1/62

Threat

com.google.android.apps.tachyon

Duo

Analyzed on 2022-07-25T20:51:12.854851

51

permissions

84

activities

36

services

44

receivers

74

domains

File sums

MD5 2442453939e8cd716c43aec2d9474562
SHA1 b8983eba12add40a6c269765982eebcfe818b905
SHA256 4854a04cc12c611ca8146f3483e76597bc06be5ec104c555e4cfbae5a9c3e3ad
Size 14.41MB

APKiD

Information computed with APKiD.

/tmp/tmpopufe4v1!classes.dex
anti_disassembly
  • illegal class name
anti_vm
  • Build.FINGERPRINT check
  • Build.MODEL check
  • Build.MANUFACTURER check
  • Build.PRODUCT check
  • Build.HARDWARE check
compiler
  • r8 without marker (suspicious)
/tmp/tmpopufe4v1!classes2.dex
anti_disassembly
  • illegal class name
anti_vm
  • Build.FINGERPRINT check
  • Build.MANUFACTURER check
  • Build.HARDWARE check
  • possible Build.SERIAL check
  • Build.TAGS check
compiler
  • r8 without marker (suspicious)
/tmp/tmpopufe4v1!classes3.dex
anti_vm
  • Build.FINGERPRINT check
  • Build.MODEL check
  • Build.MANUFACTURER check
  • Build.PRODUCT check
  • Build.HARDWARE check
  • Build.BOARD check
compiler
  • r8 without marker (suspicious)
/tmp/tmpopufe4v1!classes4.dex
compiler
  • r8 without marker (suspicious)

SSdeep

Information computed with ssdeep.

APK file 393216:ICj6tpcjmwcUgwokZahYUrqnxUBnEFu466JjFKvP:ICJI1a29BnEFy6JRKvP
Manifest 1536:bs2WP5yknwAeBZ+e3caCb0S4WUWmwmj5hHEOYi5MgatYHs1E2l:J3fzQl
classes.dex 49152:Z+f5MYJmBZ7wiAds8oW9VRwePyJ2xmg5FtGfy/yR9LUFbri/Fi92c6ZmTHb3kNL…
classes2.dex 98304:XM+13yCaZk4rvUVVVVV0I1fJfLutBo5pFmYNhkLoxXyid9S:8+1ZJrLutBo5zmN…
classes3.dex 24576:ISHqA18DlvKgMr7WGDdAPPKh6Bvvwu1HwhdjygdY/xUKt6FHgtd/iBrR1i:9HqA…
classes4.dex 6144:ozCelBPYFfPh6m2BFhyLXlYGjQsiQ0orE8/GoWJ:tXFfPh6meFhyLVYjsiQ0RNJ

Dexofuzzy

Information computed with Dexofuzzy.

APK file 12288:CYmV1dgib088ZBENEJG0dhUjYErvDlWWEw:CYmXn4R5JGwkPrRW+
classes.dex 6144:vwr3A/pSbDLJD1DsUwfRcmJTV4gUgiTnf8P88NDLB7vI+oN/:CYmV1dgib088ZBE…
classes2.dex 3072:vzjms1XStzv3mqrKN+g3KcdNxboR6AreYU3HH863X843s5WXIfHz6NngHZFylwyh…
classes3.dex 1536:VvS5V0W72LCOsVilj0FDB2GqwCueS0VGan3HWmNs+Q4GaG1WdHvD9RRNSRbG:VvS…
classes4.dex 384:7DZZZvEA2te+oVWGYqrKDFoiLiR+ZB8ufoBJIeoP0toqE0ZYYXWmg0LiHq:7+A2te…

APK details

Information computed with AndroGuard and Pithus.

Package com.google.android.apps.tachyon
App name Duo
Version name 170.0.460579206.duo.android_20220626.16_p5.s
Version code 3710545
SDK 23 - 31
UAID 531a51a944b6a14acb0fad4f0303aa658922b879
Signature Signature V1 Signature V2 Signature V3
Frosting Frosted
Blocks found within V2 signature:
  • 0x7109871a: Unknown
  • 0x1b93ad61: Unknown
  • 0xf05368c0: Unknown
  • 0x6dff800d: Source stamp V2 X509 cert
  • 0x2146444e: Google metadata
  • 0x42726577: Verity padding

Certificate details

Information computed with AndroGuard.

MD5 3e6040d818dc64323ad5f9362e6b1059
SHA1 a0bc09af527b6397c7a9ef171d6cf76f757becc3
SHA256 7caab6e6ba700e0ddcf75cca52b8c3b19a3c7d23308f7eb177a64eb2476197bd
Issuer Common Name: corp_tachyon, Organizational Unit: Android, Organization: Google Inc., Locality: Mountain View, State/Province: California, Country: US
Not before 2015-01-23T19:11:23+00:00
Not after 2042-06-10T19:11:23+00:00

File Analysis

Information computed with MobSF.

Findings Files
Certificate/Key files hardcoded inside the app. META-INF/services/com.google.protobuf.GeneratedExtensionRegistryLoader
assets/shaders/bubble.fplshader
assets/shaders/exp_standard.fplshader
assets/shaders/skinned_matcap.fplshader
assets/shaders/texture.fplshader

Manifest analysis

Information computed with MobSF.

