Android Analysis Report
Cliente m#U00f3vil @firma 1.7.2 1.7.2.apk

Overview

General Information

Sample Name: Cliente m#U00f3vil @firma 1.7.2 1.7.2.apk
Analysis ID: 764028
MD5: 5a9163b46f5c743ed3a84224c195defb
SHA1: 595d00ab197ef314f5872fd5c251727825836238
SHA256: 2b4f1d122c8171dccd799e0356b52dcafefba647c72e5652835e2317425f6094
Infos:

Detection

Score: 8
Range: 0 - 100
Whitelisted: false
Confidence: 100%

Signatures

Opens an internet connection
May access the Android keyguard (lock screen)
Lists and deletes files in the same context
Detected TCP or UDP traffic on non-standard ports
Has functionality to send UDP packets
Installs a new wake lock (to get activate on phone screen on)
Checks an internet connection is available
Accesses android OS build fields
Executes native commands
Installs an application shortcut on the screen
Performs DNS lookups (Java API)
Requests potentially dangerous permissions
Queries several sensitive phone informations
Potential date aware sample found
May take a camera picture
Uses reflection

Classification

Source: es.gob.afirma.android.FileChooserActivity;->onCreate:80 API Call: android.os.Environment.getExternalStorageState
Source: es.gob.afirma.android.FileChooserActivity;->onCreate:83 API Call: android.os.Environment.getExternalStorageDirectory
Source: es.gob.afirma.android.SaveDataActivity;->onCreate:110 API Call: android.os.Environment.getExternalStorageState
Source: es.gob.afirma.android.SaveDataActivity;->onCreate:113 API Call: android.os.Environment.getExternalStorageDirectory
Source: androidx.core.content.FileProvider;->parsePathStrategy:63 API Call: android.os.Environment.getExternalStorageDirectory
Source: androidx.core.os.EnvironmentCompat;->getStorageState:2 API Call: android.os.Environment.getExternalStorageState
Source: androidx.core.os.EnvironmentCompat;->getStorageState:5 API Call: android.os.Environment.getExternalStorageDirectory
Source: androidx.core.os.EnvironmentCompat;->getStorageState:8 API Call: android.os.Environment.getExternalStorageState
Opens an internet connection
Source: es.gob.afirma.android.crypto.AndroidHttpManager;->readUrl:37 API Call: java.net.URL.openConnection (not executed)
Source: es.gob.afirma.core.misc.http.UrlHttpManagerImpl;->readUrl:176 API Call: java.net.URL.openConnection (not executed)
Source: es.gob.afirma.core.misc.http.UrlHttpManagerImpl;->readUrl:178 API Call: java.net.URL.openConnection (not executed)
Source: es.gob.afirma.signers.tsp.pkcs7.CMSTimestamper;->prepareConnection:197 API Call: java.net.URL.openConnection (not executed)
Source: org.spongycastle.x509.PKIXCertPathReviewer;->getCRL:616 API Call: java.net.URL.openConnection (not executed)
Detected TCP or UDP traffic on non-standard ports
Source: global traffic TCP traffic: 192.168.2.30:56068 -> 8.8.4.4:853
Checks an internet connection is available
Source: androidx.core.net.ConnectivityManagerCompat;->getNetworkInfoFromBroadcast:5 API Call: android.net.ConnectivityManager.getNetworkInfo
Source: androidx.core.net.ConnectivityManagerCompat;->isActiveNetworkMetered:8 API Call: android.net.ConnectivityManager.getActiveNetworkInfo
Performs DNS lookups (Java API)
Source: es.gob.afirma.core.misc.http.UrlHttpManagerImpl;->isLocal:71 API Call: java.net.InetAddress.getByName (not executed)
Source: es.gob.afirma.core.misc.http.URLName;->getHostAddress:55 API Call: java.net.InetAddress.getByName (not executed)
Source: org.spongycastle.est.jcajce.JsseDefaultHostnameAuthorizer;->verify:56 API Call: java.net.InetAddress.getByName (not executed)
Source: org.spongycastle.est.jcajce.JsseDefaultHostnameAuthorizer;->verify:59 API Call: java.net.InetAddress.getByName (not executed)
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 47664
Source: unknown Network traffic detected: HTTP traffic on port 39602 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 443 -> 54604
Source: unknown Network traffic detected: HTTP traffic on port 47664 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50870 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 54604 -> 443
Source: unknown Network traffic detected: HTTP traffic on port 50458 -> 443
Source: es.gob.afirma.android.crypto.AndroidHttpManager;->readUrl:52 API Call: java.net.HttpURLConnection.connect
Source: es.gob.afirma.core.misc.http.UrlHttpManagerImpl;->readUrl:236 API Call: java.net.HttpURLConnection.connect
Source: org.spongycastle.x509.PKIXCertPathReviewer;->getCRL:619 API Call: java.net.HttpURLConnection.connect
Source: unknown TCP traffic detected without corresponding DNS query: 216.58.212.170
Source: unknown TCP traffic detected without corresponding DNS query: 142.250.186.163
Source: unknown TCP traffic detected without corresponding DNS query: 216.58.212.170
Source: unknown TCP traffic detected without corresponding DNS query: 142.250.186.163
Source: unknown TCP traffic detected without corresponding DNS query: 216.58.212.170
Source: unknown TCP traffic detected without corresponding DNS query: 142.250.186.163
Source: unknown TCP traffic detected without corresponding DNS query: 216.58.212.170
Source: unknown TCP traffic detected without corresponding DNS query: 142.250.186.163
Source: unknown TCP traffic detected without corresponding DNS query: 142.250.186.42
Source: unknown TCP traffic detected without corresponding DNS query: 108.177.126.188
Source: unknown TCP traffic detected without corresponding DNS query: 108.177.126.188
Source: unknown TCP traffic detected without corresponding DNS query: 108.177.126.188
Source: unknown TCP traffic detected without corresponding DNS query: 108.177.126.188
Source: unknown TCP traffic detected without corresponding DNS query: 108.177.126.188
Source: unknown TCP traffic detected without corresponding DNS query: 108.177.126.188
Source: unknown TCP traffic detected without corresponding DNS query: 108.177.126.188
Source: unknown TCP traffic detected without corresponding DNS query: 108.177.126.188
Source: unknown TCP traffic detected without corresponding DNS query: 108.177.126.188
Source: unknown TCP traffic detected without corresponding DNS query: 108.177.126.188
Source: unknown TCP traffic detected without corresponding DNS query: 108.177.126.188
Source: unknown TCP traffic detected without corresponding DNS query: 108.177.126.188
Source: unknown TCP traffic detected without corresponding DNS query: 142.251.209.46
Source: unknown TCP traffic detected without corresponding DNS query: 142.251.209.46
Source: unknown TCP traffic detected without corresponding DNS query: 142.251.209.46
Source: unknown TCP traffic detected without corresponding DNS query: 142.251.209.46
Source: unknown TCP traffic detected without corresponding DNS query: 142.251.209.46
Source: unknown TCP traffic detected without corresponding DNS query: 142.251.209.46
Source: unknown TCP traffic detected without corresponding DNS query: 142.251.209.46
Source: unknown TCP traffic detected without corresponding DNS query: 142.251.209.46
Source: unknown TCP traffic detected without corresponding DNS query: 142.251.209.46
Source: unknown TCP traffic detected without corresponding DNS query: 142.251.209.46
Source: unknown TCP traffic detected without corresponding DNS query: 142.251.209.46
Source: unknown TCP traffic detected without corresponding DNS query: 142.251.209.46
Source: unknown TCP traffic detected without corresponding DNS query: 142.251.209.46
Source: unknown TCP traffic detected without corresponding DNS query: 216.58.212.170
Source: unknown TCP traffic detected without corresponding DNS query: 142.250.186.163
Source: unknown TCP traffic detected without corresponding DNS query: 142.250.186.138
Source: X9.crt String found in binary or memory: http://crl.acabogacia.org/crl/aca_arl.crl0
Source: zH.cer, Bp.cer String found in binary or memory: http://crl.firmaprofesional.com/caroot.crt0
Source: zH.cer, Bp.cer String found in binary or memory: http://crl.firmaprofesional.com/fproot.crl0
Source: 83.cer String found in binary or memory: http://crl.logalty.es/logaltyCARoot.crl0
Source: aU.cer String found in binary or memory: http://crl1.logalty.es/logaltyCARoot03.crl00
Source: aU.cer String found in binary or memory: http://crl2.logalty.es/logaltyCARoot03.crl0
Source: aU.cer String found in binary or memory: http://crt.logalty.es/certificateauthority/LogaltyCAROOT03.cacert.crt0#
Source: Jb.crt, GM.crt, Yo.crt String found in binary or memory: http://ocsp.accv.es0
Source: zH.cer, Bp.cer String found in binary or memory: http://ocsp.firmaprofesional.com0
Source: X9.crt String found in binary or memory: http://ocsp.redabogacia.org0?
