Technical information
- Android.Mixi.33.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) sh.wagbr####.aliyun####.com:80
- TCP(HTTP/1.1) www.goo####.software:80
- TCP(HTTP/1.1) api.zhuishu####.com:80
- TCP(HTTP/1.1) hc.s####.top.####.com:80
- TCP(HTTP/???) hc.z####.today:8082
- TCP(TLS/1.0) 2####.107.1.97:443
- TCP(TLS/1.0) sh.wagbr####.alibaba####.com:443
- a####.man.aliy####.com
- api.zhuishu####.com
- hc.s####.top
- hc.z####.today
- hg.hig####.today
- plb####.u####.com
- u####.u####.com
- www.goo####.software
- api.zhuishu####.com/cats/lv2
- hc.s####.top.####.com/gpfile/pfiles/1500809497389.slz
- hc.s####.top.####.com/gpfile/pfiles/1500809763387.slz
- hc.s####.top.####.com/gpfile/pfiles/1500809811269.slz
- hc.s####.top.####.com/gpfile/pfiles/1500809824846.slz
- hc.s####.top.####.com/gpfile/pfiles/1500809904349.slz
- hc.s####.top.####.com/gpfile/pfiles/1500809930147.slz
- hc.s####.top.####.com/gpfile/pfiles/1500810016794.slz
- hc.s####.top.####.com/gpfile/pfiles/1500810035053.slz
- hc.s####.top.####.com/gpfile/pfiles/1500810168210.slz
- hc.s####.top.####.com/gpfile/pfiles/gofile/des_V17041702Aj1so32.zip
- hc.s####.top.####.com/gpfile/pfiles/new/start_v180521003.dat
- www.goo####.software/cr/sv/getGoFile?name=####
- www.goo####.software/cr/sv/getRecord?eids=####&appKey=####&flag=####
- www.goo####.software/cr/sv/getRltNew?eid=####&estatus=####&appkey=####&p...
- hc.z####.today:8082/spdumread/servi
- hc.z####.today:8082/spdumread/service/rtLogRecord
- sh.wagbr####.aliyun####.com/man/api?ak=####&s=####
- www.goo####.software/cr/sv/getEPList
- www.goo####.software/cr/sv/getMyFile
- /data/data/####/.imprint
- /data/data/####/.md
- /data/data/####/1527624666405_V17041702Aj1so32.so
- /data/data/####/1805.jar
- /data/data/####/18576EF5686015653B56C0A78D35504F
- /data/data/####/408.jar
- /data/data/####/421.jar
- /data/data/####/430.jar
- /data/data/####/4EA65022BA6364ADD2CAEC8EAB19B524
- /data/data/####/5css2DB8520H46
- /data/data/####/610.jar
- /data/data/####/611.jar
- /data/data/####/617.jar
- /data/data/####/61FA2A46FD17F48ABB5CBF2F9B2DDE23
- /data/data/####/640.jar
- /data/data/####/68CBA9AF63ED56491258BB84653A22A1
- /data/data/####/7863E77E7EB9FACF5E658A94FBE51B65
- /data/data/####/806.jar
- /data/data/####/8A19132029C2509F289C501258EEF52D
- /data/data/####/938F4625E6ACC494511683E061A30C14
- /data/data/####/Alvin2.xml
- /data/data/####/ContextData.xml
- /data/data/####/ECA59081A40C6CF41C02802044E54A31
- /data/data/####/F88E4572B2EAA1D753668D78610182D5
- /data/data/####/MessageStore.db-journal
- /data/data/####/MsgLogStore.db-journal
- /data/data/####/MultiDex.lock
- /data/data/####/UM_PROBE_DATA.xml
- /data/data/####/a==7.5.0&&1.1.0_1527624663134_envelope.log
- /data/data/####/android_system.xml
- /data/data/####/com.android.reader.css12golden2