Low App has a Network Security Configuration[android:networkSecurityConfig=@xml/network_security_config]
The Network Security Configuration feature lets apps customize their network security settings in a safe, declarative configuration file without modifying app code. These settings can be configured for specific domains and for a specific app.
Medium Application Data can be Backed up[android:allowBackup=true]
This flag allows anyone to backup your application data via adb. It allows users who have enabled USB debugging to copy application data off of the device.
High Activity (com.google.android.apps.tachyon.call.history.ExportHistoryActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (com.google.android.apps.tachyon.clientapi.ClientApiService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.google.android.apps.tachyon.clips.share.ReceiveShareIntentActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.google.android.apps.tachyon.common.applifecycle.AppInstallReceiver) is not Protected. [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.google.android.apps.tachyon.common.applifecycle.BootReceiver) is not Protected. [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.google.android.apps.tachyon.common.applifecycle.LocaleChangeReceiver) is not Protected. [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (com.google.android.apps.tachyon.common.notification.donotdisturb.DuoConditionProviderService) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.BIND_CONDITION_PROVIDER_SERVICE [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Service (com.google.android.apps.tachyon.contacts.reachability.ReachabilityService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (com.google.android.apps.tachyon.contacts.sync.SyncService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (com.google.android.apps.tachyon.contacts.sync.DuoAccountService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Content Provider (com.google.android.apps.tachyon.external.googleguide.GoogleGuideContentProvider) is not Protected. [android:exported=true]
A Content Provider is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.google.android.apps.tachyon.externalcallactivity.ExternalCallActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity-Alias (com.google.android.apps.tachyon.ExternalCallActivity) is not Protected. [android:exported=true]
An Activity-Alias is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity-Alias (com.google.android.apps.tachyon.AssistantCallActivity) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.CALL_PHONE [android:exported=true]
An Activity-Alias is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Activity-Alias (com.google.android.apps.tachyon.ContactsVideoActionActivity) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.CALL_PHONE [android:exported=true]
An Activity-Alias is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Activity-Alias (com.google.android.apps.tachyon.ContactsAudioActionActivity) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.CALL_PHONE [android:exported=true]
An Activity-Alias is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Activity (com.google.android.apps.tachyon.groupcalling.externalapi.ExternalCallGroupByIdActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.google.android.apps.tachyon.groupcalling.externalapi.ExternalCallGroupByMembersActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.google.android.apps.tachyon.groupcalling.notification.GroupUpdateNotificationReceiver) is not Protected. [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.google.android.apps.tachyon.invites.externalinvite.ExternalInviteActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.google.android.apps.tachyon.phenotype.PhenotypeBroadcastReceiver) is Protected by a permission, but the protection level of the permission should be checked.
Permission: com.google.android.gms.permission.PHENOTYPE_UPDATE_BROADCAST [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Activity (com.google.android.apps.tachyon.registration.requiredcontentviewer.RequiredContentViewerActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Content Provider (com.google.android.apps.tachyon.samsung.contentprovider.SamsungContentProvider) is not Protected. [android:exported=true]
A Content Provider is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.google.android.apps.tachyon.simdetection.SimStateBroadcastReceiver) is not Protected. [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (com.google.android.apps.tachyon.telecom.TelecomFallbackService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (com.google.android.apps.tachyon.telecom.TachyonTelecomConnectionService) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.BIND_TELECOM_CONNECTION_SERVICE [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Activity (com.google.android.apps.tachyon.ui.launcher.LauncherActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity-Alias (com.google.android.apps.tachyon.ui.launcher.AtvLauncherActivity) is not Protected. [android:exported=true]
An Activity-Alias is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity-Alias (com.google.android.apps.tachyon.MainActivity) is not Protected. [android:exported=true]
An Activity-Alias is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.google.android.apps.tachyon.ui.main.MainActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.google.android.libraries.internal.growth.growthkit.inject.GrowthKitBootCompletedBroadcastReceiver) is not Protected. [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.google.android.libraries.internal.growth.growthkit.internal.debug.TestingToolsBroadcastReceiver) is not Protected. [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.google.android.libraries.phenotype.client.stable.AccountRemovedBroadcastReceiver) is not Protected. [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.google.android.libraries.phenotype.client.stable.PhenotypeUpdateBackgroundBroadcastReceiver) is Protected by a permission, but the protection level of the permission should be checked.
Permission: com.google.android.gms.permission.PHENOTYPE_UPDATE_BROADCAST [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Activity (com.google.android.libraries.social.licenses.LicenseMenuActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.google.android.libraries.surveys.internal.view.SurveyActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.google.apps.tiktok.account.data.device.DeviceAccountsChangedReceiver_Receiver) is not Protected. [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.google.apps.tiktok.experiments.phenotype.ConfigurationUpdatedReceiver_Receiver) is not Protected. [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.google.apps.tiktok.nav.gateway.GatewayActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.google.firebase.iid.FirebaseInstanceIdReceiver) is Protected by a permission, but the protection level of the permission should be checked.
Permission: com.google.android.c2dm.permission.SEND [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Service (androidx.work.impl.background.systemjob.SystemJobService) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.BIND_JOB_SERVICE [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Broadcast Receiver (androidx.work.impl.diagnostics.DiagnosticsReceiver) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.DUMP [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.

Browsable activities

Information computed with MobSF.

com.google.android.apps.tachyon.ui.main.MainActivity

Hosts: duo.google.com

Schemes: http:// https:// com.google.duo:// com.google.android.apps.tachyon://

Main Activity

Information computed with AndroGuard.

com.google.android.apps.tachyon.MainActivity

Activities

Information computed with AndroGuard.