Source: aU.cer String found in binary or memory: http://ocsp1.logalty.es0J
Source: ZT.cer String found in binary or memory: http://ocspfnmtrcmca.cert.fnmt.es/ocspfnmtrcmca/OcspResponder0;
Source: qf.cer String found in binary or memory: http://ocspfnmtssr.cert.fnmt.es/ocspssr/OcspResponder0E
Source: qy1.xml, AndroidManifest.xml, android String found in binary or memory: http://schemas.android.com/apk/res/android
Source: X9.crt String found in binary or memory: http://www.acabogacia.org/certificados/aca_root.crt0
Source: X9.crt String found in binary or memory: http://www.acabogacia.org/crl/aca_arl.crl
Source: X9.crt, lx.crt String found in binary or memory: http://www.acabogacia.org/doc0
Source: lx.crt String found in binary or memory: http://www.acabogacia.org0
Source: Jb.crt String found in binary or memory: http://www.accv.es/fileadmin/Archivos/certificados/raizaccv1.crt0
Source: Jb.crt, GM.crt, Yo.crt String found in binary or memory: http://www.accv.es/fileadmin/Archivos/certificados/raizaccv1_der.crl0
Source: Jb.crt, GM.crt, Yo.crt String found in binary or memory: http://www.accv.es/legislacion_c.htm0U
Source: Jb.crt, GM.crt, Yo.crt String found in binary or memory: http://www.accv.es00
Source: classes.dex, android String found in binary or memory: http://www.aiim.org/pdfa/ns/id/
Source: classes.dex, android String found in binary or memory: http://www.bouncycastle.org)
Source: ZT.cer String found in binary or memory: http://www.cert.fnmt.es/certs/ACRAIZFNMTRCM.crt0
Source: qf.cer String found in binary or memory: http://www.cert.fnmt.es/certs/ACRAIZSERVIDORESSEGUROS.crt0F
Source: ZT.cer String found in binary or memory: http://www.cert.fnmt.es/crls/ARLFNMTRCM.crl0
Source: qf.cer String found in binary or memory: http://www.cert.fnmt.es/crls/ARLSERVIDORESSEGUROS.crl0
Source: h3.cer, ZT.cer String found in binary or memory: http://www.cert.fnmt.es/dpcs/0
Source: classes.dex, android String found in binary or memory: http://www.color.org
Source: ACRAIZ-SHA2.crt String found in binary or memory: http://www.dnie.es/dpc0
Source: 3S.cer, U9.crt String found in binary or memory: http://www.firmaprofesional.com/cps0
Source: zH.cer, Bp.cer String found in binary or memory: http://www.firmaprofesional.com/cps0/
Source: zH.cer, Bp.cer String found in binary or memory: http://www.firmaprofesional.com/cps0;
Source: classes.dex, android String found in binary or memory: http://www.xfa.org/schema/xfa-data/1.0/
Source: resources.arsc, android String found in binary or memory: https://administracion.gob.es/pag_Home/politicaDePrivacidad.html
Source: policy.properties String found in binary or memory: https://sede.administracion.gob.es/PAG_Sede/dam/jcr:b0de3f91-5171-48e2-81f3-5c2407d9c091/politica_fi
Source: policy.properties String found in binary or memory: https://sede.administracion.gob.es/politica_de_firma_anexo_1.pdf
Source: aU.cer String found in binary or memory: https://www.logalty.es/PKI/documentacion/0m
Source: unknown HTTP traffic detected: POST /c2dm/register3 HTTP/1.1Authorization: AidLogin 3976102378291501644:1184905049225720946app: com.google.android.gmsgcm_ver: 210214031User-Agent: Android-GCM/1.5 (x86 PI)content-length: 477content-type: application/x-www-form-urlencodedHost: android.clients.google.comConnection: Keep-AliveAccept-Encoding: gzip
Has functionality to send UDP packets
Source: org.spongycastle.crypto.tls.UDPTransport;->send:17 API Call: java.net.DatagramSocket.send
Lists and deletes files in the same context
Source: org.junit.rules.TemporaryFolder;->recursiveDelete:10 API Calls in same method context: File.listFiles,File.delete
Source: androidx.multidex.MultiDex;->clearOldDexDir:58 API Calls in same method context: File.listFiles,File.delete
Source: androidx.multidex.MultiDexExtractor;->clearDexDir:66 API Calls in same method context: File.listFiles,File.delete
May access the Android keyguard (lock screen)
Source: classes.dex String found in binary or memory: Landroid/app/KeyguardManager;
Source: classes.dex String found in binary or memory: keyguard
Source: android String found in binary or memory: keyguard
Source: androidx.core.app.JobIntentService$CompatWorkEnqueuer;->enqueueWork:27 API Call: android.os.PowerManager$WakeLock.acquire
Source: androidx.core.app.JobIntentService$CompatWorkEnqueuer;->serviceProcessingFinished:29 API Call: android.os.PowerManager$WakeLock.acquire
Source: androidx.core.app.JobIntentService$CompatWorkEnqueuer;->serviceProcessingStarted:33 API Call: android.os.PowerManager$WakeLock.acquire
Executes native commands
Source: es.gob.afirma.keystores.KeyStoreUtilities;->getWindowsShortName:296 API Call: java.lang.ProcessBuilder.start
Requests potentially dangerous permissions
Source: submitted apk Request permission: android.permission.INTERNET
Source: submitted apk Request permission: android.permission.USE_CREDENTIALS
Source: submitted apk Request permission: android.permission.WRITE_EXTERNAL_STORAGE
Source: es.gob.afirma.android.gui.AppConfig;->getPreference:4 API Call: android.content.SharedPreferences.getBoolean
Source: androidx.core.app.AppLaunchChecker;->hasStartedFromLauncher:5 API Call: android.content.SharedPreferences.getBoolean
Source: androidx.core.app.AppLaunchChecker;->onActivityCreate:9 API Call: android.content.SharedPreferences.getBoolean
Source: org.apache.harmony.awt.Utils$2;->run:3 API Call: java.lang.System.loadLibrary
Source: classification engine Classification label: clean8.andAPK@0/251@0/0
Uses reflection
Source: es.gob.afirma.android.crypto.KeyStoreManagerFactory;->initKeyStoreManager:88 API Call: java.lang.reflect.Field.get
Source: es.gob.afirma.android.crypto.KeyStoreManagerFactory;->initKeyStoreManager:90 API Call: java.lang.reflect.Method.invoke
Source: es.gob.afirma.android.crypto.KeyStoreManagerFactory;->initKeyStoreManager:91 API Call: java.lang.reflect.Field.get
Source: es.gob.afirma.android.crypto.KeyStoreManagerFactory;->initKeyStoreManager:97 API Call: java.lang.reflect.Field.get
Source: es.gob.afirma.android.crypto.KeyStoreManagerFactory;->initKeyStoreManager:102 API Call: java.lang.reflect.Field.get
Source: es.gob.afirma.android.crypto.KeyStoreManagerFactory;->initKeyStoreManager:104 API Call: java.lang.reflect.Method.invoke
Source: es.gob.afirma.android.crypto.KeyStoreManagerFactory;->initKeyStoreManager:109 API Call: java.lang.reflect.Method.invoke
