Skip to content

CDC - 2.6.7

Warning

Aether static analyses of apps can reveal what trackers are embedded in an application. It can also reveal which permissions the application requires in order to correctly operate on your smartphone and what are operations the app could execute. A static analysis can not provide conclusive evidence whether app features listed in this report are actually used in practice.

Warning

The report lists trackers signatures found by static analysis in the APK. This is not a proof of activity of these trackers. The application could also contain tracker(s) we do not know yet.

APK details

  • Size: 21.49MB
  • MD5: 73eeea9e39a1e17a0c13bc9e402221f8
  • SHA1: e86c499fb4f27aa9869687f660ea7cd776aa7776
  • SHA256: eb97b105305f83411491fc9e7df72e031605cc5f499161a40f95fd219bafc2ae
  • UAID: 5050C4AD1D5A9C5EF0055587260AD8E7C81CF5C5
  • Package name: gov.cdc.general
  • Main activity: gov.cdc.general.MainActivity
  • Application name: CDC
  • Version name: 2.6.7
  • Version code: 267000004

Application features overview

  • The application probably makes OS calls.

  • The application probably executes OS commands.

  • The application probably lists all installed applications.

  • The application probably loads JS-capable web views.

  • The application probably plays sound.

  • The application probably gets the advertising ID for tracking purposes.

  • The application probably gets all the contacts.

  • The application probably gets the IMEI of the phone.

  • The application probably gets the location based on GPS and/or Wi-Fi.

  • The application probably gets the network connections information.

  • The application probably gets memory and CPU information.

  • The application probably reads the system settings.

  • The application probably gets different information regarding the telephony capabilities.

  • The application probably sends data over HTTP/S.

  • The application probably uses cryptography.

Certificate

Common Name: David Mihalcik, Organizational Unit: MAS, Organization: IAI, Locality: Rockville, State/Province: MD, Country: US

Permissions

  • com.htc.launcher.permission.READ_SETTINGS

  • me.everything.badger.permission.BADGE_COUNT_READ

  • android.permission.WAKE_LOCK

  • android.permission.ACCESS_NETWORK_STATE

  • com.oppo.launcher.permission.READ_SETTINGS

  • com.sonyericsson.home.permission.BROADCAST_BADGE

  • android.permission.READ_APP_BADGE

  • android.permission.VIBRATE

  • me.everything.badger.permission.BADGE_COUNT_WRITE

  • com.huawei.android.launcher.permission.WRITE_SETTINGS

  • com.htc.launcher.permission.UPDATE_SHORTCUT

  • com.sec.android.provider.badge.permission.READ

  • com.huawei.android.launcher.permission.READ_SETTINGS

  • com.google.android.c2dm.permission.RECEIVE

  • com.oppo.launcher.permission.WRITE_SETTINGS

  • com.sonymobile.home.permission.PROVIDER_INSERT_BADGE

  • com.huawei.android.launcher.permission.CHANGE_BADGE

  • com.anddoes.launcher.permission.UPDATE_COUNT

  • com.majeur.launcher.permission.UPDATE_BADGE

  • android.permission.INTERNET

  • com.sec.android.provider.badge.permission.WRITE

  • com.amazon.device.messaging.permission.RECEIVE

  • android.permission.RECEIVE_BOOT_COMPLETED

  • gov.cdc.general.permission.RECEIVE_ADM_MESSAGE

  • com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

  • android.permission.WRITE_EXTERNAL_STORAGE

Trackers

  • Demdex

  • Google Firebase Analytics

  • Pushwoosh

Detection rules

The application probably makes OS calls.

Entrypoints:

  • androidx.core.graphics.TypefaceCompatApi21Impl.createFromFontInfo()

Calls:

  • android.system.Os.readlink(String)

  • android.system.OsConstants.S_ISREG(I)

  • android.system.Os.stat(String)

The application probably executes OS commands.