com.google.android.play.core.missingsplits.PlayCoreMissingSplitsActivity
com.google.android.play.core.common.PlayCoreDialogWrapperActivity
com.google.android.apps.tachyon.appupdate.HardBlockActivity
com.google.android.apps.tachyon.call.feedback.BadCallRatingActivity
com.google.android.apps.tachyon.call.history.ExportHistoryActivity
com.google.android.apps.tachyon.call.oneonone.ui.OneOnOneCallActivity
com.google.android.apps.tachyon.call.postcall.ui.PostCallActivity
com.google.android.apps.tachyon.call.precall.fullhistory.FullHistoryActivity
com.google.android.apps.tachyon.call.precall.OneOnOnePrecallActivity
com.google.android.apps.tachyon.clips.share.ReceiveShareIntentActivity
com.google.android.apps.tachyon.clips.ui.ClipsComposerActivity
com.google.android.apps.tachyon.clips.ui.gallerypicker.GalleryPickerActivity
com.google.android.apps.tachyon.clips.ui.viewclips.ViewClipsActivity
com.google.android.apps.tachyon.clipsfromduo.impl.ClipsFromDuoActivity
com.google.android.apps.tachyon.externalcallactivity.ExternalCallActivity
com.google.android.apps.tachyon.groupcalling.creategroup.GroupCreationActivity
com.google.android.apps.tachyon.groupcalling.creategroup.EditGroupActivity
com.google.android.apps.tachyon.groupcalling.externalapi.ExternalCallGroupByIdActivity
com.google.android.apps.tachyon.groupcalling.externalapi.ExternalCallGroupByMembersActivity
com.google.android.apps.tachyon.groupcalling.incall.InGroupCallActivity
com.google.android.apps.tachyon.groupcalling.incoming.IncomingGroupCallActivity
com.google.android.apps.tachyon.groupcalling.precall.PrecallScreenGroupActivity
com.google.android.apps.tachyon.groupcalling.precall.PrecallScreenGroupInviteActivity
com.google.android.apps.tachyon.invites.externalinvite.ExternalInviteActivity
com.google.android.apps.tachyon.invites.invitescreen.InviteScreenActivity
com.google.android.apps.tachyon.registration.countrycode.CountryCodeActivity
com.google.android.apps.tachyon.registration.enterphonenumber.PhoneRegistrationActivity
com.google.android.apps.tachyon.registration.onboarding.OnboardingActivity
com.google.android.apps.tachyon.registration.rebranding.MeetOnboardingActivity
com.google.android.apps.tachyon.registration.requiredcontentviewer.RequiredContentViewerActivity
com.google.android.apps.tachyon.settings.blockedusers.BlockedUsersActivity
com.google.android.apps.tachyon.settings.knockknock.KnockKnockSettingActivity
com.google.android.apps.tachyon.settings.notifications.NotificationSettingsActivity
com.google.android.apps.tachyon.settings.tvsignin.TvSignInActivity
com.google.android.apps.tachyon.settings.v2.accountsettings.AccountSettingsActivity
com.google.android.apps.tachyon.settings.v2.accountsettings.ManageHistorySettingsActivity
com.google.android.apps.tachyon.settings.v2.ApplicationSettingsActivity
com.google.android.apps.tachyon.settings.v2.CallSettingsActivity
com.google.android.apps.tachyon.settings.v2.MessageSettingsActivity
com.google.android.apps.tachyon.ui.blockusers.BlockUsersActivity
com.google.android.apps.tachyon.ui.duoprivacy.DuoPrivacyActivity
com.google.android.apps.tachyon.ui.homescreen.placeholder.PlaceholderActivity
com.google.android.apps.tachyon.ui.homescreen.search.SearchActivity
com.google.android.apps.tachyon.ui.launcher.LauncherActivity
com.google.android.apps.tachyon.ui.lockscreen.LockscreenTrampolineActivity
com.google.android.apps.tachyon.ui.lockscreen.TransparentLockscreenTrampolineActivity
com.google.android.apps.tachyon.ui.lockscreen.NewTaskLockscreenTrampolineActivity
com.google.android.apps.tachyon.ui.main.MainActivity
com.google.android.apps.tachyon.ui.warningdialog.WarningDialogActivity
com.google.android.gms.gmscompliance.ui.UncertifiedDeviceActivity
com.google.android.gms.common.api.GoogleApiActivity
com.google.android.libraries.communications.conference.ui.abuse.ReportAbuseActivity
com.google.android.libraries.communications.conference.ui.callui.callrating.CallRatingActivity
com.google.android.libraries.communications.conference.ui.callui.captions.languagepicker.CaptionsLanguagePickerActivity
com.google.android.libraries.communications.conference.ui.callui.chat.ChatActivity
com.google.android.libraries.communications.conference.ui.callui.overviewtabs.activities.paywall.PaywallPremiumActivity
com.google.android.libraries.communications.conference.ui.callui.overviewtabs.activities.polls.PollActivity
com.google.android.libraries.communications.conference.ui.callui.overviewtabs.activities.questions.QuestionActivity
com.google.android.libraries.communications.conference.ui.callui.overviewtabs.activities.questions.AskQuestionActivity
com.google.android.libraries.communications.conference.ui.callui.overviewtabs.OverviewTabsActivity
com.google.android.libraries.communications.conference.ui.callui.participantactions.RemoteEjectedActivity
com.google.android.libraries.communications.conference.ui.callui.SingleCallActivity
com.google.android.libraries.communications.conference.ui.callui.settingsmenu.SettingsActivity
com.google.android.libraries.communications.conference.ui.greenroom.GreenroomActivity
com.google.android.libraries.communications.conference.ui.handover.HandoverActivity
com.google.android.libraries.communications.conference.ui.home.HomeActivity
com.google.android.libraries.communications.conference.ui.moderation.ModerationActivity
com.google.android.libraries.communications.conference.ui.morenumbers.MoreNumbersActivity
com.google.android.libraries.communications.conference.ui.notices.conferenceended.ConferenceEndedActivity
com.google.android.libraries.communications.conference.ui.notices.failedtojoin.FailedToJoinMeetingActivity
com.google.android.libraries.communications.conference.ui.notices.failedtojoin.GatewayFailedToJoinMeetingActivity
com.google.android.libraries.communications.conference.ui.notices.screenshareupdated.ScreenShareStoppedActivity
com.google.android.libraries.communications.conference.ui.notices.unsupportedfeature.UnsupportedFeatureActivity
com.google.android.libraries.communications.conference.ui.paygate.EndOfCallPaygatePromoActivity
com.google.android.libraries.communications.conference.ui.settings.SettingsActivity
com.google.android.libraries.hangouts.video.sdk.ScreenVideoCapturer$HandleAuthIntentActivity
com.google.android.libraries.onegoogle.accountmanagement.AddAccountActivity
com.google.android.libraries.onegoogle.accountmenu.accountlayer.AddAccountActivity
com.google.android.libraries.social.licenses.LicenseMenuActivity
com.google.android.libraries.social.licenses.LicenseActivity
com.google.android.libraries.surveys.internal.view.SurveyActivity
com.google.apps.tiktok.account.ui.modalselector.SelectAccountActivity
com.google.apps.tiktok.account.ui.onegoogle.expresssignin.selector.ExpressSignInActivity
com.google.apps.tiktok.nav.gateway.GatewayActivity

