SIGNAL.EXE REVERSE / DECOMPILATION
Hello everyone!
Recently i have got installed signal and u have probably know it as a secure messaging app.
As any software which comin to my pc i tried to decompile it and the final result is questionable.
Firstly, i have tried to analyze it but the obfuscation level is heavy, so the result is incomplete. Despite analysis failure i still have some data in strings, probably names of functions. And the functions strange.
We can see somthin named screenshot, prob a function which making a screenshot, but the secure messaging app shouldn't acquire such functionality doesn't it?
Next is somthin related to debugger is ok, but signal strength and mac address definitely doesn't.
Also i got something related to virtualbox VM detection.
Recently i have got installed signal and u have probably know it as a secure messaging app.
As any software which comin to my pc i tried to decompile it and the final result is questionable.
Firstly, i have tried to analyze it but the obfuscation level is heavy, so the result is incomplete. Despite analysis failure i still have some data in strings, probably names of functions. And the functions strange.
We can see somthin named screenshot, prob a function which making a screenshot, but the secure messaging app shouldn't acquire such functionality doesn't it?
Next is somthin related to debugger is ok, but signal strength and mac address definitely doesn't.
Also i got something related to virtualbox VM detection.
As a quick report i unable to advise this messenger to use, in my own software i never use something similar to this, but i have only protection from debugger.
But the functions related to like debugger or screenshots is OK for apps which is running in a web engine like node element.
But signal is very strange, it doesnt like tor network and virtual machines. It demand you to use ur real phone, not virtual one.
So the security level of this messenger is fair questionable.
Comments
Post a Comment