Technical information
- Adware.Plague.1.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.0) th.pen####.com:80
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) adf####.b0.a####.com:80
- a####.u####.com
- s.pen####.com
- th.pen####.com
- adf####.b0.a####.com/1484021540505.png
- adf####.b0.a####.com/1496386056993.png
- adf####.b0.a####.com/1496386062675.jpg
- adf####.b0.a####.com/1498623716239.png
- adf####.b0.a####.com/1499392413799.png
- adf####.b0.a####.com/1501668177364.png
- adf####.b0.a####.com/1501668178810.jpg
- adf####.b0.a####.com/1502960321637.png
- adf####.b0.a####.com/1510627474824.jpg
- adf####.b0.a####.com/1511247852630.png
- adf####.b0.a####.com/1515145151887.png
- adf####.b0.a####.com/1515658144654.png
- adf####.b0.a####.com/1515658146458.jpg
- adf####.b0.a####.com/1516609995667.png
- adf####.b0.a####.com/1524121575905.apk
- adf####.b0.a####.com/1525926423298.apk
- adf####.b0.a####.com/1525931288602.apk
- adf####.b0.a####.com/1526552158285.apk
- a####.u####.com/app_logs
- th.pen####.com/a
- th.pen####.com/b
- /data/data/####/.imprint
- /data/data/####/.jg.ic
- /data/data/####/.log.lock
- /data/data/####/.log.ls
- /data/data/####/app_ffjclasses.jar
- /data/data/####/buntutu_data_s.xml
- /data/data/####/dbeeb-journal
- /data/data/####/game_n.xml
- /data/data/####/libjiagu.so
- /data/data/####/mm_nw_app.xml
- /data/data/####/native_1526571771414.so
- /data/data/####/pvd
- /data/data/####/tlgdozyryde.dat1526571771414.temp
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/data/####/webview.db-journal
- /data/media/####/1496386056993.png.dat
- /data/media/####/1496386062675.jpg.dat
- /data/media/####/1498623716239.png.dat
- /data/media/####/1499392413799.png.dat
- /data/media/####/1501668177364.png.dat
- /data/media/####/1501668178810.jpg.dat
- /data/media/####/1502960321637.png.dat
- /data/media/####/1510627474824.jpg.dat
- /data/media/####/1511247852630.png.dat
- /data/media/####/1515145151887.png.dat
- /data/media/####/1515658144654.png.dat
- /data/media/####/1515658146458.jpg.dat
- /data/media/####/1516609995667.png.dat
- /data/media/####/1524121575905.apk.dat
- /data/media/####/1525931288602.apk.dat
- /data/media/####/1526552158285.apk.dat
- /data/media/####/buntutu.jaru
- chmod 755 <Package Folder>/.jiagu/libjiagu.so
- chmod 777 /storage/emulated/0/download/apk/1526552158285.apk.dat
- id
- sh
- su
- ajm
- libjiagu
- DES-ECB-PKCS5Padding