Technical information
- Adware.Appsad.5.origin
- Android.Click.234
- Android.RemoteCode.88.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) www.4g####.net:80
- TCP(HTTP/1.1) vi####.ddf####.com:80
- TCP(HTTP/1.1) ilv####.com:80
- TCP(HTTP/1.1) fs.api.4a####.com:80
- TCP(HTTP/1.1) app####.hs.l####.net:80
- TCP(HTTP/1.1) 1####.243.32.94:80
- TCP(HTTP/1.1) u####.b####.com:80
- TCP(HTTP/1.1) www.apxadtr####.net:80
- TCP(HTTP/1.1) www.zfr####.com:80
- TCP(HTTP/1.1) s####.mob####.b####.com:80
- TCP(HTTP/1.1) www.bigt####.com:80
- TCP(HTTP/1.1) api.ki####.com:80
- TCP(HTTP/1.1) api.mob####.b####.com:80
- TCP(HTTP/1.1) api.bi####.com:80
- TCP(HTTP/1.1) ud.zk####.com:80
- TCP(HTTP/1.1) sty.zk####.com:80
- TCP(HTTP/1.1) s2s.go2af####.com:80
- TCP(HTTP/1.1) amc.jiek####.com:80
- TCP(HTTP/1.1) mo.freeind####.com:80
- TCP(HTTP/1.1) pl####.mob####.b####.com:80
- TCP(HTTP/1.1) tango####.com:80
- TCP(HTTP/1.1) koolmed####.com:80
- TCP(HTTP/1.1) www.mmmmmm####.com:80
- TCP(HTTP/1.1) www.cu####.com:80
- TCP(TLS/1.0) app####.hs.l####.net:443
- TCP(TLS/1.0) api.vu####.com.####.net:443
- TCP(TLS/1.0) digital####.com:443
- TCP(TLS/1.0) cdn.vu####.com.####.net:443
- TCP(TLS/1.0) gl####.app####.com:443
- TCP(TLS/1.0) wild####.moa####.com.####.net:443
- TCP(TLS/1.0) a####.app####.com:443
- a####.app####.com
- ads.api.vu####.com
- amc.jiek####.com
- amc.jiek####.com
- api.bi####.com
- api.ki####.com
- api.mob####.b####.com
- api.vu####.com
- app####.hs.l####.net
- cd####.vu####.com
- digital####.com
- fs.api.4a####.com
- gl####.app####.com
- ilv####.com
- int.d####.s####.####.cn
- koolmed####.com
- mo.freeind####.com
- pl####.mob####.b####.com
- s####.mob####.b####.com
- s2s.go2af####.com
- sty.zk####.com
- tango####.com
- u####.b####.com
- ud.zk####.com
- vi####.ddf####.com
- www.4g####.net
- www.apxadtr####.net
- www.bigt####.com
- www.cu####.com
- www.mmmmmm####.com
- www.zfr####.com
- z.moa####.com
- amc.jiek####.com/sdkcp/plugUpdate.php?uid=####&model=####&plugVersion=##...
- amc.jiek####.com/sdkcp/push_msgcp_new.php?uid=####&model=####&plugVersio...
- amc.jiek####.com/sdkcp/sale_static_newcp.php?uid=####&model=####&plugVer...
- amc.jiek####.com/sdkcp/user_visit_appcp.php?uid=####&model=####&plugVers...
- amc.jiek####.com/sdkcp/wappush?uid=####&model=####&imei=####&screen_size...
- api.bi####.com/sdkOffer?os=####&model=####&gaid=####&imei=####&androidId...
- api.ki####.com/click?tid=####
- api.ki####.com/express?tid=####
- api.mob####.b####.com/strategy/api/v1/rule/get?p=####&hp=####&l=####&c=#...
- app####.hs.l####.net/tools/sdk/config/2.2.0/interstitial_config.txt
- ilv####.com/55K39/N-7P/Oerf/YaaPe2WRVZ5lZxs3BIiYiZ7_bHHhvSwwgn5hPHpES1sd...
