@voltronic - ability to load and execute from a zip file... scary, but probably not malicious - probably just a hack *and a bad one at that.
Code that changes when you look at it doesn't exist.
the first 5 bullet points are standard App abilities, used 3rd party libraries and didn't reconfigure correctly. (possibly malicious on the end of the libraries).
Constantly changing keys is weird but not unheard of. More likely, they change the salt or IV each update.
I still won't use it.
@voltronic - No, Hanlon's Razor can still cut both ways.
@0x56
I suppose these things could be either malicious or negligent, but it is bad for the end user either way, right?