Malicious
5
/61

Threat

com.umpay.qingdaonfc

琴岛通

Analyzed on 2021-10-18T03:21:47.012538

46

permissions

138

activities

28

services

11

receivers

19

domains

File sums

MD5 0b4dd30c0305e2b306e24c0a1a12fb41
SHA1 06fded2bf84d70c23f0697f40b039303a56eb4da
SHA256 bca940bf4d23c7efd06bfb6275a98607a1bb0d0c8fdc6afaf0a78a58175d6959
Size 54.24MB

APKiD

Information computed with APKiD.

/tmp/tmpq73gotwc
packer
  • Jiagu
/tmp/tmpq73gotwc!classes.dex
compiler
  • dexlib 2.x
/tmp/tmpq73gotwc!lib/armeabi-v7a/libFaceSDK.so
obfuscator
  • Obfuscator-LLVM version 3.5

SSdeep

Information computed with ssdeep.

APK file 786432:7cIZZiF0/vdWv6KLaIITyiAWZJzfs9917WjZIo7fSe1iY2iSWNpsaj/IM:AeoFQ+6yif0917IC4H1TpshM
Manifest 768:D+pbSPBOGy5pgSK9xQSpz32bl2933KvzLlfmBQkb31CtegdwWXuGR56ETxlQrLfr:…
classes.dex 196608:odO2kuOqmVoPj9l9VYOCKQ2s0A5LnqalNuUSU+5Z:oI2ROqmV4j5VYNKQzfSbZ

Dexofuzzy

Information computed with Dexofuzzy.

APK file 12:VWm3r6Pik154IZFUofyVzODqXEUPbGMo3E:VWm3rYNZGoaVzHEMGMoU
classes.dex 12:VWm3r6Pik154IZFUofyVzODqXEUPbGMo3E:VWm3rYNZGoaVzHEMGMoU

APK details

Information computed with AndroGuard and Pithus.

Package com.umpay.qingdaonfc
App name 琴岛通
Version name 4.9.2
Version code 492
SDK 19 - 28
UAID 0ac9b14aa92a8ed0875b93e780cdd03dfebd7385
Signature Signature V1 Signature V2
Frosting Not frosted
Blocks found within V2 signature:
  • 0x7109871a: Unknown
  • 0x42726577: Verity padding

Certificate details

Information computed with AndroGuard.

MD5 f84bac2ec0c906114b59317beb638daf
SHA1 32ceee5831ff1a4f1e8cfe30dc2234c00124639a
SHA256 f4567da12d24c93c086f93492c9148e0b82017991b2b36a9dcec49c3a54ab931
Issuer Common Name: liandongyoushi, Locality: beijing, Country: CN
Not before 2016-07-20T08:27:56+00:00
Not after 2066-07-08T08:27:56+00:00

File Analysis

Information computed with MobSF.

Findings Files
Certificate/Key files hardcoded inside the app. assets/.appkey
Findings Files
Hardcoded Keystore found. assets/grs_sp.bks
assets/hmsincas.bks
assets/hmsrootcas.bks
assets/updatesdkcas.bks

Manifest analysis

Information computed with MobSF.

