Open apkunpacker opened 1 year ago
Hi,
can you explain which product is this one? This company has so many SDKs.
Hi,
can you explain which product is this one? This company has so many SDKs.
quick looks reveal it specific to RASP for example libzcloud have many anti frida codes.
_ZN3zdd18frida_checkSocketsE
_ZN3zdd29frida_checkSuspiciousMappingsE
_ZN3zdd30frida_checkSuspiciousBacktraceE
frida_agent_main
Application hooked by Frida
LIBFRIDA
Is this DexGuard 9.x (as seen in your log above) or custom code calling to this SDK? Do you have more samples?
Is this DexGuard 9.x (as seen in your log above) or custom code calling to this SDK? Do you have more samples?
yeah its dexguard 9.x with additional zimperium sdk . at the moment no more sample available.
another sample for zimperium https://play.google.com/store/apps/details?id=com.chase.sig.android
Hi, can you explain which product is this one? This company has so many SDKs.
quick looks reveal it specific to RASP for example libzcloud have many anti frida codes.
_ZN3zdd18frida_checkSocketsE _ZN3zdd29frida_checkSuspiciousMappingsE _ZN3zdd30frida_checkSuspiciousBacktraceE frida_agent_main Application hooked by Frida LIBFRIDA
Do you have a sample with these strings?
File - https://virustotal.com/gui/file/2dd1f3a93b84dc5db18ee7e434c8daf9478f635e26af7840d7e6fb4b7ed7c039 https://play.google.com/store/apps/details?id=com.garanti.bonusapp
APKiD Scan :
Additional Info :
doing
reveal over 13000+ strings containing zimperium
classes.dex contains 2500+ classes under com.zimperium.* package name
Official Website - https://www.zimperium.com/