QQ协议分析三

发送:

02

1A 35

00 E3

4A C2

10 73 a1 f6

02 00 00 00 01 01 01 00 00 64 00

00 38

00DD_Token3

C7 F7 24 5D B9 4F 7F D9 B9 B5 E1 18 92 49 AE 74 81 B0 0D 26 87 36 BC D5 7B A2 1D 87 D5 59 6B 9C CD BB A7 F7 F8 60 D2 69 DA 3B 38 12 1C A0 D9 B1 66 AB 2C A7 63 4F 72 41

密文:

80 B3 D8 48 A5 C8 0D C6 22 4A 25 A0 D1 3B 46 B1 4A 4B 4B 61 4F 35 C7 68 BD FD 5E 94 88 06 C4 68 44 C3 EA BA CA 40 2F 5D F5 DB 2E 76 DB 5D DA 89 74 53 33 7E 75 40 93 15 2A 11 06 5D BB 5F B1 A2 6B CD 19 9D B6 BC 6F 1E 01 0A 5F 6C AC 5E B5 70 ED 48 7B F3 BD C7 56 79 29 83 7C 55 DD AC 13 D6 1E 17 71 95 C1 3D FA 01 AC 47 B4 03 B8 BE FE 6D 13 EE F8 5C F7 AD 39 7D B8 A7 71 F8 E8 B8 6D 4B 13 A6 38 C3 CD D5 81 BC 3C AC D1 9C 2C 91 17 BD AF 5C FF 78 14 32 EC 0C 5C 21 56 05 8E 86 51 9E 75 0D BB 1D 83 46 51 4D 65 B2 BE 22 0B 36 87 41 AC E8 7C 07 96 B6 FC 7A 68 F9 CB 33 B4 98 26 48 28 A1 53 79 69 19 E7 5C BE ED 1F E0 C2 F9 50 7C 63 3E D4 D7 83 B1 EF D0 B7 A2 F2 E5 A1 27 D1 8C 84 21 D2 3E 34 6C 36 D7 36 AA 1C B8 AC 5F 98 85

包尾: 03

解密:

00DD_Key1:4D 39 42 58 73 6A 52 54 4B 59 57 76 7A 52 66 55

 

固定:00 C0 00 01

0091Data1 00 00 08 04 01 E0

0091Data2 00 00 03 20 00 00 00 01 00 00 0A 5D

00 38

00BA_Token:

EB 8F F6 B1 2E F0 E0 8C 9A 03 0F D0 65 36 CC 44 5D F8 CC CF 3C 37 25 D1 E3 CE 78 F0 BA C3 37 52 14 19 A0 FC EB 3B 4A A8 37 F2 0F 98 F8 CB 39 83 49 EA 6B F0 BE 12 7A 60

固定:00 70 00 01

登录时间:4B E2 CF 4E

长度:00 68

00E5_Token2:

5D A4 B3 65 D1 7F 5B 94 F8 9D 6D 0A 8E ED A4 C9 CC 81 3F DC 9C 63 A3 5D A9 45 D0 76 43 09 34 95 86 19 1C DE DA 8C A6 B9 BC E9 EE 2A 56 8E C0 D6 23 5C E5 87 EE 95 10 A9 6D 24 DF 0F 09 4C 51 13 1C 07 57 A6 A0 BE E6 23 29 5F D8 E6 D6 43 38 14 D8 78 79 EF 70 29 AB B6 87 F5 9F 6F 2C 71 1E B0 F0 EF 68 A0 A4 C3 CE DC

固定:00 00

长度:00 20

数据:00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

 

 

接收:

02

1A 35

00 E3

4A C2

10 73 a1 f6

00 00 00

密文:

DF B2 D0 D7 11 EF 6A 9D AC 74 E9 D3 0B 11 33 11 D9 16 14 17 8A 1A 1E 72 E2 EC 24 1A 3A C2 F8 85 7B 71 0F 9C D3 3D 69 AB

包尾: 03

 

解密:

00E5_Key2:41 44 54 33 6E 67 38 34 38 4E 61 65 76 6E 6B 79

固定(QQ 号不同则不同):00 13 00 00 0E 02 4F

昵称长度:06

昵称(UTF-8 编码):71 77 65 71 77 65

结果码:01

固定:00 80 00 00 00 00 00 00

 

