0/63

Threat

org.mozilla.firefox

Firefox

Analyzed on 2022-08-03T21:51:56.781472

33

permissions

27

activities

34

services

13

receivers

47

domains

File sums

MD5 916984779fe804417a261e9a675a2b8b
SHA1 9225c1110b6102042eae838f92de697c13c8e4c3
SHA256 9f5d2b4c2673212a693099a0f0194fbce17c349b4cc17f16456237de7b299fed
Size 51.06MB

APKiD

Information computed with APKiD.

/tmp/tmp4cm2mhdq!classes.dex
anti_vm
  • Build.FINGERPRINT check
  • Build.MODEL check
  • Build.MANUFACTURER check
  • Build.PRODUCT check
  • Build.BOARD check
  • possible Build.SERIAL check
  • SIM operator check
anti_debug
  • Debug.isDebuggerConnected() check
compiler
  • r8 without marker (suspicious)

SSdeep

Information computed with ssdeep.

APK file 1572864:R9JgzuCY7DvPeBIMnHEhJZ2qSXh7dgITAaz6:TJgz6PeyuH1gITp2
Manifest 768:Jjp+6AHZ3mgS3SuYdP7ZSiceNS9QtgUDao9Od89i33fJ3yNMASUMtiQAQSpcKHOF:…
classes.dex 49152:2xU8BFzSqhPniioEcTu/7CjgJAiaGDQwZDEXP3upoU7RqNhYlGXT4BgeSeT4frD…

Dexofuzzy

Information computed with Dexofuzzy.

APK file 3072:HuxWSEA4+zufQd4zRDCqtYzTfrntKwqiSItehXQqVyVi1HHHjF/SUrEqcmsk2DYF…
classes.dex 3072:HuxWSEA4+zufQd4zRDCqtYzTfrntKwqiSItehXQqVyVi1HHHjF/SUrEqcmsk2DYF…

APK details

Information computed with AndroGuard and Pithus.

Package org.mozilla.firefox
App name Firefox
Version name 68.11.0
Version code 2015711849
SDK 16 - 28
UAID 0992532694558859c09d4071243035f6fe5a20ec
Signature Signature V1
Frosting Not frosted

Certificate details

Information computed with AndroGuard.

MD5 b1e1bcee2733025ece9456e419a814a3
SHA1 920f4876a6a57b4a6a2f4ccaf65f7d29ce26ff2c
SHA256 a78b62a5165b4494b2fead9e76a280d22d937fee6251aece599446b2ea319b04
Issuer Common Name: Release Engineering, Organizational Unit: Release Engineering, Organization: Mozilla Corporation, Locality: Mountain View, State/Province: California, Country: US
Not before 2010-08-23T23:00:24+00:00
Not after 2038-01-08T23:00:24+00:00

Manifest analysis

Information computed with MobSF.

High Clear text traffic is Enabled For App[android:usesCleartextTraffic=true]
The app intends to use cleartext network traffic, such as cleartext HTTP, FTP stacks, DownloadManager, and MediaPlayer. The default value for apps that target API level 27 or lower is "true". Apps that target API level 28 or higher default to "false". The key reason for avoiding cleartext traffic is the lack of confidentiality, authenticity, and protections against tampering; a network attacker can eavesdrop on transmitted data and also modify it without being detected.
High Activity (org.mozilla.gecko.LauncherActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity-Alias (.App) is not Protected.An intent-filter exists.
An Activity-Alias is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity-Alias is explicitly exported.
High TaskAffinity is set for Activity
(org.mozilla.gecko.BrowserApp)
If taskAffinity is set, then other application could read the Intents sent to Activities belonging to another task. Always use the default setting keeping the affinity as the package name in order to prevent sensitive information inside sent or received Intents from being read by another application.
High Launch Mode of Activity (org.mozilla.gecko.BrowserApp) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (org.mozilla.gecko.BrowserApp) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity-Alias (com.android.internal.app.ResolverActivity) is not Protected. [android:exported=true]
An Activity-Alias is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (org.mozilla.gecko.restrictions.RestrictionProvider) is not Protected.An intent-filter exists.
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Broadcast Receiver is explicitly exported.
High Broadcast Receiver (org.mozilla.gecko.search.SearchWidgetProvider) is not Protected.An intent-filter exists.
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Broadcast Receiver is explicitly exported.
High Activity (org.mozilla.gecko.search.SearchWidgetConfigurationActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Broadcast Receiver (org.mozilla.gecko.distribution.ReferrerReceiver) is not Protected. [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High TaskAffinity is set for Activity
(org.mozilla.gecko.fxa.activities.FxAccountStatusActivity)
If taskAffinity is set, then other application could read the Intents sent to Activities belonging to another task. Always use the default setting keeping the affinity as the package name in order to prevent sensitive information inside sent or received Intents from being read by another application.
High Broadcast Receiver (org.mozilla.gecko.fxa.receivers.FxAccountUpgradeReceiver) is not Protected.An intent-filter exists.
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Broadcast Receiver is explicitly exported.
High Content Provider (org.mozilla.gecko.fxa.AuthStateProvider) is not Protected. [android:exported=true]
A Content Provider is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (org.mozilla.gecko.overlays.ui.ShareDialog) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High TaskAffinity is set for Activity
(org.mozilla.gecko.webapps.WebApps$WebApp0)
If taskAffinity is set, then other application could read the Intents sent to Activities belonging to another task. Always use the default setting keeping the affinity as the package name in order to prevent sensitive information inside sent or received Intents from being read by another application.
High Launch Mode of Activity (org.mozilla.gecko.webapps.WebApps$WebApp0) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (org.mozilla.gecko.webapps.WebApps$WebApp0) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High TaskAffinity is set for Activity
(org.mozilla.gecko.webapps.WebApps$WebApp1)
If taskAffinity is set, then other application could read the Intents sent to Activities belonging to another task. Always use the default setting keeping the affinity as the package name in order to prevent sensitive information inside sent or received Intents from being read by another application.
High Launch Mode of Activity (org.mozilla.gecko.webapps.WebApps$WebApp1) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (org.mozilla.gecko.webapps.WebApps$WebApp1) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High TaskAffinity is set for Activity
(org.mozilla.gecko.webapps.WebApps$WebApp2)
If taskAffinity is set, then other application could read the Intents sent to Activities belonging to another task. Always use the default setting keeping the affinity as the package name in order to prevent sensitive information inside sent or received Intents from being read by another application.
High Launch Mode of Activity (org.mozilla.gecko.webapps.WebApps$WebApp2) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (org.mozilla.gecko.webapps.WebApps$WebApp2) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High TaskAffinity is set for Activity
(org.mozilla.gecko.webapps.WebApps$WebApp3)
If taskAffinity is set, then other application could read the Intents sent to Activities belonging to another task. Always use the default setting keeping the affinity as the package name in order to prevent sensitive information inside sent or received Intents from being read by another application.
High Launch Mode of Activity (org.mozilla.gecko.webapps.WebApps$WebApp3) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (org.mozilla.gecko.webapps.WebApps$WebApp3) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High TaskAffinity is set for Activity
(org.mozilla.gecko.webapps.WebApps$WebApp4)
If taskAffinity is set, then other application could read the Intents sent to Activities belonging to another task. Always use the default setting keeping the affinity as the package name in order to prevent sensitive information inside sent or received Intents from being read by another application.
High Launch Mode of Activity (org.mozilla.gecko.webapps.WebApps$WebApp4) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (org.mozilla.gecko.webapps.WebApps$WebApp4) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High TaskAffinity is set for Activity
(org.mozilla.gecko.webapps.WebApps$WebApp5)
If taskAffinity is set, then other application could read the Intents sent to Activities belonging to another task. Always use the default setting keeping the affinity as the package name in order to prevent sensitive information inside sent or received Intents from being read by another application.
High Launch Mode of Activity (org.mozilla.gecko.webapps.WebApps$WebApp5) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (org.mozilla.gecko.webapps.WebApps$WebApp5) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High TaskAffinity is set for Activity
(org.mozilla.gecko.webapps.WebApps$WebApp6)
If taskAffinity is set, then other application could read the Intents sent to Activities belonging to another task. Always use the default setting keeping the affinity as the package name in order to prevent sensitive information inside sent or received Intents from being read by another application.
High Launch Mode of Activity (org.mozilla.gecko.webapps.WebApps$WebApp6) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (org.mozilla.gecko.webapps.WebApps$WebApp6) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High TaskAffinity is set for Activity
(org.mozilla.gecko.webapps.WebApps$WebApp7)
If taskAffinity is set, then other application could read the Intents sent to Activities belonging to another task. Always use the default setting keeping the affinity as the package name in order to prevent sensitive information inside sent or received Intents from being read by another application.
High Launch Mode of Activity (org.mozilla.gecko.webapps.WebApps$WebApp7) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (org.mozilla.gecko.webapps.WebApps$WebApp7) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High TaskAffinity is set for Activity
(org.mozilla.gecko.webapps.WebApps$WebApp8)
If taskAffinity is set, then other application could read the Intents sent to Activities belonging to another task. Always use the default setting keeping the affinity as the package name in order to prevent sensitive information inside sent or received Intents from being read by another application.
High Launch Mode of Activity (org.mozilla.gecko.webapps.WebApps$WebApp8) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (org.mozilla.gecko.webapps.WebApps$WebApp8) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High TaskAffinity is set for Activity
(org.mozilla.gecko.webapps.WebApps$WebApp9)
If taskAffinity is set, then other application could read the Intents sent to Activities belonging to another task. Always use the default setting keeping the affinity as the package name in order to prevent sensitive information inside sent or received Intents from being read by another application.
High Launch Mode of Activity (org.mozilla.gecko.webapps.WebApps$WebApp9) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (org.mozilla.gecko.webapps.WebApps$WebApp9) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (org.mozilla.gecko.customtabs.GeckoCustomTabsService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (org.mozilla.gecko.fxa.authenticator.FxAccountAuthenticatorService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (org.mozilla.mozstumbler.service.mainthread.SystemReceiver) is not Protected. [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.google.android.gms.gcm.GcmReceiver) is Protected by a permission, but the protection level of the permission should be checked.
Permission: com.google.android.c2dm.permission.SEND [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
Medium High Intent Priority (999)[android:priority]
By setting an intent priority higher than another intent, the app effectively overrides other requests.

