Technical information
- Adware.Gexin.2.origin
- UDP(DNS) 8####.8.4.4:53
- TCP(HTTP/1.1) a####.b####.qq.com:8011
- TCP(HTTP/1.1) aexcep####.b####.qq.com:8011
- TCP(HTTP/1.1) l####.tbs.qq.com:80
- TCP(HTTP/1.1) m.d####.mob.com:80
- TCP(HTTP/1.1) and####.b####.qq.com:80
- TCP(HTTP/1.1) so####.y####.cn:80
- TCP(HTTP/1.1) a####.u####.com.####.com:80
- TCP(HTTP/1.1) a####.exc.mob.com:80
- TCP(HTTP/1.1) aexcep####.b####.qq.com:8012
- TCP(TLS/1.0) 1####.217.17.138:443
- TCP(TLS/1.0) api.face####.com:443
- TCP(TLS/1.0) 1####.250.179.138:443
- TCP(TLS/1.0) p####.google####.com:443
- TCP(TLS/1.0) android####.go####.com:443
- TCP(TLS/1.0) new.yoho####.com:443
- TCP(TLS/1.0) md####.google####.com:443
- TCP(TLS/1.0) www.google####.com:443
- TCP(TLS/1.2) 1####.250.179.206:443
- TCP(TLS/1.2) www.google####.com:443
- TCP(TLS/1.2) 1####.250.179.163:443
- TCP(TLS/1.2) 1####.217.17.138:443
- TCP and####.b####.qq.com:80
- TCP 1####.217.17.138:443
- a####.b####.qq.com
- a####.exc.mob.com
- a####.u####.com
- aexcep####.b####.qq.com
- and####.b####.qq.com
- android####.go####.com
- api.s####.mob.com
- ezi####.yoho####.com
- g####.face####.com
- instant####.google####.com
- l####.tbs.qq.com
- m.d####.mob.com
- md####.google####.com
- new.yoho####.com
- p####.google####.com
- so####.y####.cn
- www.google####.com
- m.d####.mob.com/v2/cconf?appkey=####&plat=####&apppkg=####&appver=####&n...
- a####.b####.qq.com:8011/rqd/async?aid=####
- a####.exc.mob.com/errconf
- a####.u####.com.####.com/app_logs
- aexcep####.b####.qq.com:8011/rqd/async?aid=####
- aexcep####.b####.qq.com:8012/rqd/async?aid=####
- and####.b####.qq.com/rqd/async?aid=####
- l####.tbs.qq.com/ajax?c=####&k=####
- so####.y####.cn/social
- /data/data/####/.dex2oatlock
- /data/data/####/.dic_lock
- /data/data/####/.duid
- /data/data/####/.globalLock
- /data/data/####/.imprint
- /data/data/####/.lock
- /data/data/####/.mrecord
- /data/data/####/.mrecord (deleted)
- /data/data/####/.mrlock
- /data/data/####/.pkg_lock
- /data/data/####/.rc_lock
- /data/data/####/.statistics
- /data/data/####/.updateIV.dat
- /data/data/####/.updateIV.dat_0
- /data/data/####/.updateIV.dat_1
- /data/data/####/0000000lllll_0.dex
- /data/data/####/0000000lllll_1.dex
- /data/data/####/000O00ll111l_0.dex
- /data/data/####/000O00ll111l_1.dex
- /data/data/####/00O000ll111l_0.dex
- /data/data/####/00O000ll111l_0.dex (deleted)
- /data/data/####/00O000ll111l_0.dex.flock
- /data/data/####/00O000ll111l_0.dex.flock (deleted)
- /data/data/####/00O000ll111l_1.dex
- /data/data/####/00O000ll111l_1.dex (deleted)
- /data/data/####/00O000ll111l_1.dex.flock
- /data/data/####/00O000ll111l_1.dex.flock (deleted)
- /data/data/####/0OO00l111l1l
- /data/data/####/0OO00l111l1l.lock
- /data/data/####/1002
- /data/data/####/1004
- /data/data/####/BUGLY_COMMON_VALUES.xml
- /data/data/####/Cookies-journal
- /data/data/####/SP_AROUTER_CACHE.xml
- /data/data/####/SP_AROUTER_CACHE.xml.bak
- /data/data/####/ThrowalbeLog.db-journal
- /data/data/####/WebViewChromiumPrefs.xml
- /data/data/####/YOHONEWS_PLATEFORM.xml