Receivers

Information computed with AndroGuard.

com.google.android.apps.tachyon.call.notification.MissedCallNotificationIntentReceiver
com.google.android.apps.tachyon.call.notification.InCallNotificationIntentReceiver
com.google.android.apps.tachyon.call.notification.CallRetryNotifierReceiver
com.google.android.apps.tachyon.clips.notification.MessagesNotificationIntentReceiver
com.google.android.apps.tachyon.common.applifecycle.AppInstallReceiver
com.google.android.apps.tachyon.common.applifecycle.AppUpdateReceiver
com.google.android.apps.tachyon.common.applifecycle.BootReceiver
com.google.android.apps.tachyon.common.applifecycle.LocaleChangeReceiver
com.google.android.apps.tachyon.groupcalling.incall.InGroupCallNotificationIntentReceiver
com.google.android.apps.tachyon.groupcalling.incoming.IncomingGroupCallIntentReceiver
com.google.android.apps.tachyon.groupcalling.incoming.IncomingGroupCallNotificationIntentReceiver
com.google.android.apps.tachyon.groupcalling.notification.GroupUpdateNotificationReceiver
com.google.android.apps.tachyon.groupcalling.transfer.TransferGroupCallNotificationIntentReceiver
com.google.android.apps.tachyon.invites.invitehelper.IntentChooserCallbackReceiver
com.google.android.apps.tachyon.net.fcm.CjnNotificationIntentReceiver
com.google.android.apps.tachyon.net.fcm.GenericFcmEventHandlerNotificationIntentReceiver
com.google.android.apps.tachyon.notifications.engagement.EngagementNotificationIntentReceiver
com.google.android.apps.tachyon.notifications.receiver.BasicNotificationIntentReceiver
com.google.android.apps.tachyon.phenotype.PhenotypeBroadcastReceiver
com.google.android.apps.tachyon.ping.notification.PingNotificationIntentReceiver
com.google.android.apps.tachyon.registration.SystemAccountChangedReceiver
com.google.android.apps.tachyon.registration.notification.RegistrationNotificationIntentReceiver
com.google.android.apps.tachyon.simdetection.SimStateBroadcastReceiver
com.google.android.libraries.communications.conference.ui.callui.pip.PipRemoteControlReceiver_Receiver
com.google.android.libraries.communications.conference.ui.notification.incallalerts.lonelymeeting.LonelyMeetingNotificationReceiver_Receiver
com.google.android.libraries.communications.conference.ui.notification.incallalerts.DismissNotificationReceiver_Receiver
com.google.android.libraries.communications.conference.ui.notification.ongoingconference.LeaveConferenceReceiver_Receiver
com.google.android.libraries.communications.conference.ui.notification.ongoingconference.StopScreenSharingReceiver_Receiver
com.google.android.libraries.internal.growth.growthkit.inject.GrowthKitBootCompletedBroadcastReceiver
com.google.android.libraries.internal.growth.growthkit.internal.debug.TestingToolsBroadcastReceiver
com.google.android.libraries.performance.primes.transmitter.LifeboatReceiver
com.google.android.libraries.phenotype.client.stable.AccountRemovedBroadcastReceiver
com.google.android.libraries.phenotype.client.stable.PhenotypeUpdateBackgroundBroadcastReceiver
com.google.apps.tiktok.account.data.device.DeviceAccountsChangedReceiver_Receiver
com.google.apps.tiktok.experiments.phenotype.ConfigurationUpdatedReceiver_Receiver
com.google.firebase.iid.FirebaseInstanceIdReceiver
androidx.work.impl.utils.ForceStopRunnable$BroadcastReceiver
androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy
androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy
androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy
androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy
androidx.work.impl.background.systemalarm.RescheduleReceiver
androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver
androidx.work.impl.diagnostics.DiagnosticsReceiver

Services

Information computed with AndroGuard.

com.google.android.libraries.phenotype.registration.PhenotypeMetadataHolderService
com.google.android.apps.tachyon.call.service.CallService
com.google.android.apps.tachyon.clientapi.ClientApiService
com.google.android.apps.tachyon.common.notification.donotdisturb.DuoConditionProviderService
com.google.android.apps.tachyon.contacts.reachability.ReachabilityService
com.google.android.apps.tachyon.contacts.sync.SyncService
com.google.android.apps.tachyon.contacts.sync.DuoAccountService
com.google.android.apps.tachyon.groupcalling.transfer.TransferOngoingGroupCallService
com.google.android.apps.tachyon.net.fcm.CallConnectingForegroundService
com.google.android.apps.tachyon.net.fcm.FcmReceivingService
com.google.android.apps.tachyon.telecom.TelecomFallbackService
com.google.android.apps.tachyon.telecom.TachyonTelecomConnectionService
com.google.firebase.components.ComponentDiscoveryService
com.google.android.libraries.communications.conference.service.impl.foregroundservice.ForegroundService0
com.google.android.libraries.communications.conference.service.impl.foregroundservice.ForegroundService1
com.google.android.libraries.communications.conference.service.impl.foregroundservice.ForegroundService2
com.google.android.libraries.communications.conference.service.impl.foregroundservice.ForegroundService3
com.google.android.libraries.communications.conference.service.impl.foregroundservice.ForegroundService4
com.google.android.libraries.communications.conference.service.impl.foregroundservice.ForegroundService5
com.google.android.libraries.communications.conference.service.impl.foregroundservice.ForegroundService6
com.google.android.libraries.communications.conference.service.impl.foregroundservice.ForegroundService7
com.google.android.libraries.communications.conference.service.impl.foregroundservice.ForegroundService8
com.google.android.libraries.communications.conference.service.impl.foregroundservice.ForegroundService9
com.google.android.libraries.directboot.DirectBootHelperService
com.google.android.libraries.hangouts.video.internal.CallService
com.google.android.libraries.hub.firebase.FirebaseMessagingServiceImpl
com.google.android.libraries.internal.growth.growthkit.internal.jobs.impl.GrowthKitJobService
com.google.android.libraries.internal.growth.growthkit.internal.jobs.impl.GrowthKitBelowLollipopJobService
com.google.apps.tiktok.concurrent.AndroidFuturesService
com.google.apps.tiktok.concurrent.InternalForegroundService
com.google.firebase.messaging.FirebaseMessagingService
androidx.camera.core.impl.MetadataHolderService
androidx.work.impl.background.systemalarm.SystemAlarmService
androidx.work.impl.background.systemjob.SystemJobService
androidx.work.impl.foreground.SystemForegroundService
com.google.android.build.data.PropertiesServiceHolder

