Add Rule For MT-protector

rednaga / APKiD

Android Application Identifier for Packers, Protectors, Obfuscators and Oddities - PEiD for Android

Other

2.04k stars 298 forks source link

Add Rule For MT-protector #206

Open apkunpacker opened 4 years ago

apkunpacker commented 4 years ago

Add Rule For Mt Protector

MT-Manager 2.8.5.apk.zip

more sample at https://www.apkmonk.com/app/bin.mt.plus/

enovella commented 4 years ago

Many thanks for opening the ticket, I will create a rule for these two samples. Can you provide more samples? Do you know something else apart from this URL? Have you already found a unique and detectable pattern to fingerprint?

Cheers

CalebFenton commented 4 years ago

@apkunpacker If I understand what you're saying, this is not a protector, but just a particular app's obfuscation. If this obfuscation isn't created by a tool that could be used on multiple apps, it's not worth fingerprinting. If it only detects a particular app, it doesn't add any information.

Please correct me if I'm wrong.

enovella commented 4 years ago

The MT_Manager_2_8_5-beta.apk obfuscation is way different from the other apk. Are you sure about your assumptions?

Screenshot from 2020-01-14 13-44-21

The native library is hidden:: Screenshot from 2020-01-14 14-03-14

The older version is definitely obfuscated with something: bin.mt.plus_2019-06-04.zip

Screenshot from 2020-01-14 13-51-11

apkunpacker commented 4 years ago

The MT_Manager_2_8_5-beta.apk obfuscation is way different from the other apk.

My mistake i upload just by downloading, didnot check that apk , actually that was fake apk so you get different obfuscation. Made correction in post . Uploaded real apk

apkunpacker commented 4 years ago

fundump.apk.zip Seems similer obfuscation

apkunpacker commented 4 years ago

MTObfuscation.apk.zip

apkunpacker commented 3 years ago

Closing in favor with https://github.com/rednaga/APKiD/pull/189

enovella commented 6 hours ago

Holmes_V1.3.apk.zip

package bin.mt.annotations;

import java.lang.annotation.ElementType;
import java.lang.annotation.Retention;
import java.lang.annotation.RetentionPolicy;
import java.lang.annotation.Target;

@Target({ElementType.TYPE, ElementType.METHOD, ElementType.CONSTRUCTOR})
@Retention(RetentionPolicy.CLASS)
@mb
/* loaded from: classes.dex */
public @interface MTProtector {
    boolean flatten() default true;
}

package l;

import java.lang.annotation.ElementType;
import java.lang.annotation.Retention;
import java.lang.annotation.RetentionPolicy;
import java.lang.annotation.Target;

/* compiled from: Z1OH */
@Target({ElementType.TYPE, ElementType.METHOD, ElementType.CONSTRUCTOR})
@Retention(RetentionPolicy.CLASS)
/* renamed from: l.ۦ۟ۚ, reason: use source file name */
/* loaded from: classes.dex */
public @interface Z1OH {
    boolean flatten() default true;
}