Edit tour

Android Analysis Report
pdd_6.50.3_oppo.apk

Overview

General Information

Sample Name:	pdd_6.50.3_oppo.apk
Analysis ID:	831102
MD5:	5a056da17f2b5500897dd4abc67db70a
SHA1:	17173582359c2f439979dca60f8e3febcb3e0253
SHA256:	702548921fe189d6ba82b8e56ee1f71e686becaf96e009fd688b4f8ad19aaa9c
Infos:

Detection

Score:	56
Range:	0 - 100
Whitelisted:	false
Confidence:	100%

Signatures

Might try to detect if ADB is running

Tries to detect Android x86

Checks if app is currently debugged

Tries to detect XPosed instrumentation framework

Queries the SIM provider numeric MCC+MNC (mobile country code + mobile network code)

Queries list of running processes/tasks

Queries media storage location field

Has permission to read low-level log files (spy personal data)

Queries if audio routing to the Bluetooth headset is enabled

Obfuscates method names

Installs a new wake lock (to get activate on phone screen on)

Queries phone contact information

Found suspicious command strings (may be related to BOT commands)

Checks an internet connection is available

Queries list of installed packages

Has permission to record audio in the background

Requests potentially dangerous permissions

Requests root access

Has permission to take photos

Tries to detect Virtualbox

Queries the phones location (GPS)

Queries the network operator name

Checks if debugger is running

Lists and deletes files in the same context

Queries a list of installed applications

Has permission to read contacts

Has permission to draw over other applications or user interfaces

Has permission to use bluetooth to discover and pair with other devices

Queries the unqiue device ID (IMEI, MEID or ESN)

Accesses /proc

Has permission to read the phones state (phone number, device IDs, active call ect.)

Kills/terminates processes

Accesses android OS build fields

Executes native commands

Queries the network MAC address

Has permission to change the WIFI configuration including connecting and disconnecting

Performs DNS lookups (Java API)

Queries camera information

Queries the network operator numeric MCC+MNC (mobile country code + mobile network code)

Queries several sensitive phone informations

Modifies the audio routing behavior

Checks CPU details

Queries the unique operating system id (ANDROID_ID)

Queries the WIFI MAC address

Uses reflection

Classification

Yara Signatures

⊘No yara matches

Snort Signatures

⊘No Snort rule has matched

Joe Sandbox Signatures

Click to jump to signature section

Show All Signature Results

Source: com.xunmeng.pinduoduo.address.lbs.b.e;->h:209	API Call: android.location.Location.getLongitude
Source: com.xunmeng.pinduoduo.address.lbs.b.e;->h:212	API Call: android.location.Location.getLatitude
Source: com.xunmeng.pinduoduo.address.lbs.b.e;->h:240	API Call: android.location.Location.getLongitude
Source: com.xunmeng.pinduoduo.address.lbs.b.e;->h:243	API Call: android.location.Location.getLatitude
Source: com.xunmeng.pinduoduo.address.lbs.d.a;->e:142	API Call: android.location.Location.getLatitude
Source: com.xunmeng.pinduoduo.address.lbs.d.a;->e:143	API Call: android.location.Location.getLongitude
Source: com.xunmeng.pinduoduo.address.lbs.d.a;->e:149	API Call: android.location.Location.getLatitude
Source: com.xunmeng.pinduoduo.address.lbs.d.a;->e:151	API Call: android.location.Location.getLongitude

Source: Lcom/xunmeng/pinduoduo/basekit/commonutil/AppUtils;-><clinit>()V	Method string: "/system/xbin/su"
Source: Lcom/xunmeng/pinduoduo/basekit/commonutil/AppUtils;-><clinit>()V	Method string: "/system/bin/su"

Source: submitted apk

Request permission: android.permission.CHANGE_WIFI_STATE

Source: com.xunmeng.pinduoduo.arch.foundation.a.q;->g:35	API Call: android.net.ConnectivityManager.getActiveNetworkInfo
Source: com.xunmeng.pinduoduo.network_diagnose.a.a;->a:6	API Call: android.net.NetworkInfo.isConnected
Source: com.xunmeng.pinduoduo.network_diagnose.a.a;->b:22	API Call: android.net.NetworkInfo.isAvailable
Source: com.xunmeng.pinduoduo.secure.d.b;->g:53	API Call: android.net.ConnectivityManager.getActiveNetworkInfo
Source: com.xunmeng.pinduoduo.e.d;->h:85	API Call: android.net.ConnectivityManager.getActiveNetworkInfo
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.a;->e:67	API Call: android.net.wifi.WifiManager.getConnectionInfo

Source: com.xunmeng.pinduoduo.basekit.http.dns.HttpDns;->a:11	API Call: java.net.InetAddress.getByName (not executed)
Source: com.xunmeng.pinduoduo.glide.e.b;->d:87	API Call: java.net.InetAddress.getByName (not executed)
Source: com.xunmeng.pinduoduo.glide.e.b;->d:90	API Call: java.net.InetAddress.getByName (not executed)
Source: com.xunmeng.pinduoduo.glide.e.b;->d:93	API Call: java.net.InetAddress.getByName (not executed)
Source: com.xunmeng.pinduoduo.glide.e.b;->d:96	API Call: java.net.InetAddress.getByName (not executed)
Source: com.xunmeng.pinduoduo.glide.e.b;->m:231	API Call: java.net.InetAddress.getByName (not executed)

Source: com.xunmeng.pinduoduo.apm.common.d.b;->e:136	API Call: java.net.HttpURLConnection.connect
Source: com.xunmeng.pinduoduo.apm.common.d.c;->b:84	API Call: java.net.HttpURLConnection.connect
Source: com.xunmeng.pinduoduo.apm.common.d.c;->d:175	API Call: java.net.HttpURLConnection.connect
Source: com.xunmeng.pinduoduo.apm.common.d.c;->f:265	API Call: java.net.HttpURLConnection.connect

