Adware.Gexin.8249

Technical information

Malicious functions:

Executes code of the following detected threats:

Adware.Gexin.2.origin

Accesses the ITelephony private interface.

Network activity:

Connects to:

UDP(DNS) <Google DNS>
TCP(HTTP/1.1) log.renre####.com:80
TCP(SSL/3.0) et2-na6####.wagbr####.ali####.####.com:443
TCP(TLS/1.0) sc.shanyis####.com:443
TCP(TLS/1.0) app####.renre####.com:443
TCP(TLS/1.0) et2-na6####.wagbr####.ali####.####.com:443
TCP(TLS/1.0) api.renre####.com:443
TCP(TLS/1.0) log.renre####.com:443
TCP(TLS/1.0) appver####.renre####.com:443
TCP(TLS/1.0) regi####.xm####.gl####.####.com:443
TCP(TLS/1.0) and####.cli####.go####.com:443

DNS requests:

and####.cli####.go####.com
api.renre####.com
app####.renre####.com
appver####.renre####.com
log.renre####.com
plb####.u####.com
regi####.xm####.gl####.####.com
sc.shanyis####.com
u####.u####.com

HTTP POST requests:

log.renre####.com/index.php?c=####&m=####

File system changes:

Creates the following files:

/data/data/####/.imprint
/data/data/####/.jg.ic
/data/data/####/.tpns.settings.xml.xml
/data/data/####/.xml
/data/data/####/Alvin2.xml
/data/data/####/Carapp.db-journal
/data/data/####/ContextData.xml
/data/data/####/MultiDex.lock
/data/data/####/RRCCrashStore.xml
/data/data/####/SP_AROUTER_CACHE.xml
/data/data/####/_default_renrenche_cache_file_name.xml
/data/data/####/a==7.5.3&&5.7.0_1548988336675_envelope.log
/data/data/####/abtest_cache_data.0.tmp
/data/data/####/com.renrenche.android.agent.v1_com.renrenche.renrenche.xml
/data/data/####/com.renrenche.renrenche.xml
/data/data/####/com.sensorsdata.analytics.android.sdk.SensorsDa...leted)
/data/data/####/com.sensorsdata.analytics.android.sdk.SensorsDataAPI.xml
/data/data/####/connect.xml
/data/data/####/controlInfo.ini
/data/data/####/d==7.5.3&&5.7.0_1548988336839_envelope.log
/data/data/####/d==7.5.3&&5.7.0_1548988350316_envelope.log
/data/data/####/d==7.5.3&&5.7.0_1548988359528_envelope.log
/data/data/####/d==7.5.3&&5.7.0_1548988364955_envelope.log
/data/data/####/d==7.5.3&&5.7.0_1548988371475_envelope.log
/data/data/####/d==7.5.3&&5.7.0_1548988377985_envelope.log
/data/data/####/d==7.5.3&&5.7.0_1548988385483_envelope.log
/data/data/####/d==7.5.3&&5.7.0_1548988392448_envelope.log
/data/data/####/dW1weF9pbnRlcm5hbF8xNTQ4OTg4MzM1NjQ2;
/data/data/####/dW1weF9pbnRlcm5hbF8xNTQ4OTg4MzQ4NTM5;
/data/data/####/dW1weF9pbnRlcm5hbF8xNTQ4OTg4MzQyMDQ1;
/data/data/####/dW1weF9pbnRlcm5hbF8xNTQ4OTg4MzU4NDI4;
/data/data/####/dW1weF9pbnRlcm5hbF8xNTQ4OTg4MzUyOTYx;
/data/data/####/dW1weF9pbnRlcm5hbF8xNTQ4OTg4MzY0MDE4;
/data/data/####/dW1weF9pbnRlcm5hbF8xNTQ4OTg4Mzc2NTQy;
/data/data/####/dW1weF9pbnRlcm5hbF8xNTQ4OTg4MzcwNDc5;
/data/data/####/dW1weF9pbnRlcm5hbF8xNTQ4OTg4Mzg0NTAz;
/data/data/####/dW1weF9pbnRlcm5hbF8xNTQ4OTg4MzkxMzM5;
/data/data/####/exchangeIdentity.json
/data/data/####/exid.dat
/data/data/####/geofencing.db
/data/data/####/geofencing.db-journal
/data/data/####/i==1.2.0&&5.7.0_1548988335661_envelope.log
/data/data/####/i==1.2.0&&5.7.0_1548988342073_envelope.log
/data/data/####/i==1.2.0&&5.7.0_1548988348636_envelope.log
/data/data/####/i==1.2.0&&5.7.0_1548988358493_envelope.log
/data/data/####/i==1.2.0&&5.7.0_1548988364053_envelope.log
/data/data/####/i==1.2.0&&5.7.0_1548988370541_envelope.log
/data/data/####/i==1.2.0&&5.7.0_1548988377368_envelope.log