Browsable activities

Information computed with MobSF.

.App

Schemes: http:// https:// firefox:// file:// content://

Mime types: text/html text/plain application/xhtml+xml image/svg+xml application/x-xpinstall

Main Activity

Information computed with AndroGuard.

org.mozilla.firefox.App

Activities

Information computed with AndroGuard.

org.mozilla.gecko.LauncherActivity
org.mozilla.gecko.BrowserApp
org.mozilla.gecko.promotion.SimpleHelperUI
org.mozilla.gecko.tabqueue.TabQueuePrompt
org.mozilla.gecko.search.SearchWidgetConfigurationActivity
org.mozilla.gecko.fxa.activities.FxAccountStatusActivity
org.mozilla.gecko.fxa.activities.FxAccountGetStartedActivityWeb
org.mozilla.gecko.fxa.activities.FxAccountSignUpActivityWeb
org.mozilla.gecko.fxa.activities.FxAccountUpdateCredentialsActivityWeb
org.mozilla.gecko.fxa.activities.FxAccountFinishMigratingActivityWeb
org.mozilla.gecko.fxa.activities.FxAccountConfirmAccountActivityWeb
org.mozilla.gecko.CrashReporterActivity
org.mozilla.gecko.preferences.GeckoPreferences
org.mozilla.gecko.overlays.ui.ShareDialog
org.mozilla.gecko.customtabs.CustomTabsActivity
org.mozilla.gecko.webapps.WebAppActivity
org.mozilla.gecko.webapps.WebApps$WebApp0
org.mozilla.gecko.webapps.WebApps$WebApp1
org.mozilla.gecko.webapps.WebApps$WebApp2
org.mozilla.gecko.webapps.WebApps$WebApp3
org.mozilla.gecko.webapps.WebApps$WebApp4
org.mozilla.gecko.webapps.WebApps$WebApp5
org.mozilla.gecko.webapps.WebApps$WebApp6
org.mozilla.gecko.webapps.WebApps$WebApp7
org.mozilla.gecko.webapps.WebApps$WebApp8
org.mozilla.gecko.webapps.WebApps$WebApp9
com.google.android.gms.common.api.GoogleApiActivity

Receivers

Information computed with AndroGuard.

org.mozilla.gecko.restrictions.RestrictionProvider
org.mozilla.gecko.search.SearchWidgetProvider
org.mozilla.gecko.GeckoMessageReceiver
org.mozilla.gecko.distribution.ReferrerReceiver
org.mozilla.gecko.notifications.WhatsNewReceiver
org.mozilla.gecko.notifications.NotificationReceiver
org.mozilla.gecko.fxa.receivers.FxAccountUpgradeReceiver
org.mozilla.gecko.PackageReplacedReceiver
org.mozilla.mozstumbler.service.uploadthread.UploadAlarmReceiver
org.mozilla.mozstumbler.service.mainthread.SafeReceiver
org.mozilla.mozstumbler.service.mainthread.SystemReceiver
com.google.android.gms.gcm.GcmReceiver
com.leanplum.LeanplumPushReceiver

Services

Information computed with AndroGuard.

org.mozilla.gecko.RemotePresentationService
org.mozilla.gecko.GeckoStarterService
org.mozilla.gecko.GeckoLoadLibsService
org.mozilla.gecko.GeckoServicesCreatorService
org.mozilla.gecko.tabqueue.TabQueueService
org.mozilla.gecko.media.MediaControlService
org.mozilla.gecko.CrashHandlerService
org.mozilla.gecko.overlays.service.OverlayActionService
org.mozilla.gecko.notifications.NotificationService
org.mozilla.gecko.dlc.DlcStudyService
org.mozilla.gecko.dlc.DlcSyncService
org.mozilla.gecko.dlc.DlcDownloadService
org.mozilla.gecko.dlc.DlcCleanupService
org.mozilla.gecko.cleanup.FileCleanupService
org.mozilla.gecko.telemetry.TelemetryUploadService
org.mozilla.gecko.customtabs.GeckoCustomTabsService
org.mozilla.gecko.fxa.authenticator.FxAccountAuthenticatorService
org.mozilla.gecko.fxa.receivers.FxAccountDeletedService
org.mozilla.gecko.fxa.sync.FxAccountProfileService
org.mozilla.gecko.fxa.sync.FxAccountSyncService
org.mozilla.gecko.tabqueue.TabReceivedService
org.mozilla.mozstumbler.service.stumblerthread.StumblerService
org.mozilla.mozstumbler.service.uploadthread.UploadAlarmReceiver$UploadAlarmService
org.mozilla.gecko.gcm.GcmInstanceIDListenerService
org.mozilla.gecko.gcm.GcmTokenRefreshService
org.mozilla.gecko.gcm.GcmMessageListenerService
org.mozilla.gecko.media.MediaManager
org.mozilla.gecko.process.GeckoServiceChildProcess$gmplugin
org.mozilla.gecko.process.GeckoServiceChildProcess$tab
org.mozilla.gecko.gfx.SurfaceAllocatorService
com.leanplum.LeanplumPushListenerService
com.leanplum.LeanplumGcmRegistrationJobService
com.leanplum.LeanplumPushInstanceIDService
com.leanplum.LeanplumPushRegistrationService

Sample timeline

Certificate valid not before Aug. 23, 2010, 11 p.m.
First submission on VT July 21, 2020, 6:36 p.m.
Last submission on VT July 28, 2022, 7:47 a.m.
Upload on Pithus Aug. 3, 2022, 9:51 p.m.
Certificate valid not after Jan. 8, 2038, 11 p.m.

NIAP analysis

Information computed with MobSF.