High Clear text traffic is Enabled For App[android:usesCleartextTraffic=true]
The app intends to use cleartext network traffic, such as cleartext HTTP, FTP stacks, DownloadManager, and MediaPlayer. The default value for apps that target API level 27 or lower is "true". Apps that target API level 28 or higher default to "false". The key reason for avoiding cleartext traffic is the lack of confidentiality, authenticity, and protections against tampering; a network attacker can eavesdrop on transmitted data and also modify it without being detected.
Low App has a Network Security Configuration[android:networkSecurityConfig=@xml/network_security_config]
The Network Security Configuration feature lets apps customize their network security settings in a safe, declarative configuration file without modifying app code. These settings can be configured for specific domains and for a specific app.
High Activity (com.umpay.qingdaonfc.lib.MainActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High TaskAffinity is set for Activity
(com.umpay.qingdaonfc.wxapi.WXEntryActivity)
If taskAffinity is set, then other application could read the Intents sent to Activities belonging to another task. Always use the default setting keeping the affinity as the package name in order to prevent sensitive information inside sent or received Intents from being read by another application.
High Launch Mode of Activity (com.umpay.qingdaonfc.wxapi.WXEntryActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (com.umpay.qingdaonfc.wxapi.WXEntryActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.umpay.qingdaonfc.wxapi.WXPayEntryActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Launch Mode of Activity (com.tencent.tauth.AuthActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (com.tencent.tauth.AuthActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Launch Mode of Activity (com.umpay.qingdaonfc.lib.improve.rn.ui.activity.CommonReactActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (com.umpay.qingdaonfc.lib.improve.rn.ui.activity.CommonReactActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Activity (com.umpay.qingdaonfc.lib.ui.activity.BusWriteCardActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Activity (com.umpay.qingdaonfc.lib.ui.suction.activity.SuctionCardOrderListActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Activity (com.umpay.qingdaonfc.lib.ui.suction.activity.SuctionCardStepOneActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Activity (com.umpay.qingdaonfc.lib.ui.suction.activity.SuctionCardStepTwoActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Activity (com.umpay.qingdaonfc.lib.ui.suction.activity.SuctionCardStepThreeActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Service (com.taobao.accs.ChannelService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (com.taobao.accs.data.MsgDistributeService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.taobao.accs.EventReceiver) is not Protected.An intent-filter exists.
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Broadcast Receiver is explicitly exported.
High Broadcast Receiver (com.taobao.accs.ServiceReceiver) is not Protected.An intent-filter exists.
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Broadcast Receiver is explicitly exported.
High Service (org.android.agoo.accs.AgooService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (com.umeng.message.UmengIntentService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (com.umeng.message.XiaomiIntentService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.taobao.agoo.AgooCommondReceiver) is not Protected. [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (com.umeng.message.UmengMessageIntentReceiverService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Launch Mode of Activity (com.convenient.qd.core.push.PushRouteActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (com.convenient.qd.core.push.PushRouteActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.authorize.ServiceActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.home.QDHomeActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.home.QDOpenSCRideSuccessActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.order.OrderListActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.order.OrderDetailActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.recharge.MutilRechargeTypeActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.citylink.CityListActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.electronicInvoice.BusCardActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.electronicInvoice.AddCardActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.electronicInvoice.AddHeadActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.electronicInvoice.DrawerInfoActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.electronicInvoice.HeadInfoActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.electronicInvoice.InvoiceFromCardActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.electronicInvoice.QrListActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.electronicInvoice.InvoiceHistoryActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.electronicInvoice.InvoiceInformationActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.stucard.SpecialCardGuideActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.stucard.OldCardActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.stucard.BloodCardActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.zhangShangChong.ScanActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.zhangShangChong.QDTCardRechargeActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.zhangShangChong.QDTWaitRechargeOrderListActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.zhangShangChong.CdbListActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.zhangShangChong.QuestionActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.cardtopup.PayActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.cardtopup.TopUpingActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.cardtopup.CardTopUpActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.etcRecharge.EtcCardListActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.etcRecharge.EtcTopUpActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.etcRecharge.AddEtcCardActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.moreService.ServiceDotActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.moreService.SubwayActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.notify.AlarmClockOnOffActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.notify.AllNoticActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.notify.EditAlarmActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.notify.LongTimeSitActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.device.DeviceActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.order.QDTConsumeDetailActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.device.OTAActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.device.SearchDevicesActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.stucard.StuCardSplashActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.stucard.StuCardInfoCollectActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.stucard.StuIdCardImgCollectActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.stucard.StuCardOrderAccountActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.stucard.StuCardOrderListActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.stucard.StuCardOrderDetailActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.stucard.StuCardPayResultActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.convenient.qd.module.qdt.activity.stucard.StuCardOrderDeliveryActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (com.jdpaysdk.author.AuthorActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (com.convenient.qd.module.qdt.service.BleService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (com.convenient.qd.module.qdt.service.BleConnectService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (com.convenient.qd.module.qdt.service.NotificationFetcherService) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.BIND_ACCESSIBILITY_SERVICE [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Service (com.convenient.qd.module.qdt.service.SimpleKitkatNotificationListener) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.BIND_NOTIFICATION_LISTENER_SERVICE [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Broadcast Receiver (com.convenient.qd.module.qdt.service.PhoneReceiver) is Protected by a permission, but the protection level of the permission should be checked.
Permission: android.permission.BROADCAST_SMS [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Launch Mode of Activity (com.wzh.ssgjcx.activity.SsgjActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.wzh.ssgjcx.activity.SsgjRemindAboardActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Launch Mode of Activity (com.wzh.ssgjcx.activity.SsgjRemindDebusActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Service (com.blankj.utilcode.util.MessengerUtils$ServerService) is not Protected.An intent-filter exists.
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Service is explicitly exported.
High Service (com.xiaomi.mipush.sdk.PushMessageHandler) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (com.xiaomi.push.service.receivers.NetworkStatusReceiver) is not Protected. [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (org.android.agoo.xiaomi.MiPushBroadcastReceiver) is not Protected. [android:exported=true]
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Service (com.heytap.msp.push.service.CompatibleDataMessageCallbackService) is Protected by a permission, but the protection level of the permission should be checked.
Permission: com.coloros.mcs.permission.SEND_MCS_MESSAGE [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Service (com.heytap.msp.push.service.DataMessageCallbackService) is Protected by a permission, but the protection level of the permission should be checked.
Permission: com.heytap.mcs.permission.SEND_PUSH_MESSAGE [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. It is protected by a permission which is not defined in the analysed application. As a result, the protection level of the permission should be checked where it is defined. If it is set to normal or dangerous, a malicious application can request and obtain the permission and interact with the component. If it is set to signature, only applications signed with the same certificate can obtain the permission.
High Service (com.vivo.push.sdk.service.CommandClientService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Activity (com.vivo.push.sdk.LinkProxyClientActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Broadcast Receiver (org.android.agoo.vivo.PushMessageReceiverImpl) is not Protected.An intent-filter exists.
A Broadcast Receiver is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Broadcast Receiver is explicitly exported.
Low Broadcast Receiver (com.huawei.hms.support.api.push.PushMsgReceiver) is Protected by a permission, but the protection level of the permission should be checked.
Permission: com.umpay.qingdaonfc.permission.PROCESS_PUSH_MSG
protectionLevel: signatureOrSystem [android:exported=true]
A Broadcast Receiver is found to be exported, but is protected by a permission. However, the protection level of the permission is set to signatureOrSystem. It is recommended that signature level is used instead. Signature level should suffice for most purposes, and does not depend on where the applications are installed on the device.
Low Broadcast Receiver (com.huawei.hms.support.api.push.PushReceiver) is Protected by a permission, but the protection level of the permission should be checked.
Permission: com.umpay.qingdaonfc.permission.PROCESS_PUSH_MSG
protectionLevel: signatureOrSystem [android:exported=true]
A Broadcast Receiver is found to be exported, but is protected by a permission. However, the protection level of the permission is set to signatureOrSystem. It is recommended that signature level is used instead. Signature level should suffice for most purposes, and does not depend on where the applications are installed on the device.
High Service (com.huawei.hms.support.api.push.service.HmsMsgService) is not Protected. [android:exported=true]
A Service is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
Low Content Provider (com.huawei.hms.support.api.push.PushProvider) is Protected by a permission, but the protection level of the permission should be checked.
Permission: com.umpay.qingdaonfc.permission.PUSH_PROVIDER
protectionLevel: signatureOrSystem [android:exported=true]
A Content Provider is found to be exported, but is protected by a permission. However, the protection level of the permission is set to signatureOrSystem. It is recommended that signature level is used instead. Signature level should suffice for most purposes, and does not depend on where the applications are installed on the device.
High Activity (com.sina.weibo.sdk.share.WbShareTransActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Launch Mode of Activity (com.sina.weibo.sdk.share.WbShareToStoryActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (com.sina.weibo.sdk.share.WbShareToStoryActivity) is not Protected.An intent-filter exists.
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device. The presence of intent-filter indicates that the Activity is explicitly exported.
High Launch Mode of Activity (com.alipay.sdk.app.PayResultActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (com.alipay.sdk.app.PayResultActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.
High Launch Mode of Activity (com.alipay.sdk.app.AlipayResultActivity) is not standard.
An Activity should not be having the launch mode attribute set to "singleTask/singleInstance" as it becomes root Activity and it is possible for other applications to read the contents of the calling Intent. So it is required to use the "standard" launch mode attribute when sensitive information is included in an Intent.
High Activity (com.alipay.sdk.app.AlipayResultActivity) is not Protected. [android:exported=true]
An Activity is found to be shared with other apps on the device therefore leaving it accessible to any other application on the device.

