亲亲小贷App sign 算法解密

小范q · 发表于 2018-8-28 21:06:02

PS：APP 提供来源
app 下载地址：
http://android.myapp.com/myapp/detail.htm?apkName=com.android.qqxd.loan

app 提供来源：
https://bbs.125.la/forum.php?mod=viewthread&tid=14222718&highlight=APP

第一步抓登陆抓包：

POST /apiv4.axd HTTP/1.1
If-Modified-Since: Tue, 28 Aug 2018 11:58:50 GMT+00:00
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
User-Agent: Dalvik/2.1.0 (Linux; U; Android 5.1.1; oppo a59m Build/LMY48Z)
Host: api.qinqinxiaodai.com
Connection: Keep-Alive
Accept-Encoding: gzip
Content-Length: 229
api=loginv2&imei=351613308550271&imsi=460004442079822&lat=31.898255&long=120.528946&mb=oppo+a59m&mv=5.1.1&pc=tencent&pwd=e10adc3949ba59abbe56e057f20f883e&sign=e38185583d8e8aca483ee3a8a85549ea&t=1535457563&uid=13812345678&v=3.0.5&

复制代码

第二步分析加密主要参数：

api	loginv2
imei	351613308550271
imsi	460004442079822
lat	31.898255
long	120.528946
mb	oppo a59m
mv	5.1.1
pc	tencent
pwd	e10adc3949ba59abbe56e057f20f883e
sign	e38185583d8e8aca483ee3a8a85549ea
t	1535457563
uid	13812345678
v	3.0.5

第三步反编译逆向找到其主要算法

sign算法分析

public Map a(Map arg3, String arg4) {
this.b(arg3, arg4);
arg3.put("sign", this.a(arg3));
return arg3;
}
------------------------------------------------------------------------------------------------------------------
public String a(Map arg8) {
String v0_2;
if(arg8 != null && arg8.size() > 0) {
Set v3 = arg8.entrySet();
Iterator v4 = v3.iterator();
StringBuffer v5 = new StringBuffer();
v5.append("QiuGaoQiShuang!Q@Q#X$D%");
int v2 = 0;
while(v2 < v3.size()) {
if(!v4.hasNext()) {
break;
}
Object v0 = v4.next();
if(v0 != null) {
try {
String v1 = this.b(((Map$Entry)v0).getValue());
arg8.put(((Map$Entry)v0).getKey(), v1);
v5.append(((Map$Entry)v0).getKey());
v5.append("=");
v5.append(v1);
}
catch(Exception v0_1) {
}
goto label_26;
}
else {
label_26:
++v2;
continue;
}
}
z.c("签名拼接字符串：" + v5.toString());
if(d.b != null) {
v0_2 = ab.b(v5.toString());
z.c("签名：" + v0_2);
return v0_2;
}
v0_2 = "";
}
else {
v0_2 = "";
}
return v0_2;
}
------------------------------------------------------------------------------------------------------------------
public static String b(String arg8) {
UnsupportedEncodingException v1_3;
int v1_2;
String v0_2;
byte[] v2;
MessageDigest v0;
try {
v0 = MessageDigest.getInstance("MD5");
}
catch(NoSuchAlgorithmException v1) {
v1.printStackTrace();
}
String v1_1 = "";
try {
v0.update(arg8.getBytes("utf-8"));
v2 = v0.digest();
int v3 = v2.length;
v0_2 = v1_1;
v1_2 = 0;
}
catch(UnsupportedEncodingException v0_1) {
UnsupportedEncodingException v7 = v0_1;
v0_2 = ((String)v1_2);
v1_3 = v7;
goto label_42;
}
while(true) {
if(v1_2 >= v3) {
return v0_2;
}
try {
String v4 = Integer.toHexString(v2[v1_2] & 255);
v0_2 = v4.length() == 1 ? v0_2 + "0" + v4 : v0_2 + v4;
}
catch(UnsupportedEncodingException v1_3) {
break;
}
++v1_2;
}
label_42:
v1_3.printStackTrace();
return v0_2;
}
------------------------------------------------------------------------------------------------------------------

复制代码

第四步算法总结

sign = MD5(v1);

ps:
v1 = "QiuGaoQiShuang!Q@Q#X$D%api=loginv2imei=356809440878555imsi=460029523691329lat=31.404185long=121.392741mb=HM NOTE 1Smv=4.4.4pc=tencentpwd=e10adc3949ba59abbe56e057f20f883et=1535459764uid=13812345678v=3.0.5"

① 其中标红为常量;
② pwd = MD5(passwd);

duanyijun · 发表于 2024-1-7 09:43:58

先拿下研究研究看着不错。

tangai17 · 发表于 2019-5-27 06:46:23

感谢分享，很给力

zhc小野 · 发表于 2018-11-14 14:27:25

谢谢分享学习了

大怪兽 · 发表于 2018-9-29 17:09:22

不错，详细点就好了，例如，怎么捉包，还有怎么个反编译!不然就成水贴

那小子很坏 · 发表于 2018-9-19 21:47:02

教程有没有

54993699 · 发表于 2018-9-11 17:05:52

你这个太简单了，分析方法呢！！！！！！！！！！！

王者祝福 · 发表于 2018-9-9 09:45:14

学习了不错

UA软件 · 发表于 2018-9-9 03:18:41

感谢分享好东西

SuperEc · 发表于 2018-9-8 10:34:05

楼主棒棒哒

		自动登录	找回密码
密码			注册

[技术专题] 亲亲小贷App sign 算法解密

评分