又是一个花里胡哨的题。
一通分析没啥用。
最后指令启动界面就ok。
adb shell am start -n com.tencent.testvuln/com.tencent.testvuln.FileDataActivity

还是看一眼解密代码

    protected void onCreate(Bundle bundle0) {super.onCreate(bundle0);this.setContentView(0x7F030002);  // layout:activity_main3this.c = (TextView)this.findViewById(0x7F070000);  // id:textView1this.c.setText(Encryto.decode(this, "9YuQ2dk8CSaCe7DTAmaqAA=="));}public static native String decode(Object arg0, String arg1) {}

AES_128_ECB_PKCS5Padding

jstring __fastcall decode(JNIEnv *a1, int a2, int a3, int a4)
{const char *v6; // r6const char *v7; // r8jsize v9; // r2char v10[24]; // [sp+0h] [bp-28h] BYREFif ( j_checkSignature(a1) == 1 ){strcpy(v10, "thisisatestkey==");v6 = (*a1)->GetStringUTFChars(a1, a4, 0);v7 = j_AES_128_ECB_PKCS5Padding_Decrypt(v6, v10);(*a1)->ReleaseStringUTFChars(a1, a4, v6);return (*a1)->NewStringUTF(a1, v7);}else{v9 = strlen(UNSIGNATURE[0]);return (*a1)->NewString(a1, UNSIGNATURE[0], v9);}
}

找个在线解密的网站