Source: android	String found in binary or memory: http://101.35.204.35/d?ttl=1&id=25196
Source: android	String found in binary or memory: http://101.35.212.35/d?ttl=1&id=25196
Source: android	String found in binary or memory: http://api-ipv6.pinduoduo.com
Source: android	String found in binary or memory: http://api-ipv6.yangkeduo.com
Source: android	String found in binary or memory: http://api.pinduoduo.com
Source: android	String found in binary or memory: http://api.yangkeduo.com
Source: android	String found in binary or memory: http://apiv2.hutaojie.com
Source: android	String found in binary or memory: http://mcdn.yangkeduo.com/app/lego/popup/2019-10-07/c3dcc289de2f42056fd10b7ce4232d78.png
Source: resources.arsc	String found in binary or memory: http://mobile.yangkeduo.com/wboauth_callback.html
Source: resources.arsc	String found in binary or memory: http://mobile.yangkeduo.com/wboauth_callback.html99http://pinduoduoimg.yangkeduo.com/avatar/default/
Source: resources.arsc	String found in binary or memory: http://pinduoduoimg.yangkeduo.com/avatar/default/%1$s.png
Source: resources.arsc	String found in binary or memory: http://pinduoduoimg.yangkeduo.com/base/logo.jpg
Source: android	String found in binary or memory: http://pinduoduoimg.yangkeduo.com/nation/rect/
Source: android	String found in binary or memory: http://pmmtk-a.pinduoduo.com/api/pmm/scene
Source: android	String found in binary or memory: http://pmmtk.htj.pdd.net
Source: android	String found in binary or memory: http://pmmtk.htj.pdd.net/api/pmm/scene
Source: 2I.xml	String found in binary or memory: http://schemas.android.com/apk/res-auto
Source: 2I.xml	String found in binary or memory: http://schemas.android.com/apk/res/android
Source: android	String found in binary or memory: http://skytk.htj.pdd.net/cmt/j.webp
Source: libpcrash.so	String found in binary or memory: https://android.googlesource.com/toolchain/llvm-project
Source: android	String found in binary or memory: https://api-ipv6.pinduoduo.com
Source: android	String found in binary or memory: https://api-ipv6.yangkeduo.com
Source: android	String found in binary or memory: https://api.pinduoduo.com
Source: android	String found in binary or memory: https://api.yangkeduo.com
Source: android	String found in binary or memory: https://cdl.pddpic.com
Source: android	String found in binary or memory: https://cdn.yangkeduo.com/cos_h5/js/vendor/eruda.js
Source: android	String found in binary or memory: https://cmtw.pinduoduo.com/api/cmt/zeus
Source: android	String found in binary or memory: https://commimg.pddpic.com/nemo_console/2021-05-25/09b08ff1-3d1a-4436-8d71-c28f49f08dfc.png
Source: android	String found in binary or memory: https://commimg.pddpic.com/upload/effect/beauty/962bd8c3-4db9-4a59-b6c9-6eb0ebe6cf34.png
Source: resources.arsc, android	String found in binary or memory: https://commimg.pddpic.com/upload/huaishi/0373c697-c5af-4771-bcae-596f304e78ce.png.slim.png
Source: resources.arsc	String found in binary or memory: https://commimg.pddpic.com/upload/huaishi/32a65df3-aa28-4e2a-991e-cf6fa18bfa82.png.slim.png
Source: resources.arsc	String found in binary or memory: https://commimg.pddpic.com/upload/huaishi/4ad4bd30-3cf6-472b-ae46-6bff4d635d56.png.slim.png
Source: android	String found in binary or memory: https://commimg.pddpic.com/upload/huaishi/84a811ce-e64b-4ae5-aa68-5c3f722194a0.png.slim.png
Source: android	String found in binary or memory: https://commimg.pddpic.com/upload/huaishi/8c6b6a3d-52be-41d5-a9dd-9c9d81516e36.png.slim.png
Source: resources.arsc	String found in binary or memory: https://commimg.pddpic.com/upload/huaishi/a6271914-34dd-486d-b427-e0340f7dbada.png.slim.png
Source: resources.arsc	String found in binary or memory: https://commimg.pddpic.com/upload/huaishi/b96c6917-b2a3-4b4f-a5a3-87fa787c89e1.png.slim.png
Source: resources.arsc	String found in binary or memory: https://commimg.pddpic.com/upload/huaishi/d23fadb9-77b3-4a80-9342-1ebc6df2d1c4.png.slim.png
Source: resources.arsc	String found in binary or memory: https://commimg.pddpic.com/upload/huaishi/d23fadb9-77b3-4a80-9342-1ebc6df2d1c4.png.slim.pngWWhttps:/
Source: android	String found in binary or memory: https://commimg.pddpic.com/upload/pxq/13041f6e-c03e-4333-8e3f-8d08db34493c.png.slim.png
Source: android	String found in binary or memory: https://commimg.pddpic.com/upload/pxq/2468a96c-a40c-4709-8c19-3eb8569ccfbe.png
Source: resources.arsc	String found in binary or memory: https://commimg.pddpic.com/upload/pxq/8c085f18-c9cd-411f-b447-e85b7deaff9a.png.slim.png
Source: android	String found in binary or memory: https://commimg.pddpic.com/upload/pxq/8f5f3155-aeb0-4b0b-b8bf-0e0c3f8d129b.png.slim.png
Source: android	String found in binary or memory: https://commimg.pddpic.com/upload/pxq/a742625e-f3c7-47ce-a7f6-721c3236c6fd.png.slim.png
Source: android	String found in binary or memory: https://commimg.pddpic.com/upload/pxq/cfc2739f-56f1-4b29-8c65-72bc6e40a7aa.png.slim.png
Source: android	String found in binary or memory: https://commimg.pddpic.com/upload/pxq/da796e5e-d1b3-4619-9351-f89209fa6e4e.png
Source: android	String found in binary or memory: https://commimg.pddpic.com/upload/pxq/ea134d0a-23c8-4209-a58d-6fbdeede9418.png.slim.png
Source: android	String found in binary or memory: https://commimg.pddpic.com/upload/pxq/f5167de4-bf7d-4642-9114-801ab8b06fdb.png.slim.png
Source: resources.arsc	String found in binary or memory: https://commimg.pddpic.com/upload/pxqgmv/15a88d08-8e3f-448b-a1aa-85f160c4af21.png.slim.png
Source: android	String found in binary or memory: https://commimg.pddpic.com/upload/pxqgmv/367da36a-bf13-4281-b403-380ec44620aa.png.slim.png
Source: resources.arsc	String found in binary or memory: https://commimg.pddpic.com/upload/pxqgmv/bcedd48d-8dc8-4228-9acc-f4a1779c7b37.png.slim.png
Source: resources.arsc	String found in binary or memory: https://commimg.pddpic.com/upload/pxqgmv/c5cb8e9a-b14d-4dbb-8fc6-320a26faa061.png.slim.png
Source: android	String found in binary or memory: https://commimg.pddpic.com/upload/pxqgmv/cd0a9809-e279-4063-899c-18a120d05776.png.slim.png
Source: resources.arsc	String found in binary or memory: https://docs.pdd.net/pinbridge/sensitive_api/
Source: android	String found in binary or memory: https://funimg.pddpic.com/61c5954f-90d5-417a-8071-99c241736cdc.webp
Source: resources.arsc	String found in binary or memory: https://funimg.pddpic.com/b8398ef7-5058-4230-8428-a9defda98545.png
Source: android	String found in binary or memory: https://funimg.pddpic.com/common/transac_subsidiary/863ff256-89b2-4b7b-906f-8e8c6b9e2b22.png.slim.pn
Source: resources.arsc	String found in binary or memory: https://funimg.pddpic.com/goods_detail/177aad3e-4f80-4636-9bbd-3b2104c340c5.png.slim.png
Source: resources.arsc	String found in binary or memory: https://funimg.pddpic.com/goods_detail/37df362c-a6db-438e-84ae-2327120590bf.png.slim.png
Source: resources.arsc	String found in binary or memory: https://funimg.pddpic.com/lego/73a9b547-0f76-4385-9589-6e6284da2e88.png
Source: android	String found in binary or memory: https://funimg.pddpic.com/pdd_app_login/0df351b9-0e48-48f5-9347-ac0ff822fd1c.png
Source: resources.arsc	String found in binary or memory: https://funimg.pddpic.com/pinxiaoquan/red_envelope_risk.png
Source: android	String found in binary or memory: https://funimg.pddpic.com/popup/520fcbfb-f558-4430-83cf-132f657085f7.png
Source: resources.arsc	String found in binary or memory: https://funimg.pddpic.com/pxq/2b5ea341-58ac-491f-816b-b82ffecc8b79.png.slim.png
Source: resources.arsc	String found in binary or memory: https://funimg.pddpic.com/pxq/3b5e5acd-84af-4daa-b510-3af2c57b024b.png.slim.png
Source: resources.arsc	String found in binary or memory: https://funimg.pddpic.com/pxq/606dc537-e1d2-4954-a670-ac14ffa4e08b.png.slim.png
Source: android	String found in binary or memory: https://funimg.pddpic.com/pxq/63585ff7-0d52-4beb-9bb6-82b6a2b130be.png.slim.png
Source: android	String found in binary or memory: https://funimg.pddpic.com/pxq/78a2e839-1f78-4b92-bc43-20057834ad4b.png.slim.png
Source: resources.arsc	String found in binary or memory: https://funimg.pddpic.com/pxq/9cbf6d61-d112-45e2-b76a-6a1b2a3e1694.png.slim.png
Source: resources.arsc	String found in binary or memory: https://funimg.pddpic.com/pxq/a168ad56-2344-46d5-b404-40ab037110d7.png.slim.png
Source: resources.arsc	String found in binary or memory: https://funimg.pddpic.com/pxq/a3c0c950-0155-4101-9966-92abba6f328e.png.slim.png
Source: android	String found in binary or memory: https://funimg.pddpic.com/pxq/c826c99a-484e-4d66-b629-7a82335815df.png.slim.png
Source: android	String found in binary or memory: https://funimg.pddpic.com/pxq/e69749da-82ed-471d-8713-bc24fb044f74.png.slim.png
Source: resources.arsc	String found in binary or memory: https://funimg.pddpic.com/pxq/xunzhang/cb8d76a8-6332-47a5-b0a5-633d1c80e5d0.png.slim.png
Source: android	String found in binary or memory: https://funimg.pddpic.com/super-star/redpacket/ec93d927-6c38-447c-929b-6a379eb0cde4.png
Source: android	String found in binary or memory: https://funimg.pddpic.com/transaction/48c4f68c-cb99-4ad5-b8e0-a2e3ad81ce12.png
Source: resources.arsc	String found in binary or memory: https://funimg.pddpic.com/transaction/65c20d18-68a7-4017-8ade-da1e76cd298b.png.slim.c1.png
Source: android	String found in binary or memory: https://img-test.pddpic.com/oms_img_ng/2020-11-12/d03d94ce-beb1-41f3-bf04-79f6ba89f3a6.png
Source: android	String found in binary or memory: https://img.pddpic.com/a/i/8f85c383-9578-4a61-9791-7ff36b460aaa.png.slim.png
Source: android	String found in binary or memory: https://img.pddpic.com/a/i/image_file_icon.png.slim.png
Source: android	String found in binary or memory: https://lego.pdd.com/
Source: android	String found in binary or memory: https://mapi.alipay.com/gateway.do?
Source: android	String found in binary or memory: https://meta.pinduoduo.com
Source: android	String found in binary or memory: https://meta.pinduoduo.com/api/app/v1/patch/batch/report
Source: android	String found in binary or memory: https://meta.pinduoduo.com/api/app/v1/patch/upgrade
Source: android	String found in binary or memory: https://meta.pinduoduo.com/api/app/v2/patch/upgrade
Source: android	String found in binary or memory: https://meta.pinduoduo.com/api/petrol/track
Source: resources.arsc	String found in binary or memory: https://pinduoduoimg.yangkeduo.com/cart/card_brand_on_sale_indicator.png
Source: android	String found in binary or memory: https://pinduoduoimg.yangkeduo.com/pinxiaoquan/smallhb.png
Source: resources.arsc	String found in binary or memory: https://promotion.pddpic.com/upload/timeline/1620d137-004a-4cb1-bff9-8c20828a9f9d.png.slim.png
Source: resources.arsc	String found in binary or memory: https://promotion.pddpic.com/upload/timeline/1620d137-004a-4cb1-bff9-8c20828a9f9d.png.slim.pngUUhttp
Source: resources.arsc	String found in binary or memory: https://promotion.pddpic.com/upload/timeline/440a5100-0c2c-406e-a3f6-35876ec4578a.zip
Source: android	String found in binary or memory: https://promotion.pddpic.com/upload/timeline/52b900da-47e9-4625-b508-6a998aae7dd8.png.slim.png
Source: android	String found in binary or memory: https://promotion.pddpic.com/upload/timeline/79fb1d67-fd0c-4ed9-82c7-062b4e62c9e2.png.slim.png
Source: android	String found in binary or memory: https://promotion.pddpic.com/upload/timeline/a86b7d4d-4065-4140-afef-74bdd2b9b2f7.png.slim.png
Source: resources.arsc	String found in binary or memory: https://promotion.pddpic.com/upload/timeline/ed2247f1-6741-46f1-9a9e-48fd786d61fd.png.slim.png
Source: android	String found in binary or memory: https://skytk.htj.pdd.net/mmr.gif
Source: android	String found in binary or memory: https://skytk.pinduoduo.com/cmt/j.webp
Source: android	String found in binary or memory: https://skytk.pinduoduo.com/mmr.gif
Source: resources.arsc	String found in binary or memory: https://t13img.yangkeduo.com/upload/timeline/2020-04-21/0cafb296-6756-441d-9d56-e410684647e2.png
Source: resources.arsc	String found in binary or memory: https://t13img.yangkeduo.com/upload/timeline/2020-04-21/14c5cdc9-4401-4797-8bfb-4dd736f471cb.png
Source: resources.arsc	String found in binary or memory: https://t13img.yangkeduo.com/upload/timeline/2020-04-21/14c5cdc9-4401-4797-8bfb-4dd736f471cb.pngLLhu
Source: android	String found in binary or memory: https://video3.pddpic.com/pxq-qa-video/haoyou/1b79789e-4171-411e-b133-fdf0f7c4f664.png
Source: android	String found in binary or memory: https://video3.pddpic.com/pxq-qa-video/haoyou/7b04140f-48e0-4c42-92b4-2f46ea372a9c.png