- /data/data/####/__Baidu_Stat_SDK_SendRem.xml
- /data/data/####/__local_last_session.json
- /data/data/####/bugly_db_
- /data/data/####/bugly_db_-journal
- /data/data/####/bugly_db_yaq-journal
- /data/data/####/cc.db
- /data/data/####/cc.db-journal
- /data/data/####/cn.yoho.magazine.BETA_VALUES.xml
- /data/data/####/cn.yoho.magazine.BETA_VALUES.xml.bak
- /data/data/####/cn.yoho.magazine.pref.xml
- /data/data/####/com.facebook.internal.preferences.APP_SETTINGS.xml
- /data/data/####/core_info
- /data/data/####/crashrecord.xml
- /data/data/####/exchangeIdentity.json
- /data/data/####/exid.dat
- /data/data/####/libcuid.so
- /data/data/####/libshellx-super.2019.so
- /data/data/####/local_crash_lock
- /data/data/####/local_crash_lock (deleted)
- /data/data/####/magazine.db
- /data/data/####/magazine.db-journal
- /data/data/####/magazineNewString.xml
- /data/data/####/magazineNewString.xml.bak
- /data/data/####/map_record.txt
- /data/data/####/mob_commons_1.xml
- /data/data/####/mob_sdk_exception_1.xml
- /data/data/####/mob_sdk_exception_1.xml.bak
- /data/data/####/native_record_lock
- /data/data/####/native_record_lock (deleted)
- /data/data/####/o0oooOO0ooOo.dat
- /data/data/####/proc_auxv
- /data/data/####/reg_record.txt
- /data/data/####/rqd_record.eup
- /data/data/####/security_info
- /data/data/####/security_info (deleted)
- /data/data/####/share_sdk_1.xml
- /data/data/####/tbs_download_config.xml
- /data/data/####/tbs_download_config.xml.bak
- /data/data/####/tbs_download_stat.xml
- /data/data/####/tbscoreinstall.txt
- /data/data/####/tbslock.txt
- /data/data/####/tomb.zip
- /data/data/####/tomb_1622466890504.txt
- /data/data/####/tomb_1622466897858.txt
- /data/data/####/tomb_1622466943646.txt
- /data/data/####/tomb_1622466945857.txt
- /data/data/####/tosversion
- /data/data/####/ua.db
- /data/data/####/ua.db-journal
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_general_config.xml.bak
- /data/data/####/umeng_it.cache
- /data/data/####/yohoCommunityTempPre.xml
- /data/data/####/yoho_analytics.db-journal (deleted)
- /data/data/####/yohoinfo.xml
- /data/misc/####/primary.prof
- /system/bin/dex2oat --dex-file=/data/user/0/<Package>/files/prodexdir/00O000ll111l_0.dex --oat-file=/data/user/0/<Package>/files/prodexdir/odexdir/00O000ll111l_0.dex --compiler-filter=interpret-only
- /system/bin/dex2oat --dex-file=/data/user/0/<Package>/files/prodexdir/00O000ll111l_1.dex --oat-file=/data/user/0/<Package>/files/prodexdir/odexdir/00O000ll111l_1.dex --compiler-filter=interpret-only
- /system/bin/sh -c getprop
- /system/bin/sh -c type su
- cat /sys/class/net/wlan0/address
- getprop
- getprop ro.product.cpu.abi
- logcat -d -v threadtime
- logcat -d -v threadtime -s dalvikvm art zygote zygote64 OpenGLRenderer Bugly-libunwind:S
- logcat -t 1000 -v threadtime Bugly-libunwind:S
- ls /data/local
- AES-CBC-PKCS5Padding
- AES-CBC-PKCS7Padding
- AES-ECB-PKCS5Padding
- AES-GCM-NoPadding
- RSA-ECB-NoPadding
- RSA-ECB-PKCS1Padding
- AES-CBC-PKCS7Padding
- AES-GCM-NoPadding