Pithus report for Flexbooru - onlymash.flexbooru.play

File sums

MD5	`d8ffb2501bf1ba681fcf7751768669b2`
SHA1	`aa0ed6297dbeac239112402bbe0c3e39e97538ba`
SHA256	`6ad9756613472d177ccf1b0fedf25a42820cb3e2b20ce6e523567c2744276277`
Size	`4.34MB`

APKiD

Information computed with APKiD.

`/tmp/tmpkut_81n4!classes.dex`
anti_vm	`Build.FINGERPRINT check` `Build.MANUFACTURER check`
compiler	`r8 without marker (suspicious)`
`/tmp/tmpkut_81n4!classes2.dex`
compiler	`r8 without marker (suspicious)`

SSdeep

Information computed with ssdeep.

APK file	`98304:kMWjjiplyZEhx1F3Zl5uYFP+ASe1TmfV1Pz1GQ7ijuhCAq2irFtkZ:kMWjKt3l4eJmfV1PzH7pIxkZ`
Manifest	`384:mGrv55UQtzRzetyTQkCUdXza4FAFP4SuHQqxRsJoJdJblS9BbdeuRvv:mGrv55UQt…`
`classes.dex`	`49152:4SlqxNI9ysWc8JP2XX/f74NavnVXBX6TDFHagZJ5N79iYExZvtLJH2rMsDCz88p…`
`classes2.dex`	`6144:5fc5obtGX6yEnjZTpLZzhnZWggom1YmZA66j:7pGX6yEndpLZXg196j`

Dexofuzzy

Information computed with Dexofuzzy.

APK file	`6144:FvD1WTEH4QMyNtA+Q2O9ygsHzUTh5LUDNLwYhVsSoToEh5aMAQbc2Sz:Rhv4pItQ…`
`classes.dex`	`6144:FvD1WTEH4QMyNtA+Q2O9ygsHzUTh5LUDNLwYhVsSoToEh5aMAL:Rhv4pItQzUP+j…`
`classes2.dex`	`384:zRfMnpS84M8oPru9fRxkj3PF/F/03OZTR6lhf0FKY+uYhcNbcM39d83lcpaeRd18:…`

APK details

Information computed with AndroGuard and Pithus.

Package	`onlymash.flexbooru.play`
App name	`Flexbooru`
Version name	`3.0.4`
Version code	`1255`
SDK	`21` - `32`
UAID	`73427b09a2fc44fe8f89b14afbd5a708e8cb2e9a`
Signature	Not signed
Frosting	Not frosted

Certificate details

Information computed with AndroGuard.

Manifest analysis

Information computed with MobSF.

Low	App has a Network Security Configuration[android:networkSecurityConfig=@xml/network_security_config] The Network Security Configuration feature lets apps customize their network security settings in a safe, declarative configuration file without modifying app code. These settings can be configured for specific domains and for a specific app.
Medium	Application Data can be Backed up[android:allowBackup=true] This flag allows anyone to backup your application data via adb. It allows users who have enabled USB debugging to copy application data off of the device.
High	Activity (onlymash.flexbooru.ui.activity.MuzeiActivity) is not Protected. [android:exported=true] An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High	Activity (onlymash.flexbooru.ui.activity.BooruActivity) is not Protected. [android:exported=true] An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High	Content Provider (onlymash.flexbooru.content.MuzeiProvider) is Protected by a permission, but the protection level of the permission should be checked. Permission: com.google.android.apps.muzei.api.ACCESS_PROVIDER [android:exported=true] A Content Provider is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High	Service (androidx.work.impl.background.systemjob.SystemJobService) is Protected by a permission, but the protection level of the permission should be checked. Permission: android.permission.BIND_JOB_SERVICE [android:exported=true] A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High	Broadcast Receiver (androidx.work.impl.diagnostics.DiagnosticsReceiver) is Protected by a permission, but the protection level of the permission should be checked. Permission: android.permission.DUMP [android:exported=true] A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.

