monkeylord
commented
2 weeks ago the key point is who generate Arg4. it looks like Arg4 is not generated in the sendrequest thread.
you can try mass monitoring, hook all related method, and input some unique text like "123456", and ctrl+f to find which method have "123456" as input argument while hava encrypted output result.
how do i hook into this before the encryption takes place, even after following the stack trace, the cleartext data is nowhere to be found, my concern is Arg4 which seems to be the request body and is already encrypted, what to do in this case, i appreciate any help i can get