/data/data/####/i==1.2.0&&5.7.0_1548988384528_envelope.log
/data/data/####/i==1.2.0&&5.7.0_1548988391358_envelope.log
/data/data/####/info.xml
/data/data/####/installed_1548988336055.info
/data/data/####/installed_1548988336068.info
/data/data/####/installed_1548988336080.info
/data/data/####/installed_1548988343801.info
/data/data/####/installed_1548988343806.info
/data/data/####/installed_1548988343824.info
/data/data/####/installed_1548988354935.info
/data/data/####/installed_1548988354938.info
/data/data/####/installed_1548988354939.info
/data/data/####/installed_1548988360009.info
/data/data/####/installed_1548988360011.info
/data/data/####/installed_1548988360013.info
/data/data/####/installed_1548988365378.info
/data/data/####/installed_1548988365381.info
/data/data/####/installed_1548988366479.info
/data/data/####/installed_1548988372769.info
/data/data/####/installed_1548988372772.info
/data/data/####/installed_1548988372777.info
/data/data/####/installed_1548988378288.info
/data/data/####/installed_1548988378293.info
/data/data/####/installed_1548988378438.info
/data/data/####/installed_1548988385639.info
/data/data/####/installed_1548988385645.info
/data/data/####/installed_1548988385651.info
/data/data/####/installed_1548988394166.info
/data/data/####/installed_1548988394286.info
/data/data/####/installed_1548988394611.info
/data/data/####/journal.tmp
/data/data/####/libjiagu-1830843141.so
/data/data/####/log.db
/data/data/####/log.db-journal
/data/data/####/mipush.xml
/data/data/####/mipush_extra.xml
/data/data/####/mipush_region
/data/data/####/mipush_region.lock
/data/data/####/multidex.version.xml
/data/data/####/response_server_time.xml
/data/data/####/rrc_carapp_conf.xml
/data/data/####/rrc_user.xml
/data/data/####/search_hot_words.0.tmp
/data/data/####/sensorsdata-journal
/data/data/####/sensorsdata.xml
/data/data/####/sp.db-journal
/data/data/####/sp_client_report_status.xml
/data/data/####/ua.db
/data/data/####/ua.db-journal
/data/data/####/um_pri.xml
/data/data/####/umdat.xml
/data/data/####/umeng_common_config.xml
/data/data/####/umeng_common_location.xml
/data/data/####/umeng_general_config.xml
/data/data/####/umeng_it.cache
/data/data/####/webview.db-journal
/data/data/####/webviewCookiesChromium.db-journal
/data/media/####/.a.dat
/data/media/####/.adfwe.dat
/data/media/####/.cca.dat
/data/media/####/.nomedia
/data/media/####/.umm.dat
/data/media/####/0029c2a1c75989c48c9401abbc0cdc93.0.tmp
/data/media/####/0029c2a1c75989c48c9401abbc0cdc93.1.tmp
/data/media/####/011ed42f35683967df180ef6afb4a264.0.tmp
/data/media/####/011ed42f35683967df180ef6afb4a264.1.tmp
/data/media/####/02550c5ec97497db9d3ec01f19528161.0.tmp
/data/media/####/02550c5ec97497db9d3ec01f19528161.1.tmp
/data/media/####/04693a6b7a27fc2ecc7f7bc89a5baf6a.0.tmp
/data/media/####/04693a6b7a27fc2ecc7f7bc89a5baf6a.1.tmp
/data/media/####/06cc099b0efefe7b09274c6fe7f54878.0.tmp
/data/media/####/06cc099b0efefe7b09274c6fe7f54878.1.tmp
/data/media/####/07219a7d319448f01226fa6928346a95.0.tmp
/data/media/####/07219a7d319448f01226fa6928346a95.1.tmp
/data/media/####/07518ee58d1a8679c1d88943c526997a.0.tmp
/data/media/####/07518ee58d1a8679c1d88943c526997a.1.tmp
/data/media/####/084be032877341bcedb9cae54fcb482b.0.tmp
/data/media/####/084be032877341bcedb9cae54fcb482b.1.tmp