- koolmed####.com/r/f7a5e778-e925-11e7-9a9f-1142c9b7cbb9/0/
- koolmed####.com/r/f7a5e778-e925-11e7-9a9f-1142c9b7cbb9/1/
- s2s.go2af####.com/click?pid=####&offer_id=####&sub1=####&sub2=####
- tango####.com/66291_nl_1561_android?rpm=0.2&fallbackUrl=https://digitalm...
- u####.b####.com/setting/grobal_strategy?p=####&hp=####&l=####&c=####&pro...
- www.4g####.net/ad/adu?gffw=####&frrw=####&dlkvv=####&wdazz=####&fkk9ll=#...
- www.apxadtr####.net/iclk/redirect.php?code=####&id=####&dv2=####
- www.cu####.com/20171221152034.ExpDex_5.2.1_20171221.zip
- api.bi####.com/un
- fs.api.4a####.com/k/v1.0/hb
- fs.api.4a####.com/k/v1.0/offer/5a0cdbc4-67b1-4ee6-b27d-d4842209e97e
- fs.api.4a####.com/k/v1.0/track/o
- mo.freeind####.com/detail/getOfferListNew?enc=####
- pl####.mob####.b####.com/ad_dex.php
- s####.mob####.b####.com/cgi-bin-py/ad_sdk.cgi?ty=####&enc=####&bt=####
- sty.zk####.com/cc/v1/api?sid=####
- ud.zk####.com/stat?sid=####
- vi####.ddf####.com/api/o
- vi####.ddf####.com/api/va
- www.4g####.net/ad/adc?gffw=####&frrw=####&dlkvv=####&wdazz=####&fkk9ll=#...
- www.bigt####.com/ad/adc?gffw=####&frrw=####&zfbd=####&dlkvv=####&wdazz=#...
- www.mmmmmm####.com/osp/oaen_get.action?tasktype=####&imei=####&imsi=####...
- www.mmmmmm####.com/osp/oaen_reg.action
- www.zfr####.com/up.do
- /data/anr/traces.txt
- <Package Folder>/.jiagu/libjiagu.so
- <Package Folder>/.mbj/####/classes.zip
- <Package Folder>/app_dex/mmx.jar
- <Package Folder>/cache/####/data_0
- <Package Folder>/cache/####/data_1
- <Package Folder>/cache/####/data_2
- <Package Folder>/cache/####/data_3
- <Package Folder>/cache/####/index
- <Package Folder>/databases/adblib.db-journal
- <Package Folder>/databases/database.db-journal
- <Package Folder>/databases/easv.data-journal
- <Package Folder>/databases/plug.dataBase
- <Package Folder>/databases/plug.dataBase-journal
- <Package Folder>/databases/vungle-journal
- <Package Folder>/databases/webview.db-journal
- <Package Folder>/databases/webviewCookiesChromium.db-journal
- <Package Folder>/files/####/.jg.ic
- <Package Folder>/files/DEAB89CE10FEAA11
- <Package Folder>/files/SW01.jar
- <Package Folder>/files/cc.jar
- <Package Folder>/files/conf.dat
- <Package Folder>/files/d.zip
- <Package Folder>/files/dtemp.apk
- <Package Folder>/files/google.db
- <Package Folder>/files/ob1.zip
- <Package Folder>/shared_prefs/ActivatePreUtil.xml
- <Package Folder>/shared_prefs/AdsBusiness-data.xml
- <Package Folder>/shared_prefs/AdsBusiness-data.xml.bak (deleted)
- <Package Folder>/shared_prefs/BusinessPreUtil.xml
- <Package Folder>/shared_prefs/LoginPreUtil.xml
- <Package Folder>/shared_prefs/MobikokCache_Type_1.xml
- <Package Folder>/shared_prefs/MobikokConfig_Type_1.xml
- <Package Folder>/shared_prefs/OfferPreUtil.xml
- <Package Folder>/shared_prefs/SPS_file.xml