Sample timeline

Oldest file found in APK Jan. 1, 1981, 1:01 a.m.
Latest file found in APK Jan. 1, 1981, 1:01 a.m.
Certificate valid not before Jan. 23, 2015, 7:11 p.m.
First submission on VT July 19, 2022, 9:04 p.m.
Last submission on VT July 25, 2022, 8:37 p.m.
Upload on Pithus July 25, 2022, 8:51 p.m.
Certificate valid not after June 10, 2042, 7:11 p.m.

NIAP analysis

Information computed with MobSF.

FCS_RBG_EXT.1.1 The application implement DRBG functionality for its cryptographic operations.
Random Bit Generation Services
FCS_STO_EXT.1.1 The application does not store any credentials to non-volatile memory.
Storage of Credentials
FCS_CKM_EXT.1.1 The application generate no asymmetric cryptographic keys.
Cryptographic Key Generation Services
FDP_DEC_EXT.1.1 The application has access to ['microphone', 'bluetooth', 'camera', 'network connectivity'].
Access to Platform Resources
FDP_DEC_EXT.1.2 The application has access to ['address book'].
Access to Platform Resources
FDP_NET_EXT.1.1 The application has user/application initiated network communications.
Network Communications
FDP_DAR_EXT.1.1 The application implement functionality to encrypt sensitive data in non-volatile memory.
Encryption Of Sensitive Application Data
FMT_MEC_EXT.1.1 The application invoke the mechanisms recommended by the platform vendor for storing and setting configuration options.
Supported Configuration Mechanism
FTP_DIT_EXT.1.1 The application does encrypt some transmitted data with HTTPS/TLS/SSH between itself and another trusted IT product.
Protection of Data in Transit
FCS_RBG_EXT.2.1
FCS_RBG_EXT.2.2
The application perform all deterministic random bit generation (DRBG) services in accordance with NIST Special Publication 800-90A using Hash_DRBG. The deterministic RBG is seeded by an entropy source that accumulates entropy from a platform-based DRBG and a software-based noise source, with a minimum of 256 bits of entropy at least equal to the greatest security strength (according to NIST SP 800-57) of the keys and hashes that it will generate.
Random Bit Generation from Application
FCS_COP.1.1(2) The application perform cryptographic hashing services not in accordance with FCS_COP.1.1(2) and uses the cryptographic algorithm RC2/RC4/MD4/MD5.
Cryptographic Operation - Hashing
FCS_COP.1.1(4) The application perform keyed-hash message authentication with cryptographic algorithm ['HMAC-SHA-256'] .
Cryptographic Operation - Keyed-Hash Message Authentication
FCS_HTTPS_EXT.1.1 The application implement the HTTPS protocol that complies with RFC 2818.
HTTPS Protocol
FCS_HTTPS_EXT.1.2 The application implement HTTPS using TLS.
HTTPS Protocol
FCS_HTTPS_EXT.1.3 The application notify the user and not establish the connection or request application authorization to establish the connection if the peer certificate is deemed invalid.
HTTPS Protocol
FIA_X509_EXT.1.1 The application invoked platform-provided functionality to validate certificates in accordance with the following rules: ['The certificate path must terminate with a trusted CA certificate'].
X.509 Certificate Validation
FIA_X509_EXT.2.1 The application use X.509v3 certificates as defined by RFC 5280 to support authentication for HTTPS , TLS.
X.509 Certificate Authentication
FIA_X509_EXT.2.2 When the application cannot establish a connection to determine the validity of a certificate, the application allow the administrator to choose whether to accept the certificate in these cases or accept the certificate ,or not accept the certificate.
X.509 Certificate Authentication
FPT_TUD_EXT.2.1 The application shall be distributed using the format of the platform-supported package manager.
Integrity for Installation and Update

Code analysis

Information computed with MobSF.