Source: es.gob.afirma.ui.core.jse.AWTUIManager;->getLoadFiles:15 API Call: java.lang.reflect.Method.invoke
Source: es.gob.afirma.ui.core.jse.AWTUIManager;->getLoadFiles:53 API Call: java.lang.reflect.Method.invoke
Source: es.gob.afirma.ui.core.jse.JSEUIManager;->showCertificateSelectionDialog:241 API Call: java.lang.reflect.Method.invoke
Source: es.gob.afirma.keystores.AOKeyStoreManagerHelperPkcs11;->getP11ProviderJava9:59 API Call: java.lang.reflect.Method.invoke
Source: es.gob.afirma.keystores.CAPIKeyStoreManager;->cleanCAPIDuplicateAliases:9 API Call: java.lang.reflect.Field.get
Source: es.gob.afirma.keystores.CAPIKeyStoreManager;->cleanCAPIDuplicateAliases:19 API Call: java.lang.reflect.Field.get
Source: es.gob.afirma.keystores.CAPIKeyStoreManager;->cleanCAPIDuplicateAliases:20 API Call: java.lang.reflect.Field.get
Source: es.gob.afirma.keystores.CAPIKeyStoreManager;->cleanCAPIDuplicateAliases:28 API Call: java.lang.reflect.Field.get
Source: es.gob.afirma.keystores.CAPIKeyStoreManager;->cleanCAPIDuplicateAliases:35 API Call: java.lang.reflect.Field.get
Source: es.gob.afirma.core.misc.MimeHelper;-><init>:9 API Call: java.lang.reflect.Method.invoke
Source: es.gob.afirma.core.misc.MimeHelper;-><init>:14 API Call: java.lang.reflect.Method.invoke
Source: es.gob.afirma.core.misc.MimeHelper;-><init>:21 API Call: java.lang.reflect.Method.invoke
Source: es.gob.afirma.core.misc.MimeHelper;-><init>:27 API Call: java.lang.reflect.Method.invoke
Source: es.gob.afirma.signers.tsp.pkcs7.CMSTimestamper;->configureHttpsConnection:103 API Call: java.lang.reflect.Method.invoke
Source: es.gob.afirma.core.signers.ExtraParamsProcessor;->configAutoFormat:11 API Call: java.lang.reflect.Method.invoke
Source: androidx.activity.ImmLeaksCleaner;->onStateChanged:17 API Call: java.lang.reflect.Field.get
Source: androidx.activity.ImmLeaksCleaner;->onStateChanged:19 API Call: java.lang.reflect.Field.get
Source: androidx.core.app.ActivityRecreator$3;->run:8 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.app.ActivityRecreator$3;->run:13 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.app.ActivityRecreator;->queueOnStopIfNecessary:35 API Call: java.lang.reflect.Field.get
Source: androidx.core.app.ActivityRecreator;->queueOnStopIfNecessary:37 API Call: java.lang.reflect.Field.get
Source: androidx.core.app.ActivityRecreator;->recreate:50 API Call: java.lang.reflect.Field.get
Source: androidx.core.app.ActivityRecreator;->recreate:52 API Call: java.lang.reflect.Field.get
Source: androidx.core.app.ActivityRecreator;->recreate:65 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.app.BundleCompat$BundleCompatBaseImpl;->getBinder:9 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.app.BundleCompat$BundleCompatBaseImpl;->putBinder:19 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.app.NotificationCompatJellybean;->getAction:52 API Call: java.lang.reflect.Field.get
Source: androidx.core.app.NotificationCompatJellybean;->getAction:54 API Call: java.lang.reflect.Field.get
Source: androidx.core.app.NotificationCompatJellybean;->getActionObjectsLocked:86 API Call: java.lang.reflect.Field.get
Source: androidx.core.app.NotificationCompatJellybean;->getExtras:133 API Call: java.lang.reflect.Field.get
Source: androidx.core.app.NotificationManagerCompat;->areNotificationsEnabled:49 API Call: java.lang.reflect.Field.get
Source: androidx.core.app.NotificationManagerCompat;->areNotificationsEnabled:53 API Call: java.lang.reflect.Method.invoke
Source: es.gob.jmulticard.card.dnie.DnieNFC;->getPaceConnection:46 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.graphics.drawable.DrawableCompat;->getLayoutDirection:25 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.graphics.drawable.DrawableCompat;->setLayoutDirection:46 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.graphics.drawable.IconCompat;->getResId:113 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.graphics.drawable.IconCompat;->getResPackage:124 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.graphics.drawable.IconCompat;->getType:144 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.graphics.drawable.WrappedDrawableApi21;->isProjected:19 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.graphics.drawable.IconCompat;->getUri:167 API Call: java.lang.reflect.Method.invoke
Source: junit.framework.TestCase;->runTest:75 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.graphics.TypefaceCompatApi21Impl;->addFontWeightStyle:6 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.graphics.TypefaceCompatApi21Impl;->createFromFamiliesWithDefault:14 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.graphics.TypefaceCompatApi24Impl;->addFontWeightStyle:22 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.graphics.TypefaceCompatApi24Impl;->createFromFamiliesWithDefault:28 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.graphics.TypefaceCompatApi26Impl;->abortCreation:19 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.graphics.TypefaceCompatApi26Impl;->addFontFromAssetManager:27 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.graphics.TypefaceCompatApi26Impl;->addFontFromBuffer:33 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.graphics.TypefaceCompatApi26Impl;->freeze:36 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.graphics.TypefaceCompatApi26Impl;->createFromFamiliesWithDefault:51 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.graphics.TypefaceCompatApi28Impl;->createFromFamiliesWithDefault:9 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.graphics.TypefaceCompatBaseImpl;->getUniqueKey:18 API Call: java.lang.reflect.Field.get
Source: es.gob.jmulticard.ui.passwordcallback.gui.DnieCallbackHandler;->handle:31 API Call: java.lang.reflect.Method.invoke
Source: es.gob.jmulticard.ui.passwordcallback.gui.DnieCacheCallbackHandler;->handle:65 API Call: java.lang.reflect.Method.invoke
Source: org.junit.experimental.theories.internal.AllMembersSupplier;->getStaticFieldValue:74 API Call: java.lang.reflect.Field.get
Source: net.sf.jmimemagic.MagicMatcher;->testDetector:74 API Call: java.lang.reflect.Method.invoke
Source: net.sf.jmimemagic.MagicMatcher;->getDetectorExtensions:206 API Call: java.lang.reflect.Method.invoke
Source: androidx.lifecycle.ClassesInfoCache$MethodReference;->invokeCallback:12 API Call: java.lang.reflect.Method.invoke
Source: androidx.lifecycle.ClassesInfoCache$MethodReference;->invokeCallback:14 API Call: java.lang.reflect.Method.invoke