Browsable activities

Information computed with MobSF.

onlymash.flexbooru.ui.activity.BooruActivity

Schemes: booru://

Main Activity

Information computed with AndroGuard.

onlymash.flexbooru.ui.activity.MainActivity

Activities

Information computed with AndroGuard.

onlymash.flexbooru.ui.activity.HistoryActivity
onlymash.flexbooru.ui.activity.WhatAnimeActivity
onlymash.flexbooru.ui.activity.SauceNaoActivity
onlymash.flexbooru.ui.activity.TagBlacklistActivity
onlymash.flexbooru.ui.activity.AboutActivity
onlymash.flexbooru.ui.activity.CopyrightActivity
onlymash.flexbooru.ui.activity.MuzeiActivity
onlymash.flexbooru.ui.activity.CommentActivity
onlymash.flexbooru.ui.activity.SearchActivity
onlymash.flexbooru.ui.activity.SettingsActivity
onlymash.flexbooru.ui.activity.AccountActivity
onlymash.flexbooru.ui.activity.AccountConfigActivity
onlymash.flexbooru.ui.activity.DetailActivity
onlymash.flexbooru.ui.activity.BooruConfigActivity
onlymash.flexbooru.ui.activity.BooruActivity
onlymash.flexbooru.ui.activity.MainActivity

Receivers

Information computed with AndroGuard.

onlymash.flexbooru.receiver.DownloadNotificationClickReceiver
androidx.work.impl.utils.ForceStopRunnable$BroadcastReceiver
androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver
androidx.work.impl.diagnostics.DiagnosticsReceiver

Services

Information computed with AndroGuard.

androidx.work.impl.background.systemalarm.SystemAlarmService
androidx.work.impl.background.systemjob.SystemJobService
androidx.work.impl.foreground.SystemForegroundService
androidx.room.MultiInstanceInvalidationService

Hunting matches

Information computed by Pithus.

Yara ruleset: mail

with_urls

matching files:
/classes.dex

NIAP analysis

Information computed with MobSF.

FCS_RBG_EXT.1.1	The application invoke platform-provided DRBG functionality for its cryptographic operations. Random Bit Generation Services
FCS_STO_EXT.1.1	The application does not store any credentials to non-volatile memory. Storage of Credentials
FCS_CKM_EXT.1.1	The application generate no asymmetric cryptographic keys. Cryptographic Key Generation Services
FDP_DEC_EXT.1.1	The application has access to ['network connectivity']. Access to Platform Resources
FDP_DEC_EXT.1.2	The application has access to no sensitive information repositories. Access to Platform Resources
FDP_NET_EXT.1.1	The application has user/application initiated network communications. Network Communications
FDP_DAR_EXT.1.1	The application implement functionality to encrypt sensitive data in non-volatile memory. Encryption Of Sensitive Application Data
FMT_MEC_EXT.1.1	The application invoke the mechanisms recommended by the platform vendor for storing and setting configuration options. Supported Configuration Mechanism
FTP_DIT_EXT.1.1	The application does encrypt some transmitted data with HTTPS/TLS/SSH between itself and another trusted IT product. Protection of Data in Transit
FCS_RBG_EXT.2.1 FCS_RBG_EXT.2.2	The application perform all deterministic random bit generation (DRBG) services in accordance with NIST Special Publication 800-90A using Hash_DRBG. The deterministic RBG is seeded by an entropy source that accumulates entropy from a platform-based DRBG and a software-based noise source, with a minimum of 256 bits of entropy at least equal to the greatest security strength (according to NIST SP 800-57) of the keys and hashes that it will generate. Random Bit Generation from Application
FCS_COP.1.1(1)	The application perform encryption/decryption in accordance with a specified cryptographic algorithm AES-CBC (as defined in NIST SP 800-38A) mode or AES-GCM (as defined in NIST SP 800-38D) and cryptographic key sizes 256-bit/128-bit. Cryptographic Operation - Encryption/Decryption
FCS_COP.1.1(2)	The application perform cryptographic hashing services in accordance with a specified cryptographic algorithm SHA-1/SHA-256/SHA-384/SHA-512 and message digest sizes 160/256/384/512 bits. Cryptographic Operation - Hashing
FCS_HTTPS_EXT.1.2	The application implement HTTPS using TLS. HTTPS Protocol
FCS_HTTPS_EXT.1.3	The application notify the user and not establish the connection or request application authorization to establish the connection if the peer certificate is deemed invalid. HTTPS Protocol
FIA_X509_EXT.1.1	The application invoked platform-provided functionality to validate certificates in accordance with the following rules: ['The application validate a certificate path by ensuring the presence of the basicConstraints extension and that the CA flag is set to TRUE for all CA certificates']. X.509 Certificate Validation
FIA_X509_EXT.1.2	The application treat a certificate as a CA certificate only if the basicConstraints extension is present and the CA flag is set to TRUE. X.509 Certificate Validation
FIA_X509_EXT.2.1	The application use X.509v3 certificates as defined by RFC 5280 to support authentication for HTTPS , TLS. X.509 Certificate Authentication
FCS_CKM.1.1(2)	The application shall generate symmetric cryptographic keys using a Random Bit Generator as specified in FCS_RBG_EXT.1 and specified cryptographic key sizes 128 bit or 256 bit. Cryptographic Symmetric Key Generation