如果发生错误,那么需要用发送包中的加密密钥进行解密,解密结果主要是

00 56 33 00 00 02 23 00 00 00 00

错误信息长度:00 4B

错误信息:(UTF8 编码)

E6 8A B1 E6 AD 89 EF BC 8C E7 94 B1 E4 BA 8E E6 82 A8 E8 BE 83 E9 95 BF E6 97 B6 E9 97 B4 E6 B2 A1 E6 9C 89 E7 99 BB E5 BD 95 EF BC 8C E6 82 A8 E9 9C 80 E8 A6 81 E9 87 8D E6 96 B0 E8 BE 93 E5 85 A5 E5 AF 86 E7 A0 81 E3 80 82

抱歉,由于您较长时间没有登录,您需要重新输入密码。

固定:00 00

 

0x00A4

发送:

02

1A 35

00 A4

77 0C

10 73 a1 f6

02 00 00 00 01 01 01 00 00 64 00

00 38

00DD_Token3

C7 F7 24 5D B9 4F 7F D9 B9 B5 E1 18 92 49 AE 74 81 B0 0D 26 87 36 BC D5 7B A2 1D 87 D5 59 6B 9C CD BB A7 F7 F8 60 D2 69 DA 3B 38 12 1C A0 D9 B1 66 AB 2C A7 63 4F 72 41

密文:

82 E7 0C 7C 55 47 1B 67 98 05 07 2D 7B DB 50 4E 8F FD EF 12 47 72 AA 0C 62 02 E3 EB F2 83 80 A5 C9 6D F5 FD C8 82 17 66 9A 57 73 51 65 02 BB D0 DB EE C1 C1 1B 11 83 42 30 15 90 D0 8E 6E E0 12 A8 C3 47 78 9D A7 46 E5 88 15 A7 0B 8A F2 4B 21 91 7E E4 B6 26 69 F2 D6 29 2B CC 5C EE F7 64 18 F1 72 61 0D B2 86 0D 3C 49 76 95 95 CD 48 D7 15

包尾: 03

解密:

00DD_Key1:4D 39 42 58 73 6A 52 54 4B 59 57 76 7A 52 66 55

 

固定:02 01 03

令牌长度:00 20

00DD_Token1:

15 46 65 1D 28 A7 C6 B1 A7 29 B8 82 FB 3E 8C D3 15 32 E6 4D B8 E5 BC D6 65 97 31 2E 5A BE 9C B2

固定:

3C 01 03 00 00

不知道(QQ 号不同则不同,同一QQ 号则相同):

FB 6C 28 17 B5 73 83 61 27 80 65 5A 3D 3B 17 6F A7 94 70 C5 83 C3 C0 07 D9 AA E2 20 A0 8F 44 9D CF FF 3D D9 1C 6C 23 15 1B C3 B5 91 60 79 6C D8 3F D3 C3 E3 0A B9 AB C2

 

 

接收:

02

1A 35

00 A4

77 0C

10 73 a1 f6

00 00 00

密文:

64 DE 6F 7B 19 59 6E 46 30 20 EA 34 E3 48 44 03 B9 96 79 C5 F2 FB 35 A7 EC CA 3B 57 1F BB 64 36

03

解密:

00DD_Key1:4D 39 42 58 73 6A 52 54 4B 59 57 76 7A 52 66 55

固定:

02 00 01 03

02 03 01 03 00

长度:10

00A4_Key (同一QQ 号则相同):B8 89 57 90 73 0C 94 47 85 5A 6B 13 D4 20 DE 52

 

 

如果发送的数据包中的红色部分改成560 发送出去,则接受到的数据包解密之后,结果是 02 03 01 03 00

,从这个情况来看,是通过了的,需要测试0030 看能不能顺利得到sessionkey

(经过验证,红色部分全部填写成0,也能通过。)

0x0030

发送:

02

1A 35

00 30

23 9F

10 73 a1 f6

02 00 00 00 01 01 01 00 00 64 00

00 38

00DD_Token3

C7 F7 24 5D B9 4F 7F D9 B9 B5 E1 18 92 49 AE 74 81 B0 0D 26 87 36 BC D5 7B A2 1D 87 D5 59 6B 9C CD BB A7 F7 F8 60 D2 69 DA 3B 38 12 1C A0 D9 B1 66 AB 2C A7 63 4F 72 41

密文:

