Rule for DashO obfuscator

[enovella]

Download the trial, and protect a random app.

https://www.preemptive.com/products/dasho/features

[enovella]

Example of protecting a Xamarin.Android app with Dotfuscator’s Root Check -- https://github.com/preemptive/Protected-TodoAzureAuth

An Android app that demonstrates using DashO with libraries and product flavors -- https://github.com/preemptive/DashO-GameOfLife

Samples for configuring PreEmptive Protection -- https://github.com/preemptive/dasho-samples

[apkunpacker]

https://github.com/fkie-cad/DeStroid/tree/master/ground_truth/raxir.apk

This is obfuscated by dasho . Confirmed by :

1. Do dex2jar or enjarify
2. Use java-deobfuscator and use detect option.
3. It will mark jar as dasho obfuscated

[enovella]

DashO uses common Java String manipulation APIs to hide their string encryption.

[jackwpa]

I was examining an app protected by Dash-O some time ago, and everything was cleaned and decrypted by JEB it looks like, like this:

However, I did not find any code related to their Runtime application self-protection mentioned on their websit: https://www.preemptive.com/solutions/mobile-runtime-application-self-protection-rasp, https://www.preemptive.com/products/dasho/features

Anybody has some code showing those capabilities?

[enovella]

The trial version allows you to protect apps with DashO and enable the RASP features if I recall correctly. Do you have samples of DashO?

[jackwpa]

I haven't tried the demo, I just checked a few apps that they claim are protected with DashO, for example, the Fedex app. Check the front page of Preemptive for a "full" list.

[enovella]

Any help is welcome @jackwpa! Could you provide us the list of package names? I've seen the website but some brands are very broad, for instance Microsoft.

If you help us to recollect a list of samples, we could write the rule for it.

[enovella]

@jackwpa do you have up-to-date info and samples?

[enovella]