Code analysis

Information computed with MobSF.

Low CVSS:7.5	The App logs information. Sensitive information should never be logged. MASVS: MSTG-STORAGE-3 CWE-532 Insertion of Sensitive Information into Log File Files: l0/d0.java com/bumptech/glide/load/data/l.java a1/a.java f4/i.java tb/h.java l0/n.java s1/d.java d3/c.java l0/b.java b3/j.java n4/h.java e0/a.java cb/a.java l5/a.java t1/b.java w/a.java r5/e0.java c0/g.java m3/k.java z2/q.java h2/y.java v2/e.java g3/p.java e/a0.java w/b.java d3/e.java i5/a.java l0/a.java w4/b.java p3/l.java com/bumptech/glide/load/data/b.java t0/c.java c0/h.java e5/a.java k5/d.java e/y.java a4/b.java ub/d.java com/davemorrissey/labs/subscaleview/SubsamplingScaleImageView.java z2/a0.java q2/u.java r/d.java o0/b.java k1/e0.java l4/e.java w6/f.java u1/a.java a3/j.java g3/z.java v/d.java q4/a.java q1/a.java com/bumptech/glide/load/engine/GlideException.java y1/a.java m5/g.java d6/a.java com/bumptech/glide/load/data/j.java a0/e.java e/x.java p4/w.java r5/p.java p0/j.java y2/a.java a0/k.java d0/h.java d0/e.java n4/f.java u6/b.java n4/l.java j1/a.java m3/l.java f/a.java f5/a.java q3/i.java j5/a.java b5/z.java z2/m.java m3/o.java kd/b.java x4/g.java com/davemorrissey/labs/subscaleview/decoder/SkiaPooledImageRegionDecoder.java j/g.java g3/k.java k5/c.java v2/d.java a2/c.java c0/l.java g1/a0.java p0/h.java g3/l.java n4/b.java j0/c.java a2/g.java q3/d.java z2/k.java c4/a.java m4/d.java q4/c.java p4/t.java m3/q.java c3/a.java n5/a.java h0/i.java e/h.java a4/e.java o4/i.java e/j.java k3/a.java g4/b.java b3/e.java a3/i.java ed/b.java g1/a.java g3/x.java d0/i.java z2/i.java i1/d.java e0/e.java q6/a.java e5/c.java d3/r.java g3/c.java e/k.java z3/c.java g2/i.java e/w.java com/bumptech/glide/i.java com/bumptech/glide/GeneratedAppGlideModuleImpl.java u3/a.java s5/g.java n4/e.java com/bumptech/glide/c.java w2/a.java d0/f.java i1/c.java i5/c.java com/bumptech/glide/j.java d0/m.java com/bumptech/glide/load/resource/bitmap/DefaultImageHeaderParser.java n1/h0.java n5/k.java n1/q.java d0/g.java g3/i.java u0/b.java l0/b0.java w6/e.java ab/d.java d2/b.java c1/b.java k4/a.java p0/c.java r5/b.java n1/a0.java l1/d.java k3/i.java p4/f.java o6/e.java p4/c0.java g1/h.java f3/a.java l0/n0.java w5/g.java g4/a0.java p4/l.java a0/f.java p4/o.java t6/d.java m5/f.java
Medium CVSS:5.9	App uses SQLite Database and execute raw SQL query. Untrusted user input in raw SQL queries can cause SQL Injection. Also sensitive information should be encrypted and written to the database. CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') M7: Client Code Quality Files: `t1/a.java q5/g.java z3/c.java q5/b.java d4/b.java`
Info CVSS:0	This App uses SSL certificate pinning to detect or prevent MITM attacks in secure communication channel. MASVS: MSTG-NETWORK-4 Files: `tb/h.java tb/d.java tb/c.java tb/g.java`
Medium CVSS:7.5	The App uses an insecure Random Number Generator. MASVS: MSTG-CRYPTO-6 CWE-330 Use of Insufficiently Random Values M5: Insufficient Cryptography Files: `j$/util/concurrent/ThreadLocalRandom.java fa/a.java ga/a.java fa/b.java b5/c0.java`
Medium CVSS:7.4	Files may contain hardcoded sensitive information like usernames, passwords, keys etc. MASVS: MSTG-STORAGE-14 CWE-312 Cleartext Storage of Sensitive Information M9: Reverse Engineering Files: `y4/a.java z2/r.java`
Medium CVSS:5.9	SHA-1 is a weak hash known to have hash collisions. MASVS: MSTG-CRYPTO-4 CWE-327 Use of a Broken or Risky Cryptographic Algorithm M5: Insufficient Cryptography Files: `o5/h.java`
Low CVSS:0	This App copies data to clipboard. Sensitive data should not be copied to clipboard as other applications can access it. MASVS: MSTG-STORAGE-10 Files: `fd/h.java`
Medium CVSS:5.5	App creates temp file. Sensitive information should never be written into a temp file. MASVS: MSTG-STORAGE-2 CWE-276 Incorrect Default Permissions M2: Insecure Data Storage Files: `n1/h0.java`

