection level of the permission should be checked.Permission: android.permission.BIND_QUICK_SETTINGS_TILE [android:exported=true] A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission. |
High | Service (com.microsoft.intune.mam.client.notification.MAMNotificationReceiverService) is not Protected. [android:exported=true] A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. |
High | Broadcast Receiver (com.microsoft.intune.mam.client.service.MAMBackgroundReceiver) is not Protected.An intent-filter exists. A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Broadcast Receiver is explicitly exported. |
High | Service (com.microsoft.tokenshare.TokenSharingService) is not Protected. [android:exported=true] A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. |
High | Service (androidx.work.impl.background.systemjob.SystemJobService) is Protected by a permission, but the protection level of the permission should be checked.Permission: android.permission.BIND_JOB_SERVICE [android:exported=true] A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission. |
High | Broadcast Receiver (com.google.firebase.iid.FirebaseInstanceIdReceiver) is Protected by a permission, but the protection level of the permission should be checked.Permission: com.google.android.c2dm.permission.SEND [android:exported=true] A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission. |
Information computed with MobSF.
com.microsoft.todos.deeplinks.DeepLinkActivity |
Hosts: to-do.microsoft.com sharing settings search myday inbox list wunderlist-import-code Schemes: https:// ms-to-do:// |
Information computed with AndroGuard.
|
Information computed with AndroGuard.
|
Information computed with AndroGuard.
|
Information computed with AndroGuard.
|
Certificate valid not before | Oct. 5, 2010, 10:02 p.m. |
First submission on VT | Oct. 3, 2021, 6:04 p.m. |
Last submission on VT | Oct. 3, 2021, 6:04 p.m. |
Upload on Pithus | Oct. 18, 2021, 7:41 a.m. |
Certificate valid not after | Oct. 5, 2035, 10:09 p.m. |
Score | 0/63 |
Report | https://www.virustotal.com/gui/file/32fcc4b4101b27b5c4cdfe2cb2c4c50054613f5ea8a211138af7933ac168a8dc/detection |
Information computed with MobSF.
FCS_RBG_EXT.1.1 | The application implement DRBG functionality for its cryptographic operations. Random Bit Generation Services |
FCS_STO_EXT.1.1 | The application invoke the functionality provided by the platform to securely store credentials to non-volatile memory. Storage of Credentials |
FCS_CKM_EXT.1.1 | The application implement asymmetric key generation. Cryptographic Key Generation Services |
FDP_DEC_EXT.1.1 | The application has access to ['network connectivity']. Access to Platform Resources |
FDP_DEC_EXT.1.2 | The application has access to no sensitive information repositories. Access to Platform Resources |
FDP_NET_EXT.1.1 | The application has user/application initiated network communications. Network Communications |
FDP_DAR_EXT.1.1 | The application implement functionality to encrypt sensitive data in non-volatile memory. Encryption Of Sensitive Application Data |
FMT_MEC_EXT.1.1 | The application invoke the mechanisms recommended by the platform vendor for storing and setting configuration options. Supported Configuration Mechanism |
FTP_DIT_EXT.1.1 | The application does encrypt some transmitted data with HTTPS/TLS/SSH between itself and another trusted IT product. Protection of Data in Transit |
FCS_RBG_EXT.2.1 FCS_RBG_EXT.2.2 |
The application perform all deterministic random bit generation (DRBG) services in accordance with NIST Special Publication 800-90A using Hash_DRBG. The deterministic RBG is seeded by an entropy source that accumulates entropy from a platform-based DRBG and a software-based noise source, with a minimum of 256 bits of entropy at least equal to the greatest security strength (according to NIST SP 800-57) of the keys and hashes that it will generate. Random Bit Generation from Application |
FCS_CKM.1.1(1) | The application generate asymmetric cryptographic keys not in accordance with FCS_CKM.1.1(1) using key generation algorithm RSA schemes and cryptographic key sizes of 1024-bit or lower. Cryptographic Asymmetric Key Generation |
FCS_COP.1.1(2) | The application perform cryptographic hashing services in accordance with a specified cryptographic algorithm SHA-1/SHA-256/SHA-384/SHA-512 and message digest sizes 160/256/384/512 bits. Cryptographic Operation - Hashing |