- /data/data/####/com.android.reader.css_preferences.xml
- /data/data/####/dcSharedPreferences.dat.xml
- /data/data/####/evernote_jobs.db-journal
- /data/data/####/evernote_jobs.xml
- /data/data/####/exchangeIdentity.json
- /data/data/####/exid.dat
- /data/data/####/gpdu
- /data/data/####/hftJcw46N.jar
- /data/data/####/httpdns_config_cache.xml
- /data/data/####/i==1.2.0&&1.1.0_1527624662793_envelope.log
- /data/data/####/info.xml
- /data/data/####/multidex.version.xml
- /data/data/####/samsung112.jar
- /data/data/####/test
- /data/data/####/ua.db
- /data/data/####/ua.db-journal
- /data/data/####/um_pri.xml
- /data/data/####/umdat.xml
- /data/data/####/umeng_common_config.xml
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/data/####/umeng_message_state.xml
- /data/data/####/us.908GhK3z1XIE6J7u3B4nRKlfEI88s
- /data/media/####/.a.dat
- /data/media/####/.adfwe.dat
- /data/media/####/.cca.dat
- /data/media/####/.umm.dat
- /data/media/####/Alvin2.xml
- /data/media/####/ContextData.xml
- /data/media/####/android_fm.id
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_min_freq
- <Package Folder>/files/.play/test <Package Folder>/files/.play/ c98ca28188ed8884688abc9d8888b829
- <Package Folder>/files/us.908GhK3z1XIE6J7u3B4nRKlfEI88s -h c98ca28188ed8884688abc9d8888b829 <Package Folder>/.syslib-
- chmod 0771 <Package Folder>/.syslib-
- chmod 770 <Package Folder>/files/.play/test
- getenforce
- ls /
- ls /sys/class/thermal
- rm -f <Package Folder>/files/hftJcw46N.dex
- rm -f <Package Folder>/files/hftJcw46N.jar
- rm -f <Package Folder>/files/us.908GhK3z1XIE6J7u3B4nRKlfEI88s
- rm <Package Folder>/files/hftJcw46N.dex
- rm <Package Folder>/files/hftJcw46N.jar
- rm <Package Folder>/files/us.908GhK3z1XIE6J7u3B4nRKlfEI88s
- sh -c /system/usr/toolbox rm -f <Package Folder>/files/hftJcw46N.dex > /dev/null 2>&1
- sh -c /system/usr/toolbox rm -f <Package Folder>/files/hftJcw46N.jar > /dev/null 2>&1
- sh -c /system/usr/toolbox rm -f <Package Folder>/files/us.908GhK3z1XIE6J7u3B4nRKlfEI88s > /dev/null 2>&1
- sh -c rm <Package Folder>/files/hftJcw46N.dex > /dev/null 2>&1
- sh -c rm <Package Folder>/files/hftJcw46N.jar > /dev/null 2>&1
- sh -c rm <Package Folder>/files/us.908GhK3z1XIE6J7u3B4nRKlfEI88s > /dev/null 2>&1
- sh -c rm -f <Package Folder>/files/hftJcw46N.dex > /dev/null 2>&1
- sh -c rm -f <Package Folder>/files/hftJcw46N.jar > /dev/null 2>&1
- sh -c rm -f <Package Folder>/files/us.908GhK3z1XIE6J7u3B4nRKlfEI88s > /dev/null 2>&1
- sh <Package Folder>/files/.play/test <Package Folder>/files/.play/ c98ca28188ed8884688abc9d8888b829
- sh <Package Folder>/files/us.908GhK3z1XIE6J7u3B4nRKlfEI88s -h c98ca28188ed8884688abc9d8888b829 <Package Folder>/.syslib-
- 1527624666405_V17041702Aj1so32
- AES-CBC-PKCS5Padding
- AES-CBC-PKCS7Padding
- AES-ECB-PKCS5Padding
- AES-CBC-PKCS5Padding
- AES-ECB-PKCS5Padding