Map computed by Pithus.

Network analysis

Information computed with MobSF.

High	Base config is insecurely configured to permit clear text traffic to all domains. Scope: ['*']
Medium	Base config is configured to trust system certificates. Scope: ['*']

Domains analysis

Information computed with MobSF.

US	`media.trace.moe`	`104.25.244.47`
US	`www.w3.org`	`128.30.52.100`
US	`trace.moe`	`104.25.244.47`
US	`discord.gg`	`162.159.135.234`
US	`crowdin.com`	`3.226.129.246`
US	`sankaku.app`	`208.100.24.247`
US	`saucenao.com`	`172.67.70.6`
US	`fiepi.me`	`104.21.5.54`
US	`flexbooru-pay.fiepi.com`	`104.21.95.193`
US	`github.com`	`140.82.121.4`
NL	`doh.powerdns.org`	`136.144.215.158`
US	`cloudflare-dns.com`	`104.16.248.249`
DE	`ktor.io`	`143.204.98.104`
US	`aomedia.org`	`185.199.110.153`
DE	`developer.apple.com`	`17.253.57.208`
US	`raw.githubusercontent.com`	`185.199.108.133`
US	`issuetracker.google.com`	`142.250.185.206`
US	`dns.google`	`8.8.4.4`
	`schemas.android.com`
GB	`t.me`	`149.154.167.99`
US	`mikepenz.com`	`104.21.27.65`
US	`blog.fiepi.com`	`172.67.147.45`
US	`doh.cleanbrowsing.org`	`185.228.168.10`
	`ns.adobe.com`

URL analysis

Information computed with MobSF.