Entrypoints:

  • com.pushwoosh.badge.d.a.a.i.a()

Calls:

  • java.lang.Runtime.exec(String)
The application probably lists all installed applications.

Entrypoints:

  • com.pushwoosh.internal.platform.a.b.g()

Calls:

  • android.content.pm.PackageManager.getInstalledApplications(I)
The application probably loads JS-capable web views.

Entrypoints:

  • com.pushwoosh.inapp.view.inline.f.run()

  • com.pushwoosh.inapp.view.a.f.process()

  • com.pushwoosh.inapp.view.inline.InlineInAppView.<init>()

  • com.pushwoosh.inapp.view.inline.d.process()

  • org.apache.cordova.inappbrowser.InAppBrowser$2.run()

  • com.pushwoosh.inapp.view.i.onPageFinished()

  • org.apache.cordova.inappbrowser.InAppBrowser$7.run()

  • com.pushwoosh.inapp.view.inline.g.run()

  • com.pushwoosh.inapp.view.WebActivity.onNewIntent()

  • com.pushwoosh.inapp.view.i.onPageStarted()

  • org.apache.cordova.engine.SystemWebViewEngine.init()

  • com.pushwoosh.inapp.view.inline.h.run()

  • com.adobe.mobile.MessageTargetExperienceUIFullScreen$TargetPreviewFullScreenRunner.createWebView()

  • org.apache.cordova.inappbrowser.InAppBrowser$6.run()

  • org.apache.cordova.inappbrowser.InAppBrowser$5.run()

  • com.pushwoosh.inapp.view.RemoteUrlActivity.a()

  • com.pushwoosh.inapp.view.a.b.run()

  • com.adobe.mobile.MessageFullScreen$MessageFullScreenRunner.run()

  • com.pushwoosh.inapp.view.a.c.run()

  • com.pushwoosh.inapp.view.RichMediaWebActivity.onCreate()

  • org.apache.cordova.inappbrowser.InAppBrowser$7$4.onKey()

  • com.pushwoosh.inapp.view.inline.InlineInAppView.b()

Calls:

  • android.webkit.WebView.addJavascriptInterface(Object,String)

  • android.webkit.WebSettings.setJavaScriptEnabled(Z)

  • android.webkit.WebView.loadUrl(String)

The application probably plays sound.

Entrypoints:

  • androidx.appcompat.app.AppCompatDelegateImpl$AppCompatWindowCallback.dispatchKeyEvent()

  • androidx.appcompat.app.AppCompatDelegateImpl$ListMenuDecorView.dispatchKeyEvent()

Calls:

  • android.media.AudioManager.playSoundEffect(I)
The application probably gets the advertising ID for tracking purposes.

Entrypoints:

  • com.google.android.gms.measurement.internal.zzhe.run()

  • com.google.android.gms.measurement.internal.zzgx.run()

  • com.google.android.gms.measurement.internal.zzhg.run()

  • com.google.android.gms.measurement.internal.zzkv.call()

  • com.google.android.gms.measurement.internal.zzgy.run()

  • com.google.android.gms.measurement.internal.zzgs.run()

  • com.google.android.gms.measurement.internal.zzha.run()

  • com.google.android.gms.measurement.internal.zzhs.run()

  • com.google.android.gms.measurement.internal.zzgz.call()

  • com.google.android.gms.measurement.internal.zzhc.run()

  • com.google.android.gms.measurement.internal.zzgr.run()

Calls:

  • com.google.android.gms.ads.identifier.AdvertisingIdClient.getAdvertisingIdInfo(Context)
The application probably gets all the contacts.

Entrypoints:

Calls:

  • android.provider.ContactsContract$Contacts.openContactPhotoInputStream(ContentResolver,Uri,Z)

  • android.provider.ContactsContract$Contacts.lookupContact(ContentResolver,Uri)

The application probably gets the IMEI of the phone.