FCS_RBG_EXT.1.1 The application implement DRBG functionality for its cryptographic operations.
Random Bit Generation Services
FCS_STO_EXT.1.1 The application does not store any credentials to non-volatile memory.
Storage of Credentials
FCS_CKM_EXT.1.1 The application implement asymmetric key generation.
Cryptographic Key Generation Services
FDP_DEC_EXT.1.1 The application has access to ['microphone', 'location', 'NFC', 'camera', 'network connectivity'].
Access to Platform Resources
FDP_DEC_EXT.1.2 The application has access to no sensitive information repositories.
Access to Platform Resources
FDP_NET_EXT.1.1 The application has user/application initiated network communications.
Network Communications
FDP_DAR_EXT.1.1 The application implement functionality to encrypt sensitive data in non-volatile memory.
Encryption Of Sensitive Application Data
FMT_MEC_EXT.1.1 The application invoke the mechanisms recommended by the platform vendor for storing and setting configuration options.
Supported Configuration Mechanism
FTP_DIT_EXT.1.1 The application does encrypt some transmitted data with HTTPS/TLS/SSH between itself and another trusted IT product.
Protection of Data in Transit
FCS_RBG_EXT.2.1
FCS_RBG_EXT.2.2
The application perform all deterministic random bit generation (DRBG) services in accordance with NIST Special Publication 800-90A using Hash_DRBG. The deterministic RBG is seeded by an entropy source that accumulates entropy from a platform-based DRBG and a software-based noise source, with a minimum of 256 bits of entropy at least equal to the greatest security strength (according to NIST SP 800-57) of the keys and hashes that it will generate.
Random Bit Generation from Application
FCS_CKM.1.1(1) The application generate asymmetric cryptographic keys in accordance with a specified cryptographic key generation algorithm RSA schemes using cryptographic key sizes of 2048-bit or greater.
Cryptographic Asymmetric Key Generation
FCS_CKM.1.1(3)
FCS_CKM.1.2(3)
A password/passphrase shall perform [Password-based Key Derivation Functions] in accordance with a specified cryptographic algorithm..
Password Conditioning
FCS_COP.1.1(1) The application perform encryption/decryption in accordance with a specified cryptographic algorithm AES-CBC (as defined in NIST SP 800-38A) mode or AES-GCM (as defined in NIST SP 800-38D) and cryptographic key sizes 256-bit/128-bit.
Cryptographic Operation - Encryption/Decryption
FCS_COP.1.1(2) The application perform cryptographic hashing services not in accordance with FCS_COP.1.1(2) and uses the cryptographic algorithm RC2/RC4/MD4/MD5.
Cryptographic Operation - Hashing
FCS_COP.1.1(3) The application perform cryptographic signature services (generation and verification) in accordance with a specified cryptographic algorithm RSA schemes using cryptographic key sizes of 2048-bit or greater.
Cryptographic Operation - Signing
FCS_HTTPS_EXT.1.1 The application implement the HTTPS protocol that complies with RFC 2818.
HTTPS Protocol
FCS_HTTPS_EXT.1.2 The application implement HTTPS using TLS.
HTTPS Protocol
FCS_HTTPS_EXT.1.3 The application notify the user and not establish the connection or request application authorization to establish the connection if the peer certificate is deemed invalid.
HTTPS Protocol
FIA_X509_EXT.1.1 The application invoked platform-provided functionality to validate certificates in accordance with the following rules: ['RFC 5280 certificate validation and certificate path validation'].
X.509 Certificate Validation
FIA_X509_EXT.2.1 The application use X.509v3 certificates as defined by RFC 5280 to support authentication for HTTPS , TLS.
X.509 Certificate Authentication
FPT_TUD_EXT.2.1 The application shall be distributed using the format of the platform-supported package manager.
Integrity for Installation and Update

Code analysis

Information computed with MobSF.