`http://www.w3.org/2001/XMLSchema-instance` `http://www.w3.org/2000/xmlns/` Defined in `fb/v.java`
`http://www.w3.org/2001/XMLSchema-instance` `http://www.w3.org/2000/xmlns/` Defined in `fb/v.java`
`http://www.w3.org/2001/XMLSchema` Defined in `fb/b.java`
`http://www.w3.org/XML/1998/namespace` `http://www.w3.org/2000/xmlns/` Defined in `bb/i.java`
`http://www.w3.org/XML/1998/namespace` `http://www.w3.org/2000/xmlns/` Defined in `bb/i.java`
`http://www.w3.org/2000/xmlns/` Defined in `bb/b.java`
`http://schemas.android.com/apk/res/android` Defined in `c0/l.java`
`https://doh.powerdns.org` `https://dns.google/dns-query` `https://doh.cleanbrowsing.org/doh/security-filter/` `https://cloudflare-dns.com/dns-query` Defined in `bc/f0.java`
`https://doh.powerdns.org` `https://dns.google/dns-query` `https://doh.cleanbrowsing.org/doh/security-filter/` `https://cloudflare-dns.com/dns-query` Defined in `bc/f0.java`
`https://doh.powerdns.org` `https://dns.google/dns-query` `https://doh.cleanbrowsing.org/doh/security-filter/` `https://cloudflare-dns.com/dns-query` Defined in `bc/f0.java`
`https://doh.powerdns.org` `https://dns.google/dns-query` `https://doh.cleanbrowsing.org/doh/security-filter/` `https://cloudflare-dns.com/dns-query` Defined in `bc/f0.java`
`http://www.w3.org/XML/1998/namespace` `http://www.w3.org/2000/xmlns/` Defined in `db/a.java`
`http://www.w3.org/XML/1998/namespace` `http://www.w3.org/2000/xmlns/` Defined in `db/a.java`
`https://sankaku.app/images/192x192.png` Defined in `onlymash/flexbooru/ui/activity/MainActivity.java`
`https://saucenao.com/user.php` Defined in `onlymash/flexbooru/ui/activity/SauceNaoActivity.java`
`https://trace.moe/thumbnail.php?anilist_id=` `data:image/jpeg;base64,` Defined in `onlymash/flexbooru/ui/activity/WhatAnimeActivity.java`
`https://discord.gg/zxAX5Jh` `https://crowdin.com/project/flexbooru` `https://github.com/flexbooru/flexbooru/issues` `https://t.me/Flexbooru` `https://blog.fiepi.com` Defined in `onlymash/flexbooru/ui/fragment/AboutFragment.java`
`https://discord.gg/zxAX5Jh` `https://crowdin.com/project/flexbooru` `https://github.com/flexbooru/flexbooru/issues` `https://t.me/Flexbooru` `https://blog.fiepi.com` Defined in `onlymash/flexbooru/ui/fragment/AboutFragment.java`
`https://discord.gg/zxAX5Jh` `https://crowdin.com/project/flexbooru` `https://github.com/flexbooru/flexbooru/issues` `https://t.me/Flexbooru` `https://blog.fiepi.com` Defined in `onlymash/flexbooru/ui/fragment/AboutFragment.java`
`https://discord.gg/zxAX5Jh` `https://crowdin.com/project/flexbooru` `https://github.com/flexbooru/flexbooru/issues` `https://t.me/Flexbooru` `https://blog.fiepi.com` Defined in `onlymash/flexbooru/ui/fragment/AboutFragment.java`
`https://discord.gg/zxAX5Jh` `https://crowdin.com/project/flexbooru` `https://github.com/flexbooru/flexbooru/issues` `https://t.me/Flexbooru` `https://blog.fiepi.com` Defined in `onlymash/flexbooru/ui/fragment/AboutFragment.java`
`https://trace.moe` Defined in `dc/e.java`
`https://saucenao.com` Defined in `dc/d.java`
`https://aomedia.org/emsg/ID3` `https://developer.apple.com/streaming/emsg-id3` Defined in `u4/a.java`
`https://aomedia.org/emsg/ID3` `https://developer.apple.com/streaming/emsg-id3` Defined in `u4/a.java`
`https://raw.githubusercontent.com` `https://flexbooru-pay.fiepi.com` `http://fiepi.me` Defined in `jc/f.java`
`https://raw.githubusercontent.com` `https://flexbooru-pay.fiepi.com` `http://fiepi.me` Defined in `jc/f.java`
`https://raw.githubusercontent.com` `https://flexbooru-pay.fiepi.com` `http://fiepi.me` Defined in `jc/f.java`
`https://sankaku.app` `https://sankaku.app/` Defined in `jc/d.java`
`https://sankaku.app` `https://sankaku.app/` Defined in `jc/d.java`
`https://issuetracker.google.com/issues/new?component=413106` Defined in `k1/t1.java`
`https://issuetracker.google.com/issues/new?component=413106` Defined in `k1/e0.java`
`https://ktor.io/clients/http-client/engines.html` Defined in `n8/j.java`
`http://ns.adobe.com/xap/1.0/` Defined in `a1/a.java`
`http://www.w3.org/ns/ttml#parameter` Defined in `k5/c.java`
`http://ns.adobe.com/xap/1.0/` Defined in `k4/a.java`
`https://sankaku.app/` Defined in `gd/e.java`
`https://media.trace.moe/video/` Defined in `o5/h.java`
`http://www.w3.org/2000/xmlns/` Defined in `cb/b.java`
`http://mikepenz.com/` `https://github.com/mikepenz/FastAdapter` `https://github.com/mikepenz/MaterialDrawer` Defined in `Android String Resource`
`http://mikepenz.com/` `https://github.com/mikepenz/FastAdapter` `https://github.com/mikepenz/MaterialDrawer` Defined in `Android String Resource`
`http://mikepenz.com/` `https://github.com/mikepenz/FastAdapter` `https://github.com/mikepenz/MaterialDrawer` Defined in `Android String Resource`