Browsable activities

Information computed with MobSF.

com.umpay.qingdaonfc.lib.MainActivity

Schemes: qdtnfc://

com.tencent.tauth.AuthActivity

Schemes: tencent101375943://

com.jdpaysdk.author.AuthorActivity

Schemes: jdpauthjdjr111081761001:// jdpauth://

Main Activity

Information computed with AndroGuard.

com.umpay.qingdaonfc.lib.SplashActivity

Activities

Information computed with AndroGuard.

com.umpay.qingdaonfc.lib.SplashActivity
com.umpay.qingdaonfc.lib.MainActivity
com.umpay.qingdaonfc.wxapi.WXEntryActivity
com.umpay.qingdaonfc.wxapi.WXPayEntryActivity
com.tencent.tauth.AuthActivity
com.tencent.connect.common.AssistActivity
com.umpay.qingdaonfc.lib.improve.rn.ui.activity.CommonReactActivity
com.umpay.qingdaonfc.lib.ui.activity.BusWriteCardActivity
com.umpay.qingdaonfc.lib.ui.activity.BusRechargeSuccessActivity
com.umpay.qingdaonfc.lib.ui.activity.Web2Activity
com.umpay.qingdaonfc.lib.ui.suction.activity.SuctionCardOrderListActivity
com.umpay.qingdaonfc.lib.ui.suction.activity.SuctionCardStepOneActivity
com.umpay.qingdaonfc.lib.ui.suction.activity.SuctionCardStepTwoActivity
com.umpay.qingdaonfc.lib.ui.suction.activity.SuctionCardStepThreeActivity
com.umpay.qingdaonfc.lib.ui.suction.activity.SuctionCardStepFourActivity
com.umpay.qingdaonfc.lib.ui.suction.activity.SuctionCardStepFiveActivity
com.umpay.qingdaonfc.lib.ui.suction.activity.SuctionCardStepSixActivity
com.amap.api.navi.AmapRouteActivity
com.tencent.bugly.beta.ui.BetaActivity
com.convenient.qd.core.push.PushRouteActivity
com.convenient.qd.core.widget.PolicyWebActivity
com.yalantis.ucrop.UCropActivity
com.facebook.react.devsupport.DevSettingsActivity
com.convenient.qd.module.qdt.activity.authorize.QDAuthorizeActivity
com.convenient.qd.module.qdt.activity.authorize.QDLaw
com.convenient.qd.module.qdt.activity.authorize.QDServiceableActivity
com.convenient.qd.module.qdt.activity.authorize.QDTKFActivity
com.convenient.qd.module.qdt.activity.authorize.ServiceActivity
com.convenient.qd.module.qdt.activity.balancequrey.QueryBalanceActivity
com.convenient.qd.module.qdt.activity.home.QDHomeActivity
com.convenient.qd.module.qdt.activity.home.QDLoginOutActivity
com.convenient.qd.module.qdt.activity.home.QDTZoneActivity
com.convenient.qd.module.qdt.activity.home.QDOpenSCRideSuccessActivity
com.convenient.qd.module.qdt.activity.order.EtunnelOrderDetailActivity
com.convenient.qd.module.qdt.activity.order.QDOrderActivity
com.convenient.qd.module.qdt.activity.order.OrderListActivity
com.convenient.qd.module.qdt.activity.order.OrderDetailActivity
com.convenient.qd.module.qdt.activity.recharge.MutilRechargeTypeActivity
com.convenient.qd.module.qdt.activity.recharge.QDRechargeActivity
com.convenient.qd.module.qdt.activity.citylink.CityListActivity
com.convenient.qd.module.qdt.activity.electronicInvoice.BusCardActivity
com.convenient.qd.module.qdt.activity.electronicInvoice.AddCardActivity
com.convenient.qd.module.qdt.activity.electronicInvoice.AddHeadActivity
com.convenient.qd.module.qdt.activity.electronicInvoice.DrawerInfoActivity
com.convenient.qd.module.qdt.activity.electronicInvoice.HeadInfoActivity
com.convenient.qd.module.qdt.activity.electronicInvoice.InvoiceFromCardActivity
com.convenient.qd.module.qdt.activity.electronicInvoice.QrListActivity
com.convenient.qd.module.qdt.activity.electronicInvoice.InvoiceHistoryActivity
com.convenient.qd.module.qdt.activity.electronicInvoice.InvoiceInformationActivity
com.convenient.qd.module.qdt.activity.stucard.SpecialCardGuideActivity
com.convenient.qd.module.qdt.activity.stucard.OldCardActivity
com.convenient.qd.module.qdt.activity.stucard.BloodCardActivity
com.convenient.qd.module.qdt.activity.zhangShangChong.ScanActivity
com.convenient.qd.module.qdt.activity.zhangShangChong.QDTCardRechargeActivity
com.convenient.qd.module.qdt.activity.zhangShangChong.QDTWaitRechargeOrderListActivity
com.convenient.qd.module.qdt.activity.zhangShangChong.CdbListActivity
com.convenient.qd.module.qdt.activity.zhangShangChong.QuestionActivity
com.convenient.qd.module.qdt.activity.cardtopup.PayActivity
com.convenient.qd.module.qdt.activity.cardtopup.TopUpingActivity
com.convenient.qd.module.qdt.activity.cardtopup.CardTopUpActivity
com.convenient.qd.module.qdt.activity.etcRecharge.EtcCardListActivity
com.convenient.qd.module.qdt.activity.etcRecharge.EtcTopUpActivity
com.convenient.qd.module.qdt.activity.etcRecharge.AddEtcCardActivity
com.convenient.qd.module.qdt.activity.moreService.ServiceDotActivity
com.convenient.qd.module.qdt.activity.moreService.SubwayActivity
com.convenient.qd.module.qdt.activity.notify.AlarmClockOnOffActivity
com.convenient.qd.module.qdt.activity.notify.AllNoticActivity
com.convenient.qd.module.qdt.activity.notify.EditAlarmActivity
com.convenient.qd.module.qdt.activity.notify.LongTimeSitActivity
com.convenient.qd.module.qdt.activity.device.DeviceActivity
com.convenient.qd.module.qdt.activity.order.QDTConsumeDetailActivity
com.convenient.qd.module.qdt.activity.device.OTAActivity
com.convenient.qd.module.qdt.activity.device.SearchDevicesActivity
com.convenient.qd.module.qdt.activity.stucard.StuCardSplashActivity
com.convenient.qd.module.qdt.activity.stucard.StuCardInfoCollectActivity
com.convenient.qd.module.qdt.activity.stucard.StuIdCardImgCollectActivity
com.convenient.qd.module.qdt.activity.stucard.StuCardOrderAccountActivity
com.convenient.qd.module.qdt.activity.stucard.StuCardOrderListActivity
com.convenient.qd.module.qdt.activity.stucard.StuCardOrderDetailActivity
com.convenient.qd.module.qdt.activity.stucard.StuCardPayResultActivity
com.convenient.qd.module.qdt.activity.stucard.StuCardOrderDeliveryActivity
com.convenient.qd.module.qdt.activity.stucard.StuCardRuleActivity
com.convenient.qd.module.qdt.activity.stucard.StuCardUploadHeadActivity
com.convenient.qd.module.qdt.activity.stucard.StuCardAuditActivity
com.convenient.qd.module.qdt.activity.stucard.StuCardAuditListActivity
com.jdpaysdk.author.AuthorActivity
com.jdpaysdk.author.browser.BrowserActivity
com.wildma.idcardcamera.camera.CameraActivity
com.convenient.qd.module.face.IdentityActivity
com.convenient.qd.module.face.sense.FaceRecognitionActivity
com.convenient.qd.module.face.idcard.IDCardActivity
com.sensetime.liveness.motion.MotionLivenessActivity
com.convenient.qd.module.face.FinishShowActivity
com.convenient.qd.module.face.baiduface.BaiDuFaceMainActivity
com.convenient.qd.module.face.baiduface.FaceLivenessExpActivity
com.convenient.qd.module.face.baiduface.FaceDetectExpActivity
com.convenient.qd.module.face.baiduface.SettingsActivity
com.yanzhenjie.permission.PermissionActivity
com.wzh.ssgjcx.activity.SsgjActivity
com.wzh.ssgjcx.activity.SsgjZddtActivity
com.wzh.ssgjcx.activity.SsgjZdscActivity
com.wzh.ssgjcx.activity.SsgjGgxxActivity
com.wzh.ssgjcx.activity.SsgjGgxxDetailActivity
com.wzh.ssgjcx.activity.SsgjSearchActivity
com.wzh.ssgjcx.activity.SsgjRouteActivity
com.wzh.ssgjcx.activity.SsgjStationActivity
com.wzh.ssgjcx.activity.SsgjDestinationActivity
com.wzh.ssgjcx.activity.SsgjStationDetailActivity
com.wzh.ssgjcx.activity.SsgjRouteDetailActivity
com.wzh.ssgjcx.activity.SsgjRouteMapActivity
com.wzh.ssgjcx.activity.SsgjDtxlActivity
com.wzh.ssgjcx.activity.SsgjRemindAboardActivity
com.wzh.ssgjcx.activity.SsgjRemindDebusActivity
com.wzh.ssgjcx.activity.SsgjAboardAddActiivity
com.wzh.ssgjcx.activity.SsgjRemindRouteDetailActivity
com.wzh.ssgjcx.activity.SsgjRemindRouteMapActivity
com.google.android.gms.common.api.GoogleApiActivity
com.blankj.utilcode.util.PermissionUtils$PermissionActivity
com.vivo.push.sdk.LinkProxyClientActivity
com.sina.weibo.sdk.web.WeiboSdkWebActivity
com.sina.weibo.sdk.share.WbShareTransActivity
com.sina.weibo.sdk.share.WbShareToStoryActivity
com.alipay.sdk.app.H5PayActivity
com.alipay.sdk.app.H5AuthActivity
com.alipay.sdk.app.PayResultActivity
com.alipay.sdk.app.AlipayResultActivity
com.alipay.sdk.app.H5OpenAuthActivity
com.alipay.sdk.app.APayEntranceActivity
com.citylinkdata.citylib.photoview.ViewPagerActivity
com.citylinkdata.citylib.CityWebActivity
com.citylinkdata.citylib.zxing.activity.CaptureActivity
com.huawei.hms.hwid.internal.ui.activity.HwIdSignInHubActivity
com.huawei.hms.account.internal.ui.activity.AccountSignInHubActivity
com.lxj.xpermission.XPermission$PermissionActivity
com.huawei.hms.activity.BridgeActivity
com.huawei.hms.activity.EnableServiceActivity
com.huawei.updatesdk.service.otaupdate.AppUpdateActivity
com.huawei.updatesdk.support.pm.PackageInstallerActivity