/data/media/####/0851afcb3fc022a567091d81c41ae7ea.0.tmp
/data/media/####/0851afcb3fc022a567091d81c41ae7ea.1.tmp
/data/media/####/0935be0e0d10d120fab2b772f6086dcf.0.tmp
/data/media/####/0935be0e0d10d120fab2b772f6086dcf.1.tmp
/data/media/####/096b6e1f80bb0ca55a2d3dc3020b51b9.0.tmp
/data/media/####/096b6e1f80bb0ca55a2d3dc3020b51b9.1.tmp
/data/media/####/0c89077c4f5f5668da321ead8a22e617.0.tmp
/data/media/####/0c89077c4f5f5668da321ead8a22e617.1.tmp
/data/media/####/0d3d28ddb58e9b7aa47835a30f07687c.0.tmp
/data/media/####/0d3d28ddb58e9b7aa47835a30f07687c.1.tmp
/data/media/####/111f368eb25ef9911c3246130ebeae37.0.tmp
/data/media/####/111f368eb25ef9911c3246130ebeae37.1.tmp
/data/media/####/1157fc806608b7b73c34d174f23c8bb9.0.tmp
/data/media/####/1157fc806608b7b73c34d174f23c8bb9.1.tmp
/data/media/####/116a7c8a413ff4ea522f45e44e95458b.0.tmp
/data/media/####/116a7c8a413ff4ea522f45e44e95458b.1.tmp
/data/media/####/117560637369094099beacec958efeb5.0.tmp
/data/media/####/117560637369094099beacec958efeb5.1.tmp
/data/media/####/14792c8203e392d53253e2b7fc5b6e28.0.tmp
/data/media/####/14792c8203e392d53253e2b7fc5b6e28.1.tmp
/data/media/####/174af5a02e27fe677abae09bdc8e263b.0.tmp
/data/media/####/174af5a02e27fe677abae09bdc8e263b.1.tmp
/data/media/####/1a509c554c189066bc05fc671db49014.0.tmp
/data/media/####/1a509c554c189066bc05fc671db49014.1.tmp
/data/media/####/1bae7911d638fcb96b3f67aa912e5754.0.tmp
/data/media/####/1bae7911d638fcb96b3f67aa912e5754.1.tmp
/data/media/####/1f84f92074c37864637420a36794dd36.0.tmp
/data/media/####/1f84f92074c37864637420a36794dd36.1.tmp
/data/media/####/1fb7ac482c4520313d2d1fce150b70bd.0.tmp
/data/media/####/1fb7ac482c4520313d2d1fce150b70bd.1.tmp
/data/media/####/20bc0eaf406cd7b8d4b851b06effcda6.0.tmp
/data/media/####/20bc0eaf406cd7b8d4b851b06effcda6.1.tmp
/data/media/####/20fd54879d08843ef4c823f6abefd442.0.tmp
/data/media/####/20fd54879d08843ef4c823f6abefd442.1.tmp
/data/media/####/210e4dc1357af6a5014c97e5c18c9785.0.tmp
/data/media/####/210e4dc1357af6a5014c97e5c18c9785.1.tmp
/data/media/####/21b8f992094ef501fbf48f786e6fca5f.0.tmp
/data/media/####/21b8f992094ef501fbf48f786e6fca5f.1.tmp
/data/media/####/251dbd33f38f4c18fc6727f8d58c0834.0.tmp
/data/media/####/251dbd33f38f4c18fc6727f8d58c0834.1.tmp
/data/media/####/2633810a969c9fec9988149ece253dfa.0.tmp
/data/media/####/2633810a969c9fec9988149ece253dfa.1.tmp
/data/media/####/267eeeca68ba5b869bc18616182f481f.0.tmp
/data/media/####/267eeeca68ba5b869bc18616182f481f.1.tmp
/data/media/####/28cc8c8afef7d38e7b3ba2352da6d45d.0.tmp
/data/media/####/28cc8c8afef7d38e7b3ba2352da6d45d.1.tmp
/data/media/####/2af101732dc963eb404cf512e8570520.0.tmp
/data/media/####/2af101732dc963eb404cf512e8570520.1.tmp
/data/media/####/2c02848587ed316534f842d6cae7c147.0.tmp
/data/media/####/2c02848587ed316534f842d6cae7c147.1.tmp
/data/media/####/300a28cca0aefcfb9cffbddd04e183dc.0.tmp
/data/media/####/300a28cca0aefcfb9cffbddd04e183dc.1.tmp
/data/media/####/30ff3994c33635acda1c2fbf183a9d8a.0.tmp
/data/media/####/30ff3994c33635acda1c2fbf183a9d8a.1.tmp
/data/media/####/32ce6f5c0ae8908d7e8edc61c282603e.0.tmp
/data/media/####/32ce6f5c0ae8908d7e8edc61c282603e.1.tmp
/data/media/####/34958c0ca5cd56c85c8f3020d93b2377.0.tmp
/data/media/####/34958c0ca5cd56c85c8f3020d93b2377.1.tmp
/data/media/####/35cca1d9bbc3d6f1a1d4204bafac52cc.0.tmp