Source: androidx.lifecycle.ClassesInfoCache$MethodReference;->invokeCallback:16 API Call: java.lang.reflect.Method.invoke
Source: org.junit.runners.model.FrameworkField;->get:5 API Call: java.lang.reflect.Field.get
Source: org.junit.runners.model.FrameworkMethod$1;->runReflectiveCall:6 API Call: java.lang.reflect.Method.invoke
Source: androidx.multidex.MultiDex$V14;->install:9 API Call: java.lang.reflect.Field.get
Source: androidx.multidex.MultiDex$V19;->install:4 API Call: java.lang.reflect.Field.get
Source: androidx.multidex.MultiDex$V19;->install:19 API Call: java.lang.reflect.Field.get
Source: androidx.multidex.MultiDex$V4;->install:5 API Call: java.lang.reflect.Field.get
Source: androidx.multidex.MultiDex$V19;->makeDexElements:33 API Call: java.lang.reflect.Method.invoke
Source: androidx.multidex.MultiDex;->expandFieldArray:120 API Call: java.lang.reflect.Field.get
Source: es.gob.jmulticard.android.nfc.NFCWatchdogRefresher$WatchdogRefresher;->run:13 API Call: java.lang.reflect.Method.invoke
Source: es.gob.jmulticard.android.nfc.NFCWatchdogRefresher$WatchdogRefresher;->run:16 API Call: java.lang.reflect.Method.invoke
Source: es.gob.jmulticard.android.nfc.NFCWatchdogRefresher$WatchdogRefresher;->run:23 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.os.TraceCompat;->beginAsyncSection:27 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.os.TraceCompat;->endAsyncSection:36 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.os.TraceCompat;->isEnabled:44 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.os.TraceCompat;->setCounter:53 API Call: java.lang.reflect.Method.invoke
Source: com.aowagie.text.pdf.MappedRandomAccessFile$1;->run:9 API Call: java.lang.reflect.Method.invoke
Source: com.aowagie.text.pdf.MappedRandomAccessFile$1;->run:13 API Call: java.lang.reflect.Method.invoke
Source: com.aowagie.text.pdf.PdfName;-><clinit>:878 API Call: java.lang.reflect.Field.get
Source: androidx.core.content.pm.ShortcutManagerCompat;->getShortcutInfoSaverInstance:38 API Call: java.lang.reflect.Method.invoke
Source: junit.runner.BaseTestRunner;->getTest:97 API Call: java.lang.reflect.Method.invoke
Source: org.junit.internal.runners.ClassRoadie;->runAfters:7 API Call: java.lang.reflect.Method.invoke
Source: org.junit.internal.runners.ClassRoadie;->runBefores:16 API Call: java.lang.reflect.Method.invoke
Source: org.junit.internal.runners.MethodRoadie;->runAfters:8 API Call: java.lang.reflect.Method.invoke
Source: org.junit.internal.runners.MethodRoadie;->runBefores:18 API Call: java.lang.reflect.Method.invoke
Source: org.junit.internal.runners.SuiteMethod;->testFromSuiteMethod:7 API Call: java.lang.reflect.Method.invoke
Source: org.junit.internal.runners.TestMethod;->invoke:15 API Call: java.lang.reflect.Method.invoke
Source: org.spongycastle.jcajce.provider.symmetric.GcmSpecUtil;->extractGcmParameters:9 API Call: java.lang.reflect.Method.invoke
Source: org.spongycastle.jcajce.provider.symmetric.GcmSpecUtil;->extractGcmParameters:10 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.text.ICUCompat;->addLikelySubtags:16 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.text.ICUCompat;->getScript:21 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.text.ICUCompat;->maximizeAndGetScript:29 API Call: java.lang.reflect.Method.invoke
Source: androidx.tracing.Trace;->beginAsyncSectionFallback:13 API Call: java.lang.reflect.Method.invoke
Source: androidx.tracing.Trace;->endAsyncSectionFallback:27 API Call: java.lang.reflect.Method.invoke
Source: androidx.tracing.Trace;->isEnabledFallback:53 API Call: java.lang.reflect.Method.invoke
Source: androidx.tracing.Trace;->setCounterFallback:67 API Call: java.lang.reflect.Method.invoke
Source: org.spongycastle.jcajce.provider.symmetric.util.BaseMac;->engineInit:95 API Call: java.lang.reflect.Method.invoke
Source: org.spongycastle.jcajce.provider.symmetric.util.BaseMac;->engineInit:97 API Call: java.lang.reflect.Method.invoke
Source: org.spongycastle.jcajce.provider.symmetric.util.BaseBlockCipher;->engineInit:303 API Call: java.lang.reflect.Method.invoke
Source: org.spongycastle.jcajce.provider.symmetric.util.BaseBlockCipher;->engineInit:305 API Call: java.lang.reflect.Method.invoke
Source: androidx.versionedparcelable.VersionedParcel;->readFromParcel:194 API Call: java.lang.reflect.Method.invoke
Source: androidx.versionedparcelable.VersionedParcel;->writeToParcel:401 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.view.KeyEventDispatcher;->actionBarOnMenuKeyEventPre28:6 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.view.KeyEventDispatcher;->getDialogKeyListenerPre28:38 API Call: java.lang.reflect.Field.get
Source: androidx.core.view.ViewCompat;->dispatchFinishTemporaryDetach:63 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.view.ViewCompat;->dispatchStartTemporaryDetach:85 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.view.ViewConfigurationCompat;->getLegacyScrollFactor:8 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.view.ViewCompat;->getAccessibilityDelegateThroughReflection:109 API Call: java.lang.reflect.Field.get
Source: androidx.core.view.ViewCompat;->getMinimumHeight:159 API Call: java.lang.reflect.Field.get
Source: androidx.core.view.ViewCompat;->getMinimumWidth:166 API Call: java.lang.reflect.Field.get
Source: androidx.core.view.ViewCompat;->setChildrenDrawingOrderEnabled:396 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.widget.CompoundButtonCompat;->getButtonDrawable:10 API Call: java.lang.reflect.Field.get
Source: androidx.core.widget.PopupWindowCompat;->getOverlapAnchor:10 API Call: java.lang.reflect.Field.get
Source: androidx.core.widget.PopupWindowCompat;->getWindowLayoutType:19 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.widget.PopupWindowCompat;->setWindowLayoutType:40 API Call: java.lang.reflect.Method.invoke
Source: androidx.core.widget.TextViewCompat$OreoCallback;->recomputeProcessTextMenuItems:58 API Call: java.lang.reflect.Method.invoke
Source: com.aowagie.text.xml.SAXiTextHandler;->handleStartingTags:360 API Call: java.lang.reflect.Field.get
Installs an application shortcut on the screen
Source: androidx.core.content.pm.ShortcutInfoCompat;->addToIntent:32 API Call: android.content.Intent.putExtra android.intent.extra.shortcut.INTENT
Installs a new wake lock (to get activate on phone screen on)