Receivers

Information computed with AndroGuard.

com.taobao.accs.EventReceiver
com.taobao.accs.ServiceReceiver
com.taobao.agoo.AgooCommondReceiver
com.umeng.message.NotificationProxyBroadcastReceiver
com.convenient.qd.module.qdt.service.PhoneReceiver
com.xiaomi.push.service.receivers.NetworkStatusReceiver
com.xiaomi.push.service.receivers.PingReceiver
org.android.agoo.xiaomi.MiPushBroadcastReceiver
org.android.agoo.vivo.PushMessageReceiverImpl
com.huawei.hms.support.api.push.PushMsgReceiver
com.huawei.hms.support.api.push.PushReceiver

Services

Information computed with AndroGuard.

com.taobao.accs.ChannelService
com.taobao.accs.data.MsgDistributeService
com.taobao.accs.internal.AccsJobService
com.taobao.accs.ChannelService$KernelService
org.android.agoo.accs.AgooService
com.umeng.message.UmengIntentService
com.umeng.message.XiaomiIntentService
com.umeng.message.UmengMessageIntentReceiverService
com.umeng.message.UmengMessageCallbackHandlerService
com.umeng.message.UmengDownloadResourceService
com.amap.api.location.APSService
com.convenient.qd.module.qdt.service.UartService
com.convenient.qd.module.qdt.service.DfuBaseService
com.convenient.qd.module.qdt.service.BleService
com.convenient.qd.module.qdt.service.BleConnectService
com.convenient.qd.module.qdt.service.NotificationFetcherService
com.convenient.qd.module.qdt.service.SimpleKitkatNotificationListener
com.blankj.utilcode.util.MessengerUtils$ServerService
com.xiaomi.push.service.XMPushService
com.xiaomi.push.service.XMJobService
com.xiaomi.mipush.sdk.PushMessageHandler
com.xiaomi.mipush.sdk.MessageHandleService
com.heytap.msp.push.service.CompatibleDataMessageCallbackService
com.heytap.msp.push.service.DataMessageCallbackService
com.vivo.push.sdk.service.CommandClientService
com.huawei.hms.support.api.push.service.HmsMsgService
org.android.agoo.huawei.HuaweiPushMessageService
com.huawei.agconnect.core.ServiceDiscovery

Sample timeline

Certificate valid not before July 20, 2016, 8:27 a.m.
Latest file found in APK Oct. 9, 2021, 4:53 p.m.
First submission on VT Oct. 18, 2021, 3:19 a.m.
Last submission on VT Oct. 18, 2021, 3:19 a.m.
Upload on Pithus Oct. 18, 2021, 3:21 a.m.
Certificate valid not after July 8, 2066, 8:27 a.m.

VirusTotal

Score 5/61
Report https://www.virustotal.com/gui/file/bca940bf4d23c7efd06bfb6275a98607a1bb0d0c8fdc6afaf0a78a58175d6959/detection

Most Popular AV Detections

Provided by VirusTotal

Threat name: jiagu Identified 2 times

NIAP analysis

Information computed with MobSF.

FCS_STO_EXT.1.1 The application does not store any credentials to non-volatile memory.
Storage of Credentials
FCS_CKM_EXT.1.1 The application generate no asymmetric cryptographic keys.
Cryptographic Key Generation Services
FDP_DEC_EXT.1.1 The application has access to ['NFC', 'network connectivity', 'camera', 'location', 'bluetooth', 'microphone'].
Access to Platform Resources
FDP_DEC_EXT.1.2 The application has access to no sensitive information repositories.
Access to Platform Resources
FDP_NET_EXT.1.1 The application has user/application initiated network communications.
Network Communications
FDP_DAR_EXT.1.1 The application does not encrypt files in non-volatile memory.
Encryption Of Sensitive Application Data
FTP_DIT_EXT.1.1 The application does not encrypt any data in traffic or does not transmit any data between itself and another trusted IT product.
Protection of Data in Transit
Pygal Canada: 100 China: 500 Germany: 400 Hong Kong: 300 United States: 400

Map computed by Pithus.

Network analysis

Information computed with MobSF.

High Base config is insecurely configured to permit clear text traffic to all domains.
Scope: ['*']

Domains analysis

Information computed with MobSF.

CN tsapi.amap.com 106.11.43.116
US mpsapi.amap.com 198.11.188.36
DE store-at-dre.hispace.dbankcloud.com 80.158.5.6
HK h5pay.jd.com 202.77.244.29
DE store.hispace.hicloud.com 80.158.2.135
US m5.amap.com 198.11.188.35
CN nls-wave.aliyuncs.com 106.15.100.123
CN errlog.umeng.com 59.82.31.210
HK restsdk.amap.com 47.246.109.112
HK errlogos.umeng.com 47.246.110.18
DE appgallery.cloud.huawei.com 80.158.41.227
CA www.winimage.com 144.217.225.1
ns.adobe.com
schemas.alibaba-inc.com
CN nls-log-gather.aliyuncs.com 203.119.207.114
US play.google.com 142.250.185.206
DE www.openssl.org 2.17.187.9
CN pre-nls-gateway-inner.aliyuncs.com 59.82.29.26
US lame.sf.net 204.68.111.100

URL analysis

Information computed with MobSF.