Low
CVSS:7.5
The App logs information. Sensitive information should never be logged.
MASVS: MSTG-STORAGE-3
CWE-532 Insertion of Sensitive Information into Log File
Files:
 org/mozilla/gecko/BrowserApp.java
ch/boye/httpclientandroidlib/impl/conn/CPoolEntry.java
org/mozilla/gecko/preferences/SearchEnginePreference.java
com/leanplum/Leanplum.java
org/mozilla/gecko/util/WebAuthnUtils.java
org/mozilla/geckoview/GeckoFontScaleListener.java
ch/boye/httpclientandroidlib/impl/conn/HttpPoolEntry.java
com/leanplum/messagetemplates/HTMLTemplate.java
com/leanplum/LeanplumNotificationChannel.java
com/leanplum/internal/LeanplumEventDataManager.java
org/mozilla/gecko/menu/GeckoMenu.java
org/mozilla/gecko/home/CombinedHistoryItem.java
org/mozilla/gecko/db/BrowserProvider.java
com/leanplum/annotations/Parser.java
org/mozilla/gecko/Clipboard.java
org/mozilla/mozstumbler/service/stumblerthread/scanners/GPSScanner.java
org/mozilla/gecko/tabqueue/TabReceivedService.java
com/leanplum/messagetemplates/HTMLOptions.java
org/mozilla/gecko/webapps/WebAppManifest.java
org/mozilla/gecko/sync/stage/SyncClientsEngineStage.java
org/mozilla/gecko/ANRReporter.java
org/mozilla/gecko/media/GeckoHLSDemuxerWrapper.java
org/mozilla/gecko/gfx/StackScroller.java
org/mozilla/mozstumbler/service/Prefs.java
org/mozilla/gecko/media/RemoteManager.java
org/mozilla/mozstumbler/service/stumblerthread/blocklist/BSSIDBlockList.java
org/mozilla/gecko/health/SessionInformation.java
com/leanplum/internal/AESCrypt.java
org/mozilla/gecko/adjust/AdjustHelper.java
org/mozilla/mozstumbler/service/utils/AbstractCommunicator.java
org/mozilla/gecko/tabqueue/TabQueueService.java
org/mozilla/gecko/GeckoProfilesProvider.java
org/mozilla/gecko/telemetry/TelemetryActivationPingDelegate.java
org/mozilla/gecko/CrashReporterActivity.java
org/mozilla/gecko/MediaPlayerManager.java
com/leanplum/internal/Util.java
com/leanplum/LeanplumPushRegistrationService.java
org/mozilla/gecko/icons/loader/IconDownloader.java
org/mozilla/gecko/media/GeckoHlsPlayer.java
ch/boye/httpclientandroidlib/impl/conn/PoolingHttpClientConnectionManager.java
org/mozilla/gecko/home/HomePanelsManager.java
org/mozilla/gecko/util/ThreadUtils.java
org/mozilla/mozstumbler/service/mainthread/LocalPreferenceReceiver.java
org/mozilla/gecko/advertising/AdvertisingUtil.java
org/mozilla/gecko/process/GeckoProcessManager.java
org/mozilla/gecko/home/ImageLoader.java
com/leanplum/LeanplumInboxMessage.java
org/mozilla/gecko/tabs/TabsLayoutAdapter.java
com/leanplum/LeanplumPushService.java
com/leanplum/internal/ActionManager.java
org/mozilla/gecko/IntentHelper.java
com/leanplum/ActionContext.java
org/mozilla/gecko/AccountsHelper.java
org/mozilla/gecko/media/Codec.java
org/mozilla/gecko/ChromeCastDisplay.java
org/mozilla/gecko/dlc/StudyAction.java
org/mozilla/gecko/SpeechSynthesisService.java
com/leanplum/internal/RequestOld.java
org/webrtc/videoengine/VideoCaptureDeviceInfoAndroid.java
org/mozilla/geckoview/SessionAccessibility.java
org/mozilla/gecko/SharedPreferencesHelper.java
com/leanplum/LeanplumResources.java
org/mozilla/gecko/tabs/TabsPanel.java
org/mozilla/gecko/gcm/GcmInstanceIDListenerService.java
org/mozilla/gecko/db/DBUtils.java
ch/boye/httpclientandroidlib/impl/conn/tsccm/ConnPoolByRoute.java
ch/boye/httpclientandroidlib/impl/client/AuthenticationStrategyAdaptor.java
com/leanplum/internal/WebSocketClient.java
org/mozilla/gecko/Tab.java
org/mozilla/gecko/CrashHandler.java
org/mozilla/gecko/media/RemoteMediaDrmBridgeStub.java
org/mozilla/gecko/db/SuggestedSites.java
org/mozilla/gecko/GeckoThread.java
org/mozilla/mozstumbler/service/uploadthread/AsyncUploader.java
org/mozilla/mozstumbler/service/utils/NetworkUtils.java
org/mozilla/gecko/home/SearchEngine.java
org/mozilla/gecko/sync/CommandProcessor.java
org/mozilla/gecko/db/AbstractTransactionalProvider.java
org/mozilla/gecko/db/HomeProvider.java
org/mozilla/geckoview/GeckoView.java
org/mozilla/gecko/home/PanelInfoManager.java
org/mozilla/gecko/push/PushService.java
org/mozilla/gecko/dlc/VerifyAction.java
org/mozilla/gecko/preferences/DistroSharedPrefsImport.java
org/mozilla/gecko/home/HomeFragment.java
org/mozilla/mozstumbler/service/mainthread/SystemReceiver.java
org/mozilla/gecko/GeckoJavaSampler.java
org/mozilla/gecko/DevToolsAuthHelper.java
org/mozilla/gecko/gfx/SurfaceAllocator.java
org/mozilla/gecko/util/HardwareUtils.java
org/mozilla/gecko/reader/SavedReaderViewHelper.java
org/mozilla/gecko/overlays/service/OverlayActionService.java
org/mozilla/gecko/distribution/ReferrerReceiver.java
org/mozilla/gecko/overlays/service/sharemethods/SendTab.java
org/mozilla/gecko/preferences/GeckoPreferenceFragment.java
org/mozilla/gecko/fxa/FxAccountPushHandler.java
com/leanplum/internal/FileManager.java
org/mozilla/gecko/prompts/IntentChooserPrompt.java
org/mozilla/gecko/MemoryMonitor.java
org/mozilla/gecko/preferences/AndroidImport.java
org/mozilla/gecko/util/BitmapUtils.java
com/leanplum/LeanplumGcmProvider.java
com/leanplum/LeanplumCloudMessagingProvider.java
org/mozilla/gecko/GeckoBatteryManager.java
org/mozilla/gecko/tabs/TabStripAdapter.java
org/mozilla/gecko/GeckoApp.java
ch/boye/httpclientandroidlib/impl/conn/Wire.java
org/mozilla/gecko/db/LocalTabsAccessor.java
org/mozilla/gecko/widget/ActivityChooserModel.java
com/leanplum/internal/Log.java
org/mozilla/gecko/FilePicker.java
org/mozilla/gecko/media/GeckoPlayerFactory.java
ch/boye/httpclientandroidlib/impl/conn/LoggingManagedHttpClientConnection.java
org/mozilla/gecko/webapps/WebAppActivity.java
org/mozilla/gecko/updater/PostUpdateHandler.java
org/mozilla/gecko/mozglue/SharedMemory.java
org/mozilla/gecko/GeckoApplication.java
org/mozilla/gecko/ThumbnailHelper.java
org/mozilla/gecko/activitystream/homepanel/model/Metadata.java
org/mozilla/mozstumbler/service/stumblerthread/scanners/ScanManager.java
org/mozilla/gecko/FindInPageBar.java
org/mozilla/gecko/media/GeckoHLSResourceWrapper.java
org/mozilla/gecko/customtabs/GeckoCustomTabsService.java
org/mozilla/gecko/background/preferences/PreferenceManagerCompat.java
org/mozilla/gecko/prompts/PromptInput.java
org/mozilla/gecko/sync/telemetry/TelemetryCollector.java
org/mozilla/gecko/Experiments.java
org/mozilla/gecko/home/PanelAuthCache.java
org/mozilla/gecko/activitystream/homepanel/topstories/PocketStoriesLoader.java
org/mozilla/gecko/media/PictureInPictureController.java
org/mozilla/gecko/fxa/authenticator/AndroidFxAccount.java
org/mozilla/gecko/db/LocalBrowserDB.java
org/mozilla/gecko/home/HomeConfigPrefsBackend.java
com/leanplum/internal/CountAggregator.java
org/mozilla/gecko/customtabs/CustomTabsActivity.java
org/mozilla/gecko/telemetry/TelemetryCorePingDelegate.java
org/mozilla/gecko/RemotePresentationService.java
org/mozilla/gecko/preferences/MultiPrefMultiChoicePreference.java
org/webrtc/videoengine/VideoCaptureAndroid.java
org/mozilla/gecko/prompts/Prompt.java
org/mozilla/gecko/gfx/GeckoSurfaceTexture.java
org/mozilla/gecko/home/FramePanelLayout.java
org/mozilla/mozstumbler/service/stumblerthread/scanners/cellscanner/CellInfo.java
org/mozilla/gecko/telemetry/TelemetryUploadService.java
org/mozilla/gecko/distribution/Distribution.java
org/mozilla/gecko/activitystream/homepanel/menu/BottomSheetContextMenu.java
org/mozilla/geckoview/DynamicToolbarAnimator.java
org/mozilla/gecko/widget/ExternalIntentDuringPrivateBrowsingPromptFragment.java
org/mozilla/geckoview/SessionTextInput.java
com/leanplum/LeanplumPushReceiver.java
org/mozilla/gecko/CrashHandlerService.java
com/leanplum/monitoring/ExceptionHandler.java
org/mozilla/gecko/search/SearchEngineManager.java
com/leanplum/internal/Socket.java
org/mozilla/gecko/EventDispatcher.java
org/mozilla/gecko/dlc/DownloadAction.java
org/mozilla/gecko/home/PanelLayout.java
org/mozilla/gecko/GeckoAppShell.java
org/mozilla/gecko/customtabs/CustomTabsSecurityPopup.java
org/mozilla/gecko/media/JellyBeanAsyncCodec.java
ch/boye/httpclientandroidlib/client/protocol/RequestAuthCache.java
ch/boye/httpclientandroidlib/impl/client/DefaultRequestDirector.java
org/mozilla/gecko/push/PushState.java
ch/boye/httpclientandroidlib/conn/ssl/AbstractVerifier.java
com/leanplum/LeanplumPushServiceGcm.java
org/mozilla/gecko/PrintHelper.java
com/adjust/sdk/Logger.java
org/mozilla/gecko/GeckoService.java
org/mozilla/gecko/dlc/catalog/DownloadContentCatalog.java
org/mozilla/gecko/telemetry/pingbuilders/TelemetryCrashPingBuilder.java
com/leanplum/Var.java
org/mozilla/gecko/gfx/PanningPerfAPI.java
com/leanplum/internal/LeanplumInternal.java
ch/boye/httpclientandroidlib/client/protocol/RequestAuthenticationBase.java
org/mozilla/gecko/SuggestClient.java
org/mozilla/gecko/media/GeckoMediaControlAgent.java
org/mozilla/gecko/util/JSONUtils.java
org/mozilla/gecko/db/LocalURLMetadata.java
org/mozilla/geckoview/WebExtension.java
ch/boye/httpclientandroidlib/impl/conn/DefaultClientConnectionOperator.java
org/mozilla/gecko/media/GeckoMediaDrmBridgeV21.java
org/mozilla/gecko/fxa/devices/FxAccountDeviceRegistrator.java
org/mozilla/gecko/ChromeCastPlayer.java
com/leanplum/LeanplumLocalPushListenerService.java
ch/boye/httpclientandroidlib/client/protocol/RequestProxyAuthentication.java
org/mozilla/gecko/icons/decoders/FaviconDecoder.java
org/mozilla/gecko/toolbar/ToolbarEditText.java
com/leanplum/LeanplumPushInstanceIDService.java
org/mozilla/gecko/sync/telemetry/TelemetryEventCollector.java
org/mozilla/gecko/sqlite/SQLiteBridge.java
org/mozilla/gecko/util/IOUtils.java
org/mozilla/gecko/GlobalPageMetadata.java
org/mozilla/gecko/gcm/GcmTokenClient.java
ch/boye/httpclientandroidlib/impl/client/DefaultRedirectStrategy.java
org/mozilla/gecko/icons/loader/SuggestedSiteLoader.java
org/mozilla/gecko/GeckoSystemStateListener.java
org/mozilla/gecko/notifications/NotificationReceiver.java
com/leanplum/utils/BitmapUtil.java
org/mozilla/gecko/FilePickerResultHandler.java
ch/boye/httpclientandroidlib/impl/client/AuthenticationStrategyImpl.java
org/mozilla/gecko/util/FileUtils.java
org/mozilla/mozstumbler/service/stumblerthread/scanners/WifiScanner.java
org/mozilla/gecko/mozglue/GeckoLoader.java
org/mozilla/gecko/preferences/PanelsPreference.java
ch/boye/httpclientandroidlib/androidextra/HttpClientAndroidLog.java
org/mozilla/geckoview/GeckoRuntime.java
com/leanplum/internal/JsonConverter.java
org/mozilla/gecko/util/GeckoJarReader.java
ch/boye/httpclientandroidlib/impl/conn/HttpClientConnectionOperator.java
org/mozilla/gecko/sqlite/MatrixBlobCursor.java
org/mozilla/gecko/toolbar/SiteIdentityPopup.java
org/mozilla/gecko/util/PrefUtils.java
org/mozilla/gecko/fxa/devices/FxAccountDeviceListUpdater.java