Entrypoints:

  • com.pushwoosh.internal.platform.utils.a$e.a()

Calls:

  • android.telephony.TelephonyManager.getDeviceId()
The application probably gets the location based on GPS and/or Wi-Fi.

Entrypoints:

  • androidx.appcompat.app.AppCompatDelegateImpl.onStart()

  • androidx.appcompat.app.AppCompatDelegateImpl.onConfigurationChanged()

  • androidx.appcompat.app.AppCompatDelegateImpl.setLocalNightMode()

  • androidx.appcompat.app.AppCompatDelegateImpl$AutoNightModeManager$1.onReceive()

  • androidx.appcompat.app.AppCompatDelegateImpl.getAutoNightModeManager()

Calls:

  • android.location.LocationManager.getLastKnownLocation(String)
The application probably gets the network connections information.

Entrypoints:

  • com.google.android.gms.measurement.internal.zzkt.zza()

  • com.google.android.gms.measurement.internal.zzhg.run()

  • org.apache.cordova.networkinformation.NetworkManager.execute()

  • com.google.android.datatransport.runtime.scheduling.jobscheduling.Uploader$$Lambda$1.run()

  • com.google.android.gms.measurement.internal.zzkr.run()

  • com.google.android.gms.measurement.internal.zzha.run()

  • com.google.android.gms.measurement.internal.zzhe.run()

  • com.google.android.gms.measurement.internal.zzfu.run()

  • com.google.android.gms.measurement.internal.zzka.run()

  • com.google.android.gms.measurement.internal.zzfr.onReceive()

  • com.google.firebase.iid.zzba.run()

  • com.pushwoosh.a.ab.buildParams()

  • com.adobe.mobile.MobileConfig$12.onReceive()

  • com.bumptech.glide.manager.DefaultConnectivityMonitor$1.onReceive()

  • com.pushwoosh.inapp.view.b.c.a()

  • com.google.android.gms.measurement.internal.zzhs.run()

  • com.pushwoosh.internal.crash.d$1.onPostExecute()

  • com.google.android.gms.measurement.internal.zzgx.run()

  • com.google.android.gms.measurement.internal.zzku.zza()

  • com.bumptech.glide.manager.DefaultConnectivityMonitor.onStart()

  • com.google.android.gms.measurement.internal.zzkn.zza()

  • com.google.android.gms.measurement.internal.zzgy.run()

  • com.google.firebase.iid.zzbd.onReceive()

  • com.google.android.datatransport.cct.zzc.decorate()

  • androidx.core.net.ConnectivityManagerCompat.isActiveNetworkMetered()

  • org.apache.cordova.networkinformation.NetworkManager$1.onReceive()

  • com.google.android.gms.measurement.internal.zzgr.run()

  • com.pushwoosh.NetworkReceiver.onReceive()

  • androidx.core.net.ConnectivityManagerCompat.getNetworkInfoFromBroadcast()

Calls:

  • android.net.ConnectivityManager.getNetworkInfo(I)

  • android.net.ConnectivityManager.getActiveNetworkInfo()

The application probably gets memory and CPU information.

Entrypoints:

  • com.bumptech.glide.Glide.with()

  • com.bumptech.glide.manager.RequestManagerFragment.onAttach()

  • com.bumptech.glide.manager.SupportRequestManagerFragment.onAttach()

  • com.bumptech.glide.load.model.stream.MediaStoreVideoThumbLoader.buildLoadData()

  • com.bumptech.glide.load.resource.gif.ByteBufferGifDecoder.decode()

  • com.bumptech.glide.load.resource.bitmap.LazyBitmapDrawableResource.obtain()

  • com.bumptech.glide.Glide.init()

  • com.pushwoosh.inbox.ui.presentation.view.adapter.inbox.InboxViewHolder.fillView()

  • com.bumptech.glide.load.resource.gif.GifDrawableTransformation.transform()

  • com.bumptech.glide.load.resource.gif.GifDrawable.<init>()