Source: com.xunmeng.pinduoduo.chat.chatBiz.voiceChat.a.a;->f:130

API Call: android.media.AudioManager.isBluetoothA2dpOn

Source: submitted apk

Request permission: android.permission.RECORD_AUDIO

Source: submitted apk

Request permission: android.permission.CAMERA

Source: com.xunmeng.pinduoduo.chat.chatBiz.voiceChat.a.a;->b:60	API Call: android.media.AudioManager.setMode
Source: com.xunmeng.pinduoduo.chat.chatBiz.voiceChat.a.a;->d:99	API Call: android.media.AudioManager.setMode

Source: com.xunmeng.pinduoduo.permission.a.e;->b:12	API Call: android.media.AudioRecord.<init>
Source: com.xunmeng.pinduoduo.chat.chatBiz.chatDetail.Component.inputPanelComponent.b.a.c;->g:113	API Call: android.media.AudioRecord.<init>

Source: com.xunmeng.pinduoduo.apm.crash.a.c;->l:717	API Calls in same method context: File.listFiles,File.delete
Source: com.xunmeng.pinduoduo.apm.a.d;->e:171	API Calls in same method context: File.listFiles,File.delete
Source: com.xunmeng.pinduoduo.apm.crash.a.g;->d:148	API Calls in same method context: File.listFiles,File.delete
Source: com.xunmeng.pinduoduo.apm.a.d;->g:244	API Calls in same method context: File.listFiles,File.delete

Source: com.xunmeng.pinduoduo.aw.i;->b:15	API Call: android.os.PowerManager$WakeLock.acquire
Source: com.xunmeng.pinduoduo.aw.i;->c:20	API Call: android.os.PowerManager$WakeLock.acquire

Source: submitted apk	Request permission: android.permission.ACCESS_COARSE_LOCATION
Source: submitted apk	Request permission: android.permission.ACCESS_FINE_LOCATION
Source: submitted apk	Request permission: android.permission.BLUETOOTH
Source: submitted apk	Request permission: android.permission.BLUETOOTH_ADMIN
Source: submitted apk	Request permission: android.permission.CAMERA
Source: submitted apk	Request permission: android.permission.CHANGE_NETWORK_STATE
Source: submitted apk	Request permission: android.permission.CHANGE_WIFI_STATE
Source: submitted apk	Request permission: android.permission.INTERNET
Source: submitted apk	Request permission: android.permission.MODIFY_AUDIO_SETTINGS
Source: submitted apk	Request permission: android.permission.READ_CONTACTS
Source: submitted apk	Request permission: android.permission.READ_LOGS
Source: submitted apk	Request permission: android.permission.READ_PHONE_STATE
Source: submitted apk	Request permission: android.permission.RECORD_AUDIO
Source: submitted apk	Request permission: android.permission.SYSTEM_ALERT_WINDOW
Source: submitted apk	Request permission: android.permission.WAKE_LOCK
Source: submitted apk	Request permission: android.permission.WRITE_CALENDAR
Source: submitted apk	Request permission: android.permission.WRITE_EXTERNAL_STORAGE

Source: com.xunmeng.pinduoduo.pdd_bandage.a.k;->a:34	API Call: android.os.Process.killProcess
Source: com.xunmeng.pinduoduo.volantis.d.a;->i:23	API Call: android.os.Process.killProcess
Source: com.xunmeng.pinduoduo.debug.a;->a:22	API Call: android.os.Process.killProcess
Source: com.xunmeng.pinduoduo.web.meepo.extension.MecoRenderProcessMonitorSubscriber;->lambda$onLoadUrl$0$MecoRenderProcessMonitorSubscriber:98	API Call: android.os.Process.killProcess

Source: com.xunmeng.pinduoduo.sensitive_api.d.a;->a:9	API Call: java.lang.Runtime.exec
Source: com.xunmeng.pinduoduo.sensitive_api.d.a;->b:25	API Call: java.lang.Runtime.exec
Source: com.xunmeng.pinduoduo.sensitive_api.d.a;->c:41	API Call: java.lang.Runtime.exec
Source: com.xunmeng.pinduoduo.sensitive_api.d.a;->d:51	API Call: java.lang.Runtime.exec
Source: com.xunmeng.pinduoduo.sensitive_api.d.a;->e:61	API Call: java.lang.Runtime.exec
Source: com.xunmeng.pinduoduo.deviceinfo.e;->w:146	API Call: java.lang.ProcessBuilder.start
Source: com.xunmeng.pinduoduo.deviceinfo.e;->x:169	API Call: java.lang.ProcessBuilder.start

