Technical information
- Android.Backdoor.534.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) t####.qq.com:80
- TCP(HTTP/1.1) t####.qq.com:8080
- TCP t####.qq.com:80
- UDP sis.j####.io:19000
- TCP t####.qq.com:8080
- UDP easytom####.com:19000
- UDP s.j####.cn:19000
- UDP 1####.31.17.108:19000
- drm.cm####.com
- easytom####.com
- gaand####.talking####.net
- i####.j####.cn
- s.j####.cn
- sd####.cm####.com
- sis.j####.io
- t####.qq.com
- wap.cm####.com
- www.i3####.com
- /data/anr/traces.txt
- <Package Folder>/cache/####/-674426662
- <Package Folder>/cache/####/-973472948
- <Package Folder>/cache/####/201789845
- <Package Folder>/cache/####/727328808
- <Package Folder>/databases/doudizhu
- <Package Folder>/databases/doudizhu-journal
- <Package Folder>/files/####/AndGame.Sdk.Lib_20156_6E801256311DA...82.dat
- <Package Folder>/files/####/c_data_store.dat
- <Package Folder>/files/####/d_data_store.dat
- <Package Folder>/files/AndGame.Sdk.Lib_20156_6E801256311DA61142...82.dat
- <Package Folder>/files/appsdk0_.dex
- <Package Folder>/files/appsdk0_.jar
- <Package Folder>/files/c_data_store.dat
- <Package Folder>/files/d_data_store.dat
- <Package Folder>/files/iridver.dat
- <Package Folder>/files/libjiagu.so
- <Package Folder>/files/sdk_prefs
- <Package Folder>/shared_prefs/<IMEI>|account_file.xml
- <Package Folder>/shared_prefs/cn.jpush.android.user.profile.xml
- <Package Folder>/shared_prefs/cn.jpush.preferences.v2.xml
- <Package Folder>/shared_prefs/device_id.xml
- <Package Folder>/shared_prefs/game_activite.xml
- <Package Folder>/shared_prefs/pref_file.xml
- <Package Folder>/shared_prefs/qihoo_jiagu_crash_report.xml
- <Package Folder>/shared_prefs/td_pefercen_profile.xml
- <Package Folder>/shared_prefs/tdid.xml
- <SD-Card>/.tcookieid
- <SD-Card>/Download/####/deviceId.txt
- <SD-Card>/Download/####/msgflag.txt
- <SD-Card>/Download/####/sdk_prefs.txt
- <SD-Card>/data/.push_deviceid
- <SD-Card>/tencent/####/10.1.app.log
- /system/bin/sh
- chmod 755 <Package Folder>/files/libjiagu.so
- ls -l /sbin/su
- ls -l /system/bin/su
- ls -l /system/sbin/su
- ls -l /system/xbin/su
- ls -l /vendor/bin/su
- jpush215
- kvisoftddzfunction
- libjiagu
- libmegbpp_03.01.00_01
- megjb
- tpnsSecurity