Low
CVSS:7.5
The App logs information. Sensitive information should never be logged.
MASVS: MSTG-STORAGE-3
CWE-532 Insertion of Sensitive Information into Log File
Files:
 defpackage/ajh.java
defpackage/jbu.java
defpackage/utx.java
defpackage/np.java
defpackage/bev.java
defpackage/sod.java
defpackage/rfb.java
defpackage/di.java
defpackage/jaq.java
defpackage/ale.java
defpackage/itb.java
defpackage/vhj.java
defpackage/au.java
defpackage/bxh.java
defpackage/uud.java
defpackage/aiz.java
defpackage/nyl.java
defpackage/pqb.java
defpackage/paf.java
defpackage/cst.java
defpackage/irp.java
defpackage/inv.java
defpackage/aky.java
defpackage/chm.java
defpackage/rvv.java
defpackage/nzp.java
defpackage/lf.java
defpackage/usi.java
defpackage/ioq.java
defpackage/qd.java
defpackage/rgh.java
defpackage/emi.java
defpackage/ihv.java
defpackage/cr.java
defpackage/aqa.java
defpackage/rvg.java
defpackage/aln.java
defpackage/qiz.java
defpackage/inm.java
defpackage/cn.java
defpackage/ahz.java
defpackage/pxu.java
defpackage/ok.java
defpackage/ory.java
defpackage/awl.java
defpackage/cif.java
defpackage/qjd.java
defpackage/uqc.java
defpackage/rwd.java
defpackage/qse.java
defpackage/ubv.java
defpackage/iuj.java
defpackage/ank.java
defpackage/ajf.java
defpackage/bdv.java
defpackage/qsr.java
defpackage/ie.java
defpackage/use.java
defpackage/iom.java
defpackage/vhq.java
defpackage/vhw.java
defpackage/fd.java
defpackage/pqo.java
defpackage/jah.java
defpackage/pmw.java
defpackage/ahd.java
defpackage/all.java
defpackage/utk.java
com/samsung/android/sdk/camera/impl/filter/CameraFilterManagerImplV2.java
defpackage/yp.java
defpackage/utq.java
defpackage/utt.java
defpackage/qis.java
defpackage/azk.java
defpackage/rev.java
defpackage/qiv.java
defpackage/qtb.java
defpackage/bdp.java
defpackage/azb.java
defpackage/iod.java
defpackage/jbq.java
defpackage/prh.java
defpackage/ivj.java
defpackage/rml.java
defpackage/yeu.java
defpackage/yim.java
defpackage/inz.java
defpackage/af.java
defpackage/nxx.java
defpackage/fga.java
defpackage/nzi.java
defpackage/sou.java
defpackage/rqr.java
defpackage/rih.java
defpackage/cjn.java
defpackage/nxl.java
defpackage/apo.java
defpackage/alj.java
com/samsung/android/sdk/camera/impl/processor/EffectProcessorImpl.java
defpackage/zmm.java
defpackage/oc.java
defpackage/qoi.java
defpackage/vhz.java
defpackage/qsn.java
defpackage/pxx.java
defpackage/fyd.java
defpackage/ajx.java
defpackage/isn.java
defpackage/lra.java
defpackage/sow.java
defpackage/ijl.java
defpackage/mvn.java
defpackage/kk.java
defpackage/yey.java
defpackage/aik.java
com/samsung/android/camera/effect/SecEffectProcessor.java
defpackage/iwr.java
defpackage/nyd.java
defpackage/ind.java
defpackage/inp.java
defpackage/aob.java
defpackage/alk.java
defpackage/dou.java
defpackage/usc.java
defpackage/qik.java
defpackage/jbr.java
defpackage/iww.java
defpackage/ino.java
defpackage/aw.java
defpackage/vhf.java
defpackage/uto.java
com/samsung/android/sdk/camera/impl/processor/EffectProcessorImpl28.java
defpackage/qwq.java
defpackage/utv.java
defpackage/rew.java
defpackage/akd.java
defpackage/xlr.java
com/samsung/android/sdk/camera/impl/internal/ImageUtil.java
defpackage/utp.java
defpackage/qil.java
defpackage/oab.java
defpackage/upk.java
defpackage/qie.java
defpackage/qvr.java
defpackage/pj.java
defpackage/pyl.java
defpackage/uti.java
defpackage/vhg.java
defpackage/irz.java
defpackage/aoc.java
defpackage/ioc.java
defpackage/jcf.java
defpackage/nug.java
defpackage/rgp.java
defpackage/src.java
defpackage/vye.java
defpackage/qjw.java
defpackage/rfw.java
defpackage/oj.java
defpackage/ipb.java
defpackage/qzp.java
defpackage/ijq.java
defpackage/ubr.java
com/samsung/android/sdk/camera/impl/filter/CameraFilterManagerImpl28.java
defpackage/obg.java
defpackage/uqq.java
defpackage/ccp.java
defpackage/iqn.java
defpackage/aqt.java
defpackage/vhy.java
defpackage/uui.java
defpackage/wrr.java
defpackage/rph.java
defpackage/inl.java
defpackage/jcb.java
com/samsung/android/sdk/camera/SCamera.java
defpackage/ivk.java
defpackage/qiy.java
defpackage/vxe.java
defpackage/bka.java
defpackage/rfa.java
defpackage/rej.java
defpackage/dvl.java
defpackage/qwm.java
defpackage/byv.java
com/samsung/android/sdk/camera/impl/processor/EffectProcessorImplV2.java
defpackage/aqo.java
defpackage/bel.java
defpackage/bwn.java
defpackage/vww.java
defpackage/iny.java
defpackage/owd.java
defpackage/bhx.java
defpackage/wrq.java
defpackage/qlq.java
defpackage/cf.java
defpackage/mx.java
defpackage/dj.java
defpackage/agu.java
defpackage/azr.java
defpackage/iwo.java
defpackage/cfz.java
defpackage/ikv.java
defpackage/qiw.java
defpackage/iqd.java
defpackage/rfp.java
defpackage/oxs.java
defpackage/spi.java
defpackage/qam.java
defpackage/iyn.java
defpackage/zti.java
defpackage/usw.java
defpackage/rel.java
defpackage/cgd.java
defpackage/zmc.java
defpackage/zd.java
defpackage/nym.java
defpackage/vhx.java
defpackage/csy.java
defpackage/ej.java
defpackage/uua.java
defpackage/qjv.java
defpackage/qmq.java
defpackage/cir.java
defpackage/dvy.java
defpackage/cem.java
defpackage/izw.java
defpackage/zll.java
defpackage/ish.java
defpackage/vhe.java
defpackage/dh.java
com/samsung/android/camera/aremoji/AREmojiRender.java
defpackage/tyt.java
defpackage/rvh.java
defpackage/res.java
defpackage/alx.java
defpackage/dcx.java
defpackage/dvf.java
defpackage/inn.java
defpackage/utw.java
defpackage/qte.java
defpackage/ubj.java
com/samsung/android/sdk/camera/impl/filter/CameraFilterManagerImpl.java
defpackage/rwa.java
defpackage/chf.java
defpackage/ivd.java
defpackage/zks.java
defpackage/lap.java
defpackage/iru.java
defpackage/irw.java
defpackage/rfs.java
defpackage/ivp.java
defpackage/on.java
defpackage/bve.java
defpackage/usz.java
defpackage/qit.java
defpackage/ciu.java
defpackage/iwt.java
defpackage/uuk.java
defpackage/hi.java