Source: com.xunmeng.pinduoduo.appstartup.app.AppInitialization;->q:153	API Call: android.content.SharedPreferences.getBoolean
Source: com.xunmeng.pinduoduo.apm.crash.b.b;->d:97	API Call: android.content.SharedPreferences.getString
Source: com.xunmeng.pinduoduo.app_search_common.d.g;->getBoolean:35	API Call: android.content.SharedPreferences.getBoolean
Source: com.xunmeng.pinduoduo.e.k;->Q:169	API Call: android.content.SharedPreferences.getString

Source: com.xunmeng.pinduoduo.chat.datasdk.sdk.orm.db.d;->l:86	API Call: android.database.sqlite.SQLiteDatabase.execSQL
Source: com.xunmeng.pinduoduo.chat.datasdk.sdk.orm.db.b.e;->l:86	API Call: com.tencent.wcdb.database.SQLiteDatabase.execSQL
Source: com.xunmeng.pinduoduo.w.b.b;->onCreate:9	API Call: android.database.sqlite.SQLiteDatabase.execSQL

Source: classification engine

Classification label: mal56.spyw.expl.evad.andAPK@0/251@0/0

Source: pdd_6.50.3_oppo.apk

Total valid method names: 34%

Source: com.xunmeng.pinduoduo.badge.leolin.a.e;->f:39	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.badge.leolin.a.f;->e:23	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.m.a.a$1;->invoke:12	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.m.a.a;->c:6	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.activity.a.a.b;->a:7	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.a.e;->h:11	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.a.c;->a:20	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.a.e;->h:17	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.a.e;->h:23	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.a.f;->g:5	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.a.c;->b:37	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.a.c;->c:62	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.a.c;->c:67	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.a.g;->g:16	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.a.g;->g:24	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.a.f;->a:69	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.activity.a.a.h;->b:17	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.activity.a.a.h;->b:25	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.permission.a.a;->B:36	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.permission.a.a;->C:60	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.permission.a.a.i;->F:23	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.permission.a.a.i;->G:51	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.permission.a.a.i;->i:112	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.apm.crash.a.b;->y:405	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.basekit.message.apm.a.b;->b:55	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.power.base.a.a;->a:18	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.aa.a;->b:11	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.aa.a;->b:17	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.aa.b;->invoke:9	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.aa.b;->invoke:16	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.base.activity.BaseFragmentActivity;->reflectGetReferrer:284	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.base.activity.BaseFragmentActivity;->refreshEventTrackInfoToPageContext:297	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.ag.a;->d:45	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.ag.a;->d:50	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.android_ui_jsapi.PDDScreen;->getWindowSurface:35	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.android_ui_jsapi.PDDScreen;->getWindowSurface:39	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.number.api.a;->c:23	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.service_hook.app.a;->g:52	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.service_hook.app.a;->g:56	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.service_hook.app.c;->b:10	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.service_hook.app.c;->b:15	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.app_storage_base.c;->e:52	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.apm.avoid.MiscInlineFix;->g:53	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.apm.avoid.QueuedWorkANRAvoidHelper;->a:10	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.apm.avoid.QueuedWorkANRAvoidHelper;->a:15	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.apm.avoid.QueuedWorkANRAvoidHelper;->a:19	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.apm.avoid.QueuedWorkANRAvoidHelper;->b:40	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.apm.avoid.a;->a:20	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.aw.i;->m:89	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.activity.a.b.b;->a:23	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.b.c;->j:70	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.b.c;->j:75	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.b.d;->m:67	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.activity.a.b.d;->m:72	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.b.d;->m:77	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.b.d;->m:98	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.b.d;->m:103	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.b.f;->g:68	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.activity.a.b.g;->b:8	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.activity.a.b.g;->c:13	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.activity.a.b.i;->a:7	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.b.h;->k:42	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.activity.a.b.h;->k:47	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.b.i;->h:88	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.b.i;->h:92	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.b.j;->a:17	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.activity.a.b.j;->a:20	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.activity.a.b.j;->h:45	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.auth.pay.finshellpay.a.b.a;->e:39	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.apm.risk.b.a;->e:8	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.apm.risk.b.a;->f:21	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.apm.risk.b.a;->f:25	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.apm.risk.b.a;->g:37	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.apm.risk.b.a;->g:43	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.apm.risk.b.b;->invoke:85	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.apm.crash.b.d;->g:22	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.apm.crash.b.d;->h:29	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.apm.crash.b.d;->h:31	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.chat.datasdk.sdk.orm.db.b.a;->s:64	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.chat.datasdk.sdk.orm.db.b.a;->l:287	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.chat.datasdk.sdk.orm.db.b.g;->b:24	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.chat.datasdk.sdk.orm.db.b.g;->b:30	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.chat.datasdk.sdk.orm.db.b.g;->b:59	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.chat.datasdk.sdk.orm.db.b.g;->b:64	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.chat.datasdk.sdk.orm.db.b.g;->b:70	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.chat.datasdk.sdk.orm.db.b.g;->b:76	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.chat.datasdk.sdk.orm.db.b.g;->c:171	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.floating_service.b.g;->h:16	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.floating_service.b.g;->h:18	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.floating_service.b.g;->h:30	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.floating_service.b.g;->h:39	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.floating_service.b.c;->w:235	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.floating_service.b.t;->a:17	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.wallet.common.base.WalletBaseFragmentActivity;->a:24	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.bf.a;->h:28	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.bot.a;->a:127	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.bq.a;->b:14	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.bs.b;->b:21	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.o.c.a;->e:6	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.o.c.a;->e:12	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.o.c.b;->e:6	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.o.c.a;->a:18	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.o.c.b;->e:14	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.o.c.c;->e:7	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.o.c.b;->a:20	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.o.c.c;->f:15	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.o.c.d;->e:7	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.o.c.c;->f:21	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.o.c.d;->f:13	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.o.c.c;->a:27	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.o.c.d;->f:20	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.o.c.d;->a:26	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.o.c.e;->f:9	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.o.c.e;->g:15	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.o.c.e;->h:20	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.o.c.e;->h:27	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.m.c.b;->a:14	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.m.c.b;->a:16	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.service_hook.c.a;->a:16	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.event.f.c.a;->k:50	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.basekit.c.b;->q:71	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.apm.caton.m;->n:183	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.cdn_test.i;->l:25	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.social.common.cleaner.c;->a:29	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.apm.common.c;->c:7	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.apm.common.c;->c:10	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.basekit.commonutil.DeviceUtil;->getPhoneCount:75	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.basekit.commonutil.AppUtils;->i:191	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.basekit.commonutil.AppUtils;->i:195	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.basekit.commonutil.DeviceUtil;->getSystemPropertiesValue:194	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.lego.v8.component.x;->g:25	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.lego.v8.core.b;->f:45	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.common.upload.d.f;->c:61	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.clipboard.d.a;->h:24	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.d.c;->a:24	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.d.d;->d:65	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.d.d;->d:69	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.d.d;->d:75	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.d.d;->d:80	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.secure.d.g;->a:7	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.secure.d.b;->j:88	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.secure.d.b;->k:98	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.chat.datasdk.sdk.orm.db.b;->s:64	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.chat.datasdk.sdk.orm.db.c;->e:12	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.chat.datasdk.sdk.orm.db.b;->l:287	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.deviceinfo.g;->r:191	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.deviceinfo.g;->r:200	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.deviceinfo.g;->r:209	API Call: java.lang.reflect.Field.get
Source: com.xunmeng.pinduoduo.lego.e.e;->c:25	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.bj.e.a;->j:33	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.a;->b:19	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.a;->b:24	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.a;->d:56	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.a;->i:110	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.a;->i:117	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.a;->j:129	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.a;->j:136	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.meepo.core.event.a;->n:90	API Call: java.lang.reflect.Method.invoke
Source: com.xunmeng.pinduoduo.web.meepo.extension.DisableAccessibilitySubscriber;->onCreateView:16	API Call: java.lang.reflect.Method.invoke