/data/media/####/35cca1d9bbc3d6f1a1d4204bafac52cc.1.tmp
/data/media/####/367d651adc2129b2b905fc26548512ea.0.tmp
/data/media/####/367d651adc2129b2b905fc26548512ea.1.tmp
/data/media/####/3883686d045c45a7dc08cea3ec1e5117.0.tmp
/data/media/####/3883686d045c45a7dc08cea3ec1e5117.1.tmp
/data/media/####/394dc9ef632887b1fed4172bc44c1abe.0.tmp
/data/media/####/394dc9ef632887b1fed4172bc44c1abe.1.tmp
/data/media/####/3a828e56396ba699643832079451a27b.0.tmp
/data/media/####/3a828e56396ba699643832079451a27b.1.tmp
/data/media/####/3c21bbf1c6406828f957b201f331eda7.0.tmp
/data/media/####/3c21bbf1c6406828f957b201f331eda7.1.tmp
/data/media/####/3c24a6aa5d010c7393dcb0a195820ca0.0.tmp
/data/media/####/3c24a6aa5d010c7393dcb0a195820ca0.1.tmp
/data/media/####/3d10b65054fc647c08b20743f5ac3c26.0.tmp
/data/media/####/3d10b65054fc647c08b20743f5ac3c26.1.tmp
/data/media/####/3e98dacdd904a635ed6c1ae145e2a8ae.0.tmp
/data/media/####/3e98dacdd904a635ed6c1ae145e2a8ae.1.tmp
/data/media/####/3edc8d317c9b42b23d6ddd896e518d9a.0.tmp
/data/media/####/3edc8d317c9b42b23d6ddd896e518d9a.1.tmp
/data/media/####/40a68416822ff34311df23b52d22b040.0.tmp
/data/media/####/40a68416822ff34311df23b52d22b040.1.tmp
/data/media/####/40f637477ef321392fc6249954ebc519.0.tmp
/data/media/####/40f637477ef321392fc6249954ebc519.1.tmp
/data/media/####/420218820e43c8ea06212108a9722af7.0.tmp
/data/media/####/420218820e43c8ea06212108a9722af7.1.tmp
/data/media/####/432a146e75eb63d521a5cafd1db76b07.0.tmp
/data/media/####/432a146e75eb63d521a5cafd1db76b07.1.tmp
/data/media/####/441b24e9089442221f2e74ec5c291a94.0.tmp
/data/media/####/441b24e9089442221f2e74ec5c291a94.1.tmp
/data/media/####/458df264f4dafce93223e0e10f088750.0.tmp
/data/media/####/458df264f4dafce93223e0e10f088750.1.tmp
/data/media/####/47a431a6c5e8da7613966afd547b8eab.0.tmp
/data/media/####/47a431a6c5e8da7613966afd547b8eab.1.tmp
/data/media/####/485fbd7ae5cecf74d490bdab1c362914.0.tmp
/data/media/####/485fbd7ae5cecf74d490bdab1c362914.1.tmp
/data/media/####/494122f77b58466916517a265a0463f6.0.tmp
/data/media/####/494122f77b58466916517a265a0463f6.1.tmp
/data/media/####/4b28a7e7ecaa9bc056502235a5b983ca.0.tmp
/data/media/####/4b28a7e7ecaa9bc056502235a5b983ca.1.tmp
/data/media/####/4d2982296b1295cc243ced5011939d82.0.tmp
/data/media/####/4d2982296b1295cc243ced5011939d82.1.tmp
/data/media/####/4e356c1f85aaf6074d8ef5977e5ff3e7.0.tmp
/data/media/####/4e356c1f85aaf6074d8ef5977e5ff3e7.1
/data/media/####/4f61517f40952f45ce1e5149c5dad1fc.0.tmp
/data/media/####/4f61517f40952f45ce1e5149c5dad1fc.1.tmp
/data/media/####/51ff437af592734803a8cc9c3582b87f.0.tmp
/data/media/####/51ff437af592734803a8cc9c3582b87f.1.tmp
/data/media/####/522cac3778729d3a14a190d5cde1e36c.0.tmp
/data/media/####/522cac3778729d3a14a190d5cde1e36c.1.tmp
/data/media/####/55cca34c2659a226fd98f6feb962188e.0.tmp
/data/media/####/55cca34c2659a226fd98f6feb962188e.1.tmp
/data/media/####/5613a418ecd839adfb9d40a60b1bb86b.0.tmp
/data/media/####/5613a418ecd839adfb9d40a60b1bb86b.1.tmp
/data/media/####/57f12546cdca161e9eb7950c0e1f84df.0.tmp
/data/media/####/57f12546cdca161e9eb7950c0e1f84df.1.tmp
/data/media/####/5988deec60946f17b8856bff82470567.0.tmp
/data/media/####/5988deec60946f17b8856bff82470567.1.tmp
/data/media/####/5a095cdc77e1e7ce2ab023424cb6649d.0.tmp
/data/media/####/5a095cdc77e1e7ce2ab023424cb6649d.1.tmp