defpackage/isd.java
defpackage/uts.java
defpackage/cii.java
defpackage/qiu.java
defpackage/pmz.java
defpackage/iti.java
defpackage/utf.java
defpackage/oy.java
defpackage/izt.java
defpackage/ivo.java
defpackage/lb.java
defpackage/ine.java
defpackage/ijc.java
defpackage/akh.java
defpackage/bdn.java
com/samsung/android/sdk/camera/impl/internal/NativeProcessorParameters.java
defpackage/euk.java
defpackage/upo.java
defpackage/rux.java
defpackage/sxb.java
defpackage/nuu.java
com/samsung/android/camera/aremoji/AREmojiProcessor.java
defpackage/nzh.java
defpackage/rpp.java
com/samsung/android/sdk/camera/impl/processor/CameraProcessorManagerImpl.java
defpackage/aks.java
defpackage/ikz.java
defpackage/pwk.java
defpackage/qkh.java
defpackage/cki.java
defpackage/sds.java
defpackage/alm.java
defpackage/rcu.java
defpackage/iyz.java
defpackage/iuu.java
defpackage/qto.java
defpackage/csx.java
defpackage/bfa.java
defpackage/vxh.java
defpackage/prg.java
defpackage/drd.java
defpackage/bet.java
defpackage/als.java
defpackage/cg.java
defpackage/nxn.java
defpackage/ipq.java
defpackage/aib.java
defpackage/oa.java
defpackage/hj.java
defpackage/pot.java
defpackage/og.java
defpackage/ior.java
defpackage/ubu.java
defpackage/ucb.java
defpackage/ird.java
defpackage/pvq.java
defpackage/qzm.java
com/samsung/android/sdk/camera/internal/SDKUtil.java
defpackage/bcu.java
defpackage/ehx.java
defpackage/iqk.java
defpackage/usg.java
defpackage/qce.java
defpackage/qzs.java
defpackage/ccy.java
defpackage/cip.java
defpackage/ijn.java
defpackage/dvz.java
defpackage/zjr.java
defpackage/ijb.java
defpackage/zgg.java
defpackage/kgq.java
defpackage/bjr.java
defpackage/isp.java
Medium
CVSS:7.4
Files may contain hardcoded sensitive information like usernames, passwords, keys etc.
MASVS: MSTG-STORAGE-14
CWE-312 Cleartext Storage of Sensitive Information
M9: Reverse Engineering
Files:
 defpackage/fan.java
defpackage/uvi.java
defpackage/jfa.java
defpackage/bnt.java
defpackage/eth.java
defpackage/quw.java
defpackage/ylr.java
defpackage/cay.java
defpackage/fbj.java
defpackage/sjd.java
defpackage/bzp.java
defpackage/uop.java
defpackage/hhv.java
defpackage/ivz.java
defpackage/eua.java
defpackage/ovu.java
defpackage/suw.java
defpackage/cbs.java
defpackage/qvt.java
defpackage/pne.java
defpackage/cca.java
defpackage/eox.java
Medium
CVSS:7.5
The App uses an insecure Random Number Generator.
MASVS: MSTG-CRYPTO-6
CWE-330 Use of Insufficiently Random Values
M5: Insufficient Cryptography
Files:
 defpackage/qhg.java
defpackage/svl.java
defpackage/pzz.java
defpackage/iix.java
defpackage/qgw.java
defpackage/szh.java
defpackage/oqc.java
defpackage/qgz.java
defpackage/ytz.java
defpackage/qto.java
j$/util/concurrent/ThreadLocalRandom.java
defpackage/stl.java
defpackage/kuw.java
defpackage/qsn.java
defpackage/ity.java
defpackage/wqi.java
defpackage/hhq.java
defpackage/pfu.java
defpackage/yhg.java
defpackage/qau.java
defpackage/enr.java
defpackage/zdq.java
defpackage/gma.java
defpackage/yhe.java
defpackage/ymq.java
defpackage/qhh.java
defpackage/gpj.java
defpackage/kal.java
defpackage/qce.java
defpackage/obg.java
defpackage/eg.java
defpackage/qd.java
defpackage/qgu.java
defpackage/vwr.java
defpackage/yky.java
defpackage/stx.java
defpackage/yhb.java
defpackage/pvz.java
defpackage/okv.java
defpackage/qmo.java
defpackage/sok.java
Medium
CVSS:5.9
App uses SQLite Database and execute raw SQL query. Untrusted user input in raw SQL queries can cause SQL Injection. Also sensitive information should be encrypted and written to the database.
CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
M7: Client Code Quality
Files:
 defpackage/fai.java
defpackage/sfb.java
defpackage/uox.java
defpackage/vhn.java
defpackage/rda.java
defpackage/erh.java
defpackage/uoy.java
defpackage/faj.java
defpackage/upb.java
defpackage/bes.java
defpackage/fut.java
Medium
CVSS:5.5
App creates temp file. Sensitive information should never be written into a temp file.
MASVS: MSTG-STORAGE-2
CWE-276 Incorrect Default Permissions
M2: Insecure Data Storage
Files:
 defpackage/kdj.java
defpackage/ggh.java
defpackage/hwk.java
defpackage/vww.java
defpackage/aw.java
defpackage/gei.java
defpackage/nss.java
defpackage/dvc.java
Medium
CVSS:5.9
SHA-1 is a weak hash known to have hash collisions.
MASVS: MSTG-CRYPTO-4
CWE-327 Use of a Broken or Risky Cryptographic Algorithm
M5: Insufficient Cryptography
Files:
 defpackage/usd.java
defpackage/usw.java
defpackage/oou.java
defpackage/itc.java
defpackage/uto.java
defpackage/poh.java
defpackage/rev.java
Info
CVSS:0
This App may have root detection capabilities.
MASVS: MSTG-RESILIENCE-1
Files:
 defpackage/paj.java
defpackage/qil.java
defpackage/rup.java
Medium
CVSS:7.4
MD5 is a weak hash known to have hash collisions.
MASVS: MSTG-CRYPTO-4
CWE-327 Use of a Broken or Risky Cryptographic Algorithm
M5: Insufficient Cryptography
Files:
 defpackage/hgy.java
defpackage/imv.java
defpackage/upd.java
defpackage/hgw.java
defpackage/rdw.java
Low
CVSS:0
This App copies data to clipboard. Sensitive data should not be copied to clipboard as other applications can access it.
MASVS: MSTG-STORAGE-10
Files:
 defpackage/bck.java
defpackage/lra.java
defpackage/myi.java
High
CVSS:5.5
App can read/write to External Storage. Any App can read data written to External Storage.
MASVS: MSTG-STORAGE-2
CWE-276 Incorrect Default Permissions
M2: Insecure Data Storage
Files:
 defpackage/eoa.java
defpackage/akn.java
defpackage/rad.java
Medium
CVSS:4.3
IP Address disclosure
MASVS: MSTG-CODE-2
CWE-200 Information Exposure
Files:
 defpackage/hox.java
Medium
CVSS:8.8
Insecure WebView Implementation. Execution of user controlled code in WebView is a critical Security Hole.
MASVS: MSTG-PLATFORM-7
CWE-749 Exposed Dangerous Method or Function
M1: Improper Platform Usage
Files:
 defpackage/gdh.java
Pygal United States: 6800