Source: com.xunmeng.pinduoduo.app.StartupThreadStat;->i:199	API Call: java.io.FileWriter.<init>
Source: com.xunmeng.pinduoduo.app.d;->c:27	API Call: java.io.FileWriter.<init>
Source: com.xunmeng.pinduoduo.net_logger.b.a;->a:33	API Call: java.io.FileWriter.<init>
Source: com.xunmeng.pinduoduo.amui.cache.f;->w:20	API Call: java.io.FileWriter.<init>
Source: com.xunmeng.pinduoduo.basekit.cache.a;->m:205	API Call: java.io.FileWriter.<init>
Source: com.xunmeng.pinduoduo.basekit.cache.a;->p:277	API Call: java.io.FileWriter.<init>

Source: com.xunmeng.pinduoduo.aw.i;->a:6

API Call: android.os.PowerManager.newWakeLock

Source: com.xunmeng.pinduoduo.apm.crash.a.b;->o:321	API Call: android.app.ActivityManager.getRunningAppProcesses
Source: com.xunmeng.pinduoduo.apm.crash.a.b;->y:390	API Call: android.app.ActivityManager.getRunningAppProcesses
Source: com.xunmeng.pinduoduo.app.ProcessNameUtil;->currentProcessName:15	API Call: android.app.ActivityManager.getRunningAppProcesses
Source: com.xunmeng.pinduoduo.basekit.commonutil.AppUtils;->a:111	API Call: android.app.ActivityManager.getRunningAppProcesses
Source: com.xunmeng.pinduoduo.basekit.commonutil.AppUtils;->b:121	API Call: android.app.ActivityManager.getRunningTasks
Source: com.xunmeng.pinduoduo.basekit.commonutil.AppUtils;->d:136	API Call: android.app.ActivityManager.getRunningAppProcesses
Source: com.xunmeng.pinduoduo.arch.config.mango.d.g;->H:69	API Call: android.app.ActivityManager.getRunningAppProcesses
Source: com.xunmeng.pinduoduo.e.d;->i:91	API Call: android.app.ActivityManager.getRunningAppProcesses

Source: submitted apk

Request permission: android.permission.SYSTEM_ALERT_WINDOW

Source: submitted apk

Request permission: android.permission.BLUETOOTH_ADMIN

Source: com.xunmeng.pinduoduo.number.a.d;->q:85	API Call: javax.crypto.Cipher.getInstance
Source: com.xunmeng.pinduoduo.number.a.d;->q:86	API Call: javax.crypto.Cipher.init
Source: com.xunmeng.pinduoduo.number.a.d;->q:88	API Call: javax.crypto.Cipher.doFinal
Source: com.xunmeng.pinduoduo.chat.unifylayer.dcenter.impl.datasdk.submsg.a.a.e;->h:26	API Call: java.security.MessageDigest.getInstance
Source: com.xunmeng.pinduoduo.chat.unifylayer.dcenter.impl.datasdk.submsg.a.a.e;->h:28	API Call: java.security.MessageDigest.update
Source: com.xunmeng.pinduoduo.chat.unifylayer.dcenter.impl.datasdk.submsg.a.a.e;->h:29	API Call: java.security.MessageDigest.digest
Source: com.xunmeng.pinduoduo.wallet.common.util.a.a;->m:28	API Call: javax.crypto.Cipher.getInstance
Source: com.xunmeng.pinduoduo.wallet.common.util.a.a;->m:29	API Call: javax.crypto.Cipher.init
Source: com.xunmeng.pinduoduo.wallet.common.util.a.a;->m:55	API Call: javax.crypto.Cipher.doFinal
Source: com.xunmeng.pinduoduo.floating_service.b.a;->b:11	API Call: javax.crypto.Cipher.getInstance
Source: com.xunmeng.pinduoduo.floating_service.b.a;->b:14	API Call: javax.crypto.Cipher.init
Source: com.xunmeng.pinduoduo.floating_service.b.a;->b:15	API Call: javax.crypto.Cipher.doFinal
Source: com.xunmeng.pinduoduo.vita.patch.b.b;->a:4	API Call: java.security.MessageDigest.update
Source: com.xunmeng.pinduoduo.vita.patch.b.b;->b:9	API Call: java.security.MessageDigest.getInstance
Source: com.xunmeng.pinduoduo.vita.patch.b.b;->b:11	API Call: java.security.MessageDigest.digest
Source: com.xunmeng.pinduoduo.lego.v8.c.e;->a:5	API Call: java.security.MessageDigest.getInstance
Source: com.xunmeng.pinduoduo.lego.v8.c.e;->a:6	API Call: java.security.MessageDigest.update
Source: com.xunmeng.pinduoduo.lego.v8.c.e;->a:7	API Call: java.security.MessageDigest.digest
Source: com.xunmeng.pinduoduo.common_upgrade.c.b;->a:2	API Call: java.security.MessageDigest.getInstance
Source: com.xunmeng.pinduoduo.common_upgrade.c.b;->a:5	API Call: java.security.MessageDigest.update
Source: com.xunmeng.pinduoduo.common_upgrade.c.b;->a:6	API Call: java.security.MessageDigest.digest
Source: com.xunmeng.pinduoduo.faceantispoofing.c.b;->b:16	API Call: javax.crypto.Cipher.getInstance
Source: com.xunmeng.pinduoduo.faceantispoofing.c.b;->b:18	API Call: javax.crypto.Cipher.init
Source: com.xunmeng.pinduoduo.basekit.http.dns.c.a$a;->a:15	API Call: javax.crypto.Cipher.getInstance
Source: com.xunmeng.pinduoduo.basekit.http.dns.c.a$a;->a:16	API Call: javax.crypto.Cipher.init
Source: com.xunmeng.pinduoduo.basekit.http.dns.c.a$a;->a:18	API Call: javax.crypto.Cipher.doFinal
Source: com.xunmeng.pinduoduo.basekit.http.dns.c.a$a;->b:38	API Call: javax.crypto.Cipher.getInstance
Source: com.xunmeng.pinduoduo.basekit.http.dns.c.a$a;->b:39	API Call: javax.crypto.Cipher.init
Source: com.xunmeng.pinduoduo.basekit.http.dns.c.a$a;->b:41	API Call: javax.crypto.Cipher.doFinal
Source: com.xunmeng.pinduoduo.cdn_test.t;->a:6	API Call: javax.crypto.KeyGenerator.generateKey
Source: com.xunmeng.pinduoduo.basekit.commonutil.AppUtils;->N:42	API Call: java.security.MessageDigest.getInstance
Source: com.xunmeng.pinduoduo.basekit.commonutil.AppUtils;->N:43	API Call: java.security.MessageDigest.digest
Source: com.xunmeng.pinduoduo.basekit.commonutil.MD5Utils;->digest:5	API Call: java.security.MessageDigest.getInstance
Source: com.xunmeng.pinduoduo.basekit.commonutil.MD5Utils;->digest:7	API Call: java.security.MessageDigest.digest
Source: com.xunmeng.pinduoduo.basekit.commonutil.MD5Utils;->digest:16	API Call: java.security.MessageDigest.getInstance
Source: com.xunmeng.pinduoduo.basekit.commonutil.MD5Utils;->digest:17	API Call: java.security.MessageDigest.update
Source: com.xunmeng.pinduoduo.basekit.commonutil.MD5Utils;->digest:18	API Call: java.security.MessageDigest.digest
Source: com.xunmeng.pinduoduo.basekit.commonutil.MD5Utils;->updateDigest:22	API Call: java.security.MessageDigest.update
Source: com.xunmeng.pinduoduo.common.upload.d.l;->a:10	API Call: java.security.MessageDigest.getInstance
Source: com.xunmeng.pinduoduo.common.upload.d.l;->a:13	API Call: java.security.MessageDigest.update
Source: com.xunmeng.pinduoduo.common.upload.d.l;->a:15	API Call: java.security.MessageDigest.digest
Source: com.xunmeng.pinduoduo.common.upload.d.l;->b:44	API Call: java.security.MessageDigest.getInstance
Source: com.xunmeng.pinduoduo.common.upload.d.l;->b:47	API Call: java.security.MessageDigest.update
Source: com.xunmeng.pinduoduo.common.upload.d.l;->b:50	API Call: java.security.MessageDigest.digest
Source: com.xunmeng.pinduoduo.lego.d.e;->u:13	API Call: java.security.MessageDigest.getInstance
Source: com.xunmeng.pinduoduo.lego.d.e;->u:15	API Call: java.security.MessageDigest.digest
Source: com.xunmeng.pinduoduo.secure.d.f;->a:4	API Call: java.security.MessageDigest.getInstance
Source: com.xunmeng.pinduoduo.secure.d.f;->a:5	API Call: java.security.MessageDigest.update
Source: com.xunmeng.pinduoduo.secure.d.f;->a:6	API Call: java.security.MessageDigest.digest
Source: com.xunmeng.pinduoduo.secure.d.f;->c:16	API Call: java.security.MessageDigest.update
Source: com.xunmeng.pinduoduo.secure.d.f;->d:20	API Call: java.security.MessageDigest.getInstance
Source: com.xunmeng.pinduoduo.secure.d.f;->d:22	API Call: java.security.MessageDigest.digest
Source: com.xunmeng.pinduoduo.bj.d.a;->i:24	API Call: java.security.MessageDigest.getInstance
Source: com.xunmeng.pinduoduo.bj.d.a;->i:25	API Call: java.security.MessageDigest.digest
Source: com.xunmeng.pinduoduo.event.f.d.a;->a:16	API Call: javax.crypto.Cipher.doFinal
Source: com.xunmeng.pinduoduo.event.f.d.c;->a:8	API Call: javax.crypto.Cipher.getInstance
Source: com.xunmeng.pinduoduo.event.f.d.c;->a:9	API Call: javax.crypto.Cipher.init
Source: com.xunmeng.pinduoduo.arch.config.mango.d.g;->X:138	API Call: javax.crypto.Cipher.getInstance
Source: com.xunmeng.pinduoduo.arch.config.mango.d.g;->X:139	API Call: javax.crypto.Cipher.init
Source: com.xunmeng.pinduoduo.arch.config.mango.d.g;->X:140	API Call: javax.crypto.Cipher.doFinal
Source: com.xunmeng.pinduoduo.arch.config.mango.d.g;->h:282	API Call: javax.crypto.Cipher.getInstance
Source: com.xunmeng.pinduoduo.arch.config.mango.d.g;->h:283	API Call: javax.crypto.Cipher.init
Source: com.xunmeng.pinduoduo.arch.config.mango.d.g;->h:284	API Call: javax.crypto.Cipher.doFinal
Source: com.xunmeng.pinduoduo.arch.config.mango.d.g;->i:296	API Call: javax.crypto.Cipher.getInstance
Source: com.xunmeng.pinduoduo.arch.config.mango.d.g;->i:297	API Call: javax.crypto.Cipher.init
Source: com.xunmeng.pinduoduo.arch.config.mango.d.g;->i:298	API Call: javax.crypto.Cipher.doFinal
Source: com.xunmeng.pinduoduo.wallet.common.dc.b;->h:297	API Call: javax.crypto.Cipher.getInstance
Source: com.xunmeng.pinduoduo.wallet.common.dc.b;->h:298	API Call: javax.crypto.Cipher.init
Source: com.xunmeng.pinduoduo.wallet.common.dc.b;->h:317	API Call: javax.crypto.Cipher.doFinal
Source: com.xunmeng.pinduoduo.bj.e.a;->m:102	API Call: java.security.MessageDigest.getInstance
Source: com.xunmeng.pinduoduo.bj.e.a;->m:103	API Call: java.security.MessageDigest.digest
Source: com.xunmeng.pinduoduo.effectservice_cimpl.e.g;->c:28	API Call: java.security.MessageDigest.getInstance
Source: com.xunmeng.pinduoduo.effectservice_cimpl.e.g;->c:29	API Call: java.security.MessageDigest.update
Source: com.xunmeng.pinduoduo.effectservice_cimpl.e.g;->c:30	API Call: java.security.MessageDigest.digest