com/leanplum/LeanplumPushListenerService.java
org/mozilla/gecko/tabs/AutoFitTabsGridLayout.java
org/mozilla/gecko/push/PushManager.java
org/mozilla/geckoview/BasicSelectionActionDelegate.java
org/mozilla/gecko/icons/loader/JarLoader.java
ch/boye/httpclientandroidlib/impl/conn/BasicClientConnectionManager.java
ch/boye/httpclientandroidlib/impl/auth/HttpAuthenticator.java
org/mozilla/gecko/background/common/GlobalConstants.java
org/mozilla/gecko/GeckoScreenOrientation.java
org/mozilla/gecko/cleanup/FileCleanupService.java
org/mozilla/gecko/fxa/AuthStateProvider.java
org/mozilla/gecko/toolbar/BrowserToolbar.java
ch/boye/httpclientandroidlib/client/protocol/RequestTargetAuthentication.java
org/mozilla/geckoview/PanZoomController.java
org/mozilla/gecko/ActivityHandlerHelper.java
ch/boye/httpclientandroidlib/impl/conn/DefaultHttpResponseParser.java
org/mozilla/gecko/activitystream/ranking/HighlightsRanking.java
org/mozilla/gecko/TelemetryUtils.java
org/mozilla/gecko/browserid/JSONWebTokenUtils.java
org/mozilla/gecko/widget/ContentSecurityDoorHanger.java
com/leanplum/messagetemplates/BaseMessageOptions.java
org/mozilla/gecko/media/MediaDrmProxy.java
org/mozilla/gecko/DoorHangerPopup.java
org/mozilla/geckoview/CrashReporter.java
org/mozilla/gecko/preferences/GeckoPreferences.java
org/mozilla/mozstumbler/service/utils/TelemetryWrapper.java
org/mozilla/gecko/util/PRNGFixes.java
org/mozilla/gecko/gcm/GcmMessageListenerService.java
org/mozilla/gecko/dlc/DlcHelper.java
org/mozilla/gecko/LauncherActivity.java
org/mozilla/mozstumbler/service/stumblerthread/scanners/cellscanner/CellScannerImplementation.java
org/mozilla/gecko/util/INISection.java
org/mozilla/gecko/util/HardwareCodecCapabilityUtils.java
org/mozilla/gecko/tabqueue/TabQueueHelper.java
org/mozilla/mozstumbler/service/stumblerthread/datahandling/DataStorageManager.java
org/mozilla/geckoview/WebExtensionEventDispatcher.java
org/mozilla/gecko/GlobalHistory.java
org/mozilla/gecko/util/DebugConfig.java
org/mozilla/gecko/GeckoProfile.java
org/mozilla/gecko/tabs/TabHistoryController.java
org/mozilla/gecko/DynamicToolbar.java
ch/boye/httpclientandroidlib/impl/conn/tsccm/ThreadSafeClientConnManager.java
org/mozilla/mozstumbler/service/stumblerthread/Reporter.java
org/mozilla/geckoview/GeckoSession.java
com/leanplum/internal/VarCache.java
org/mozilla/gecko/process/GeckoServiceChildProcess.java
org/mozilla/gecko/db/PasswordsProvider.java
org/mozilla/gecko/preferences/AndroidImportPreference.java
org/mozilla/gecko/icons/IconsHelper.java
org/mozilla/gecko/overlays/ui/OverlayDialogButton.java
org/mozilla/gecko/home/TopSitesPanel.java
org/mozilla/gecko/switchboard/SwitchBoard.java
org/mozilla/gecko/db/SharedBrowserDatabaseProvider.java
org/mozilla/gecko/util/ResourceDrawableUtils.java
com/leanplum/LeanplumInflater.java
org/mozilla/gecko/overlays/ui/ShareDialog.java
ch/boye/httpclientandroidlib/client/protocol/ResponseProcessCookies.java
org/mozilla/mozstumbler/service/uploadthread/UploadAlarmReceiver.java
org/mozilla/gecko/restrictions/Restrictions.java
org/mozilla/gecko/telemetry/pingbuilders/TelemetryCorePingBuilder.java
org/mozilla/gecko/media/MediaControlService.java
org/mozilla/gecko/media/MediaManager.java
org/mozilla/gecko/BrowserLocaleManager.java
com/leanplum/ActionArgs.java
org/mozilla/gecko/GeckoSharedPrefs.java
org/mozilla/gecko/notifications/NotificationHelper.java
org/mozilla/gecko/dlc/SyncAction.java
org/mozilla/mozstumbler/service/stumblerthread/scanners/LocationBlockList.java
org/mozilla/gecko/home/PanelListView.java
org/mozilla/gecko/widget/GeckoActionProvider.java
org/mozilla/gecko/activitystream/homepanel/StreamRecyclerAdapter.java
org/mozilla/mozstumbler/service/stumblerthread/StumblerService.java
org/mozilla/gecko/icons/storage/DiskStorage.java
org/mozilla/gecko/db/SQLiteBridgeContentProvider.java
ch/boye/httpclientandroidlib/impl/conn/DefaultClientConnection.java
com/leanplum/LeanplumNotificationHelper.java
org/mozilla/gecko/telemetry/TelemetryDispatcher.java
org/mozilla/gecko/media/RemoteMediaDrmBridge.java
org/mozilla/gecko/sync/InfoConfiguration.java
org/mozilla/gecko/widget/DateTimePicker.java
org/mozilla/gecko/home/DynamicPanel.java
org/mozilla/gecko/media/GeckoHlsVideoRenderer.java
org/mozilla/gecko/preferences/LocaleListPreference.java
org/mozilla/gecko/SysInfo.java
org/mozilla/gecko/Tabs.java
org/mozilla/gecko/media/GeckoHlsAudioRenderer.java
org/mozilla/gecko/media/AudioFocusAgent.java
org/mozilla/gecko/ScreenshotObserver.java
org/mozilla/geckoview/GeckoEditable.java
org/mozilla/gecko/background/nativecode/NativeCrypto.java
org/mozilla/gecko/GeckoNetworkManager.java
org/mozilla/gecko/telemetry/TelemetryBackgroundReceiver.java
org/mozilla/gecko/distribution/DistributionStoreCallback.java
org/mozilla/gecko/GeckoEditableChild.java
org/mozilla/gecko/background/common/log/writers/AndroidLevelCachingLogWriter.java
org/mozilla/gecko/SessionParser.java
org/mozilla/gecko/telemetry/stores/TelemetryJSONFilePingStore.java
org/mozilla/gecko/home/CombinedHistoryPanel.java
org/mozilla/mozstumbler/service/mainthread/SafeReceiver.java
org/mozilla/gecko/util/WindowUtils.java
org/mozilla/gecko/telemetry/pingbuilders/TelemetrySyncPingBundleBuilder.java
com/leanplum/LeanplumInbox.java
org/mozilla/gecko/mozglue/SafeIntent.java
com/leanplum/messagetemplates/OpenURL.java
org/mozilla/gecko/media/CodecProxy.java
org/mozilla/gecko/icons/IconTask.java
org/mozilla/gecko/home/BrowserSearch.java
org/mozilla/gecko/WebAuthnTokenManager.java
org/mozilla/gecko/db/BrowserDatabaseHelper.java
org/mozilla/geckoview/GeckoInputConnection.java
com/leanplum/internal/LeanplumManifestHelper.java
org/mozilla/gecko/media/GeckoHlsRendererBase.java
org/mozilla/gecko/background/common/log/writers/AndroidLogWriter.java
org/mozilla/gecko/background/common/log/Logger.java
org/mozilla/gecko/AddonUICache.java
org/mozilla/gecko/SnackbarBuilder.java
com/leanplum/internal/Registration.java
Medium
CVSS:5.9
App uses SQLite Database and execute raw SQL query. Untrusted user input in raw SQL queries can cause SQL Injection. Also sensitive information should be encrypted and written to the database.
CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
M7: Client Code Quality
Files:
 org/mozilla/gecko/db/URLImageDataTable.java
org/mozilla/gecko/sqlite/SQLiteBridge.java
org/mozilla/gecko/db/BrowserDatabaseHelper.java
org/mozilla/gecko/db/PerProfileDatabases.java
com/leanplum/internal/LeanplumEventDataManager.java
org/mozilla/gecko/db/BrowserProvider.java
org/mozilla/gecko/sync/repositories/android/ClientsDatabase.java
org/mozilla/gecko/db/SearchHistoryProvider.java
Medium
CVSS:4.3
IP Address disclosure
MASVS: MSTG-CODE-2
CWE-200 Information Exposure
Files:
 org/mozilla/gecko/fxa/authenticator/FxAccountAuthenticator.java
ch/boye/httpclientandroidlib/conn/params/ConnRouteParams.java
org/mozilla/gecko/sync/net/BaseResource.java
org/mozilla/gecko/fxa/sync/FxAccountSyncAdapter.java
Medium
CVSS:7.4
MD5 is a weak hash known to have hash collisions.
MASVS: MSTG-CRYPTO-4
CWE-327 Use of a Broken or Risky Cryptographic Algorithm
M5: Insufficient Cryptography
Files:
 com/leanplum/internal/Util.java
org/mozilla/gecko/db/BrowserDatabaseHelper.java
ch/boye/httpclientandroidlib/impl/auth/NTLMEngineImpl.java
com/leanplum/internal/FileManager.java
com/leanplum/internal/AESCrypt.java
Medium
CVSS:5.5
App creates temp file. Sensitive information should never be written into a temp file.
MASVS: MSTG-STORAGE-2
CWE-276 Incorrect Default Permissions
M2: Insecure Data Storage
Files:
 org/mozilla/gecko/util/GeckoJarReader.java
org/mozilla/gecko/widget/GeckoActionProvider.java
Medium
CVSS:7.4
Files may contain hardcoded sensitive information like usernames, passwords, keys etc.
MASVS: MSTG-STORAGE-14
CWE-312 Cleartext Storage of Sensitive Information
M9: Reverse Engineering
Files:
 org/mozilla/geckoview/CrashReporter.java
org/mozilla/gecko/search/SearchWidgetProvider.java
org/mozilla/gecko/GeckoSharedPrefs.java
org/mozilla/gecko/db/BrowserContract.java
High
CVSS:5.5
App can read/write to External Storage. Any App can read data written to External Storage.
MASVS: MSTG-STORAGE-2
CWE-276 Incorrect Default Permissions
M2: Insecure Data Storage
Files:
 org/mozilla/gecko/mozglue/GeckoLoader.java
org/mozilla/gecko/GeckoApp.java
org/mozilla/gecko/FilePickerResultHandler.java
org/mozilla/gecko/GeckoApplication.java
org/mozilla/gecko/DownloadsIntegration.java
High
CVSS:7.4
Insecure Implementation of SSL. Trusting all the certificates or accepting self signed certificates is a critical Security Hole. This application is vulnerable to MITM attacks
MASVS: MSTG-NETWORK-3
CWE-295 Improper Certificate Validation
M3: Insecure Communication
Files:
 ch/boye/httpclientandroidlib/conn/ssl/SSLConnectionSocketFactory.java
ch/boye/httpclientandroidlib/conn/ssl/SSLSocketFactory.java
High
CVSS:7.4
The App uses the encryption mode CBC with PKCS5/PKCS7 padding. This configuration is vulnerable to padding oracle attacks.
MASVS: MSTG-CRYPTO-3
CWE-649 Reliance on Obfuscation or Encryption of Security-Relevant Inputs without Integrity Checking
M5: Insufficient Cryptography
Files:
 com/leanplum/internal/AESCrypt.java
Medium
CVSS:7.5
The App uses an insecure Random Number Generator.
MASVS: MSTG-CRYPTO-6
CWE-330 Use of Insufficiently Random Values
M5: Insufficient Cryptography
Files:
 com/leanplum/LeanplumPushService.java
org/mozilla/gecko/util/FileUtils.java
com/leanplum/LeanplumNotificationHelper.java
Low
CVSS:0
This App copies data to clipboard. Sensitive data should not be copied to clipboard as other applications can access it.
MASVS: MSTG-STORAGE-10
Files:
 org/mozilla/gecko/Clipboard.java
org/mozilla/gecko/toolbar/SiteIdentityPopup.java
Medium
CVSS:5.9
SHA-1 is a weak hash known to have hash collisions.
MASVS: MSTG-CRYPTO-4
CWE-327 Use of a Broken or Risky Cryptographic Algorithm
M5: Insufficient Cryptography
Files:
 org/mozilla/gecko/util/PRNGFixes.java
ch/boye/httpclientandroidlib/impl/auth/NTLMEngineImpl.java
org/mozilla/gecko/browserid/DSACryptoImplementation.java
org/mozilla/gecko/sync/Utils.java
High
CVSS:7.4
Weak Encryption algorithm used
MASVS: MSTG-CRYPTO-4
CWE-327 Use of a Broken or Risky Cryptographic Algorithm
M5: Insufficient Cryptography
Files:
 ch/boye/httpclientandroidlib/impl/auth/NTLMEngineImpl.java
Info
CVSS:0
This App uses SSL certificate pinning to detect or prevent MITM attacks in secure communication channel.
MASVS: MSTG-NETWORK-4
Files:
 org/mozilla/gecko/home/ImageLoader.java
Pygal Czech Republic: 100 Germany: 300 United Kingdom: 200 Ireland: 100 New Zealand: 100 United States: 3800