https://h5pay.jd.com/degrade?
https://appgallery.cloud.huawei.com/app/
https://play.google.com/store/apps/details?id=
https://appgallery.cloud.huawei.com
https://store-at-dre.hispace.dbankcloud.com/hwmarket/api/
https://store.hispace.hicloud.com/hwmarket/api/
Defined in Android String Resource
https://h5pay.jd.com/degrade?
https://appgallery.cloud.huawei.com/app/
https://play.google.com/store/apps/details?id=
https://appgallery.cloud.huawei.com
https://store-at-dre.hispace.dbankcloud.com/hwmarket/api/
https://store.hispace.hicloud.com/hwmarket/api/
Defined in Android String Resource
https://h5pay.jd.com/degrade?
https://appgallery.cloud.huawei.com/app/
https://play.google.com/store/apps/details?id=
https://appgallery.cloud.huawei.com
https://store-at-dre.hispace.dbankcloud.com/hwmarket/api/
https://store.hispace.hicloud.com/hwmarket/api/
Defined in Android String Resource
https://h5pay.jd.com/degrade?
https://appgallery.cloud.huawei.com/app/
https://play.google.com/store/apps/details?id=
https://appgallery.cloud.huawei.com
https://store-at-dre.hispace.dbankcloud.com/hwmarket/api/
https://store.hispace.hicloud.com/hwmarket/api/
Defined in Android String Resource
https://h5pay.jd.com/degrade?
https://appgallery.cloud.huawei.com/app/
https://play.google.com/store/apps/details?id=
https://appgallery.cloud.huawei.com
https://store-at-dre.hispace.dbankcloud.com/hwmarket/api/
https://store.hispace.hicloud.com/hwmarket/api/
Defined in Android String Resource
https://h5pay.jd.com/degrade?
https://appgallery.cloud.huawei.com/app/
https://play.google.com/store/apps/details?id=
https://appgallery.cloud.huawei.com
https://store-at-dre.hispace.dbankcloud.com/hwmarket/api/
https://store.hispace.hicloud.com/hwmarket/api/
Defined in Android String Resource
https://nls-wave.aliyuncs.com/api/gather
https://pre-nls-gateway-inner.aliyuncs.com/rest/v1/tts/resource
https://nls-log-gather.aliyuncs.com/api/gather
http://schemas.alibaba-inc.com/tts
http://lame.sf.net
http://www.winimage.com/zLibDll
https://www.openssl.org/docs/faq.html
Defined in lib/armeabi-v7a/libneonuijni.so
https://nls-wave.aliyuncs.com/api/gather
https://pre-nls-gateway-inner.aliyuncs.com/rest/v1/tts/resource
https://nls-log-gather.aliyuncs.com/api/gather
http://schemas.alibaba-inc.com/tts
http://lame.sf.net
http://www.winimage.com/zLibDll
https://www.openssl.org/docs/faq.html
Defined in lib/armeabi-v7a/libneonuijni.so
https://nls-wave.aliyuncs.com/api/gather
https://pre-nls-gateway-inner.aliyuncs.com/rest/v1/tts/resource
https://nls-log-gather.aliyuncs.com/api/gather
http://schemas.alibaba-inc.com/tts
http://lame.sf.net
http://www.winimage.com/zLibDll
https://www.openssl.org/docs/faq.html
Defined in lib/armeabi-v7a/libneonuijni.so
https://nls-wave.aliyuncs.com/api/gather
https://pre-nls-gateway-inner.aliyuncs.com/rest/v1/tts/resource
https://nls-log-gather.aliyuncs.com/api/gather
http://schemas.alibaba-inc.com/tts
http://lame.sf.net
http://www.winimage.com/zLibDll
https://www.openssl.org/docs/faq.html
Defined in lib/armeabi-v7a/libneonuijni.so
https://nls-wave.aliyuncs.com/api/gather
https://pre-nls-gateway-inner.aliyuncs.com/rest/v1/tts/resource
https://nls-log-gather.aliyuncs.com/api/gather
http://schemas.alibaba-inc.com/tts
http://lame.sf.net
http://www.winimage.com/zLibDll
https://www.openssl.org/docs/faq.html
Defined in lib/armeabi-v7a/libneonuijni.so
https://nls-wave.aliyuncs.com/api/gather
https://pre-nls-gateway-inner.aliyuncs.com/rest/v1/tts/resource
https://nls-log-gather.aliyuncs.com/api/gather
http://schemas.alibaba-inc.com/tts
http://lame.sf.net
http://www.winimage.com/zLibDll
https://www.openssl.org/docs/faq.html
Defined in lib/armeabi-v7a/libneonuijni.so
https://nls-wave.aliyuncs.com/api/gather
https://pre-nls-gateway-inner.aliyuncs.com/rest/v1/tts/resource
https://nls-log-gather.aliyuncs.com/api/gather
http://schemas.alibaba-inc.com/tts
http://lame.sf.net
http://www.winimage.com/zLibDll
https://www.openssl.org/docs/faq.html
Defined in lib/armeabi-v7a/libneonuijni.so
http://m5.amap.com/ws/shield/mainsideroad/downloadData
http://m5.amap.com/ws/shield/elevated/downloadData
http://m5.amap.com/ws/shield/rdr/log/upload
http://m5.amap.com
http://restsdk.amap.com/rest/lbs
http://restsdk.amap.com/v4
http://tsapi.amap.com/v1
http://restsdk.amap.com/v3
http://restsdk.amap.com/opennavi
http://mpsapi.amap.com/ws/mps/vmap
http://mpsapi.amap.com/ws/mps/rtt
http://mpsapi.amap.com/ws/mps/smap
http://m5.amap.com/ws/transfer/auth/map/indoor_maps
http://mpsapi.amap.com/ws/mps/lyrdata/ugc/
http://mpsapi.amap.com/
Defined in lib/armeabi-v7a/libAMapSDK_NAVI_v7_8_0.so