Malware Analysis System Evasion

Might try to detect if ADB is running

Source: Lcom/xunmeng/pinduoduo/appstartup/a/f;->a(Ljava/util/Map;)V	Method string: adb_enabled
Source: Lcom/xunmeng/pinduoduo/permission/a/b;->a(Landroid/content/Context;)Ljava/util/Map;	Method string: adb_enabled
Source: Lcom/xunmeng/pinduoduo/ac/j;->e()Z	Method string: adb_enabled
Source: Lcom/xunmeng/pinduoduo/permission/a/b;->d(Landroid/content/Context;)I	Method string: adb_enabled

Tries to detect Android x86

Source: Lcom/xunmeng/pinduoduo/basekit/c/d;->i()Lcom/xunmeng/pinduoduo/basekit/c/d$a;

Method string: "android sdk built for x86"

Tries to detect XPosed instrumentation framework

Source: Lcom/xunmeng/pinduoduo/volantis/kenithelper/b/c;->d(Ljava/lang/Throwable;)Z

Method string: de.robv.android.xposed.XposedBridge

Source: Lcom/xunmeng/pinduoduo/basekit/c/d;->g()Lcom/xunmeng/pinduoduo/basekit/c/d$a;

Method string: "vbox86"

Source: Lcom/xunmeng/pinduoduo/basekit/commonutil/AppUtils;->o(Landroid/content/Context;)J	Method string: "/proc/meminfo"
Source: Lcom/xunmeng/pinduoduo/deviceinfo/a;->g()Ljava/lang/String;	Method string: "/proc/cpuinfo"
Source: Lcom/xunmeng/pinduoduo/basekit/commonutil/DeviceUtil;->getKernelInfo()Ljava/lang/String;	Method string: "/proc/version"
Source: Lcom/xunmeng/pinduoduo/app/ProcessNameUtil;->getProcessName()Ljava/lang/String;	Method string: "/proc/%d/cmdline"
Source: Lcom/xunmeng/pinduoduo/secure/d/b;->i()J	Method string: "/proc/meminfo"
Source: Lcom/xunmeng/pinduoduo/secure/d/b;->h()Ljava/lang/String;	Method string: "/proc/version"

