Yes, you can't compare the APK's directly, but you can extract them and compare the contents (sorry, I wasn't clear on this).
Programs like fdupes can help with situations like this, but in the case of an APK file, the easiest approach might be to just compare the classes.dex: s...@sean-pc:~$ md5sum ApkFromMarket/classes.dex 8086d123bc153d538e629360b3e98cc8 ApkFromMarket/classes.dex s...@sean-pc:~$ md5sum AppFromSource/classes.dex 8086d123bc153d538e629360b3e98cc8 ApkFromSource/classes.dex Probably not the most elegant solution, but I've found it effective in the past... On Mon, Jun 1, 2009 at 3:05 PM, Disconnect <[email protected]> wrote: > > MD5 isn't going to match - apks are zips (so differences such as file > times) and they are signed (no, upstream authors aren't going to > provide their signing keys.) > > On Mon, Jun 1, 2009 at 10:03 AM, Sean Hodges > <[email protected]> wrote: >> >> Are the apps you downloaded open source? If so take a look at the >> source code, and do an MD5 compare from the APK on your phone against >> the one generated by the upstream source, that should give you an idea >> if you have a legitimate version of the app downloaded from the >> market. >> >> If they are closed, perhaps you could run them individually in the >> emulator, and see if you can replicate the suspicious activity... The >> effort put in will put your mind at rest, and perhaps confirm whether >> your hunch was correct. >> >> Not sure what else to suggest at this point, I haven't heard of this >> issue from anyone else so far. >> >> >> On Mon, Jun 1, 2009 at 2:49 PM, [email protected] >> <[email protected]> wrote: >>> >>> Not going to incriminate another dev - I could be wrong about this ... >>> >>> But I'm still locked out of my phone. >>> >>> >>> On Jun 1, 2:48 pm, Incognito <[email protected]> wrote: >>>> No way of knowing unless you share the apps you installed. >>>> >>>> On Jun 1, 2009, at 9:43 AM, "[email protected]" >>>> <[email protected]> wrote: >>>> >>>> I installed a couple of apps today - I won't say which ones in case my >>>> hunch is wrong. >>>> >>>> The security password screen just came up which I never switched this >>>> option on except once about 3 months ago. I couldn't remember the >>>> pattern so I got locked out. >>>> >>>> It then prompted me for Google username and password which I possibly >>>> foolishly gave out and now my phone still won't properly unlock. >>>> >>>> I am suspicious because the screen unlocking pattern software didn't >>>> seem to work very well (missed my finger gestures a lot) and then even >>>> when I gave the correct password I was and am still locked out. Also >>>> now it won't show the screen unlock pattern screen again even after >>>> resetting the unlock pattern to something new. >>>> >>>> Of course I have changed my email password straight away via my PC and >>>> there was no activity I could see on my mail account. >>>> >>>> But what do you guys think - have I just been hacked? And how do I get >>>> back into my phone? >>> > >>> >> >> > >> > > > > --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Android Discuss" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/android-discuss?hl=en -~----------~----~----~----~------~----~------~--~---