/data/media/####/5c7a33a20be52c3f256a74284547cd62.0.tmp
/data/media/####/5c7a33a20be52c3f256a74284547cd62.1.tmp
/data/media/####/614528ee4d6640d9191111649014e129.0.tmp
/data/media/####/614528ee4d6640d9191111649014e129.1.tmp
/data/media/####/62af322090d005565e520c4bbd910637.0.tmp
/data/media/####/62af322090d005565e520c4bbd910637.1.tmp
/data/media/####/68707d3abe1313fa2a20e4999d8ab23e.0.tmp
/data/media/####/68707d3abe1313fa2a20e4999d8ab23e.1.tmp
/data/media/####/6934b6152e9fcf508e619f8453984301.0.tmp
/data/media/####/6934b6152e9fcf508e619f8453984301.1.tmp
/data/media/####/69b3825c6340ef5041522eb30b7d3502.0.tmp
/data/media/####/69b3825c6340ef5041522eb30b7d3502.1.tmp
/data/media/####/6c5796b84702d29c84420e3eb3a46373.0.tmp
/data/media/####/6c5796b84702d29c84420e3eb3a46373.1.tmp
/data/media/####/6c722b30ff4bc4f6db5e5319ad695b58.0.tmp
/data/media/####/6c722b30ff4bc4f6db5e5319ad695b58.1.tmp
/data/media/####/6e898c1b537ebdac4eac23abb43fcd63.0.tmp
/data/media/####/6e898c1b537ebdac4eac23abb43fcd63.1.tmp
/data/media/####/70bbe5e823741f0468f0251238ff8726.0.tmp
/data/media/####/70bbe5e823741f0468f0251238ff8726.1.tmp
/data/media/####/70d772edc7a729496e82bd39cc6eb372.0.tmp
/data/media/####/70d772edc7a729496e82bd39cc6eb372.1.tmp
/data/media/####/726b10cbfd01725a6fa80281aa1f28af.0.tmp
/data/media/####/726b10cbfd01725a6fa80281aa1f28af.1.tmp
/data/media/####/7323960256c6d46a222d33d30ccdbc82.0.tmp
/data/media/####/7323960256c6d46a222d33d30ccdbc82.1.tmp
/data/media/####/751de9fa4f7ad830d0affa9c8df5cf9d.0.tmp
/data/media/####/751de9fa4f7ad830d0affa9c8df5cf9d.1.tmp
/data/media/####/75a7ecd0279bcad1f2fe8694e91d0839.0.tmp
/data/media/####/75a7ecd0279bcad1f2fe8694e91d0839.1.tmp
/data/media/####/76e2edc95bbdce1b57bc5c2c2301a802.0.tmp
/data/media/####/76e2edc95bbdce1b57bc5c2c2301a802.1.tmp
/data/media/####/77b538969506f871ef5e73dc862133e1.0.tmp
/data/media/####/77b538969506f871ef5e73dc862133e1.1.tmp
/data/media/####/7e128cb549a702ed6934c8c8bce4b05e.0.tmp
/data/media/####/7e128cb549a702ed6934c8c8bce4b05e.1.tmp
/data/media/####/8093cf61048a2e4055aa50b96d06126e.0.tmp
/data/media/####/8093cf61048a2e4055aa50b96d06126e.1.tmp
/data/media/####/80e708a3f1f5a87ea4c9725cba928c89.0.tmp
/data/media/####/80e708a3f1f5a87ea4c9725cba928c89.1.tmp
/data/media/####/848682a52bae820ab5467fa41eaf24a0.0.tmp
/data/media/####/848682a52bae820ab5467fa41eaf24a0.1.tmp
/data/media/####/848eea2f8b93b9e358d4f3c44fe1ff74.0.tmp
/data/media/####/848eea2f8b93b9e358d4f3c44fe1ff74.1.tmp
/data/media/####/850d6f3941f5507c921a09a872cfd1ed.0.tmp
/data/media/####/850d6f3941f5507c921a09a872cfd1ed.1.tmp
/data/media/####/859821ca94420aaa119d5fd4de132a2a.0.tmp
/data/media/####/859821ca94420aaa119d5fd4de132a2a.1.tmp
/data/media/####/87271a46e894c9e24cf2deef4cb319e8.0.tmp
/data/media/####/87271a46e894c9e24cf2deef4cb319e8.1.tmp
/data/media/####/8b13ba3e016e42c675d238c5dc761b83.0.tmp
/data/media/####/8b13ba3e016e42c675d238c5dc761b83.1.tmp
/data/media/####/8c0f87104681c96c4d4c5cbb294832e7.0.tmp
/data/media/####/8c0f87104681c96c4d4c5cbb294832e7.1.tmp
/data/media/####/8ec91997c3f9c544dbb5dd4db82c0a83.0.tmp
/data/media/####/8ec91997c3f9c544dbb5dd4db82c0a83.1.tmp
/data/media/####/8f449cd2fce48ab6e07933e2fefa95ad.0.tmp
/data/media/####/8f449cd2fce48ab6e07933e2fefa95ad.1.tmp
/data/media/####/8f6cdc62a1836657772d937f1651b378.0.tmp