Source: com.xunmeng.pinduoduo.deprecated.chat.holder.shareholder.a.a;->b:20	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.app_storage.a.c;->b:66	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.longlink.a.a;->d:36	Field Access: android.os.Build$VERSION.RELEASE
Source: com.xunmeng.pinduoduo.longlink.a.a;->d:40	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.longlink.a.a;->d:44	Field Access: android.os.Build.ID
Source: com.xunmeng.pinduoduo.auth.pay.finshellpay.a.a.c;->i:12	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.auth.pay.finshellpay.a.a.f;->i:15	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.permission.a.e;->p:163	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.apm.a.d;->o:545	Field Access: android.os.Build.DISPLAY
Source: com.xunmeng.pinduoduo.apm.a.d;->o:546	Field Access: android.os.Build.CPU_ABI
Source: com.xunmeng.pinduoduo.apm.a.d;->o:547	Field Access: android.os.Build$VERSION.RELEASE
Source: com.xunmeng.pinduoduo.apm.a.d;->r:612	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.apm.crash.a.c;->i:553	Field Access: android.os.Build.DISPLAY
Source: com.xunmeng.pinduoduo.apm.crash.a.c;->i:554	Field Access: android.os.Build.CPU_ABI
Source: com.xunmeng.pinduoduo.apm.crash.a.c;->i:555	Field Access: android.os.Build$VERSION.RELEASE
Source: com.xunmeng.pinduoduo.apm.crash.a.c;->i:593	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.chat.base.a.a;->B:30	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.chat.base.a.a;->z:239	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.w.a.c;->e:61	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.w.a.c;->e:64	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.w.a.c;->e:67	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.lifecycle.a.b;->a:5	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.effect.foundation.a.a;->a:5	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.appstartup.a.a;->a:12	Field Access: android.os.Build$VERSION.RELEASE
Source: com.xunmeng.pinduoduo.appstartup.a.a;->a:27	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.appstartup.a.f;->a:68	Field Access: android.os.Build.BOARD
Source: com.xunmeng.pinduoduo.appstartup.a.f;->a:118	Field Access: android.os.Build.CPU_ABI
Source: com.xunmeng.pinduoduo.appstartup.a.f;->a:120	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.appstartup.a.f;->a:127	Field Access: android.os.Build.FINGERPRINT
Source: com.xunmeng.pinduoduo.appstartup.a.f;->a:298	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.appstartup.a.f;->a:340	Field Access: android.os.Build.TAGS
Source: com.xunmeng.pinduoduo.arch.foundation.a.q;->b:11	Field Access: android.os.Build$VERSION.RELEASE
Source: com.xunmeng.pinduoduo.arch.foundation.a.q;->c:12	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.arch.foundation.a.q;->d:13	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.ac.b;->a:16	Field Access: android.os.Build$VERSION.RELEASE
Source: com.xunmeng.pinduoduo.ac.b;->a:20	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.ac.b;->a:24	Field Access: android.os.Build.ID
Source: com.xunmeng.pinduoduo.ac.d;->o:343	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.ac.j;->F:185	Field Access: android.os.Build$VERSION.RELEASE
Source: com.xunmeng.pinduoduo.ac.j;->F:194	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.base.activity.BaseActivity;->isMatex:357	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.base.activity.BaseActivity;->isMatexMulti:384	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.base.activity.BaseActivity;->isSuitForDarkMode:395	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.ui.activity.HomeActivity;->aC:37	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.ui.activity.HomeActivity;->aD:51	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.ui.activity.HomeActivity;->aw:499	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.activity.NewPageActivity;->am:205	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.activity.NewPageActivity;->am:207	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.ad.f;->f:13	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.popup.ae.e;->b:27	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.mobile_ai.almighty.a;-><init>:5	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.ao.a;->h:18	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.ao.a;->h:20	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.app.e;->m:42	Field Access: android.os.Build$VERSION.RELEASE
Source: com.xunmeng.pinduoduo.app.e;->m:45	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.app.e;->m:48	Field Access: android.os.Build.ID
Source: com.xunmeng.pinduoduo.app.e;->n:54	Field Access: android.os.Build$VERSION.RELEASE
Source: com.xunmeng.pinduoduo.app.e;->n:58	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.app.e;->n:61	Field Access: android.os.Build.ID
Source: com.xunmeng.pinduoduo.app.s;->u:80	Field Access: android.os.Build$VERSION.RELEASE
Source: com.xunmeng.pinduoduo.app.s;->u:84	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.app.s;->u:88	Field Access: android.os.Build.ID
Source: com.xunmeng.pinduoduo.appstartup.app.AppInitialization;->n:58	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.appstartup.app.AppInitialization;->p:133	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.ay.a;->getAppInfo:221	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.ay.a;->getAppInfo:222	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.ay.a;->getAppInfo:228	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.ay.a;->getAppInfo:229	Field Access: android.os.Build.DISPLAY
Source: com.xunmeng.pinduoduo.ay.a;->getAppInfo:230	Field Access: android.os.Build.CPU_ABI
Source: com.xunmeng.pinduoduo.volantis.b.a;->b:57	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.volantis.b.a;->b:97	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.sku_checkout.checkout.b.c;->l:554	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.sku_checkout.checkout.b.c;->r:639	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.activity.a.b.b;->a:7	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.activity.a.b.b;->a:10	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.activity.a.b.c;->f:21	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.activity.a.b.c;->f:28	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.activity.a.b.d;->l:47	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.activity.a.b.d;->l:50	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.activity.a.b.f;->e:38	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.auth.pay.finshellpay.a.b.a;->a:5	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.auth.pay.finshellpay.a.b.a;->b:10	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.auth.pay.finshellpay.a.b.a;->c:21	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.chat.unifylayer.dcenter.impl.datasdk.submsg.b.b;->w:81	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.chat.chatBiz.msgCardBiz.base.au;->i:211	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.base_pinbridge.AMApplication;->isValidManufactuer:9	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.base_pinbridge.AMApplication;->getManufactureName:65	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.base_pinbridge.AMDevice;->deviceInfo:81	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.base_pinbridge.AMDevice;->deviceInfo:93	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.base_pinbridge.AMDevice;->deviceInfo:123	Field Access: android.os.Build.CPU_ABI
Source: com.xunmeng.pinduoduo.comment.camera_video.bean.VideoCodecConfig;->getSpecConfig:26	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.base_pinbridge.d;->v:350	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.base_pinbridge.d;->v:351	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.comment.camera_video.bean.VideoCodecConfig;->getSpecConfig:39	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.bj.b;->b:55	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.bj.b;->b:58	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.bj.b;->b:61	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.bj.b;->b:63	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.bq.a;->d:18	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.bq.a;->c:35	Field Access: android.os.Build.FINGERPRINT
Source: com.xunmeng.pinduoduo.common_upgrade.c.a;->c:26	Field Access: android.os.Build.CPU_ABI
Source: com.xunmeng.pinduoduo.apm_cpu_wrapper.c.a;->a:14	Field Access: android.os.Build.CPU_ABI
Source: com.xunmeng.pinduoduo.apm_cpu_wrapper.c.a;->a:20	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.apm_cpu_wrapper.c.a;->a:23	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.address.lbs.c.a$c;->g:88	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.address.lbs.c.b$b;->k:21	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.c.b;->r:78	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.c.b;->r:84	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.basekit.c.h;->e:34	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.c.h;->f:50	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.sensitive_api_impl.c.a$1;->run:41	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.basekit.commonutil.DeviceUtil;->getOsInfo:69	Field Access: android.os.Build$VERSION.RELEASE
Source: com.xunmeng.pinduoduo.basekit.commonutil.DeviceUtil;->getPhoneModel:91	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.basekit.commonutil.DeviceUtil;->getPhoneModelWithManufacturer:93	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.commonutil.DeviceUtil;->getPhoneModelWithManufacturer:97	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.basekit.commonutil.DeviceUtil;->getRomBuildId:137	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.commonutil.DeviceUtil;->getVendor:205	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->a:21	Field Access: android.os.Build.DISPLAY
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->b:24	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->b:26	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->b:29	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->b:32	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->b:35	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->b:38	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->b:41	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->b:44	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->b:46	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->b:49	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->b:52	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->b:55	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->b:60	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->b:63	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->b:66	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->b:69	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->b:71	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->b:73	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->c:78	Field Access: android.os.Build.DISPLAY
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->c:80	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->c:84	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->c:86	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->c:91	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->c:93	Field Access: android.os.Build.DISPLAY
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->c:94	Field Access: android.os.Build.DISPLAY
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->c:99	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->c:103	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->c:105	Field Access: android.os.Build.DISPLAY
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->c:107	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->c:110	Field Access: android.os.Build.DISPLAY
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->c:112	Field Access: android.os.Build.DISPLAY
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->c:114	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->c:118	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->c:121	Field Access: android.os.Build.DISPLAY
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->c:122	Field Access: android.os.Build.DISPLAY
Source: com.xunmeng.pinduoduo.basekit.commonutil.c;->h:146	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.manufacture.server.config.q$a;-><init>:6	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.search.image.constants.b;->c:15	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.app_pay.core.PayActivity;->onStop:681	Field Access: android.os.Build.FINGERPRINT
Source: com.xunmeng.pinduoduo.d.e;->g:78	Field Access: android.os.Build$VERSION.RELEASE
Source: com.xunmeng.pinduoduo.sku_checkout.d.e;->T:992	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.market_ad_common.d.a;->b:6	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.apm.common.d.b;->a:15	Field Access: android.os.Build.CPU_ABI
Source: com.xunmeng.pinduoduo.apm.common.d.b;->a:18	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.apm.common.d.b;->a:27	Field Access: android.os.Build$VERSION.RELEASE
Source: com.xunmeng.pinduoduo.apm.common.d.b;->a:30	Field Access: android.os.Build.DISPLAY
Source: com.xunmeng.pinduoduo.deviceinfo.e;->h:54	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.deviceinfo.e;->i:57	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.deviceinfo.e;->j:60	Field Access: android.os.Build.BRAND
Source: com.xunmeng.pinduoduo.deviceinfo.e;->k:63	Field Access: android.os.Build$VERSION.RELEASE
Source: com.xunmeng.pinduoduo.deviceinfo.e;->y:193	Field Access: android.os.Build.CPU_ABI
Source: com.xunmeng.pinduoduo.deviceinfo.e;->z:203	Field Access: android.os.Build.FINGERPRINT
Source: com.xunmeng.pinduoduo.notificationbox.e.a$a;->run:26	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.notificationbox.e.a$a;->run:29	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.notificationbox.e.a;->f:14	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.web.e.x;->a:121	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.c;->N:88	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.c;->N:95	Field Access: android.os.Build.MANUFACTURER
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.c;->O:102	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.c;->O:105	Field Access: android.os.Build.TAGS
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.c;->O:109	Field Access: android.os.Build.MODEL
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.c;->O:112	Field Access: android.os.Build.MODEL