Permissions analysis

Information computed with MobSF.

Low	`android.permission.INTERNET`	full Internet access Allows an application to create network sockets.
Low	`android.permission.ACCESS_NETWORK_STATE`	view network status Allows an application to view the status of all networks.
Low	`android.permission.WAKE_LOCK`	prevent phone from sleeping Allows an application to prevent the phone from going to sleep.
Low	`android.permission.FOREGROUND_SERVICE`	Allows a regular application to use Service.startForeground.

Threat analysis

Information computed with Quark-Engine.

Confidence: 100%	Start another application from current application
Confidence: 100%	Load external class
Confidence: 100%	Implicit intent(view a web page, make a phone call, etc.)
Confidence: 100%	Find a method from given class name, usually for reflection
Confidence: 100%	Read data and put it into a buffer stream
Confidence: 100%	Connect to a URL and receive input stream from the server
Confidence: 100%	Method reflection
Confidence: 100%	Connect to a URL and read data from it
Confidence: 100%	Retrieve data from broadcast
Confidence: 100%	Read sensitive data(SMS, CALLLOG, etc)
Confidence: 100%	Implicit intent(view a web page, make a phone call, etc.) via setData
Confidence: 100%	Connect to a URL and get the response code
Confidence: 100%	Send notification
Confidence: 100%	Monitor the broadcast action events (BOOT_COMPLETED)
Confidence: 100%	Get absolute path of the file and store in string
Confidence: 100%	Check the current active network type
Confidence: 100%	Query The ISO country code
Confidence: 100%	Check the network capabilities
Confidence: 100%	Get last known location of the device
Confidence: 100%	Get calendar information
Confidence: 100%	Get location of the device
Confidence: 100%	Method reflection
Confidence: 100%	Hide the current app's icon
Confidence: 100%	Connect to the remote server through the given URL
Confidence: 100%	Query data from URI (SMS, CALLLOGS)
Confidence: 100%	Get the time of current location
Confidence: 100%	Initialize class object dynamically
Confidence: 100%	Connect to a URL and set request method
Confidence: 80%	Read file and put it into a stream
Confidence: 80%	Get declared method from given method name
Confidence: 80%	Read file from assets directory
Confidence: 80%	Read the input stream from given URL
Confidence: 80%	Get resource file from res/raw directory

Behavior analysis

Information computed with MobSF.