Source: androidx.core.app.JobIntentService$CompatWorkEnqueuer;-><init>:11 API Call: android.os.PowerManager.newWakeLock
Source: androidx.core.app.JobIntentService$CompatWorkEnqueuer;-><init>:19 API Call: android.os.PowerManager.newWakeLock
Source: es.gob.afirma.signers.multi.cades.CAdESCoSigner;->coSigner:26 API Call: java.security.MessageDigest.getInstance
Source: es.gob.afirma.signers.multi.cades.CAdESCoSigner;->coSigner:27 API Call: java.security.MessageDigest.digest
Source: es.gob.afirma.signers.cades.CAdESParameters;->load:24 API Call: java.security.MessageDigest.getInstance
Source: es.gob.afirma.signers.cades.CAdESParameters;->load:25 API Call: java.security.MessageDigest.digest
Source: es.gob.afirma.signers.cades.CAdESUtils;->generateSignedAttributes:16 API Call: java.security.MessageDigest.getInstance
Source: es.gob.afirma.signers.cades.CAdESUtils;->generateSignedAttributes:18 API Call: java.security.MessageDigest.digest
Source: es.gob.afirma.signers.cades.CAdESUtils;->getSigningCertificateV1:161 API Call: java.security.MessageDigest.getInstance
Source: es.gob.afirma.signers.cades.CAdESUtils;->getSigningCertificateV1:163 API Call: java.security.MessageDigest.digest
Source: es.gob.afirma.signers.cades.CAdESUtils;->getSigningCertificateV2:188 API Call: java.security.MessageDigest.getInstance
Source: es.gob.afirma.signers.cades.CAdESUtils;->getSigningCertificateV2:190 API Call: java.security.MessageDigest.digest
Source: es.gob.afirma.android.crypto.CipherDataManager;->cipher:3 API Call: javax.crypto.Cipher.getInstance
Source: es.gob.afirma.android.crypto.CipherDataManager;->cipher:6 API Call: javax.crypto.Cipher.init
Source: es.gob.afirma.android.crypto.CipherDataManager;->cipher:8 API Call: javax.crypto.Cipher.doFinal
Source: es.gob.afirma.android.crypto.CipherDataManager;->decipher:24 API Call: javax.crypto.Cipher.getInstance
Source: es.gob.afirma.android.crypto.CipherDataManager;->decipher:27 API Call: javax.crypto.Cipher.init
Source: es.gob.afirma.android.crypto.CipherDataManager;->decipher:28 API Call: javax.crypto.Cipher.doFinal
Source: es.gob.afirma.keystores.AOKeyStoreManager;->cleanDeactivatedAliases:9 API Call: java.security.MessageDigest.getInstance
Source: es.gob.afirma.keystores.AOKeyStoreManager;->cleanDeactivatedAliases:12 API Call: java.security.MessageDigest.digest
Source: es.gob.afirma.keystores.AggregatedKeyStoreManager;->addKeyStoreManager:13 API Call: java.security.MessageDigest.getInstance
Source: es.gob.afirma.keystores.AggregatedKeyStoreManager;->addKeyStoreManager:23 API Call: java.security.MessageDigest.digest
Source: es.gob.afirma.signers.pades.PAdESTriPhaseSigner;->preSign:82 API Call: java.security.MessageDigest.getInstance
Source: es.gob.afirma.signers.pades.PAdESTriPhaseSigner;->preSign:83 API Call: java.security.MessageDigest.digest
Source: es.gob.afirma.signers.pades.PdfTimestamper;->getTspToken:7 API Call: java.security.MessageDigest.getInstance
Source: es.gob.afirma.signers.pades.PdfTimestamper;->getTspToken:8 API Call: java.security.MessageDigest.digest
Source: es.gob.afirma.signers.tsp.pkcs7.CMSTimestamper;->addTimestamp:236 API Call: java.security.MessageDigest.getInstance
Source: es.gob.afirma.signers.tsp.pkcs7.CMSTimestamper;->addTimestamp:238 API Call: java.security.MessageDigest.digest
Source: es.gob.afirma.core.signers.AdESPolicy;->setValues:27 API Call: java.security.MessageDigest.getInstance
Source: es.gob.afirma.core.signers.AdESPolicy;->setValues:31 API Call: java.security.MessageDigest.digest
Source: org.spongycastle.jcajce.provider.keystore.bc.BcKeyStoreSpi;->makePBECipher:247 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.jcajce.provider.keystore.bcfks.BcFKSKeyStoreSpi;->decryptData:95 API Call: javax.crypto.Cipher.getInstance
Source: org.spongycastle.jcajce.provider.keystore.bcfks.BcFKSKeyStoreSpi;->decryptData:97 API Call: javax.crypto.Cipher.getInstance
Source: org.spongycastle.jcajce.provider.keystore.bcfks.BcFKSKeyStoreSpi;->decryptData:106 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.jcajce.provider.keystore.bcfks.BcFKSKeyStoreSpi;->decryptData:107 API Call: javax.crypto.Cipher.doFinal
Source: org.spongycastle.jcajce.provider.keystore.bcfks.BcFKSKeyStoreSpi;->engineSetKeyEntry:429 API Call: javax.crypto.Cipher.getInstance
Source: org.spongycastle.jcajce.provider.keystore.bcfks.BcFKSKeyStoreSpi;->engineSetKeyEntry:430 API Call: javax.crypto.Cipher.getInstance
Source: org.spongycastle.jcajce.provider.keystore.bcfks.BcFKSKeyStoreSpi;->engineSetKeyEntry:432 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.jcajce.provider.keystore.bcfks.BcFKSKeyStoreSpi;->engineSetKeyEntry:433 API Call: javax.crypto.Cipher.doFinal
Source: org.spongycastle.jcajce.provider.keystore.bcfks.BcFKSKeyStoreSpi;->engineSetKeyEntry:462 API Call: javax.crypto.Cipher.getInstance
Source: org.spongycastle.jcajce.provider.keystore.bcfks.BcFKSKeyStoreSpi;->engineSetKeyEntry:463 API Call: javax.crypto.Cipher.getInstance
Source: org.spongycastle.jcajce.provider.keystore.bcfks.BcFKSKeyStoreSpi;->engineSetKeyEntry:465 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.jcajce.provider.keystore.bcfks.BcFKSKeyStoreSpi;->engineSetKeyEntry:472 API Call: javax.crypto.Cipher.doFinal
Source: org.spongycastle.jcajce.provider.keystore.bcfks.BcFKSKeyStoreSpi;->engineSetKeyEntry:477 API Call: javax.crypto.Cipher.doFinal
Source: org.spongycastle.jcajce.provider.keystore.bcfks.BcFKSKeyStoreSpi;->engineStore:559 API Call: javax.crypto.Cipher.getInstance
Source: org.spongycastle.jcajce.provider.keystore.bcfks.BcFKSKeyStoreSpi;->engineStore:560 API Call: javax.crypto.Cipher.getInstance
Source: org.spongycastle.jcajce.provider.keystore.bcfks.BcFKSKeyStoreSpi;->engineStore:563 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.jcajce.provider.keystore.bcfks.BcFKSKeyStoreSpi;->engineStore:565 API Call: javax.crypto.Cipher.doFinal
Source: es.gob.jmulticard.de.tsenger.androsmex.crypto.Crypto;->computeMAC:11 API Call: javax.crypto.Cipher.getInstance
Source: es.gob.jmulticard.de.tsenger.androsmex.crypto.Crypto;->computeMAC:12 API Call: javax.crypto.Cipher.init
Source: es.gob.jmulticard.de.tsenger.androsmex.crypto.Crypto;->computeMAC:14 API Call: javax.crypto.Cipher.getInstance
Source: es.gob.jmulticard.de.tsenger.androsmex.crypto.Crypto;->computeMAC:15 API Call: javax.crypto.Cipher.init
Source: es.gob.jmulticard.de.tsenger.androsmex.crypto.Crypto;->computeMAC:17 API Call: javax.crypto.Cipher.init