  • com.bumptech.glide.load.resource.bitmap.DrawableTransformation.transform()

  • com.bumptech.glide.load.resource.bitmap.BitmapTransformation.transform()

  • com.bumptech.glide.load.resource.gif.ByteBufferGifDecoder.<init>()

  • com.bumptech.glide.load.resource.bitmap.VideoBitmapDecoder.<init>()

  • com.bumptech.glide.load.model.stream.MediaStoreImageThumbLoader.buildLoadData()

  • com.bumptech.glide.load.engine.executor.GlideExecutor.newSourceExecutor()

Calls:

  • java.lang.Runtime.availableProcessors()
The application probably reads the system settings.

Entrypoints:

  • com.google.android.gms.measurement.internal.zzhe.run()

  • com.google.android.gms.measurement.internal.zzgx.run()

  • androidx.media.MediaSessionManagerImplApi21.isTrustedForMediaControl()

  • com.google.android.gms.measurement.internal.zzhg.run()

  • io.ionic.links.IonicDeeplink.execute()

  • com.google.android.gms.measurement.internal.zzgy.run()

  • com.google.android.gms.measurement.internal.zzgr.run()

  • com.google.android.gms.measurement.internal.zzha.run()

  • androidx.core.app.NotificationManagerCompat$SideChannelManager.handleMessage()

  • com.pushwoosh.internal.platform.a.b.c()

  • org.apache.cordova.device.Device.initialize()

Calls:

  • android.provider.Settings$Secure.getString(ContentResolver,String)
The application probably gets different information regarding the telephony capabilities.

Entrypoints:

  • com.adobe.mobile.Config$13.run()

  • com.adobe.mobile.Analytics$1.run()

  • com.adobe.mobile.Message.viewed()

  • com.adobe.mobile.Message.clickedThrough()

  • com.adobe.mobile.Analytics$3.run()

  • com.adobe.mobile.AnalyticsTrackCoordinateSpace.trackCoordinateSpace()

  • com.adobe.mobile.Analytics$6.run()

  • com.adobe.mobile.Media$7.run()

  • com.pushwoosh.a.ab.buildParams()

  • com.adobe.mobile.Config$10.run()

  • com.adobe.mobile.AnalyticsTrackTimedAction$1.run()

  • com.adobe.mobile.Config$11.run()

  • com.adobe.mobile.TargetWorker$TargetBatchRunner.run()

  • com.adobe.mobile.Media$4.run()

  • com.adobe.mobile.Media$5.run()

  • com.adobe.mobile.Media$1.run()

  • com.adobe.mobile.Media$6.run()

  • com.adobe.mobile.Analytics$2.run()

  • com.adobe.mobile.Analytics$4.run()

  • com.adobe.mobile.Media$3.run()

  • com.adobe.mobile.Config$9.run()

  • com.adobe.mobile.Message.messageTriggered()

  • com.adobe.mobile.Config$6.run()

  • com.adobe.mobile.MediaItem$MonitorThread$1.run()

  • com.adobe.mobile.Media$2.run()

Calls:

  • android.telephony.TelephonyManager.getNetworkOperatorName()

  • android.telephony.TelephonyManager.getPhoneType()

  • android.telephony.TelephonyManager.getNetworkOperator()

  • android.telephony.TelephonyManager.getSimOperatorName()

  • android.telephony.TelephonyManager.getSimCountryIso()

  • android.telephony.TelephonyManager.getSimOperator()

  • android.telephony.TelephonyManager.getNetworkType()

The application probably sends data over HTTP/S.