http://m5.amap.com/ws/shield/mainsideroad/downloadData
http://m5.amap.com/ws/shield/elevated/downloadData
http://m5.amap.com/ws/shield/rdr/log/upload
http://m5.amap.com
http://restsdk.amap.com/rest/lbs
http://restsdk.amap.com/v4
http://tsapi.amap.com/v1
http://restsdk.amap.com/v3
http://restsdk.amap.com/opennavi
http://mpsapi.amap.com/ws/mps/vmap
http://mpsapi.amap.com/ws/mps/rtt
http://mpsapi.amap.com/ws/mps/smap
http://m5.amap.com/ws/transfer/auth/map/indoor_maps
http://mpsapi.amap.com/ws/mps/lyrdata/ugc/
http://mpsapi.amap.com/
Defined in lib/armeabi-v7a/libAMapSDK_NAVI_v7_8_0.so
http://m5.amap.com/ws/shield/mainsideroad/downloadData
http://m5.amap.com/ws/shield/elevated/downloadData
http://m5.amap.com/ws/shield/rdr/log/upload
http://m5.amap.com
http://restsdk.amap.com/rest/lbs
http://restsdk.amap.com/v4
http://tsapi.amap.com/v1
http://restsdk.amap.com/v3
http://restsdk.amap.com/opennavi
http://mpsapi.amap.com/ws/mps/vmap
http://mpsapi.amap.com/ws/mps/rtt
http://mpsapi.amap.com/ws/mps/smap
http://m5.amap.com/ws/transfer/auth/map/indoor_maps
http://mpsapi.amap.com/ws/mps/lyrdata/ugc/
http://mpsapi.amap.com/
Defined in lib/armeabi-v7a/libAMapSDK_NAVI_v7_8_0.so
http://m5.amap.com/ws/shield/mainsideroad/downloadData
http://m5.amap.com/ws/shield/elevated/downloadData
http://m5.amap.com/ws/shield/rdr/log/upload
http://m5.amap.com
http://restsdk.amap.com/rest/lbs
http://restsdk.amap.com/v4
http://tsapi.amap.com/v1
http://restsdk.amap.com/v3
http://restsdk.amap.com/opennavi
http://mpsapi.amap.com/ws/mps/vmap
http://mpsapi.amap.com/ws/mps/rtt
http://mpsapi.amap.com/ws/mps/smap
http://m5.amap.com/ws/transfer/auth/map/indoor_maps
http://mpsapi.amap.com/ws/mps/lyrdata/ugc/
http://mpsapi.amap.com/
Defined in lib/armeabi-v7a/libAMapSDK_NAVI_v7_8_0.so
http://m5.amap.com/ws/shield/mainsideroad/downloadData
http://m5.amap.com/ws/shield/elevated/downloadData
http://m5.amap.com/ws/shield/rdr/log/upload
http://m5.amap.com
http://restsdk.amap.com/rest/lbs
http://restsdk.amap.com/v4
http://tsapi.amap.com/v1
http://restsdk.amap.com/v3
http://restsdk.amap.com/opennavi
http://mpsapi.amap.com/ws/mps/vmap
http://mpsapi.amap.com/ws/mps/rtt
http://mpsapi.amap.com/ws/mps/smap
http://m5.amap.com/ws/transfer/auth/map/indoor_maps
http://mpsapi.amap.com/ws/mps/lyrdata/ugc/
http://mpsapi.amap.com/
Defined in lib/armeabi-v7a/libAMapSDK_NAVI_v7_8_0.so
http://m5.amap.com/ws/shield/mainsideroad/downloadData
http://m5.amap.com/ws/shield/elevated/downloadData
http://m5.amap.com/ws/shield/rdr/log/upload
http://m5.amap.com
http://restsdk.amap.com/rest/lbs
http://restsdk.amap.com/v4
http://tsapi.amap.com/v1
http://restsdk.amap.com/v3
http://restsdk.amap.com/opennavi
http://mpsapi.amap.com/ws/mps/vmap
http://mpsapi.amap.com/ws/mps/rtt
http://mpsapi.amap.com/ws/mps/smap
http://m5.amap.com/ws/transfer/auth/map/indoor_maps
http://mpsapi.amap.com/ws/mps/lyrdata/ugc/
http://mpsapi.amap.com/
Defined in lib/armeabi-v7a/libAMapSDK_NAVI_v7_8_0.so
http://m5.amap.com/ws/shield/mainsideroad/downloadData
http://m5.amap.com/ws/shield/elevated/downloadData
http://m5.amap.com/ws/shield/rdr/log/upload
http://m5.amap.com
http://restsdk.amap.com/rest/lbs
http://restsdk.amap.com/v4
http://tsapi.amap.com/v1
http://restsdk.amap.com/v3
http://restsdk.amap.com/opennavi
http://mpsapi.amap.com/ws/mps/vmap
http://mpsapi.amap.com/ws/mps/rtt
http://mpsapi.amap.com/ws/mps/smap
http://m5.amap.com/ws/transfer/auth/map/indoor_maps
http://mpsapi.amap.com/ws/mps/lyrdata/ugc/
http://mpsapi.amap.com/
Defined in lib/armeabi-v7a/libAMapSDK_NAVI_v7_8_0.so
http://m5.amap.com/ws/shield/mainsideroad/downloadData
http://m5.amap.com/ws/shield/elevated/downloadData
http://m5.amap.com/ws/shield/rdr/log/upload
http://m5.amap.com
http://restsdk.amap.com/rest/lbs
http://restsdk.amap.com/v4
http://tsapi.amap.com/v1
http://restsdk.amap.com/v3
http://restsdk.amap.com/opennavi
http://mpsapi.amap.com/ws/mps/vmap
http://mpsapi.amap.com/ws/mps/rtt
http://mpsapi.amap.com/ws/mps/smap
http://m5.amap.com/ws/transfer/auth/map/indoor_maps
http://mpsapi.amap.com/ws/mps/lyrdata/ugc/
http://mpsapi.amap.com/
Defined in lib/armeabi-v7a/libAMapSDK_NAVI_v7_8_0.so
http://m5.amap.com/ws/shield/mainsideroad/downloadData
http://m5.amap.com/ws/shield/elevated/downloadData
http://m5.amap.com/ws/shield/rdr/log/upload
http://m5.amap.com
http://restsdk.amap.com/rest/lbs
http://restsdk.amap.com/v4
http://tsapi.amap.com/v1
http://restsdk.amap.com/v3
http://restsdk.amap.com/opennavi
http://mpsapi.amap.com/ws/mps/vmap
http://mpsapi.amap.com/ws/mps/rtt
http://mpsapi.amap.com/ws/mps/smap
