API tools faq
paste
Advertisement
enderphan

TronLinkWalletPOC2

enderphan
May 3rd, 2019
4,839
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 4.46 KB | None | 0 0
raw download clone embed print report
  1. # Exploit Title: TronLink Wallet-TRON blockchain wallet - Credential Disclosure
  2. # Date: 2019-04-25
  3. # Software Link: https://play.google.com/store/apps/details?id=com.tronlink.wallet&hl=en
  4. # Version: 2.2.0 Android App
  5. # Vendor: Medha Apps
  6. # Exploit Author: Loc Phan Van
  7. # CVE: N/A
  8. # Category: Mobile Apps
  9. # Tested on: Android 8.1
  10.  
  11. # Description
  12. # TronLink Wallet 2.2.0 stores user wallet keystore in plaintext and places them in insecure storage /data/data/com.tronlink.wallet/shared_prefs/<wallet-name>.xml. An attacker can read and reuse other users keystore to gain the access.
  13.  
  14. # PoC
  15.  
  16. <?xml version='1.0' encoding='utf-8' standalone='yes' ?>
  17. <map>
  18. <long name="create_time_key" value="0" />
  19. <int name="mnemonic_length&gt;" value="0" />
  20. <string name="wallet_address_key">TYsgBWPut4gbB8X4NQJ9TPJ8xxxxxxx</string>
  21. <long name="bandwidth_key" value="0" />
  22. <string name="wallet_name_key">enderphan</string>
  23. <boolean name="is_cold_wallet_key" value="false" />
  24. <string name="name_key"></string>
  25. <string name="assets_v2_key">{}</string>
  26. <long name="energy_used_key" value="0" />
  27. <long name="net_free_limit_key" value="0" />
  28. <long name="balance_key" value="0" />
  29. <long name="wallet_createtime_key" value="1556158195185" />
  30. <long name="freeze_bandwidth_key" value="0" />
  31. <long name="energy_limit_key" value="0" />
  32. <long name="total_energy_limit_key" value="0" />
  33. <long name="latest_operation_time_key" value="0" />
  34. <long name="freeze_energy_key" value="0" />
  35. <string name="assets_key">{}</string>
  36. <long name="total_energy_weight_key" value="0" />
  37. <string name="wallet_keystore_key">{&quot;address&quot;:&quot;41fb3f160ac35e8d278861539ff2af97e843fb4a46&quot;,&quot;crypto&quot;:{&quot;cipher&quot;:&quot;aes-128-ctr&quot;,&quot;cipherparams&quot;:{&quot;iv&quot;:&quot;780e8262613ba44e175cbbfd66b78c15&quot;},&quot;ciphertext&quot;:&quot;xxxxxxxxxx42e6f2e4ec353bd4193c2fe321b54e0bfc2dbc318284xxxxxxxxxx&quot;,&quot;kdf&quot;:&quot;scrypt&quot;,&quot;kdfparams&quot;:{&quot;dklen&quot;:32,&quot;n&quot;:65536,&quot;p&quot;:1,&quot;r&quot;:8,&quot;salt&quot;:&quot;38f685c5a79409cf6d0e000e2a0f4329e2599c94101ed701bfcc3cd6f5c61b50&quot;},&quot;mac&quot;:&quot;xxxxxxxxxxx12e4a15f43089ef15f38854f1ea12f2ed3871c41eb13xxxxxxxxxx&quot;},&quot;id&quot;:&quot;ea0701e7-c3b8-4f88-8a73-aa26f58e0736&quot;,&quot;version&quot;:3}</string>
  38. <int name="wallet_color_key" value="-1" />
  39. <string name="pwd_key">c27f25d1ad5bb75282996axxxxxxxxxx</string>
  40. <long name="net_free_used_key" value="0" />
  41. <int name="wallet_createtype_key" value="0" />
  42. <long name="energytime_key" value="0" />
  43. <long name="net_used_key" value="0" />
  44. <long name="total_net_limit_key" value="0" />
  45. <string name="frozen_key">{}</string>
  46. <string name="wallet_icon_key">six</string>
  47. <string name="pub_key">xxxxxxxxxx8a56794f793cef4789d1d4b26a971eb3c82b4980ced3625535afdf80a3a7e295e19cbc82b4d77937ebb2fe324ee1faa09012518c04dc4ff4a9c03718</string>
  48. <string name="votes_key">{}</string>
  49. <long name="total_net_weight_key" value="0" />
  50. <boolean name="set_hasaccount_key" value="true" />
  51. <boolean name="is_watch_only_setup_key" value="false" />
  52. <string name="address_key">3QJmnh</string>
  53. <long name="delegated_frozen_balance_for_bandwidth_key" value="0" />
  54. <long name="delegated_frozen_balance_for_energy_key" value="0" />
  55. <boolean name="backup_key" value="false" />
  56. <long name="net_limit_key" value="0" />
  57. <string name="wallet_newmnemonic_key">{&quot;address&quot;:&quot;41fb3f160ac35e8d278861539ff2af97e843fb4a46&quot;,&quot;crypto&quot;:{&quot;cipher&quot;:&quot;aes-128-ctr&quot;,&quot;cipherparams&quot;:{&quot;iv&quot;:&quot;2a2b7ad79a9b09930538886acebd519a&quot;},&quot;ciphertext&quot;:&quot;xxxxxxxxxxx4e910adc371b0b9d6328d886563841edc80540df090a0940fbe7a0ff1e428c098xxxxxxxxxxx7f6a5afc637577f424b53927ae749179528c046c12baedcaed4d681211f12bc31&quot;,&quot;kdf&quot;:&quot;scrypt&quot;,&quot;kdfparams&quot;:{&quot;dklen&quot;:76,&quot;n&quot;:65536,&quot;p&quot;:1,&quot;r&quot;:8,&quot;salt&quot;:&quot;224f092265a4843e16a1571781800d89d094f917f2e2a6bbcf62766223e7c4875072e7b7eef1640d1ba439e9b278d7fa41e037506f372a500bc9f326d604c2a0635ed961f9146exxxxxxxxxx&quot;},&quot;mac&quot;:&quot;8a47c6b78c46bd57d889731a9047bd7cdbe33ef24c9f1b67273e5122f5b0b559&quot;},&quot;id&quot;:&quot;d02c080a-032f-4a15-90b3-e9384bd4f2a0&quot;,&quot;version&quot;:3}</string>
  58. <long name="energy_key" value="0" />
  59. </map>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!