/data/media/####/8f6cdc62a1836657772d937f1651b378.1.tmp
/data/media/####/8fd334a57b5535d86fc6f2257b01cf30.0.tmp
/data/media/####/8fd334a57b5535d86fc6f2257b01cf30.1.tmp
/data/media/####/90ea41145e2acdbcbe6938e5b83bd151.0.tmp
/data/media/####/90ea41145e2acdbcbe6938e5b83bd151.1
/data/media/####/927443c831089dfdef667409d01caaab.0.tmp
/data/media/####/927443c831089dfdef667409d01caaab.1.tmp
/data/media/####/968304b9a4cb3976de0420acd562061f.0.tmp
/data/media/####/968304b9a4cb3976de0420acd562061f.1.tmp
/data/media/####/98f47a3ae1dd370a4e30e52e0672bf90.0.tmp
/data/media/####/98f47a3ae1dd370a4e30e52e0672bf90.1.tmp
/data/media/####/9b1563266bab9b927e24220e9971a8df.0.tmp
/data/media/####/9b1563266bab9b927e24220e9971a8df.1.tmp
/data/media/####/9be68359521af58602c8afcb7169bb9b.0.tmp
/data/media/####/9be68359521af58602c8afcb7169bb9b.1.tmp
/data/media/####/9da9b3428ba9fe6ba6c39ddcd211e62d.0.tmp
/data/media/####/9da9b3428ba9fe6ba6c39ddcd211e62d.1.tmp
/data/media/####/9fa5f0aa5734ed8cce1b106f7e27a798.0.tmp
/data/media/####/9fa5f0aa5734ed8cce1b106f7e27a798.1.tmp
/data/media/####/Alvin2.xml
/data/media/####/ContextData.xml
/data/media/####/a0d8004f6ddab842902b8d399ef1a871.0.tmp
/data/media/####/a0d8004f6ddab842902b8d399ef1a871.1.tmp
/data/media/####/a0f51f462e0c75c0ca554b5849920e2f.0.tmp
/data/media/####/a0f51f462e0c75c0ca554b5849920e2f.1.tmp
/data/media/####/a2df9bbd955765a0f04fc71c045267e6.0.tmp
/data/media/####/a2df9bbd955765a0f04fc71c045267e6.1.tmp
/data/media/####/a3640e12ef8f5efcc61d1b0b8000274f.0.tmp
/data/media/####/a3640e12ef8f5efcc61d1b0b8000274f.1.tmp
/data/media/####/a3917ede7fdfd74bdff10a1a7447a579.0.tmp
/data/media/####/a3917ede7fdfd74bdff10a1a7447a579.1.tmp
/data/media/####/a42b5aa2549eab55f9c8e26658a66d8b.0.tmp
/data/media/####/a42b5aa2549eab55f9c8e26658a66d8b.1.tmp
/data/media/####/a4789be26da46b617b4385611d229d10.0.tmp
/data/media/####/a4789be26da46b617b4385611d229d10.1.tmp
/data/media/####/a50ed2bc0f334e46d9af8765e57dea0d.0.tmp
/data/media/####/a50ed2bc0f334e46d9af8765e57dea0d.1.tmp
/data/media/####/a57aa527ed98905d19da231bb764ff7a.0.tmp
/data/media/####/a57aa527ed98905d19da231bb764ff7a.1.tmp
/data/media/####/a5cca62cc613afc6fb419a3235dd3049.0.tmp
/data/media/####/a5cca62cc613afc6fb419a3235dd3049.1.tmp
/data/media/####/a7183a3dcbe8f2086c136bb281124217.0.tmp
/data/media/####/a7183a3dcbe8f2086c136bb281124217.1.tmp
/data/media/####/a723e190a717b5003357ef0ba5604cbd.0.tmp
/data/media/####/a723e190a717b5003357ef0ba5604cbd.1.tmp
/data/media/####/a955fc50775e0760bb85fa3e762e754d.0.tmp
/data/media/####/a955fc50775e0760bb85fa3e762e754d.1.tmp
/data/media/####/a98cdf0767585daee7a44df5f91df8f4.0.tmp
/data/media/####/a98cdf0767585daee7a44df5f91df8f4.1.tmp
/data/media/####/ae0e4029275a7a6ee0953e0041958b64.0.tmp
/data/media/####/ae0e4029275a7a6ee0953e0041958b64.1.tmp
/data/media/####/aff74944314aac8c50552e50537a65c8.0.tmp
/data/media/####/aff74944314aac8c50552e50537a65c8.1.tmp
/data/media/####/b0828ca10363aaa2af48e5a1c28ace84.0.tmp
/data/media/####/b0828ca10363aaa2af48e5a1c28ace84.1.tmp
/data/media/####/b278be1b4060fd5274315b35469d8e11.0.tmp
/data/media/####/b278be1b4060fd5274315b35469d8e11.1.tmp
/data/media/####/b2b5eddc8be4ea210da8f181acdefcf1.0.tmp
/data/media/####/b2b5eddc8be4ea210da8f181acdefcf1.1.tmp
/data/media/####/b2cf1506b62a00cd8825d04ea8595c43.0.tmp