Android notifications

       onlymash/flexbooru/worker/DownloadWorker.java

Base64 decode

       id/p0.java
       p5/g.java
       k5/g.java
       g4/a0.java
       mc/b.java
       d3/d.java
       c0/e.java

Base64 encode

       id/p0.java
       i0/f.java
       mc/b.java
       id/n0.java

Certificate handling

       kb/a.java
       tb/h.java
       tb/d.java
       kb/z.java
       pb/b.java
       ub/k.java
       qb/h.java

Content provider

       z3/c.java
       onlymash/flexbooru/worker/MuzeiArtWorker.java

Crypto

       q5/g.java

Gps location

       e/a0.java
       e/k.java

Get installed applications

       p0/i.java

Get system service

       p5/m.java
       onlymash/flexbooru/ui/activity/BooruActivity.java
       a0/g.java
       e/k.java
       a0/p.java
       kd/i.java
       n2/k.java
       h2/w.java
       a4/m0.java
       b3/j.java
       q3/d.java
       qd/b.java
       n5/k.java
       k2/b.java
       l0/o0.java
       l0/b0.java
       b0/a.java
       s5/k.java
       j2/a.java
       a4/l0.java
       q0/c.java
       q3/i.java
       fd/h.java
       q2/l.java
       n1/a0.java
       m3/o.java
       q2/q.java
       com/davemorrissey/labs/subscaleview/decoder/SkiaPooledImageRegionDecoder.java
       onlymash/flexbooru/worker/DownloadWorker.java
       r5/d0.java
       o6/r.java
       a7/p.java
       t5/j.java
       j/c.java
       r5/u.java
       n2/i.java
       t0/a.java

Http connection

       com/bumptech/glide/load/data/j.java
       z3/c.java

Inter process communication

       y3/c.java
       onlymash/flexbooru/ui/activity/AccountConfigActivity.java
       e/t.java
       onlymash/flexbooru/ui/fragment/AboutFragment.java
       g1/l.java
       o5/j.java
       ld/c.java
       a0/m.java
       ld/u.java
       j2/c.java
       onlymash/flexbooru/ui/activity/SearchActivity.java
       n1/m.java
       i1/e.java
       k/a.java
       c/b.java
       a0/h.java
       n/a.java
       r5/e0.java
       a/b.java
       a0/n.java
       n1/n.java
       n2/a.java
       e/h.java
       j2/b.java
       c/a.java
       j2/a.java
       z7/g.java
       b4/w.java
       ld/m.java
       onlymash/flexbooru/ui/activity/AccountActivity.java
       a/a.java
       c/d.java
       onlymash/flexbooru/receiver/DownloadNotificationClickReceiver.java
       o5/h.java
       g1/a.java
       r5/u.java
       onlymash/flexbooru/ui/fragment/PostFragment.java
       onlymash/flexbooru/ui/activity/MainActivity.java
       n1/i.java
       onlymash/flexbooru/ui/activity/BooruActivity.java
       e/k.java
       z3/c.java
       ld/l.java
       n2/k.java
       n2/e.java
       onlymash/flexbooru/ui/activity/SauceNaoActivity.java
       a0/e.java
       onlymash/flexbooru/ui/activity/CopyrightActivity.java
       k/e.java
       c/e.java
       o5/g.java
       a0/k.java
       b0/a.java
       d/a.java
       p0/i.java
       onlymash/flexbooru/ui/activity/CommentActivity.java
       n2/c.java
       onlymash/flexbooru/ui/activity/DetailActivity.java
       h0/b.java
       onlymash/flexbooru/ui/fragment/BooruConfigFragment.java
       l1/d.java
       m3/o.java
       onlymash/flexbooru/worker/DownloadWorker.java
       a4/c.java
       g1/h.java
       a0/l.java
       c/f.java
       a0/c.java
       o5/l.java
       c/c.java
       h2/n.java
       k/c.java
       a4/f.java