Map computed by Pithus.

Domains analysis

Information computed with MobSF.

US accounts.firefox.com 54.214.158.61
US bugzilla.mozilla.org 44.240.163.69
US www.dropbox.com 162.125.66.18
US www.w3.org 128.30.52.100
US app.adjust.com 185.151.204.12
US www.ibm.com 96.16.143.135
US www.webrtc.org 142.250.185.78
US www.twitter.com 104.244.42.1
US getpocket.cdn.mozilla.net 34.120.5.221
US www.example.com 93.184.216.34
US oauth-stable.dev.lcip.org 54.69.12.66
US sb-ssl.google.com 172.217.23.110
US blog.mozilla.org 35.197.18.156
US www.googlemail.com 142.250.186.101
US location.services.mozilla.com 34.213.44.137
US developer.mozilla.org 18.66.139.44
DE firefox.settings.services.mozilla.com 13.224.189.71
US www.messenger.com 185.60.216.15
US www.gmail.com 142.250.74.197
US hg.mozilla.org 63.245.208.203
DE webmaker.org 13.224.189.100
US www.g.co 142.250.185.78
US www.googlegroups.com 216.239.34.177
IE www.yahoo.com 87.248.100.215
US oauth.accounts.firefox.com 34.209.16.253
US issuetracker.google.com 172.217.18.14
US www.ietf.org 104.16.45.99
allowlisted.example.com
US profile.accounts.firefox.com 52.33.112.155
US latest.dev.lcip.org 44.241.133.61
US token.services.mozilla.com 54.148.132.93
US www.google.com 142.250.185.196
US support.mozilla.org 52.88.6.253
DE www.torproject.org 116.202.120.165
US crash-reports.mozilla.com 52.27.94.49
US addons.mozilla.org 18.66.122.105
GB fennec-catalog.cdn.mozilla.net 52.222.236.38
US example.com 93.184.216.34
US bugzil.la 44.236.72.93
NZ www.ck 210.5.50.2
US input.mozilla.org 44.236.48.31
CZ www.mozilla.org 13.32.119.185
US api.accounts.firefox.com 52.33.140.114
US stable.dev.lcip.org 54.69.12.66
US www.facebook.com 185.60.216.35
GB getpocket.com 52.222.236.8
US incoming.telemetry.mozilla.org 34.120.208.123

URL analysis

Information computed with MobSF.