/data/media/####/b2cf1506b62a00cd8825d04ea8595c43.1.tmp
/data/media/####/b334174f7913999d11eee25656f1223f.0.tmp
/data/media/####/b334174f7913999d11eee25656f1223f.1.tmp
/data/media/####/b713f3b3562310b7e0256203eadae425.0.tmp
/data/media/####/b713f3b3562310b7e0256203eadae425.1.tmp
/data/media/####/bba61ad3e783fe0e4175670dfcdea80a.0.tmp
/data/media/####/bba61ad3e783fe0e4175670dfcdea80a.1.tmp
/data/media/####/bbdbc018e754636c6d06946bbafe970e.0.tmp
/data/media/####/bbdbc018e754636c6d06946bbafe970e.1.tmp
/data/media/####/c109ff804d808bbdd626b6f752306b1c.0.tmp
/data/media/####/c109ff804d808bbdd626b6f752306b1c.1.tmp
/data/media/####/c1636aaf0764397e8ff731786322f2ef.0.tmp
/data/media/####/c1636aaf0764397e8ff731786322f2ef.1.tmp
/data/media/####/c1c39d89999d1abcf43ddb307008d4b9.0.tmp
/data/media/####/c1c39d89999d1abcf43ddb307008d4b9.1.tmp
/data/media/####/c2bdcb6521410ba19227aedc222f57d4.0.tmp
/data/media/####/c2bdcb6521410ba19227aedc222f57d4.1.tmp
/data/media/####/c2c7208a8d78d94f5ce943bdf5847c6c.0.tmp
/data/media/####/c2c7208a8d78d94f5ce943bdf5847c6c.1.tmp
/data/media/####/c30cf0dea430b5313e4f8809b62d27f4.0.tmp
/data/media/####/c30cf0dea430b5313e4f8809b62d27f4.1.tmp
/data/media/####/c42b9d63f23523c8736edac060289220.0.tmp
/data/media/####/c42b9d63f23523c8736edac060289220.1.tmp
/data/media/####/c81c3ed49c7d467b4ea7e5766485b059.0.tmp
/data/media/####/c81c3ed49c7d467b4ea7e5766485b059.1.tmp
/data/media/####/c96cf3c1e855dd2eab66d3f013a8bfd0.0.tmp
/data/media/####/c96cf3c1e855dd2eab66d3f013a8bfd0.1.tmp
/data/media/####/caf230de73efd66c6746a93a0e374d81.0.tmp
/data/media/####/caf230de73efd66c6746a93a0e374d81.1.tmp
/data/media/####/cc4bc142e9759338a1cb7a131e0caeca.0.tmp
/data/media/####/cc4bc142e9759338a1cb7a131e0caeca.1.tmp
/data/media/####/cd73c902effd6ff4a268dbe0bc4c3f8a.0.tmp
/data/media/####/cd73c902effd6ff4a268dbe0bc4c3f8a.1.tmp
/data/media/####/cdab7ea1dc8a890f5a9c448068ced858.0.tmp
/data/media/####/cdab7ea1dc8a890f5a9c448068ced858.1.tmp
/data/media/####/cdaee2a901def0c77a0490d31465e351.0.tmp
/data/media/####/cdaee2a901def0c77a0490d31465e351.1.tmp
/data/media/####/d1782ee1a09a57a12fa2f9cc940c5b48.0.tmp
/data/media/####/d1782ee1a09a57a12fa2f9cc940c5b48.1.tmp
/data/media/####/d767b22c47ad6c3d85d7023ae3dafff7.0.tmp
/data/media/####/d767b22c47ad6c3d85d7023ae3dafff7.1.tmp
/data/media/####/d87181eb8ce775cf470519e76819ecbd.0.tmp
/data/media/####/d87181eb8ce775cf470519e76819ecbd.1.tmp
/data/media/####/d957302f3f19d152eaf8ec6b2d4623ee.0.tmp
/data/media/####/d957302f3f19d152eaf8ec6b2d4623ee.1.tmp
/data/media/####/da1197d28a8abc6f485d16525ae5ad9f.0.tmp
/data/media/####/da1197d28a8abc6f485d16525ae5ad9f.1.tmp
/data/media/####/db1ec14ca92fa9a98d5a983ecb4dfddf.0.tmp
/data/media/####/db1ec14ca92fa9a98d5a983ecb4dfddf.1.tmp
/data/media/####/dcff340a0788c21a3443e59a601c88c1.0.tmp
/data/media/####/dcff340a0788c21a3443e59a601c88c1.1.tmp
/data/media/####/dec14eb685bbc3c838caaa317c1f9e8e.0.tmp
/data/media/####/dec14eb685bbc3c838caaa317c1f9e8e.1.tmp
/data/media/####/dff77ad555163f951142e94e1de32a53.0.tmp
/data/media/####/dff77ad555163f951142e94e1de32a53.1.tmp
/data/media/####/e0cef0494285a94ca703f71538d68322.0.tmp
/data/media/####/e0cef0494285a94ca703f71538d68322.1.tmp
/data/media/####/e120932657c3ce04fc16883a6bf30baa.0.tmp
/data/media/####/e120932657c3ce04fc16883a6bf30baa.1.tmp