02 46 4F 3C F9 6C ED 12 0F 9B 6F 3C 73 A7 BE 66 BE 03 8B 94 7E 46 64 7C E2 E7 CD EA 74 AF 6C BB DA 21 22 F2 F8 C6 09 4C 1A EB 9C 93 6F 38 52 68 46 99 51 6C 42 8E 2D FB FF 00 ED 41 B3 B0 7E 0F F1 C8 C6 69 7A 86 DF BA 46 04 49 DF F0 65 5D 53 9F B5 11 C6 60 B0 1F BB A1 A8 80 58 A3 9F 8E 83 30 AE 70 54 E3 89 21 5C A3 10 BE 0B 23 C7 F4 5D 55 80 21 08 75 24 DE 89 ED 95 D9 B9 AE 25 7E 01 92 F9 E2 AF 93 E8 71 05 46 3E BD EA 75 95 84 15 73 BF 80 1C C9 94 3B 48 6B 74 77 54 79 1A A0 B3 A5 35 A6 6C 6A 4E 81 43 99 A3 B8 46 B5 12 C7 45 4B AA CD 40 DD E9 78 11 69 EB BD FB 31 0D 54 6A 61 37 BB 9D 86 8D FC FF 85 85 BF 73 CC E3 FA 35 CA AA D1 72 9D 01 28 C3 50 D1 C6 CC DD A9 9F A0 AC F8 35 14 5B B9 63 2A 6E E6 16 51 39 D8 56 47 C6 A2 BE 0D DD 2F 55 16 60 4C 6F 30 28 2A 26 81 12 1E 18 55 B1 37 17 84 FA 2B F9 F8 8F 5A 8E 4A 97 A6 03 D7 D5 6B 95 D0 E7 7F 52 33 68 03 7C 2F C6 FF 58 BB 23 48 DF DE 5A 55 B2 31 5B B9 A2 F8 A4 B8 8F 42 59 C3 CB B7 00 2A 3B E8 64 00 69 66 A6 20 C0 A6 27 23 21 CA D2 46 26 57 BB 07 53 72 56 32 48 FD 9D 43 FA 75 14 3E CD D5 84 F7 95 2C 9A 07 EE C4 A0 E1 88 4A D3 54 5D CC F1 98 8C BF 64 A9 FB 75 B7 53 98 75 D4 06 A0 5C BF 65 1D 80 71 E2 FE 07 0B 76 8D 89 44 64 8C EB F8 D3 E2 4B 79 95 BC 8C 2B BA 89 EB 92 33 1F 89 1D EF 26 AA 31 B0 0B C0 10 3E F3 31 82 55 85 69 41 BF C0 04 C7 48 DC AC 4C FB C2 09 C6 DD EE E9 82 61 25 AC E8 2D E0 15 6A 3B C9 23 2B F0 78 3A D4 A9 44 24 0C B7 F1 68 3A 7A AE 65 F7 5C E0 B4 11 1A 82 6C 87 4F 4E 48 93 E9 46 6D BA ED 5B 00 0F 3F 19 67 9C 96 B2 E7 5B 53 54 67 06 6E F3 5F 2F 48 36 61 DA CC A3 43 9F CD 12 46 AD 2C 71 03 B5 5A 37 AB 2F B5 72 F9 F4 C4 C7 7E C7 48 DF AF E1 F2 8F 88 20 3B 6E 6E 5B B9 57 5D AD C3 BD 96 A9 A7 39 B4 ED 0C 39 81 A3 94 9D 6F C0 A2 75 9D 6F 50 58 E7 4F 73 17 8D EA 26 42 03 EC CA 36 66 24 59 24 38 57 48 EA D0 B8 DE E0 51 36 D2 52 F1 04 B6 67 4F 49 E9 CB 10 32 72 E4 7B C0 7A 33 FE AF E8 7C C4 F6 01 EA E6 A4 25 B1 EE 67 B0 46 33 29 94 54 5A E4 74 0B 73 05 15 DD 3D C8 7F 29 57 8D 43 1B E9 A3 71 EE E0 67 C4 3B EC F9 0B 48 6A 62 69 DE 0E 69 35 0D EE 25 A1 63 B2 D1 5C 48 56 F1 93 10 4A 6D F1 94 FC 47 77 10 35 A4 E4 5B AE 4C 38 0E B2 48 21 FD 02 A6 04 61 C8 AA 50 68 4C 82 40 85 F9 79 45 D4 2C 92 3D 16 0E 75 D1 79 37 95 19 CE 41 E5 37 38 7E 8C 89 21 0B