https://app.adjust.com
Defined in com/adjust/sdk/RequestHandler.java
https://issuetracker.google.com/issues/68716460
Defined in com/leanplum/LeanplumPushService.java
http://www.example.com
http://leanplum/close
Defined in com/leanplum/messagetemplates/WebInterstitialOptions.java
http://www.example.com
Defined in com/leanplum/messagetemplates/OpenURL.java
https://crash-reports.mozilla.com/submit?id=%1$s&version=%2$s&buildid=%3$s
Defined in org/mozilla/gecko/CrashHandler.java
https://api.accounts.firefox.com/v1
https://token.services.mozilla.com/1.0/sync/1.5
https://profile.accounts.firefox.com/v1
Defined in org/mozilla/gecko/AccountsHelper.java
https://api.accounts.firefox.com/v1
https://token.services.mozilla.com/1.0/sync/1.5
https://profile.accounts.firefox.com/v1
Defined in org/mozilla/gecko/AccountsHelper.java
https://api.accounts.firefox.com/v1
https://token.services.mozilla.com/1.0/sync/1.5
https://profile.accounts.firefox.com/v1
Defined in org/mozilla/gecko/AccountsHelper.java
https://support.mozilla.org/kb/make-firefox-default-browser-android?utm_source=inproduct&utm_medium=settings&utm_campaign=mobileandroid
Defined in org/mozilla/gecko/LauncherActivity.java
https://firefox.settings.services.mozilla.com/v1/buckets/fennec/collections/experiments/records
http://www.mozilla.org
Defined in org/mozilla/gecko/BrowserApp.java
https://firefox.settings.services.mozilla.com/v1/buckets/fennec/collections/experiments/records
http://www.mozilla.org
Defined in org/mozilla/gecko/BrowserApp.java
https://support.mozilla.org/kb/controlledaccess
Defined in org/mozilla/gecko/firstrun/RestrictedWelcomePanel.java
https://www.mozilla.org
Defined in org/mozilla/gecko/util/PackageUtil.java
https://fennec-catalog.cdn.mozilla.net/
Defined in org/mozilla/gecko/dlc/DownloadAction.java
https://firefox.settings.services.mozilla.com/v1/buckets/fennec/collections/catalog/records
Defined in org/mozilla/gecko/dlc/SyncAction.java
https://support.mozilla.org/kb/how-does-insecure-content-affect-safety-android
https://support.mozilla.org/kb/firefox-android-tracking-protection
Defined in org/mozilla/gecko/toolbar/SiteIdentityPopup.java
https://support.mozilla.org/kb/how-does-insecure-content-affect-safety-android
https://support.mozilla.org/kb/firefox-android-tracking-protection
Defined in org/mozilla/gecko/toolbar/SiteIdentityPopup.java
https://developer.mozilla.org/en-US/Apps/Progressive
Defined in org/mozilla/gecko/toolbar/PwaOnboarding.java
https://incoming.telemetry.mozilla.org
Defined in org/mozilla/gecko/telemetry/TelemetryPreferences.java
https://getpocket.com/explore/trending?src=ff_android&cdn=0
https://getpocket.com/recommendations
Defined in org/mozilla/gecko/activitystream/homepanel/StreamRecyclerAdapter.java
https://getpocket.com/explore/trending?src=ff_android&cdn=0
https://getpocket.com/recommendations
Defined in org/mozilla/gecko/activitystream/homepanel/StreamRecyclerAdapter.java
https://blog.mozilla.org/firefox/firefox-android-new-features/
Defined in org/mozilla/gecko/activitystream/homepanel/stream/FirefoxPromoBannerRow.java
https://support.mozilla.org/1/mobile/%s/%s/%s/activity-stream
Defined in org/mozilla/gecko/activitystream/homepanel/stream/LearnMoreRow.java
https://getpocket.com/recommendations
Defined in org/mozilla/gecko/activitystream/homepanel/menu/ActivityStreamContextMenu.java
https://www.mozilla.org/#
https://getpocket.cdn.mozilla.net/v3/firefox/global-recs
Defined in org/mozilla/gecko/activitystream/homepanel/topstories/PocketStoriesLoader.java
https://www.mozilla.org/#
https://getpocket.cdn.mozilla.net/v3/firefox/global-recs
Defined in org/mozilla/gecko/activitystream/homepanel/topstories/PocketStoriesLoader.java
https://support.mozilla.org/kb/private-browsing-firefox-android
Defined in org/mozilla/gecko/tabs/PrivateTabsPanel.java
https://latest.dev.lcip.org/profile/v1
https://profile.accounts.firefox.com/v1
https://oauth-stable.dev.lcip.org/v1
https://oauth.accounts.firefox.com/v1
https://stable.dev.lcip.org/auth/v1
https://api.accounts.firefox.com/v1
https://token.services.mozilla.com/1.0/sync/1.5
https://stable.dev.lcip.org/syncserver/token/1.0/sync/1.5
Defined in org/mozilla/gecko/fxa/authenticator/AndroidFxAccount.java
https://latest.dev.lcip.org/profile/v1
https://profile.accounts.firefox.com/v1
https://oauth-stable.dev.lcip.org/v1
https://oauth.accounts.firefox.com/v1
https://stable.dev.lcip.org/auth/v1
https://api.accounts.firefox.com/v1
https://token.services.mozilla.com/1.0/sync/1.5
https://stable.dev.lcip.org/syncserver/token/1.0/sync/1.5
Defined in org/mozilla/gecko/fxa/authenticator/AndroidFxAccount.java
https://latest.dev.lcip.org/profile/v1
https://profile.accounts.firefox.com/v1
https://oauth-stable.dev.lcip.org/v1
https://oauth.accounts.firefox.com/v1
https://stable.dev.lcip.org/auth/v1
https://api.accounts.firefox.com/v1
https://token.services.mozilla.com/1.0/sync/1.5
https://stable.dev.lcip.org/syncserver/token/1.0/sync/1.5
Defined in org/mozilla/gecko/fxa/authenticator/AndroidFxAccount.java
https://latest.dev.lcip.org/profile/v1
https://profile.accounts.firefox.com/v1
https://oauth-stable.dev.lcip.org/v1
https://oauth.accounts.firefox.com/v1
https://stable.dev.lcip.org/auth/v1
https://api.accounts.firefox.com/v1
https://token.services.mozilla.com/1.0/sync/1.5
https://stable.dev.lcip.org/syncserver/token/1.0/sync/1.5
Defined in org/mozilla/gecko/fxa/authenticator/AndroidFxAccount.java
https://latest.dev.lcip.org/profile/v1
https://profile.accounts.firefox.com/v1
https://oauth-stable.dev.lcip.org/v1
https://oauth.accounts.firefox.com/v1
https://stable.dev.lcip.org/auth/v1
https://api.accounts.firefox.com/v1
https://token.services.mozilla.com/1.0/sync/1.5
https://stable.dev.lcip.org/syncserver/token/1.0/sync/1.5
Defined in org/mozilla/gecko/fxa/authenticator/AndroidFxAccount.java
https://latest.dev.lcip.org/profile/v1
https://profile.accounts.firefox.com/v1
https://oauth-stable.dev.lcip.org/v1
https://oauth.accounts.firefox.com/v1
https://stable.dev.lcip.org/auth/v1
https://api.accounts.firefox.com/v1
https://token.services.mozilla.com/1.0/sync/1.5
https://stable.dev.lcip.org/syncserver/token/1.0/sync/1.5
Defined in org/mozilla/gecko/fxa/authenticator/AndroidFxAccount.java
https://latest.dev.lcip.org/profile/v1
https://profile.accounts.firefox.com/v1
https://oauth-stable.dev.lcip.org/v1
https://oauth.accounts.firefox.com/v1
https://stable.dev.lcip.org/auth/v1
https://api.accounts.firefox.com/v1
https://token.services.mozilla.com/1.0/sync/1.5
https://stable.dev.lcip.org/syncserver/token/1.0/sync/1.5
Defined in org/mozilla/gecko/fxa/authenticator/AndroidFxAccount.java
https://latest.dev.lcip.org/profile/v1
https://profile.accounts.firefox.com/v1
https://oauth-stable.dev.lcip.org/v1
https://oauth.accounts.firefox.com/v1
https://stable.dev.lcip.org/auth/v1
https://api.accounts.firefox.com/v1
https://token.services.mozilla.com/1.0/sync/1.5
https://stable.dev.lcip.org/syncserver/token/1.0/sync/1.5
Defined in org/mozilla/gecko/fxa/authenticator/AndroidFxAccount.java
https://api.accounts.firefox.com/v1
https://profile.accounts.firefox.com/v1
https://latest.dev.lcip.org/profile/v1
Defined in org/mozilla/gecko/fxa/authenticator/AccountPickler.java
https://api.accounts.firefox.com/v1
https://profile.accounts.firefox.com/v1
https://latest.dev.lcip.org/profile/v1
Defined in org/mozilla/gecko/fxa/authenticator/AccountPickler.java
https://api.accounts.firefox.com/v1
https://profile.accounts.firefox.com/v1
https://latest.dev.lcip.org/profile/v1
Defined in org/mozilla/gecko/fxa/authenticator/AccountPickler.java
https://api.accounts.firefox.com/v1
https://token.services.mozilla.com/1.0/sync/1.5
Defined in org/mozilla/gecko/fxa/activities/FxAccountStatusFragment.java
https://api.accounts.firefox.com/v1
https://token.services.mozilla.com/1.0/sync/1.5
Defined in org/mozilla/gecko/fxa/activities/FxAccountStatusFragment.java
https://location.services.mozilla.com/v1/country?key=3b4d27dd-703d-4094-8398-4de2c763505a
Defined in org/mozilla/gecko/search/SearchEngineManager.java
https://location.services.mozilla.com/v1/submit
Defined in org/mozilla/mozstumbler/service/uploadthread/AsyncUploader.java
https://addons.mozilla.org/android?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://support.mozilla.org/kb/controlledaccess?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://webmaker.org/
https://support.mozilla.org/products/mobile?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/faq