http://m5.amap.com/ws/transfer/auth/map/indoor_maps
http://mpsapi.amap.com/ws/mps/lyrdata/ugc/
http://mpsapi.amap.com/
Defined in lib/armeabi-v7a/libAMapSDK_NAVI_v7_8_0.so
http://m5.amap.com/ws/shield/mainsideroad/downloadData
http://m5.amap.com/ws/shield/elevated/downloadData
http://m5.amap.com/ws/shield/rdr/log/upload
http://m5.amap.com
http://restsdk.amap.com/rest/lbs
http://restsdk.amap.com/v4
http://tsapi.amap.com/v1
http://restsdk.amap.com/v3
http://restsdk.amap.com/opennavi
http://mpsapi.amap.com/ws/mps/vmap
http://mpsapi.amap.com/ws/mps/rtt
http://mpsapi.amap.com/ws/mps/smap
http://m5.amap.com/ws/transfer/auth/map/indoor_maps
http://mpsapi.amap.com/ws/mps/lyrdata/ugc/
http://mpsapi.amap.com/
Defined in lib/armeabi-v7a/libAMapSDK_NAVI_v7_8_0.so
http://m5.amap.com/ws/shield/mainsideroad/downloadData
http://m5.amap.com/ws/shield/elevated/downloadData
http://m5.amap.com/ws/shield/rdr/log/upload
http://m5.amap.com
http://restsdk.amap.com/rest/lbs
http://restsdk.amap.com/v4
http://tsapi.amap.com/v1
http://restsdk.amap.com/v3
http://restsdk.amap.com/opennavi
http://mpsapi.amap.com/ws/mps/vmap
http://mpsapi.amap.com/ws/mps/rtt
http://mpsapi.amap.com/ws/mps/smap
http://m5.amap.com/ws/transfer/auth/map/indoor_maps
http://mpsapi.amap.com/ws/mps/lyrdata/ugc/
http://mpsapi.amap.com/
Defined in lib/armeabi-v7a/libAMapSDK_NAVI_v7_8_0.so
http://m5.amap.com/ws/shield/mainsideroad/downloadData
http://m5.amap.com/ws/shield/elevated/downloadData
http://m5.amap.com/ws/shield/rdr/log/upload
http://m5.amap.com
http://restsdk.amap.com/rest/lbs
http://restsdk.amap.com/v4
http://tsapi.amap.com/v1
http://restsdk.amap.com/v3
http://restsdk.amap.com/opennavi
http://mpsapi.amap.com/ws/mps/vmap
http://mpsapi.amap.com/ws/mps/rtt
http://mpsapi.amap.com/ws/mps/smap
http://m5.amap.com/ws/transfer/auth/map/indoor_maps
http://mpsapi.amap.com/ws/mps/lyrdata/ugc/
http://mpsapi.amap.com/
Defined in lib/armeabi-v7a/libAMapSDK_NAVI_v7_8_0.so
http://m5.amap.com/ws/shield/mainsideroad/downloadData
http://m5.amap.com/ws/shield/elevated/downloadData
http://m5.amap.com/ws/shield/rdr/log/upload
http://m5.amap.com
http://restsdk.amap.com/rest/lbs
http://restsdk.amap.com/v4
http://tsapi.amap.com/v1
http://restsdk.amap.com/v3
http://restsdk.amap.com/opennavi
http://mpsapi.amap.com/ws/mps/vmap
http://mpsapi.amap.com/ws/mps/rtt
http://mpsapi.amap.com/ws/mps/smap
http://m5.amap.com/ws/transfer/auth/map/indoor_maps
http://mpsapi.amap.com/ws/mps/lyrdata/ugc/
http://mpsapi.amap.com/
Defined in lib/armeabi-v7a/libAMapSDK_NAVI_v7_8_0.so
http://m5.amap.com/ws/shield/mainsideroad/downloadData
http://m5.amap.com/ws/shield/elevated/downloadData
http://m5.amap.com/ws/shield/rdr/log/upload
http://m5.amap.com
http://restsdk.amap.com/rest/lbs
http://restsdk.amap.com/v4
http://tsapi.amap.com/v1
http://restsdk.amap.com/v3
http://restsdk.amap.com/opennavi
http://mpsapi.amap.com/ws/mps/vmap
http://mpsapi.amap.com/ws/mps/rtt
http://mpsapi.amap.com/ws/mps/smap
http://m5.amap.com/ws/transfer/auth/map/indoor_maps
http://mpsapi.amap.com/ws/mps/lyrdata/ugc/
http://mpsapi.amap.com/
Defined in lib/armeabi-v7a/libAMapSDK_NAVI_v7_8_0.so
http://m5.amap.com/ws/shield/mainsideroad/downloadData
http://m5.amap.com/ws/shield/elevated/downloadData
http://m5.amap.com/ws/shield/rdr/log/upload
http://m5.amap.com
http://restsdk.amap.com/rest/lbs
http://restsdk.amap.com/v4
http://tsapi.amap.com/v1
http://restsdk.amap.com/v3
http://restsdk.amap.com/opennavi
http://mpsapi.amap.com/ws/mps/vmap
http://mpsapi.amap.com/ws/mps/rtt
http://mpsapi.amap.com/ws/mps/smap
http://m5.amap.com/ws/transfer/auth/map/indoor_maps
http://mpsapi.amap.com/ws/mps/lyrdata/ugc/
http://mpsapi.amap.com/
Defined in lib/armeabi-v7a/libAMapSDK_NAVI_v7_8_0.so
http://ns.adobe.com/xap/1.0/
Defined in lib/armeabi-v7a/libimagepipeline.so
https://errlog.umeng.com/api/crashsdk/logcollect
https://errlogos.umeng.com/api/crashsdk/logcollect
https://errlog.umeng.com
https://errlogos.umeng.com
Defined in lib/armeabi-v7a/libcrashsdk.so
https://errlog.umeng.com/api/crashsdk/logcollect
https://errlogos.umeng.com/api/crashsdk/logcollect
https://errlog.umeng.com
https://errlogos.umeng.com
Defined in lib/armeabi-v7a/libcrashsdk.so
https://errlog.umeng.com/api/crashsdk/logcollect
https://errlogos.umeng.com/api/crashsdk/logcollect
https://errlog.umeng.com
https://errlogos.umeng.com
Defined in lib/armeabi-v7a/libcrashsdk.so
https://errlog.umeng.com/api/crashsdk/logcollect
https://errlogos.umeng.com/api/crashsdk/logcollect
https://errlog.umeng.com
https://errlogos.umeng.com
Defined in lib/armeabi-v7a/libcrashsdk.so

