From f9c434c975cf603210c80258a99b46a42e5ff875 Mon Sep 17 00:00:00 2001 From: admin Date: Thu, 7 Nov 2024 09:06:11 +0000 Subject: [PATCH] =?UTF-8?q?update=20209=5F=E6=8B=BC=E5=A4=9A=E5=A4=9A=5F20?= =?UTF-8?q?240809=20meta.json=20and=20signature.json?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- applications/209_拼多多_20240809/meta.json | 18 +- .../209_拼多多_20240809/signature.json | 254 +++++++++++++++++- 2 files changed, 261 insertions(+), 11 deletions(-) diff --git a/applications/209_拼多多_20240809/meta.json b/applications/209_拼多多_20240809/meta.json index 117961f..b65d47a 100644 --- a/applications/209_拼多多_20240809/meta.json +++ b/applications/209_拼多多_20240809/meta.json @@ -1,18 +1,18 @@ { - "id": "10111822-9770-4145-b874-af89d964ba1c", + "id": "00907836-f476-d3c0-982a-dd6595e02a69", "name": "209_拼多多_20240809", "longName": "209_拼多多_20240809", - "developer": "", - "website": "", + "developer": "上海寻梦信息技术有限公司", + "website": "https://m.pinduoduo.com/", "packageName": { - "android": "", - "ios": "" + "android": "com.xunmeng.pinduoduo", + "ios": "com.xunmeng.pinduoduo" }, "properties": { - "category": "", - "subcategory": "", + "category": "general-internet", + "subcategory": "internet-utility", "content": "unknown", - "parentApp": "", - "risk": 1 + "risk": 1, + "characteristics": "" } } \ No newline at end of file diff --git a/applications/209_拼多多_20240809/signature.json b/applications/209_拼多多_20240809/signature.json index 1107258..985326d 100644 --- a/applications/209_拼多多_20240809/signature.json +++ b/applications/209_拼多多_20240809/signature.json @@ -1,3 +1,253 @@ { - "surrogates": [] -} + "surrogates": [ + { + "name": "surrogate_1", + "description": "", + "signatures": [ + { + "name": "209_拼多多_fqdn_20240809", + "description": "", + "conditions": [ + { + "attributeType": "string", + "description": "", + "attributeName": "common.server_fqdn", + "negate_option": false, + "items": [ + { + "item": "$funimg-1.pddpic.com", + "description": "" + }, + { + "item": "$th-b.pinduoduo.com", + "description": "" + }, + { + "item": "$dl.pddpic.com", + "description": "" + }, + { + "item": "$mcdn.yangkeduo.com", + "description": "" + }, + { + "item": "$avatar3-1.pddpic.com", + "description": "" + }, + { + "item": "$ccdn.pddpic.com", + "description": "" + }, + { + "item": "*.pddpic.com", + "description": "" + }, + { + "item": "$img-3.pddpic.com", + "description": "" + }, + { + "item": "$video4-x.pddpic.com", + "description": "" + }, + { + "item": "$review-2.pddpic.com", + "description": "" + }, + { + "item": "$commimg-2.pddpic.com", + "description": "" + }, + { + "item": "$th.pinduoduo.com", + "description": "" + }, + { + "item": "$img-2.pddpic.com", + "description": "" + }, + { + "item": "$cdn.pinduoduo.com", + "description": "" + }, + { + "item": "$meta.pinduoduo.com", + "description": "" + }, + { + "item": "$video4-p.pddpic.com", + "description": "" + }, + { + "item": "$cdn.yangkeduo.com", + "description": "" + }, + { + "item": "$img.pddpic.com", + "description": "" + }, + { + "item": "$th-a.pinduoduo.com", + "description": "" + }, + { + "item": "$cd.pddpic.com", + "description": "" + }, + { + "item": "*.pinduoduo.net", + "description": "" + }, + { + "item": "$video-snapshot.pddpic.com", + "description": "" + }, + { + "item": "$img-1.pddpic.com", + "description": "" + }, + { + "item": "$meta-shb1.pinduoduo.com", + "description": "" + }, + { + "item": "$promotion-3.pddpic.com", + "description": "" + }, + { + "item": "$pfile.pddpic.com", + "description": "" + }, + { + "item": "$ta.pinduoduo.com", + "description": "" + }, + { + "item": "$pinduoduoimg.yangkeduo.com", + "description": "" + }, + { + "item": "$live-adapt.pddpic.com", + "description": "" + }, + { + "item": "$commimg.pddpic.com", + "description": "" + }, + { + "item": "$commimg-1.pddpic.com", + "description": "" + }, + { + "item": "$img-4.pddpic.com", + "description": "" + }, + { + "item": "$static.pddpic.com", + "description": "" + }, + { + "item": "$api.pinduoduo.com", + "description": "" + }, + { + "item": "*.pinduoduo.com", + "description": "" + }, + { + "item": "$video4-e.pddpic.com", + "description": "" + }, + { + "item": "$avatar3-2.pddpic.com", + "description": "" + }, + { + "item": "$video4-2.pddugc.com", + "description": "" + }, + { + "item": "$api-shb1.pinduoduo.com", + "description": "" + }, + { + "item": "$images-2.pinduoduo.com", + "description": "" + }, + { + "item": "$apm-a.pinduoduo.com", + "description": "" + }, + { + "item": "$live04-adapt.pddpic.com", + "description": "" + }, + { + "item": "*.pddugc.com", + "description": "" + }, + { + "item": "$live-adapt.pddugc.com", + "description": "" + }, + { + "item": "$funimg-2.pddpic.com", + "description": "" + }, + { + "item": "$cdl.pddpic.com", + "description": "" + }, + { + "item": "$video4-5.pddpic.com", + "description": "" + }, + { + "item": "$abtk.pinduoduo.com", + "description": "" + }, + { + "item": "$ta-a.pinduoduo.com", + "description": "" + }, + { + "item": "$apm.pinduoduo.com", + "description": "" + }, + { + "item": "$m.pinduoduo.net", + "description": "" + } + ] + } + ] + } + ] + }, + { + "name": "surrogate_2", + "description": "", + "signatures": [ + { + "name": "209_拼多多_tcppayload_20240809", + "description": "", + "conditions": [ + { + "attributeType": "string", + "description": "", + "attributeName": "tcp.payload.c2s_first_data", + "negate_option": false, + "items": [ + { + "exprType": "and", + "item": "(offset=16,depth=40)0801120d746974616e2e73657373696f6e18012001280132", + "description": "" + } + ] + } + ] + } + ] + } + ] +} \ No newline at end of file