FCS_COP.1.1(3) | The application perform cryptographic signature services (generation and verification) in accordance with a specified cryptographic algorithm RSA schemes using cryptographic key sizes of 2048-bit or greater. Cryptographic Operation - Signing |
FCS_COP.1.1(4) | The application perform keyed-hash message authentication with cryptographic algorithm ['HMAC-SHA-256'] . Cryptographic Operation - Keyed-Hash Message Authentication |
FCS_HTTPS_EXT.1.1 | The application implement the HTTPS protocol that complies with RFC 2818. HTTPS Protocol |
FCS_HTTPS_EXT.1.2 | The application implement HTTPS using TLS. HTTPS Protocol |
FCS_HTTPS_EXT.1.3 | The application notify the user and not establish the connection or request application authorization to establish the connection if the peer certificate is deemed invalid. HTTPS Protocol |
FIA_X509_EXT.1.1 | The application invoked platform-provided functionality to validate certificates in accordance with the following rules: ['The certificate path must terminate with a trusted CA certificate']. X.509 Certificate Validation |
FIA_X509_EXT.2.1 | The application use X.509v3 certificates as defined by RFC 5280 to support authentication for HTTPS , TLS. X.509 Certificate Authentication |
FIA_X509_EXT.2.2 | When the application cannot establish a connection to determine the validity of a certificate, the application allow the administrator to choose whether to accept the certificate in these cases or accept the certificate ,or not accept the certificate. X.509 Certificate Authentication |
FPT_TUD_EXT.2.1 | The application shall be distributed using the format of the platform-supported package manager. Integrity for Installation and Update |
Information computed with MobSF.
Map computed by Pithus.
Information computed with MobSF.
Information computed with MobSF.
https://sas.office.microsoft.com/upload.ashx https://sas3.office.microsoft.com/upload.ashx Defined in f/e/d/a/a/h/c/a.java |
|
https://sas.office.microsoft.com/upload.ashx https://sas3.office.microsoft.com/upload.ashx Defined in f/e/d/a/a/h/c/a.java |
|
https://mobile.events.data.microsoft.com/OneCollector/1.0 Defined in f/e/a/m/c.java |
|
https://in.appcenter.ms Defined in f/e/a/m/a.java |
|
https://developer.android.com/reference/com/google/android/play/core/install/model/InstallErrorCode Defined in f/a/a/e/a/b/e/a.java |
|
https://substrate.office.com/todo Defined in com/microsoft/todos/x0/a.java |
|
https://powerlift-frontdesk.acompli.net/api/ Defined in com/microsoft/todos/powerlift/PowerLiftModule.java |
|
https://powerlift.acompli.net/#/incidents/ Defined in com/microsoft/todos/powerlift/PowerLiftHelpShiftMetaDataCallable.java |
|
https://powerlift-frontdesk.acompli.net/api/ Defined in com/microsoft/todos/powerlift/PowerLiftApi.java |
|
https://substrate.office.com/todo/api/v1/ Defined in com/microsoft/todos/syncnetgsw/y4.java |
|
https://powerlift.acompli.net/#/incidents/ Defined in com/microsoft/todos/p1/c.java |
|
https://api.helpshift.com/v1/microsoft-todo/ Defined in com/microsoft/todos/p1/f.java |
|
https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=try-signing-in-again-error-on-to-do-on-android https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=why-do-i-receive-the-message-that-my-license-for-to-do-is-disabled https://go.microsoft.com/fwlink/?linkid=2156231 https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=why-can-t-i-join-a-shared-list https://microsoft-todo.helpshift.com/a/microsoft-to-do/?s=troubleshoot&f=why-do-i-receive-the-message-that-to-do-is-not-available-for-my-version-of-office-365 https://microsoft-todo.helpshift.com/a/microsoft-to-do/?s=troubleshoot&f=why-do-i-receive-the-message-that-to-do-requires-an-exchange-online-mailbox https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=i-m-unable-to-sign-in-to-microsoft-to-do https://todosupport.microsoft.com/support?product_id=todo Defined in com/microsoft/todos/p1/d.java |
|
