Android Reverse engineer-1 https://www.cnblogs.com/cuihengchaliao/p/6661871.html mentions the modified repackaged apk file, which needs to be re-signed before it can be installed.
Re-signing, if it is the normal way of modification, the original version of the signing certificate can be used; but if it is not the normal way of the APK package modification, re-signing the original developer's certificate is not available, then the modifier will usually use the tool to generate public key, private key pair and certificate, the modified APK package re-signed, However, because the certificate and the original certificate is not the same, the installation can not overwrite the original, and the original developer will be in the program to check their own certificate signature value (Android reverse engineering tools-2 Https://www.cnblogs.com/cuihengchaliao There are 3 types of checks mentioned in/p/6665156.html, so a modified apk may have a problem with the new certificate signature, unless the signature verification logic for the original program has been bypassed.
How to re-sign the modified APK package, the general process is:
(1). Generate a new public key, private key pair, and certificate, you can use tools such as Keytool, OpenSSL, and so on.
(2). Re-sign the modified APK package using Signapk.jar and the keys and certificates described above.
The next article will write how to achieve these two steps.
Android Reverse engineering Tools-3