Java reflection

       l0/d0.java
       tb/b.java
       xd/s.java
       tb/h.java
       g1/a0.java
       p0/h.java
       g2/r.java
       y9/b.java
       q2/d.java
       v1/a.java
       j0/c.java
       xd/c0.java
       i9/p.java
       e0/a.java
       h2/z.java
       g1/w.java
       i1/e.java
       j$/util/DesugarCollections.java
       ra/c.java
       w/a.java
       r5/e0.java
       j$/util/concurrent/u.java
       aa/a.java
       ca/a0.java
       g1/s.java
       d0/j.java
       y9/a.java
       g4/f.java
       xd/w.java
       xd/t.java
       x9/a.java
       tb/c.java
       q2/l.java
       yb/k.java
       l0/g.java
       e/y.java
       xd/z.java
       r5/d0.java
       d0/i.java
       e/s.java
       xd/i.java
       e0/e.java
       tb/e.java
       m9/m.java
       e/k.java
       c0/j.java
       h2/w.java
       d0/f.java
       n3/e.java
       y1/a.java
       a0/e.java
       xd/k.java
       d0/g.java
       z9/a.java
       l0/b0.java
       ra/v.java
       b2/a.java
       b0/a.java
       d0/h.java
       p0/i.java
       i6/a.java
       z0/b.java
       ub/f.java
       p0/c.java
       n1/a0.java
       fd/b.java
       l1/d.java
       j/g.java
       l0/n0.java
       tb/d.java
       ma/d1.java
       xd/y.java
       a0/f.java
       x9/f.java
       tb/g.java
       k/c.java
       ca/e.java

Local file i/o operations

       ed/b.java
       d0/m.java
       z3/c.java
       t1/b.java
       n1/h0.java
       h2/o.java
       bc/e.java
       ld/t.java
       z2/m.java
       hd/b.java

Message digest

       b3/k.java
       s3/a.java
       z2/p.java
       x2/f.java
       g3/m.java
       x2/e.java
       yb/e0.java
       g3/o.java
       f3/b.java
       g3/z.java
       yb/h.java
       z2/e.java
       s3/b.java
       d3/f.java
       x2/g.java
       o5/h.java
       g3/h.java
       z2/x.java
       g3/i.java
       k3/e.java

Query database of sms, contacts etc

       i0/e.java
       z3/c.java
       u0/b.java
       y2/a.java

Sending broadcast

       onlymash/flexbooru/ui/activity/DetailActivity.java

Set or read clipboard data

       onlymash/flexbooru/ui/activity/BooruActivity.java
       fd/h.java
       td/w.java

Starting activity

       onlymash/flexbooru/ui/activity/AccountConfigActivity.java
       onlymash/flexbooru/ui/activity/BooruActivity.java
       onlymash/flexbooru/ui/fragment/AboutFragment.java
       z3/c.java
       ld/l.java
       onlymash/flexbooru/ui/activity/CommentActivity.java
       o5/j.java
       onlymash/flexbooru/ui/activity/DetailActivity.java
       b4/w.java
       ld/m.java
       onlymash/flexbooru/ui/activity/AccountActivity.java
       onlymash/flexbooru/ui/activity/SearchActivity.java
       onlymash/flexbooru/receiver/DownloadNotificationClickReceiver.java
       o5/h.java
       i1/e.java
       g1/a.java
       onlymash/flexbooru/ui/activity/CopyrightActivity.java
       a0/c.java
       o5/l.java
       onlymash/flexbooru/ui/activity/MainActivity.java
       o5/g.java
       b0/a.java

Starting service

       q2/s.java
       j2/c.java
       h2/n.java
       j2/b.java

Tcp socket

       tb/b.java
       sb/e.java
       pb/g.java
       pb/a.java
       yb/g0.java
       tb/h.java
       yb/v.java
       sb/n.java
       f8/a.java
       pb/j.java
       io/ktor/network/sockets/SocketTimeoutException.java
       pb/i.java
       mb/h.java
       vb/a.java
       kb/a.java
       kb/z.java
       pb/b.java
       r8/a.java
       qb/h.java
       pb/h.java