Source: Lcom/xunmeng/pinduoduo/arch/foundation/a/q;->a()Ljava/lang/String;	Method string: "android"
Source: Lcom/xunmeng/pinduoduo/deviceinfo/a;->e(JJJ)V	Method string: "cpu"
Source: Lcom/xunmeng/pinduoduo/timeline/chat/biz/MomentsGroupChatInputPanelLeftPureLegoComponent;->lambda$inflatePureLegoView$7$MomentsGroupChatInputPanelLeftPureLegoComponent(Lcom/google/gson/JsonObject;)Lcom/google/gson/JsonElement;	Method string: "type"
Source: Lcom/xunmeng/pinduoduo/d/e;->b(Ljava/lang/String;)V	Method string: "version"
Source: Lcom/xunmeng/pinduoduo/address/lbs/c/b$b;->k(Ljava/util/Map;)V	Method string: "manufacturer"
Source: Lcom/xunmeng/pinduoduo/apm/common/d/b;->a()Ljava/util/Map;	Method string: "rom"
Source: Lcom/xunmeng/pinduoduo/deviceinfo/e;->q()I	Method string: "phone"
Source: Lcom/xunmeng/pinduoduo/arch/foundation/a/a/a$a$a;->a()Lcom/xunmeng/pinduoduo/arch/foundation/g$a;	Method string: "appid"
Source: Lcom/xunmeng/pinduoduo/appstartup/app/d;->n(ILjava/lang/String;ZLjava/lang/String;Ljava/lang/String;)V	Method string: "imei"
Source: Lcom/xunmeng/pinduoduo/lifecycle/a/b;->a()Ljava/util/Map;	Method string: "model"
Source: Lcom/xunmeng/pinduoduo/lego/v8/core/ab;->cl(Lcom/xunmeng/pinduoduo/lego/v8/core/ab$c;Lorg/json/JSONObject;)Ljava/lang/Object;	Method string: "time"
Source: Lcom/xunmeng/pinduoduo/category/CategoryFragment;->V()V	Method string: "category"
Source: Lcom/xunmeng/pinduoduo/d/e;->b(Ljava/lang/String;)V	Method string: "brand"

Source: Lcom/xunmeng/pinduoduo/basekit/commonutil/AppUtils;->R()V	Method string: "/sys/devices/system/cpu/cpu"
Source: Lcom/xunmeng/pinduoduo/apm_cpu_wrapper/d/b;-><clinit>()V	Method string: "/sys/devices/system/cpu/cpu0/cpufreq/cpu_temp"
Source: Lcom/xunmeng/pinduoduo/apm_cpu_wrapper/d/b;-><clinit>()V	Method string: "/sys/devices/system/cpu/cpu0/cpufreq/FakeShmoo_cpu_temp"
Source: Lcom/xunmeng/pinduoduo/deviceinfo/e;->w()Ljava/lang/String;	Method string: "/sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq"
Source: Lcom/xunmeng/pinduoduo/deviceinfo/e;->x()Ljava/lang/String;	Method string: "/sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_min_freq"
Source: Lcom/xunmeng/pinduoduo/apm_cpu_wrapper/d/b;->i(II)I	Method string: "/sys/devices/system/cpu/cpu"
Source: Lcom/xunmeng/pinduoduo/apm_cpu_wrapper/d/b;->d(I)Ljava/util/List;	Method string: "/sys/devices/system/cpu/cpu"
Source: Lcom/xunmeng/pinduoduo/apm_cpu_wrapper/d/b;->j()I	Method string: "/sys/devices/system/cpu/"
Source: Lcom/xunmeng/pinduoduo/basekit/commonutil/AppUtils;->Q()I	Method string: "/sys/devices/system/cpu/possible"
Source: Lcom/xunmeng/pinduoduo/basekit/commonutil/AppUtils;->Q()I	Method string: "/sys/devices/system/cpu/present"
Source: Lcom/xunmeng/pinduoduo/basekit/commonutil/AppUtils;->Q()I	Method string: "/sys/devices/system/cpu/"

Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.a;->f:77	API Call: android.provider.Settings$Secure.getString
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.a;->f:81	API Call: android.provider.Settings$Secure.getString

Anti Debugging

Checks if app is currently debugged

Source: Lcom/xunmeng/pinduoduo/appstartup/a/f;->a(Ljava/util/Map;)V	Method string: ro.debuggable
Source: Lcom/xunmeng/pinduoduo/goods/l/c/a;->d(Lcom/xunmeng/pinduoduo/goods/model/k;Lcom/xunmeng/pinduoduo/goods/ProductDetailFragment;I)V	Method string: goods_debug_template_section

Source: com.xunmeng.pinduoduo.apm.crash.a.a;->P:222	API Call: android.os.Debug.isDebuggerConnected
Source: com.xunmeng.pinduoduo.apm.caton.b;->u:96	API Call: android.os.Debug.isDebuggerConnected

Source: com.xunmeng.pinduoduo.arch.foundation.a.q;->f:30	API Call: android.telephony.TelephonyManager.getSimOperator
Source: com.xunmeng.pinduoduo.cdn_test.p;->a:33	API Call: android.telephony.TelephonyManager.getSimOperator

Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.b;->u:90

API Call: android.telephony.TelephonyManager.getNetworkOperatorName

Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.a;->b:26	API Call: android.telephony.TelephonyManager.getSubscriberId
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.a;->c:33	API Call: android.telephony.TelephonyManager.getDeviceId
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.a;->d:50	API Call: android.telephony.TelephonyManager.getDeviceId
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.a;->d:59	API Call: android.telephony.TelephonyManager.getDeviceId
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.c$5;->e:10	API Call: android.telephony.TelephonyManager.getSimSerialNumber
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.c$6;->e:10	API Call: android.telephony.TelephonyManager.getSubscriberId
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.c$7;->e:11	API Call: android.telephony.TelephonyManager.getLine1Number

Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.c;->y:367

API Call: java.net.NetworkInterface.getHardwareAddress

Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.b;->t:76

API Call: android.telephony.TelephonyManager.getNetworkOperator

Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.a;->e:68	API Call: android.net.wifi.WifiInfo.getMacAddress
Source: com.xunmeng.pinduoduo.sensitive_api_impl.e.c;->i:215	API Call: android.net.wifi.WifiInfo.getMacAddress

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Android Analysis Report
pdd_6.50.3_oppo.apk

Overview

General Information

Detection

Signatures

Classification

Yara Signatures

Snort Signatures

Joe Sandbox Signatures

Location Tracking

Privilege Escalation

Spreading

Networking

Key, Mouse, Clipboard, Microphone and Screen Capturing

Operating System Destruction

Change of System Appearance

System Summary

Data Obfuscation

Persistence and Installation Behavior

Boot Survival

Hooking and other Techniques for Hiding and Protection

Malware Analysis System Evasion

Anti Debugging

Language, Device and Operating System Detection

Stealing of Sensitive Information

Behavior Section

Behavior Chronological

Disassembly

Uncategorized

Graph

Loading Joe Sandbox Report ...

Warning!

Android Analysis Report pdd_6.50.3_oppo.apk

Overview

General Information

Detection

Signatures

Classification

Yara Signatures

Snort Signatures

Joe Sandbox Signatures

Location Tracking

Privilege Escalation

Spreading

Networking

Key, Mouse, Clipboard, Microphone and Screen Capturing

Operating System Destruction

Change of System Appearance

System Summary

Data Obfuscation

Persistence and Installation Behavior

Boot Survival

Hooking and other Techniques for Hiding and Protection

Malware Analysis System Evasion

Anti Debugging

Language, Device and Operating System Detection

Stealing of Sensitive Information

Android Analysis Report
pdd_6.50.3_oppo.apk