https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=try-signing-in-again-error-on-to-do-on-android https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=why-do-i-receive-the-message-that-my-license-for-to-do-is-disabled https://go.microsoft.com/fwlink/?linkid=2156231 https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=why-can-t-i-join-a-shared-list https://microsoft-todo.helpshift.com/a/microsoft-to-do/?s=troubleshoot&f=why-do-i-receive-the-message-that-to-do-is-not-available-for-my-version-of-office-365 https://microsoft-todo.helpshift.com/a/microsoft-to-do/?s=troubleshoot&f=why-do-i-receive-the-message-that-to-do-requires-an-exchange-online-mailbox https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=i-m-unable-to-sign-in-to-microsoft-to-do https://todosupport.microsoft.com/support?product_id=todo Defined in com/microsoft/todos/p1/d.java |
|
https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=try-signing-in-again-error-on-to-do-on-android https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=why-do-i-receive-the-message-that-my-license-for-to-do-is-disabled https://go.microsoft.com/fwlink/?linkid=2156231 https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=why-can-t-i-join-a-shared-list https://microsoft-todo.helpshift.com/a/microsoft-to-do/?s=troubleshoot&f=why-do-i-receive-the-message-that-to-do-is-not-available-for-my-version-of-office-365 https://microsoft-todo.helpshift.com/a/microsoft-to-do/?s=troubleshoot&f=why-do-i-receive-the-message-that-to-do-requires-an-exchange-online-mailbox https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=i-m-unable-to-sign-in-to-microsoft-to-do https://todosupport.microsoft.com/support?product_id=todo Defined in com/microsoft/todos/p1/d.java |
|
https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=try-signing-in-again-error-on-to-do-on-android https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=why-do-i-receive-the-message-that-my-license-for-to-do-is-disabled https://go.microsoft.com/fwlink/?linkid=2156231 https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=why-can-t-i-join-a-shared-list https://microsoft-todo.helpshift.com/a/microsoft-to-do/?s=troubleshoot&f=why-do-i-receive-the-message-that-to-do-is-not-available-for-my-version-of-office-365 https://microsoft-todo.helpshift.com/a/microsoft-to-do/?s=troubleshoot&f=why-do-i-receive-the-message-that-to-do-requires-an-exchange-online-mailbox https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=i-m-unable-to-sign-in-to-microsoft-to-do https://todosupport.microsoft.com/support?product_id=todo Defined in com/microsoft/todos/p1/d.java |
|
https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=try-signing-in-again-error-on-to-do-on-android https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=why-do-i-receive-the-message-that-my-license-for-to-do-is-disabled https://go.microsoft.com/fwlink/?linkid=2156231 https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=why-can-t-i-join-a-shared-list https://microsoft-todo.helpshift.com/a/microsoft-to-do/?s=troubleshoot&f=why-do-i-receive-the-message-that-to-do-is-not-available-for-my-version-of-office-365 https://microsoft-todo.helpshift.com/a/microsoft-to-do/?s=troubleshoot&f=why-do-i-receive-the-message-that-to-do-requires-an-exchange-online-mailbox https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=i-m-unable-to-sign-in-to-microsoft-to-do https://todosupport.microsoft.com/support?product_id=todo Defined in com/microsoft/todos/p1/d.java |
|
https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=try-signing-in-again-error-on-to-do-on-android https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=why-do-i-receive-the-message-that-my-license-for-to-do-is-disabled https://go.microsoft.com/fwlink/?linkid=2156231 https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=why-can-t-i-join-a-shared-list https://microsoft-todo.helpshift.com/a/microsoft-to-do/?s=troubleshoot&f=why-do-i-receive-the-message-that-to-do-is-not-available-for-my-version-of-office-365 https://microsoft-todo.helpshift.com/a/microsoft-to-do/?s=troubleshoot&f=why-do-i-receive-the-message-that-to-do-requires-an-exchange-online-mailbox https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=i-m-unable-to-sign-in-to-microsoft-to-do https://todosupport.microsoft.com/support?product_id=todo Defined in com/microsoft/todos/p1/d.java |
|