包尾: 03

解密:( 728 长度)

00DD_Key1:4D 39 42 58 73 6A 52 54 4B 59 57 76 7A 52 66 55

固定:00 01

0091Data2 00 00 03 20 00 00 00 01 00 00 0A 5D

固定(00E5 中接收):00 DC 00 03

登录时间(0091 中接收):4B E2 CF 4E

IP 地址(0091 中接收):7B 91 B5 20

固定:00 00 00 00 00 00 00 00

00 C8

00E5_Token1:

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

00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

固定(不同QQ 号也一样):AA 27 46 1B 72 F5 9E 03 F5 C3 0D 78 A0 73 44 0B

随机:3C 0A

固定(红色部分变化,两个部分的红色相同,目前有0109 两种):

00 00 00 00 00 09 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

0091Data01 00 00 08 04 01 E0

固定(160 ):00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

令牌长度:00 38

00BA_Token:

EB 8F F6 B1 2E F0 E0 8C 9A 03 0F D0 65 36 CC 44 5D F8 CC CF 3C 37 25 D1 E3 CE 78 F0 BA C3 37 52 14 19 A0 FC EB 3B 4A A8 37 F2 0F 98 F8 CB 39 83 49 EA 6B F0 BE 12 7A 60

固定:00 00 00 08 00 00 00 00 08 04 10 00 01 40 01 0B A5 6B B2 00 10 C4 52 56 01 94 58 5A 14 C0 DB B7 AB B7 35 97 A8

大部分固定(红色部分会变化,有0901 两种):

00 00 00 00 00 09 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

固定:02 40 D9 9F 32

长度:00 10

固定(不同QQ 号也一样):7F 67 05 6B 08 DD 22 18 D5 95 7F 88 AC 7D 46 23

补充2490

00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00

 

 

接收:

02

1A 35

00 30

23 9F

10 73 a1 f6

00 00 00

密文:

0F 7C B1 1F 05 C2 00 EC 97 B0 D1 70 FE 5E E5 78 B3 CC 2A 05 FA 36 15 1A 92 44 A9 1E 77 9B 08 C9 91 A0 D7 FE 44 73 EB A9 6E 84 90 9C 89 00 E0 B9 12 59 A4 32 6F 14 68 A4 75 B8 45 CB 34 34 DA D6 26 0C 57 41 18 18 36 02 03 6A F2 4A 3E E7 D7 66 62 5C DF A1 CE 0D E8 3A B4 D9 06 EA 55 01 81 50 AF E0 F9 5E 66 B1 3D 7B B6 C9 BF 51 AF 1A FB BB C2 53 1A 17 1F 6C 78 C9 FC 67 95 F4 81 43 AC 10 F0 D6 AC CE 30 B0 2D 8A CE 59 64 91 CC F0 56 DF FD 58 8D E6 9D 8C C0 F9

包尾: 03

 

解密:

00E5_Key1:5A 51 67 66 68 4E 47 43 33 48 38 74 63 78 4A 71

登录成功:00 (其他可能继续登录)

SessionKey 68 45 68 36 52 73 36 41 6B 32 32 41 50 41 53 6A

QQ 号:10 73 a1 f6

IP 地址:7B 91 B5 20

未知:27 DC 4B E2 CF 4F

固定:00 00 00 00

固定:03 14 8F FE 4F BB B6 63 C7 69 C3 F1 3C DC A1 ED 40

固定:00 00 00 00 00 08 02 04 08 08 08 08 08 04 05 01 F4 03 E8 07 D0 0B B8 13 88

长度:00 30

0030_Token

EC 7A 3B 07 CA E5 74 25 F9 B1 0A 7C BA B3 D2 89 A6 1E FD A4 44 AE 8D A2 41 A4 97 7B 3C A3 F3 94 A4 85 EF 25 F3 82 43 92 7C A3 42 4F 6D 1F 7F 4D

未知(不同QQ 号不一样):

70 5A 89 C2

70 5A 89 C4

固定:00 00 00 07

已标记关键词 清除标记
©️2020 CSDN 皮肤主题: 大白 设计师:CSDN官方博客 返回首页