Map computed by Pithus.

Network analysis

Information computed with MobSF.

High Base config is insecurely configured to permit clear text traffic to all domains.
Scope: ['*']
Medium Base config is configured to trust system certificates.
Scope: ['*']
Info Domain config is securely configured to disallow clear text traffic to these domains in scope.
Scope: ['gvt1.com', 'g.co', 'goo.gl', 'google.com', 'googleapis.com', 'googleplex.com', 'googleusercontent.com', 'google-analytics.com', 'gstatic.com']

Domains analysis

Information computed with MobSF.

US yt3.ggpht.com 142.250.185.97
US about.google.com 142.250.186.78
US www.w3.org 128.30.52.100
US instantmessaging-pa.googleapis.com 142.250.185.138
US www.google-analytics.com 142.250.184.238
US www.webrtc.org 142.250.185.78
US www.gstatic.com 142.250.185.131
US scone-pa.clients6.google.com 172.217.23.106
US fonts.gstatic.com 172.217.16.195
US get.duo.google.com 142.250.181.238
US static.googleusercontent.com 142.250.181.225
US policies.google.com 142.250.185.174
US signaler-pa.clients6.google.com 142.250.185.138
US chat.google.com 142.250.184.238
US kstatic.googleusercontent.com 35.241.11.240
US contacts.google.com 172.217.16.142
US autopush-hangouts.googleapis.com 142.250.184.202
US duo.google.com 142.250.185.78
US g.co 142.250.185.142
US apis.google.com 172.217.18.14
US firebase.google.com 142.250.185.206
US daily-6-hangouts.googleapis.com 142.250.184.234
US preprod-hangouts.googleapis.com 172.217.18.10
US github.com 140.82.121.4
US play.google.com 142.250.74.206
US lh3.googleusercontent.com 142.250.186.129
US www.googlemail.com 142.250.186.133
US clients2.google.com 172.217.18.14
US developer.android.com 142.250.185.78
US daily-2-hangouts.googleapis.com 142.250.185.170
US www.youtube.com 142.250.184.238
US apps.google.com 142.250.185.110
US www.gmail.com 142.250.74.197
US stats.g.doubleclick.net 74.125.140.156
US docs.google.com 172.217.23.110
US daily-4-hangouts.googleapis.com 142.250.184.234
US workspace.google.com 142.250.184.206
US realtimesupport.clients6.google.com 142.250.186.170
US myaccount.google.com 142.250.181.238
US issuetracker.google.com 172.217.18.14
US storage.googleapis.com 142.250.186.144
US daily-1-hangouts.googleapis.com 142.250.185.138
US daily-0-hangouts.googleapis.com 142.250.186.138
US currents.google.com 142.250.185.110
fonts.googlegstatic.com
US loadtest-hangouts.googleapis.com 142.250.185.202
wwwogs.google.com
US accounts.google.com 142.250.184.237
US www.googleapis.com 142.250.185.74
schemas.android.com
US www.youtube-nocookie.com 216.58.212.142
US safety.google.com 172.217.16.206
US t.meet 172.217.18.14
US talkgadget.google.com 142.250.185.206
US www.google.com 172.217.18.4
US accounts.youtube.com 142.250.186.142
sslwww.gstatic.com
US daily-5-hangouts.googleapis.com 142.250.184.234
US www.googlevideo.com 142.250.185.164
US crbug.com 216.239.32.29
US gds.google.com 142.250.181.238
US transparencyreport.google.com 142.250.185.110
US clients6.google.com 172.217.16.206
accounts.duo.com
US support.google.com 142.250.185.174
US i.ytimg.com 142.250.185.246
US hangouts.googleapis.com 142.250.181.234
US daily-3-hangouts.googleapis.com 216.58.212.138
US tachyon-android.firebaseio.com 34.120.160.131
US xml.org 104.239.240.11
ns.adobe.com
US daily-hangouts.googleapis.com 142.250.181.234
US www.ccil.org 142.250.186.83
US plus.google.com 172.217.18.110

URL analysis

Information computed with MobSF.

https://duo.google.com
Defined in defpackage/gti.java
https://support.google.com/mail/answer/1075549
Defined in defpackage/nnj.java