- <Package Folder>/shared_prefs/SpZvPrefs.xml
- <Package Folder>/shared_prefs/VUNGLE_PUB_APP_INFO.xml
- <Package Folder>/shared_prefs/aps.xml
- <Package Folder>/shared_prefs/apsad.xml
- <Package Folder>/shared_prefs/apscomm.xml
- <Package Folder>/shared_prefs/cn_rs.xml
- <Package Folder>/shared_prefs/lib_shared_preferences.xml
- <Package Folder>/shared_prefs/local_storage0.xml
- <Package Folder>/shared_prefs/local_storage1.xml
- <Package Folder>/shared_prefs/local_storage1.xml.bak (deleted)
- <Package Folder>/shared_prefs/local_storage33.xml
- <Package Folder>/shared_prefs/local_storage999.xml
- <Package Folder>/shared_prefs/m_cfg.xml
- <Package Folder>/shared_prefs/ops_data.xml
- <Package Folder>/shared_prefs/other_config.xml
- <Package Folder>/shared_prefs/sharepreference_common_record.xml
- <Package Folder>/shared_prefs/sharepreference_url_param.xml
- <Package Folder>/shared_prefs/sp.xml
- <Package Folder>/shared_prefs/t_ini.xml
- <Package Folder>/shared_prefs/upgrade_config.xml
- <SD-Card>/.androidsystem/####/gads.db
- <SD-Card>/Android/####/.nomedia
- <SD-Card>/Android/####/360.png
- <SD-Card>/Android/####/CSS3DRenderer.js
- <SD-Card>/Android/####/DeviceOrientationController.js
- <SD-Card>/Android/####/button_1.png
- <SD-Card>/Android/####/button_2.png
- <SD-Card>/Android/####/candy1.png
- <SD-Card>/Android/####/candy2.png
- <SD-Card>/Android/####/candy4.png
- <SD-Card>/Android/####/candy5.png
- <SD-Card>/Android/####/candy6.png
- <SD-Card>/Android/####/ccsslogo.png
- <SD-Card>/Android/####/char1.png
- <SD-Card>/Android/####/download.webloc
- <SD-Card>/Android/####/finger.png
- <SD-Card>/Android/####/hashmap.js
- <SD-Card>/Android/####/icon.png
- <SD-Card>/Android/####/index.html
- <SD-Card>/Android/####/jquery.hammer-full.min.js
- <SD-Card>/Android/####/jquery.min.js
- <SD-Card>/Android/####/localVideo.mp4
- <SD-Card>/Android/####/postRoll.zip
- <SD-Card>/Android/####/q_back.jpg
- <SD-Card>/Android/####/q_bottom.jpg
- <SD-Card>/Android/####/q_left.jpg
- <SD-Card>/Android/####/q_top.jpg
- <SD-Card>/Android/####/screenshot.png
- <SD-Card>/Android/####/screenshot2.png
- <SD-Card>/Android/####/screenshot3.png
- <SD-Card>/Android/####/screenshot4.png
- <SD-Card>/Android/####/style.css
- <SD-Card>/Android/####/three.min.js
- <SD-Card>/Android/####/vungle-fonticon.eot
- <SD-Card>/Android/####/vungle-fonticon.svg
- <SD-Card>/Android/####/vungle-fonticon.ttf
- <SD-Card>/Android/####/vungle-fonticon.woff
- <SD-Card>/Android/####/vungle.css
- <SD-Card>/Android/####/yeti.png
- <SD-Card>/Log/Log_2017_11_16.txt
- <SD-Card>/LogG/####/sp
- <SD-Card>/baidu/####/journal
- <SD-Card>/baidu/####/journal.tmp
- <SD-Card>/baidu/.cuid
- cat /sys/class/net/wlan0/address
- chmod 755 <Package Folder>/.jiagu/libjiagu.so
- libjiagu