Entrypoints:

  • com.adobe.mobile.Config$13.run()

  • com.google.android.datatransport.cct.zza.apply()

  • com.adobe.mobile.Analytics$1.run()

  • com.adobe.mobile.Message.viewed()

  • com.adobe.mobile.WearableDataRequest$Get.handle()

  • com.adobe.mobile.Message.clickedThrough()

  • com.adobe.mobile.Analytics$3.run()

  • com.adobe.mobile.MessageTargetExperienceUIFullScreen$TargetPreviewExperienceUIWebviewClient.shouldOverrideUrlLoading()

  • com.adobe.mobile.AnalyticsTrackCoordinateSpace.trackCoordinateSpace()

  • com.google.firebase.installations.FirebaseInstallations$$Lambda$1.run()

  • com.adobe.mobile.AnalyticsWorker$1.run()

  • com.adobe.mobile.VisitorIDService$2.run()

  • com.pushwoosh.internal.crash.d$2.doInBackground()

  • com.adobe.mobile.Analytics$6.run()

  • com.adobe.mobile.Media$7.run()

  • com.adobe.mobile.AnalyticsWorker$1$1.run()

  • com.adobe.mobile.Config$10.run()

  • com.adobe.mobile.AnalyticsTrackTimedAction$1.run()

  • com.adobe.mobile.Config$11.run()

  • com.adobe.mobile.TargetWorker$TargetBatchRunner.run()

  • com.adobe.mobile.WearableDataRequest$Post.handle()

  • com.adobe.mobile.AudienceManagerWorker$SubmitSignalTask.run()

  • com.adobe.mobile.Media$4.run()

  • org.apache.cordova.inappbrowser.InAppBrowser$1.run()

  • com.pushwoosh.internal.network.f.run()

  • com.adobe.mobile.Media$5.run()

  • com.adobe.mobile.Media$1.run()

  • com.adobe.mobile.TargetPreviewManager$2.run()

  • com.adobe.mobile.Media$6.run()

  • com.pushwoosh.internal.network.e.sendRequestSync()

  • com.adobe.mobile.Analytics$2.run()

  • com.adobe.mobile.Analytics$4.run()

  • org.apache.cordova.CordovaWebViewImpl$EngineClient.onNavigationAttempt()

  • com.adobe.mobile.TargetWorker$TargetPrefetchRunner.run()

  • com.adobe.mobile.Media$3.run()

  • com.adobe.mobile.Config$9.run()

  • com.adobe.mobile.WearableDataRequest$ThirdPartyRequest.handle()

  • com.adobe.mobile.Message.messageTriggered()

  • com.adobe.mobile.Config$6.run()

  • com.adobe.mobile.MediaItem$MonitorThread$1.run()

  • com.adobe.mobile.RemoteDownload$DownloadFileTask.run()

  • com.adobe.ADBMobile_PhoneGap$27.run()

  • com.google.firebase.installations.FirebaseInstallations$$Lambda$4.call()

  • com.adobe.mobile.Media$2.run()

  • com.google.firebase.installations.FirebaseInstallations$$Lambda$3.run()

  • com.google.firebase.installations.FirebaseInstallations$$Lambda$2.run()

  • com.adobe.mobile.TargetWorker$TargetClickNotification.run()

  • com.adobe.mobile.AudienceManagerWorker$5.run()

  • com.adobe.mobile.Analytics$10.run()

  • com.adobe.mobile.ThirdPartyQueue$1.run()

  • com.adobe.mobile.MessageAlert$MessageShower$PositiveClickHandler.onClick()

Calls:

  • java.net.HttpURLConnection.setRequestProperty(String,String)

  • java.net.HttpURLConnection.setRequestMethod(String)

The application probably uses cryptography.

Entrypoints:

  • com.pushwoosh.a.ab.buildParams()

Calls:

  • javax.crypto.Cipher.init(I,Key)

  • javax.crypto.Cipher.doFinal([B)

  • javax.crypto.Cipher.getInstance(String)

  • javax.crypto.Cipher.init(I,Key,AlgorithmParameterSpec)

Domains

  • goo.gl

  • cp.pushwoosh.com

  • hal.testandtarget.omniture.com

  • cdc-general.firebaseio.com

  • sdk.hockeyapp.net

  • s.api.pushwoosh.com

  • go.pushwoosh.com