https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=try-signing-in-again-error-on-to-do-on-android https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=why-do-i-receive-the-message-that-my-license-for-to-do-is-disabled https://go.microsoft.com/fwlink/?linkid=2156231 https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=why-can-t-i-join-a-shared-list https://microsoft-todo.helpshift.com/a/microsoft-to-do/?s=troubleshoot&f=why-do-i-receive-the-message-that-to-do-is-not-available-for-my-version-of-office-365 https://microsoft-todo.helpshift.com/a/microsoft-to-do/?s=troubleshoot&f=why-do-i-receive-the-message-that-to-do-requires-an-exchange-online-mailbox https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=i-m-unable-to-sign-in-to-microsoft-to-do https://todosupport.microsoft.com/support?product_id=todo Defined in com/microsoft/todos/p1/d.java |
|
https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=try-signing-in-again-error-on-to-do-on-android https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=why-do-i-receive-the-message-that-my-license-for-to-do-is-disabled https://go.microsoft.com/fwlink/?linkid=2156231 https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=why-can-t-i-join-a-shared-list https://microsoft-todo.helpshift.com/a/microsoft-to-do/?s=troubleshoot&f=why-do-i-receive-the-message-that-to-do-is-not-available-for-my-version-of-office-365 https://microsoft-todo.helpshift.com/a/microsoft-to-do/?s=troubleshoot&f=why-do-i-receive-the-message-that-to-do-requires-an-exchange-online-mailbox https://microsoft-todo.helpshift.com/a/microsoft-to-do/?p=all&s=troubleshoot&f=i-m-unable-to-sign-in-to-microsoft-to-do https://todosupport.microsoft.com/support?product_id=todo Defined in com/microsoft/todos/p1/d.java |
|
https://play.google.com/store/apps/details?id= Defined in com/microsoft/todos/homeview/HomeViewFragment.java |
|
https://outlook.office.com/api/v2.0/Users/%s/photos('120x120')/$value Defined in com/microsoft/todos/auth/y3.java |
|
https://substrate.office.com/User-Internal.ReadWrite Defined in com/microsoft/todos/auth/c4.java |
|
https://storage.live.com/users/0x%s/myprofile/expressionprofile/profilephoto:UserTileMedium/avatar?ck=1&ex=1&fofoff=1 Defined in com/microsoft/todos/auth/w2.java |
|
https://graph.microsoft.com/ Defined in com/microsoft/todos/auth/y0.java |
|
https://substrate.office.com/todo-internal.readwrite https://outlook.office.com https://login.microsoftonline.com/common https://substrate.office.com/ https://odc.officeapps.live.com/odc/emailhrd/ https://login.live.com/ Defined in com/microsoft/todos/auth/i1.java |
|
https://substrate.office.com/todo-internal.readwrite https://outlook.office.com https://login.microsoftonline.com/common https://substrate.office.com/ https://odc.officeapps.live.com/odc/emailhrd/ https://login.live.com/ Defined in com/microsoft/todos/auth/i1.java |
|
https://substrate.office.com/todo-internal.readwrite https://outlook.office.com https://login.microsoftonline.com/common https://substrate.office.com/ https://odc.officeapps.live.com/odc/emailhrd/ https://login.live.com/ Defined in com/microsoft/todos/auth/i1.java |
|
https://substrate.office.com/todo-internal.readwrite https://outlook.office.com https://login.microsoftonline.com/common https://substrate.office.com/ https://odc.officeapps.live.com/odc/emailhrd/ https://login.live.com/ Defined in com/microsoft/todos/auth/i1.java |
|
https://substrate.office.com/todo-internal.readwrite https://outlook.office.com https://login.microsoftonline.com/common https://substrate.office.com/ https://odc.officeapps.live.com/odc/emailhrd/ https://login.live.com/ Defined in com/microsoft/todos/auth/i1.java |
|
https://substrate.office.com/todo-internal.readwrite https://outlook.office.com https://login.microsoftonline.com/common https://substrate.office.com/ https://odc.officeapps.live.com/odc/emailhrd/ https://login.live.com/ Defined in com/microsoft/todos/auth/i1.java |
|
https://storage.live.com/users/0x%s/myprofile/expressionprofile/profilephoto:UserTileMedium/avatar?ck=1&ex=1&fofoff=1 Defined in com/microsoft/todos/auth/m3.java |
|
https://login.live.com/oauth20_desktop.srf https://signup.live.com/signup.aspx? https://login.live.com/oauth20_authorize.srf? https://login.live.com/oauth20_authorize.srf https://signup.live.com/signup.aspx Defined in com/microsoft/todos/auth/MsaSignInActivity.java |
|
https://login.live.com/oauth20_desktop.srf https://signup.live.com/signup.aspx? https://login.live.com/oauth20_authorize.srf? https://login.live.com/oauth20_authorize.srf https://signup.live.com/signup.aspx Defined in com/microsoft/todos/auth/MsaSignInActivity.java |