https://input.mozilla.org/feedback/android/%1$s/%2$s/?utm_source=feedback-settings
https://accounts.firefox.com/legal/privacy
https://accounts.firefox.com/legal/terms
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/mobile-help
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/new-android
Defined in Android String Resource
https://addons.mozilla.org/android?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://support.mozilla.org/kb/controlledaccess?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://webmaker.org/
https://support.mozilla.org/products/mobile?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/faq
https://input.mozilla.org/feedback/android/%1$s/%2$s/?utm_source=feedback-settings
https://accounts.firefox.com/legal/privacy
https://accounts.firefox.com/legal/terms
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/mobile-help
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/new-android
Defined in Android String Resource
https://addons.mozilla.org/android?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://support.mozilla.org/kb/controlledaccess?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://webmaker.org/
https://support.mozilla.org/products/mobile?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/faq
https://input.mozilla.org/feedback/android/%1$s/%2$s/?utm_source=feedback-settings
https://accounts.firefox.com/legal/privacy
https://accounts.firefox.com/legal/terms
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/mobile-help
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/new-android
Defined in Android String Resource
https://addons.mozilla.org/android?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://support.mozilla.org/kb/controlledaccess?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://webmaker.org/
https://support.mozilla.org/products/mobile?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/faq
https://input.mozilla.org/feedback/android/%1$s/%2$s/?utm_source=feedback-settings
https://accounts.firefox.com/legal/privacy
https://accounts.firefox.com/legal/terms
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/mobile-help
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/new-android
Defined in Android String Resource
https://addons.mozilla.org/android?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://support.mozilla.org/kb/controlledaccess?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://webmaker.org/
https://support.mozilla.org/products/mobile?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/faq
https://input.mozilla.org/feedback/android/%1$s/%2$s/?utm_source=feedback-settings
https://accounts.firefox.com/legal/privacy
https://accounts.firefox.com/legal/terms
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/mobile-help
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/new-android
Defined in Android String Resource
https://addons.mozilla.org/android?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://support.mozilla.org/kb/controlledaccess?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://webmaker.org/
https://support.mozilla.org/products/mobile?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/faq
https://input.mozilla.org/feedback/android/%1$s/%2$s/?utm_source=feedback-settings
https://accounts.firefox.com/legal/privacy
https://accounts.firefox.com/legal/terms
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/mobile-help
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/new-android
Defined in Android String Resource
https://addons.mozilla.org/android?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://support.mozilla.org/kb/controlledaccess?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://webmaker.org/
https://support.mozilla.org/products/mobile?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/faq
https://input.mozilla.org/feedback/android/%1$s/%2$s/?utm_source=feedback-settings
https://accounts.firefox.com/legal/privacy
https://accounts.firefox.com/legal/terms
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/mobile-help
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/new-android
Defined in Android String Resource
https://addons.mozilla.org/android?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://support.mozilla.org/kb/controlledaccess?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://webmaker.org/
https://support.mozilla.org/products/mobile?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/faq
https://input.mozilla.org/feedback/android/%1$s/%2$s/?utm_source=feedback-settings
https://accounts.firefox.com/legal/privacy
https://accounts.firefox.com/legal/terms
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/mobile-help
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/new-android
Defined in Android String Resource
https://addons.mozilla.org/android?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://support.mozilla.org/kb/controlledaccess?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://webmaker.org/
https://support.mozilla.org/products/mobile?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/faq
https://input.mozilla.org/feedback/android/%1$s/%2$s/?utm_source=feedback-settings
https://accounts.firefox.com/legal/privacy
https://accounts.firefox.com/legal/terms
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/mobile-help
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/new-android
Defined in Android String Resource
https://addons.mozilla.org/android?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://support.mozilla.org/kb/controlledaccess?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://webmaker.org/
https://support.mozilla.org/products/mobile?utm_source=inproduct&utm_medium=default-bookmarks&utm_campaign=mobileandroid
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/faq
https://input.mozilla.org/feedback/android/%1$s/%2$s/?utm_source=feedback-settings
https://accounts.firefox.com/legal/privacy
https://accounts.firefox.com/legal/terms
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/mobile-help
https://support.mozilla.org/1/mobile/%1$s/%2$s/%3$s/new-android
Defined in Android String Resource
https://crash-reports.mozilla.com/submit?id={aa3c5121-dab2-40e2-81ca-7ea25febc110}&version=68.11.0&buildid=20200721131302
https://hg.mozilla.org/releases/mozilla-esr68/rev/fb557eeb597737455524be7bed3fa6a3ea1b7408
Defined in lib/armeabi-v7a/libmozglue.so
https://crash-reports.mozilla.com/submit?id={aa3c5121-dab2-40e2-81ca-7ea25febc110}&version=68.11.0&buildid=20200721131302
https://hg.mozilla.org/releases/mozilla-esr68/rev/fb557eeb597737455524be7bed3fa6a3ea1b7408
Defined in lib/armeabi-v7a/libmozglue.so
file://%s
http://wpad/wpad.dat
data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8%2F9hAAAAGXRFWHRTb2Z0d2FyZQBBZG9iZSBJbWFnZVJlYWR5ccllPAAAAjFJREFUeNqsU8uOElEQPffR3XQ3ONASdBJCSBxHos5%2B3Bg3rvkCv8PElS78gPkO%2FATjQoUdO2ftrJiRh6aneTb9sOpC4weMN6lcuFV16pxDIfI8x12OYIDhcPiu2Wx%2B%2FHF5CW1Z6Jyegt%2FTNEWSJIjjGFEUIQxDrFYrWFSzXC4%2FdLvd95pRKpXKy%2BpRFZ7nwaWo1%2BsGnQG2260BKJfLKJVKGI1GEEJw7ateryd0v993W63WEwjgxfn5obGYzgCbzcaEbdsIggDj8Riu6z6iUk9SYZMSx8W0LMsM%2FSKK75xnJlIq80anQXdbEp0OhcPJ0eiaJnGRMEyyPDsAKKUM9clkYoDo3SZJzzSdp0VSKYmfV1co%2Bz580kw5KDIM8RbRfEnUf1HzxtQyMAGcaGruTKczMzEIaqhKifV6jd%2BzGQQB5llunF%2FM52BizC2K5sYPYvZcu653tjOM9O93wnYc08gmkgg4VAxixfqFUJT36AYBZGd6PJkFCZnnlBxMp38gqIgLpZB0y4Nph18lyWh5FFbrOSxbl3V4G%2BVB7T4ajYYxTyuLtO%2BCvWGgJE1Mc7JNsJEhvgw%2FQV4fo%2F24nbEsX2u1d5sVyn8sJO0ZAQiIYnFh%2BxrfLz%2Fj29cBS%2FO14zg3i8XigW3ZkErDtmKoeM%2BAJGRMnXeEPGKf0nCD1ydvkDzU9Jbc6OpR7WIw6L8lQ%2B4pQ1%2FlPF0RGM9Ns91Wmptk0GfB4EJkt77vXYj%2F8m%2B8y%2FkrwABHbz2H9V68DQAAAABJRU5ErkJggg%3D%3D
data:image/png;base64,iVBORw0KGgoAAAANSUhEUgAAABAAAAAQCAYAAAAf8%2F9hAAAAGXRFWHRTb2Z0d2FyZQBBZG9iZSBJbWFnZVJlYWR5ccllPAAAAeBJREFUeNqcU81O20AQ%2FtZ2AgQSYQRqL1UPVG2hAUQkxLEStz4DrXpLpD5Drz31Cajax%2Bghhx6qHIJURBTxIwQRwopCBbZjHMcOTrzermPipsSt1Iw03p3ZmW%2B%2B2R0TxhgOD34wjCHZlQ0iDYz9yvEfhxMTCYhEQDIZhkxKd2sqzX2TOD2vBQCQhpPefng1ZP2dVPlLLdpL8SEMcxng%2Fbs0RIHhtgs4twxOh%2BHjZxvzDx%2F3GQQiDFISiRBLFMPKTRMollzcWECrDVhtxtdRVsL9youPxGj%2FbdfFlUZhtDyYbYqWRUdai1oQRZ5oHeHl2gNM%2B01Uqio8RlH%2BnsazJzNwXcq1B%2BiXPHprlEEymeBfXs1w8XxxihfyuXqoHqpoGjZM04bddgG%2F9%2B8WGj87qDdsrK9m%2BoA%2BpbhQTDh2l1%2Bi2weNbSHMZyjvNXmVbqh9Fj5Oz27uEoP%2BSTxANruJs9L%2FT6P0ewqPx5nmiAG5f6AoCtN1PbJzuRyJAyDBzzSQYvErf06yYxhGXlEa8H2KVGoasjwLx3Ewk858opQWXm%2B%2Fib9EQrBzclLLLy89xYvlpchvtixcX6uo1y%2FzsiwHrkIsgKbp%2BYWFOWicuqppoNTnStHzPFCPQhBEBOyGAX4JMADFetubi4BSYAAAAABJRU5ErkJggg%3D%3D
data::OnFileOpened
data::OnFileDoomed