/data/media/####/e18a7fcc5df364389e958dc1559e2792.0.tmp
/data/media/####/e18a7fcc5df364389e958dc1559e2792.1.tmp
/data/media/####/e24c035f3f50f0fa6efd0cd5f80c477e.0.tmp
/data/media/####/e24c035f3f50f0fa6efd0cd5f80c477e.1.tmp
/data/media/####/e259527fe2646a74b6ddb09d69b5d773.0.tmp
/data/media/####/e259527fe2646a74b6ddb09d69b5d773.1.tmp
/data/media/####/e574a0aa35b0dfa9994676bd66640484.0.tmp
/data/media/####/e574a0aa35b0dfa9994676bd66640484.1.tmp
/data/media/####/ea5083c2e6a7b85b70f2f4a8bd133c8a.0.tmp
/data/media/####/ea5083c2e6a7b85b70f2f4a8bd133c8a.1.tmp
/data/media/####/ea7bd31bf8cacdf8f1abf818baa98131.0.tmp
/data/media/####/ea7bd31bf8cacdf8f1abf818baa98131.1.tmp
/data/media/####/eb2a25a86e401e0ce068cd1f0f9d2f9c.0.tmp
/data/media/####/eb2a25a86e401e0ce068cd1f0f9d2f9c.1.tmp
/data/media/####/ed2b07ab596a1e714e0bdf5b81049383.0.tmp
/data/media/####/ed2b07ab596a1e714e0bdf5b81049383.1.tmp
/data/media/####/ef704dc5b1df2a39b29dd7ce8074752d.0.tmp
/data/media/####/ef704dc5b1df2a39b29dd7ce8074752d.1.tmp
/data/media/####/ef74a03662c66fe6ef948d12074fc236.0.tmp
/data/media/####/ef74a03662c66fe6ef948d12074fc236.1.tmp
/data/media/####/f3122b8571215bb71877072c5751ea85.0.tmp
/data/media/####/f3122b8571215bb71877072c5751ea85.1.tmp
/data/media/####/f315131ba0f508eeac916dcc9bb19ee7.0.tmp
/data/media/####/f315131ba0f508eeac916dcc9bb19ee7.1.tmp
/data/media/####/f66c505e6b96e9688f0f95dd50f3763a.0.tmp
/data/media/####/f66c505e6b96e9688f0f95dd50f3763a.1.tmp
/data/media/####/f957905d229d8f30ae28b2ce4f80e906.0.tmp
/data/media/####/f957905d229d8f30ae28b2ce4f80e906.1.tmp
/data/media/####/fb5bf65ce2ed6d76d541780c8825661c.0.tmp
/data/media/####/fb5bf65ce2ed6d76d541780c8825661c.1.tmp
/data/media/####/fde310a49ea95022bcfaf8c7d8e1ebaf.0.tmp
/data/media/####/fde310a49ea95022bcfaf8c7d8e1ebaf.1.tmp
/data/media/####/fff64d68bd87dc649be20d07626dbadb.0.tmp
/data/media/####/fff64d68bd87dc649be20d07626dbadb.1.tmp
/data/media/####/fffb9fbb4ab24d6e8186254b9698426b.0.tmp
/data/media/####/fffb9fbb4ab24d6e8186254b9698426b.1.tmp
/data/media/####/journal
/data/media/####/journal.tmp
/data/media/####/log.lock
/data/media/####/log1.txt
/data/media/####/sysid.dat

Miscellaneous:

Executes the following shell scripts:

/system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
/system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_min_freq
cat /sys/class/net/wlan0/address
getprop ro.build.display.id
getprop ro.build.version.emui
getprop ro.miui.ui.version.name
getprop ro.rom.different.version
getprop ro.vivo.os.name
ls /sys/class/thermal

Loads the following dynamic libraries:

libjiagu-1830843141
tpnsSecurity

Uses the following algorithms to encrypt data:

AES-CBC-PKCS5Padding
AES-CBC-PKCS7Padding
DES-CBC-PKCS5Padding

Uses the following algorithms to decrypt data:

AES-CBC-PKCS5Padding
AES-CBC-PKCS7Padding

Uses special library to hide executable bytecode.

Gets information about location.

Gets information about network.

Gets information about phone status (number, IMEI, etc.).

Gets information about installed apps.

Gets information about accounts associated with the device (Google, Facebook, etc.).

Adds tasks to the system scheduler.

Displays its own windows over windows of other apps.

テクノロジー

用語

トレーニングコースおよび啓蒙プロジェクト

アンチウイルスに関する誤解と噂

Technical information

Curing recommendations

Free trial