Source: es.gob.jmulticard.de.tsenger.androsmex.crypto.Crypto;->computeMAC:18 API Call: javax.crypto.Cipher.doFinal
Source: org.spongycastle.jcajce.io.CipherInputStream;->finaliseCipher:3 API Call: javax.crypto.Cipher.doFinal
Source: org.spongycastle.jcajce.io.CipherOutputStream;->close:3 API Call: javax.crypto.Cipher.doFinal
Source: org.spongycastle.cert.crmf.jcajce.CRMFHelper$1;->doInJCE:16 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.cert.crmf.jcajce.CRMFHelper$1;->doInJCE:33 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.cert.crmf.jcajce.CRMFHelper$1;->doInJCE:41 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.cert.crmf.jcajce.CRMFHelper$1;->doInJCE:44 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.cert.crmf.jcajce.JceCRMFEncryptorBuilder$CRMFOutputEncryptor;-><init>:11 API Call: javax.crypto.KeyGenerator.generateKey
Source: org.spongycastle.cert.crmf.jcajce.JceCRMFEncryptorBuilder$CRMFOutputEncryptor;-><init>:17 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.cert.crmf.jcajce.JcePKMACValuesCalculator;->calculateDigest:5 API Call: java.security.MessageDigest.digest
Source: org.spongycastle.cert.jcajce.JcaX509ExtensionUtils$SHA1DigestCalculator;->getDigest:8 API Call: java.security.MessageDigest.digest
Source: org.spongycastle.cert.jcajce.JcaX509ExtensionUtils;-><init>:2 API Call: java.security.MessageDigest.getInstance
Source: org.spongycastle.cms.jcajce.EnvelopedDataHelper$1;->doInJCE:18 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.cms.jcajce.EnvelopedDataHelper$1;->doInJCE:35 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.cms.jcajce.EnvelopedDataHelper$1;->doInJCE:45 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.cms.jcajce.EnvelopedDataHelper$1;->doInJCE:48 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.cms.jcajce.JceCMSContentEncryptorBuilder$CMSOutputEncryptor;-><init>:9 API Call: javax.crypto.KeyGenerator.generateKey
Source: org.spongycastle.cms.jcajce.JceCMSContentEncryptorBuilder$CMSOutputEncryptor;-><init>:15 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.cms.jcajce.JceCMSMacCalculatorBuilder$CMSMacCalculator;-><init>:7 API Call: javax.crypto.KeyGenerator.generateKey
Source: org.spongycastle.cms.jcajce.JceKeyAgreeRecipient;->unwrapSessionKey:79 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.cms.jcajce.JceKeyAgreeRecipient;->extractSecretKey:113 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.cms.jcajce.JceKeyAgreeRecipientInfoGenerator;->generateRecipientEncryptedKeys:98 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.cms.jcajce.JceKeyAgreeRecipientInfoGenerator;->generateRecipientEncryptedKeys:106 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.cms.jcajce.JceKeyTransRecipient;->extractSecretKey:33 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.cms.jcajce.JcePasswordRecipient;->extractSecretKey:16 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.cms.jcajce.JcePasswordRecipientInfoGenerator;->generateEncryptedBytes:18 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.pkcs.jcajce.JcePKCSPBEInputDecryptorProviderBuilder$1;->get:20 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.pkcs.jcajce.JcePKCSPBEInputDecryptorProviderBuilder$1;->get:70 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.pkcs.jcajce.JcePKCSPBEInputDecryptorProviderBuilder$1;->get:76 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.pkcs.jcajce.JcePKCSPBEOutputEncryptorBuilder;->build:29 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.pkcs.jcajce.JcePKCSPBEOutputEncryptorBuilder;->build:57 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.pkcs.jcajce.JcePKCSPBEInputDecryptorProviderBuilder$1;->get:102 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.operator.jcajce.JcaDigestCalculatorProviderBuilder$DigestOutputStream;->getDigest:3 API Call: java.security.MessageDigest.digest
Source: org.spongycastle.operator.jcajce.JcaDigestCalculatorProviderBuilder$DigestOutputStream;->write:5 API Call: java.security.MessageDigest.update
Source: org.spongycastle.operator.jcajce.JcaDigestCalculatorProviderBuilder$DigestOutputStream;->write:7 API Call: java.security.MessageDigest.update
Source: org.spongycastle.operator.jcajce.JcaDigestCalculatorProviderBuilder$DigestOutputStream;->write:9 API Call: java.security.MessageDigest.update
Source: org.spongycastle.operator.jcajce.JceAsymmetricKeyUnwrapper;->generateUnwrappedKey:14 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.operator.jcajce.JceAsymmetricKeyUnwrapper;->generateUnwrappedKey:16 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.operator.jcajce.JceAsymmetricKeyUnwrapper;->generateUnwrappedKey:23 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.operator.jcajce.JceAsymmetricKeyUnwrapper;->generateUnwrappedKey:24 API Call: javax.crypto.Cipher.doFinal
Source: org.spongycastle.operator.jcajce.JceKTSKeyUnwrapper;->generateUnwrappedKey:35 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.operator.jcajce.JceKTSKeyWrapper;->generateWrappedKey:36 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.operator.jcajce.JceSymmetricKeyUnwrapper;->generateUnwrappedKey:9 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.operator.jcajce.JceSymmetricKeyWrapper;->generateWrappedKey:50 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.operator.jcajce.JceAsymmetricKeyWrapper;->generateWrappedKey:161 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.operator.jcajce.JceAsymmetricKeyWrapper;->generateWrappedKey:164 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.operator.jcajce.JceAsymmetricKeyWrapper;->generateWrappedKey:169 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.operator.jcajce.JceAsymmetricKeyWrapper;->generateWrappedKey:172 API Call: javax.crypto.Cipher.doFinal
Source: org.spongycastle.openssl.jcajce.JceOpenSSLPKCS8DecryptorProviderBuilder$1;->get:36 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.openssl.jcajce.JceOpenSSLPKCS8DecryptorProviderBuilder$1;->get:51 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.openssl.jcajce.JceOpenSSLPKCS8EncryptorBuilder;->build:83 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.openssl.jcajce.JceOpenSSLPKCS8EncryptorBuilder;->build:106 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.openssl.jcajce.JceOpenSSLPKCS8DecryptorProviderBuilder$1;->get:67 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.openssl.jcajce.PEMUtilities;->crypt:183 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.openssl.jcajce.PEMUtilities;->crypt:184 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.openssl.jcajce.PEMUtilities;->crypt:185 API Call: javax.crypto.Cipher.doFinal