|
https://login.live.com/oauth20_desktop.srf https://signup.live.com/signup.aspx? https://login.live.com/oauth20_authorize.srf? https://login.live.com/oauth20_authorize.srf https://signup.live.com/signup.aspx Defined in com/microsoft/todos/auth/MsaSignInActivity.java |
|
https://login.live.com/oauth20_desktop.srf https://signup.live.com/signup.aspx? https://login.live.com/oauth20_authorize.srf? https://login.live.com/oauth20_authorize.srf https://signup.live.com/signup.aspx Defined in com/microsoft/todos/auth/MsaSignInActivity.java |
|
https://login.live.com/oauth20_desktop.srf https://signup.live.com/signup.aspx? https://login.live.com/oauth20_authorize.srf? https://login.live.com/oauth20_authorize.srf https://signup.live.com/signup.aspx Defined in com/microsoft/todos/auth/MsaSignInActivity.java |
|
https://to-do.office.com/ Defined in com/microsoft/todos/auth/i4/j.java |
|
https://graph.microsoft.com/ https://substrate.office.com/todo/api/v1/ Defined in com/microsoft/todos/auth/i4/t.java |
|
https://graph.microsoft.com/ https://substrate.office.com/todo/api/v1/ Defined in com/microsoft/todos/auth/i4/t.java |
|
https://to-do.microsoft.com/sharing?InvitationToken= Defined in com/microsoft/todos/analytics/f0/h.java |
|
https://config.edge.skype.net/config/v1/ Defined in com/microsoft/todos/d1/b.java |
|
https://outlook.office.com/ Defined in com/microsoft/todos/net/h.java |
|
https://graph.microsoft.com/ https://outlook.office365.com Defined in com/microsoft/todos/net/t.java |
|
https://graph.microsoft.com/ https://outlook.office365.com Defined in com/microsoft/todos/net/t.java |
|
https://a.wunderlist.com/api/v1/avatar?user_id= Defined in com/microsoft/todos/importer/i0.java |
|
https://www.wunderlist.com/oauth/authorize https://to-do.microsoft.com/importer-success Defined in com/microsoft/todos/importer/WunderlistAuthFragment.java |
|
https://www.wunderlist.com/oauth/authorize https://to-do.microsoft.com/importer-success Defined in com/microsoft/todos/importer/WunderlistAuthFragment.java |
|
https://a.wunderlist.com/api/v1/avatar?user_id= Defined in com/microsoft/todos/importer/StartImportFragment.java |
|
https://export.wunderlist.com/?action=summary-file-screen Defined in com/microsoft/todos/importer/importresult/h.java |
|
https://tasks.office.com https://www.teams.com Defined in com/microsoft/todos/detailview/j/b.java |
|
https://tasks.office.com https://www.teams.com Defined in com/microsoft/todos/detailview/j/b.java |
|
https://outlook.office.com Defined in com/microsoft/todos/sync/s4/x0.java |
|
https://go.microsoft.com/fwlink/?LinkId=512132 https://privacy.microsoft.com/privacystatement Defined in com/microsoft/todos/settings/termsprivacy/s.java |
|
https://go.microsoft.com/fwlink/?LinkId=512132 https://privacy.microsoft.com/privacystatement Defined in com/microsoft/todos/settings/termsprivacy/s.java |
|
https://account.microsoft.com Defined in com/microsoft/todos/settings/preference/AccountPreference.java |
|
https://substrate.office.com Defined in com/microsoft/todos/files/FileDownloadService.java |
|
http://schemas.microsoft.com/rel/trusted-realm Defined in com/microsoft/aad/adal/ADFSWebFingerValidator.java |
|
https://login.microsoftonline.com/common/oauth2/v2.0/logout https://go.microsoft.com/fwlink/?linkid=2138180 Defined in com/microsoft/identity/common/adal/internal/AuthenticationConstants.java |
|
https://login.microsoftonline.com/common/oauth2/v2.0/logout https://go.microsoft.com/fwlink/?linkid=2138180 Defined in com/microsoft/identity/common/adal/internal/AuthenticationConstants.java |
|
https://login.microsoftonline.com/consumers https://login.windows.net/common Defined in com/microsoft/identity/common/adal/internal/tokensharing/TokenShareUtility.java |
|
https://login.microsoftonline.com/consumers https://login.windows.net/common Defined in com/microsoft/identity/common/adal/internal/tokensharing/TokenShareUtility.java |
|
https://devicemgmt.teams.microsoft.com/.default Defined in com/microsoft/identity/common/internal/migration/TokenCacheItemMigrationAdapter.java |
|
https://go.microsoft.com/fwlink/?linkid=2138180 Defined in com/microsoft/identity/common/internal/ui/webview/OAuth2WebViewClient.java |
|
http://www.example.com Defined in com/microsoft/identity/common/internal/ui/browser/BrowserSelector.java |