Permissions analysis

Information computed with MobSF.

High android.permission.READ_PHONE_STATE read phone state and identity
Allows the application to access the phone features of the device. An application with this permission can determine the phone number and serial number of this phone, whether a call is active, the number that call is connected to and so on.
High android.permission.READ_EXTERNAL_STORAGE read external storage contents
Allows an application to read from external storage.
High android.permission.REQUEST_INSTALL_PACKAGES Allows an application to request installing packages.
Malicious applications can use this to try and trick users into installing additional malicious packages.
High android.permission.MOUNT_UNMOUNT_FILESYSTEMS mount and unmount file systems
Allows the application to mount and unmount file systems for removable storage.
High android.permission.WRITE_EXTERNAL_STORAGE read/modify/delete external storage contents
Allows an application to write to external storage.
High android.permission.ACCESS_FINE_LOCATION fine (GPS) location
Access fine location sources, such as the Global Positioning System on the phone, where available. Malicious applications can use this to determine where you are and may consume additional battery power.
High android.permission.WRITE_SETTINGS modify global system settings
Allows an application to modify the system's settings data. Malicious applications can corrupt your system's configuration.
High android.permission.ACCESS_COARSE_LOCATION coarse (network-based) location
Access coarse location sources, such as the mobile network database, to determine an approximate phone location, where available. Malicious applications can use this to determine approximately where you are.
High android.permission.CAMERA take pictures and videos
Allows application to take pictures and videos with the camera. This allows the application to collect images that the camera is seeing at any time.
High android.permission.MANAGE_ACCOUNTS manage the accounts list
Allows an application to perform operations like adding and removing accounts and deleting their password.
High android.permission.GET_ACCOUNTS list accounts
Allows access to the list of accounts in the Accounts Service.
High android.permission.CALL_PHONE directly call phone numbers
Allows the application to call phone numbers without your intervention. Malicious applications may cause unexpected calls on your phone bill. Note that this does not allow the application to call emergency numbers.
High android.permission.RECORD_AUDIO record audio
Allows application to access the audio record path.
High android.permission.GET_TASKS retrieve running applications
Allows application to retrieve information about currently and recently running tasks. May allow malicious applications to discover private information about other applications.
Low android.permission.ACCESS_NETWORK_STATE view network status
Allows an applica