Source: es.gob.jmulticard.JseCryptoHelper;->aesCrypt:9 API Call: javax.crypto.Cipher.getInstance
Source: es.gob.jmulticard.JseCryptoHelper;->aesCrypt:23 API Call: javax.crypto.Cipher.init
Source: es.gob.jmulticard.JseCryptoHelper;->aesCrypt:24 API Call: javax.crypto.Cipher.doFinal
Source: es.gob.jmulticard.JseCryptoHelper;->doDes:58 API Call: javax.crypto.Cipher.getInstance
Source: es.gob.jmulticard.JseCryptoHelper;->doDes:61 API Call: javax.crypto.Cipher.init
Source: es.gob.jmulticard.JseCryptoHelper;->doDes:62 API Call: javax.crypto.Cipher.doFinal
Source: es.gob.jmulticard.JseCryptoHelper;->doDesede:81 API Call: javax.crypto.Cipher.getInstance
Source: es.gob.jmulticard.JseCryptoHelper;->doDesede:83 API Call: javax.crypto.Cipher.init
Source: es.gob.jmulticard.JseCryptoHelper;->doDesede:84 API Call: javax.crypto.Cipher.doFinal
Source: es.gob.jmulticard.JseCryptoHelper;->doRsa:92 API Call: javax.crypto.Cipher.getInstance
Source: es.gob.jmulticard.JseCryptoHelper;->doRsa:93 API Call: javax.crypto.Cipher.init
Source: es.gob.jmulticard.JseCryptoHelper;->doRsa:94 API Call: javax.crypto.Cipher.doFinal
Source: es.gob.jmulticard.JseCryptoHelper;->digest:215 API Call: java.security.MessageDigest.getInstance
Source: es.gob.jmulticard.JseCryptoHelper;->digest:216 API Call: java.security.MessageDigest.digest
Source: com.aowagie.text.pdf.PdfEncryption;-><init>:5 API Call: java.security.MessageDigest.getInstance
Source: com.aowagie.text.pdf.PdfEncryption;->computeOwnerKey:19 API Call: java.security.MessageDigest.digest
Source: com.aowagie.text.pdf.PdfEncryption;->computeOwnerKey:25 API Call: java.security.MessageDigest.digest
Source: com.aowagie.text.pdf.PdfEncryption;->createDocumentId:33 API Call: java.security.MessageDigest.getInstance
Source: com.aowagie.text.pdf.PdfEncryption;->createDocumentId:46 API Call: java.security.MessageDigest.digest
Source: com.aowagie.text.pdf.PdfEncryption;->setupGlobalEncryptionKey:74 API Call: java.security.MessageDigest.update
Source: com.aowagie.text.pdf.PdfEncryption;->setupGlobalEncryptionKey:76 API Call: java.security.MessageDigest.update
Source: com.aowagie.text.pdf.PdfEncryption;->setupGlobalEncryptionKey:78 API Call: java.security.MessageDigest.update
Source: com.aowagie.text.pdf.PdfEncryption;->setupGlobalEncryptionKey:80 API Call: java.security.MessageDigest.update
Source: com.aowagie.text.pdf.PdfEncryption;->setupGlobalEncryptionKey:83 API Call: java.security.MessageDigest.update
Source: com.aowagie.text.pdf.PdfEncryption;->setupGlobalEncryptionKey:86 API Call: java.security.MessageDigest.digest
Source: com.aowagie.text.pdf.PdfEncryption;->setupGlobalEncryptionKey:90 API Call: java.security.MessageDigest.digest
Source: com.aowagie.text.pdf.PdfEncryption;->setupUserKey:104 API Call: java.security.MessageDigest.update
Source: com.aowagie.text.pdf.PdfEncryption;->setupUserKey:107 API Call: java.security.MessageDigest.digest
Source: com.aowagie.text.pdf.PdfEncryption;->getEncryptionDictionary:209 API Call: java.security.MessageDigest.getInstance
Source: com.aowagie.text.pdf.PdfEncryption;->getEncryptionDictionary:212 API Call: java.security.MessageDigest.update
Source: com.aowagie.text.pdf.PdfEncryption;->getEncryptionDictionary:217 API Call: java.security.MessageDigest.update
Source: com.aowagie.text.pdf.PdfEncryption;->getEncryptionDictionary:218 API Call: java.security.MessageDigest.update
Source: com.aowagie.text.pdf.PdfEncryption;->getEncryptionDictionary:219 API Call: java.security.MessageDigest.digest
Source: com.aowagie.text.pdf.PdfEncryption;->setHashKey:310 API Call: java.security.MessageDigest.update
Source: com.aowagie.text.pdf.PdfEncryption;->setHashKey:313 API Call: java.security.MessageDigest.update
Source: com.aowagie.text.pdf.PdfEncryption;->setHashKey:316 API Call: java.security.MessageDigest.update
Source: com.aowagie.text.pdf.PdfEncryption;->setHashKey:318 API Call: java.security.MessageDigest.digest
Source: com.aowagie.text.pdf.PdfEncryption;->setupAllKeys:322 API Call: java.security.MessageDigest.digest
Source: com.aowagie.text.pdf.PdfPublicKeySecurityHandler;-><init>:6 API Call: javax.crypto.KeyGenerator.generateKey
Source: com.aowagie.text.pdf.PdfPublicKeySecurityHandler;->computeRecipientInfo:25 API Call: javax.crypto.Cipher.getInstance
Source: com.aowagie.text.pdf.PdfPublicKeySecurityHandler;->computeRecipientInfo:26 API Call: javax.crypto.Cipher.init
Source: com.aowagie.text.pdf.PdfPublicKeySecurityHandler;->computeRecipientInfo:27 API Call: javax.crypto.Cipher.doFinal
Source: com.aowagie.text.pdf.PdfPublicKeySecurityHandler;->createDERForRecipient:41 API Call: javax.crypto.KeyGenerator.generateKey
Source: com.aowagie.text.pdf.PdfPublicKeySecurityHandler;->createDERForRecipient:42 API Call: javax.crypto.Cipher.getInstance
Source: com.aowagie.text.pdf.PdfPublicKeySecurityHandler;->createDERForRecipient:43 API Call: javax.crypto.Cipher.init
Source: com.aowagie.text.pdf.PdfPublicKeySecurityHandler;->createDERForRecipient:44 API Call: javax.crypto.Cipher.doFinal
Source: com.aowagie.text.pdf.PdfPKCS7;-><init>:199 API Call: java.security.MessageDigest.getInstance
Source: com.aowagie.text.pdf.PdfPKCS7;-><init>:201 API Call: java.security.MessageDigest.getInstance
Source: com.aowagie.text.pdf.PdfPKCS7;-><init>:330 API Call: java.security.MessageDigest.getInstance
Source: com.aowagie.text.pdf.PdfPKCS7;-><init>:333 API Call: java.security.MessageDigest.getInstance
Source: com.aowagie.text.pdf.PdfReader;->readDecryptedDocObj:650 API Call: java.security.MessageDigest.getInstance
Source: com.aowagie.text.pdf.PdfReader;->readDecryptedDocObj:651 API Call: java.security.MessageDigest.update
Source: com.aowagie.text.pdf.PdfReader;->readDecryptedDocObj:655 API Call: java.security.MessageDigest.update
Source: com.aowagie.text.pdf.PdfReader;->readDecryptedDocObj:656 API Call: java.security.MessageDigest.update
Source: com.aowagie.text.pdf.PdfReader;->readDecryptedDocObj:657 API Call: java.security.MessageDigest.digest
Source: com.aowagie.text.pdf.PdfPKCS7;->getEncodedPKCS7:580 API Call: java.security.MessageDigest.digest
Source: com.aowagie.text.pdf.PdfPKCS7;->getEncodedPKCS7:654 API Call: java.security.MessageDigest.getInstance
