HiddenCore Module - what was it doing

flamery · Feb 24, 2019

Found this module, although it didn't look too legit, I thought if it does what it really says it does then it would be very useful (bypass safetynet, disable all root detection, selinux, bypass signature verification etc) so i installed it.

Anyway now I see its been removed from the repository. I'm guessing it was not legit after all, anyway other than decompiling the apk file to see what it was doing, is there anyway to find out why it was removed and what potential damage/data has been done to my device?

Edit, the link: https://repo.xposed.info/module/com.cofface.invader

Mysticblaze347 · Feb 26, 2019

I was wondering this as well. I had and it was gone. Have yet to find another one that allows full safteynet pass. Wonder why it was removed

flamery · Feb 26, 2019

Mysticblaze347 said:
I was wondering this as well. I had and it was gone. Have yet to find another one that allows full safteynet pass. Wonder why it was removed

I suspect it wasn't actually doing anything it claimed to do. I noticed my screen was staying on for some reason, then I realised it was caused by that app. I was a bit concerned it was actually a RAT or some malware sending off all my private data somewhere.

If I get time this weekend I might try decompile it and have a look I still have the apk file, have just disabled it in xposed.

wilsonhlacerda · Feb 27, 2019

flamery said:
I suspect it wasn't actually doing anything it claimed to do. I noticed my screen was staying on for some reason, then I realised it was caused by that app. I was a bit concerned it was actually a RAT or some malware sending off all my private data somewhere.

If I get time this weekend I might try decompile it and have a look I still have the apk file, have just disabled it in xposed.

This tool probably can help:

https://xdaforums.com/xposed/release-deckard-static-dynamic-xposed-t3901260

But it would be interesting to know the reason from who removed it from the repository.

On XDA Labs App xposed section it is listed yet an has some positive feedbacks (fake?)

MujurID · Feb 27, 2019

Please share the .apk . I will download

flamery · Feb 27, 2019

MujurID said:
Please share the .apk . I will download

http://s000.tinyupload.com/index.php?file_id=87363607404956427585

Mysticblaze347 · Feb 27, 2019

flamery said:
I suspect it wasn't actually doing anything it claimed to do. I noticed my screen was staying on for some reason, then I realised it was caused by that app. I was a bit concerned it was actually a RAT or some malware sending off all my private data somewhere.

If I get time this weekend I might try decompile it and have a look I still have the apk file, have just disabled it in xposed.

I noticed my screen not auto shutting off either unless in gallery r something, but not main screen. Did seem like phone got a lil sluggish as well.

I extracted the app and noticed that sdk says 22 when I need 24 lol. Can't re-apk app tho. Zip and renaming don't cut it.

This app seemed to being doing what it intended from what I seen. Magisk fully passed safteynet. Basic integrity mainly. Cts is already green on my end from no device check module. This does both green check marks.

lahceneamine · Mar 1, 2019

flamery said:
I suspect it wasn't actually doing anything it claimed to do. I noticed my screen was staying on for some reason, then I realised it was caused by that app. I was a bit concerned it was actually a RAT or some malware sending off all my private data somewhere.

If I get time this weekend I might try decompile it and have a look I still have the apk file, have just disabled it in xposed.

It was working until I updated to the latest riru v15 and edxposed.
Without it my banking app isn't working anymore (detects xposed, root,.. Etc).

2777 · Mar 2, 2019

Thanks, it work, if anybody detect lost money from you card, please, tell me, I will off this danger module

Chocolatetrain · Mar 4, 2019

Did anyone find out if it's doing anything malicious?

WowkaZ · Mar 4, 2019

NetGuard shows, that HiddenCore Module has no internet connection.
P.S. My version of HiddenCore is 1.3 - and the screen goes asleep after 2 min (the fault with screen always on is since version 1.5).

Fevves · Mar 4, 2019

and where to find this ver. 1.3, about and changelog?

MrRobotAptoide · Mar 5, 2019

Chocolatetrain said:
Did anyone find out if it's doing anything malicious?

Nope...

2777 · Mar 5, 2019

pls, give url to download version 1.3

WowkaZ · Mar 5, 2019

Here ist the version 1.3 of HiddenCore Module.

Fevves · Mar 5, 2019

WowkaZ said:
Here ist the version 1.3 of HiddenCore Module.

Do you, perhaps, have any kind of changelog etc for the module?

Thanks.

WowkaZ · Mar 5, 2019

No. But I maybe can upload the version 1.5, tomorrow.
Would it help?

Fevves · Mar 5, 2019

WowkaZ said:
No. But I maybe can upload the version 1.5, tomorrow.
Would it help?

Not actually if there's no way to see the changelog or understand correctly how this module does what it's supposed and should do.
Thanks for the assist.

2777 · Mar 6, 2019

is version 1.7, is there any way to make the screen according to the Gus settings, and not constantly burning with this module?

lahceneamine · Mar 7, 2019

2777 said:
is version 1.7, is there any way to make the screen according to the Gus settings, and not constantly burning with this module?

Version 1.7 ? Where ?

HiddenCore Module - what was it doing

Senior Member

Senior Member

Senior Member

Senior Member

New member

Senior Member

Senior Member

Senior Member

New member

Senior Member

Member

Senior Member

New member

New member

Member

Senior Member

Member

Senior Member

New member

Senior Member

Similar threads

Top Liked Posts