Source: com.aowagie.text.pdf.PdfPKCS7;->getEncodedPKCS7:656 API Call: java.security.MessageDigest.digest
Source: com.aowagie.text.pdf.PdfPKCS7;->update:827 API Call: java.security.MessageDigest.update
Source: com.aowagie.text.pdf.PdfPKCS7;->verify:833 API Call: java.security.MessageDigest.digest
Source: com.aowagie.text.pdf.PdfPKCS7;->verify:835 API Call: java.security.MessageDigest.update
Source: com.aowagie.text.pdf.PdfPKCS7;->verify:837 API Call: java.security.MessageDigest.digest
Source: com.aowagie.text.pdf.PdfPKCS7;->verify:846 API Call: java.security.MessageDigest.digest
Source: org.spongycastle.jcajce.provider.keystore.pkcs12.PKCS12KeyStoreSpi;->createCipher:63 API Call: javax.crypto.Cipher.getInstance
Source: org.spongycastle.jcajce.provider.keystore.pkcs12.PKCS12KeyStoreSpi;->createCipher:69 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.jcajce.provider.keystore.pkcs12.PKCS12KeyStoreSpi;->createCipher:74 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.jcajce.provider.keystore.pkcs12.PKCS12KeyStoreSpi;->cryptData:402 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.jcajce.provider.keystore.pkcs12.PKCS12KeyStoreSpi;->cryptData:403 API Call: javax.crypto.Cipher.doFinal
Source: org.spongycastle.jcajce.provider.keystore.pkcs12.PKCS12KeyStoreSpi;->cryptData:413 API Call: javax.crypto.Cipher.doFinal
Source: org.spongycastle.jcajce.provider.keystore.pkcs12.PKCS12KeyStoreSpi;->unwrapKey:934 API Call: javax.crypto.Cipher.init
Source: org.spongycastle.jcajce.provider.keystore.pkcs12.PKCS12KeyStoreSpi;->wrapKey:963 API Call: javax.crypto.Cipher.init
Source: es.gob.jmulticard.jse.provider.rsacipher.RSAPadding;-><init>:28 API Call: java.security.MessageDigest.getInstance
Source: es.gob.jmulticard.jse.provider.rsacipher.RSAPadding;-><init>:29 API Call: java.security.MessageDigest.getInstance
Source: es.gob.jmulticard.jse.provider.rsacipher.RSAPadding;->getInitialHash:63 API Call: java.security.MessageDigest.digest
Source: es.gob.jmulticard.jse.provider.rsacipher.RSAPadding;->getInitialHash:67 API Call: java.security.MessageDigest.digest
Source: es.gob.jmulticard.jse.provider.rsacipher.RSAPadding;->mgf1:74 API Call: java.security.MessageDigest.update
Source: es.gob.jmulticard.jse.provider.rsacipher.RSAPadding;->mgf1:76 API Call: java.security.MessageDigest.update
Source: es.gob.jmulticard.jse.provider.rsacipher.RSAPadding;->mgf1:78 API Call: java.security.MessageDigest.digest
Source: com.aowagie.text.ImgJBIG2;-><init>:8 API Call: java.security.MessageDigest.getInstance
Source: com.aowagie.text.ImgJBIG2;-><init>:10 API Call: java.security.MessageDigest.update
Source: com.aowagie.text.ImgJBIG2;-><init>:11 API Call: java.security.MessageDigest.digest
Source: org.spongycastle.jcajce.util.DefaultJcaJceHelper;->createCipher:5 API Call: javax.crypto.Cipher.getInstance
Source: org.spongycastle.jcajce.util.DefaultJcaJceHelper;->createDigest:6 API Call: java.security.MessageDigest.getInstance
Source: org.spongycastle.jcajce.util.NamedJcaJceHelper;->createCipher:9 API Call: javax.crypto.Cipher.getInstance
Source: org.spongycastle.jcajce.util.NamedJcaJceHelper;->createDigest:11 API Call: java.security.MessageDigest.getInstance
Source: org.spongycastle.jcajce.util.ProviderJcaJceHelper;->createCipher:9 API Call: javax.crypto.Cipher.getInstance
Source: org.spongycastle.jcajce.util.ProviderJcaJceHelper;->createDigest:11 API Call: java.security.MessageDigest.getInstance
Source: org.spongycastle.x509.AttributeCertificateHolder;->match:135 API Call: java.security.MessageDigest.getInstance
Source: org.spongycastle.x509.AttributeCertificateHolder;->match:138 API Call: java.security.MessageDigest.update
Source: org.spongycastle.x509.AttributeCertificateHolder;->match:141 API Call: java.security.MessageDigest.update
Source: org.spongycastle.x509.AttributeCertificateHolder;->match:142 API Call: java.security.MessageDigest.digest
Accesses android OS build fields
Source: es.gob.afirma.android.SignFragmentActivity;->keySelected:59 Field Access: android.os.Build$VERSION.RELEASE
Source: es.gob.afirma.android.SignFragmentActivity;->keySelected:62 Field Access: android.os.Build$VERSION.RELEASE
Source: es.gob.afirma.android.SignFragmentActivity;->keySelected:65 Field Access: android.os.Build$VERSION.RELEASE
Source: es.gob.afirma.android.SignFragmentActivity;->keySelected:81 Field Access: android.os.Build$VERSION.RELEASE
Source: es.gob.afirma.android.WebSelectCertificateActivity;->certificateSelected:92 Field Access: android.os.Build$VERSION.RELEASE
Source: es.gob.afirma.android.WebSelectCertificateActivity;->certificateSelected:95 Field Access: android.os.Build$VERSION.RELEASE
Source: es.gob.afirma.android.WebSelectCertificateActivity;->certificateSelected:98 Field Access: android.os.Build$VERSION.RELEASE
Source: es.gob.afirma.android.WebSelectCertificateActivity;->certificateSelected:114 Field Access: android.os.Build$VERSION.RELEASE
Queries several sensitive phone informations
Source: Les/gob/afirma/android/FileSystemConstants;-><clinit>()V Method string: "android"
Source: Lnet/sf/jmimemagic/MagicParser;->startElement(Ljava/lang/String;Ljava/lang/String;Ljava/lang/String;Lorg/xml/sax/Attributes;)V Method string: "type"
Source: Lcom/aowagie/text/pdf/CFFFont;-><clinit>()V Method string: "version"
Source: Lcom/aowagie/text/pdf/PdfName;-><clinit>()V Method string: "category"
Potential date aware sample found
Source: org.spongycastle.cert.X509AttributeCertificateHolder;->isValidOn:135 API Call: java.util.Date.after
Source: org.spongycastle.cert.X509CertificateHolder;->isValidOn:102 API Call: java.util.Date.after
Source: org.spongycastle.jce.provider.PKIXCRLUtil;->findCRLs:23 API Call: java.util.Date.after
Source: org.spongycastle.x509.PKIXCRLUtil;->findCRLs:36 API Call: java.util.Date.after
Source: org.spongycastle.x509.X509V2AttributeCertificate;->checkValidity:40 API Call: java.util.Date.after
Source: MANIFEST.MF Binary or memory string: SHA-256-Digest: vxZzXGe11HnDVH1Nqa/9H5iInQEmuU/4LExWsAvy7xg=
May take a camera picture
Source: androidx.activity.result.contract.ActivityResultContracts$TakePicture;->createIntent:3 API Call: android.content.Intent.<init>("android.media.action.IMAGE_CAPTURE")
Source: androidx.activity.result.contract.ActivityResultContracts$TakePicturePreview;->createIntent:4 API Call: android.content.Intent.<init>("android.media.action.IMAGE_CAPTURE")