Technical information
- Adware.Plague.1.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) c####.s####.zdw####.com:80
- TCP(HTTP/1.1) yen.zdw####.com:80
- TCP(HTTP/1.1) tag.zdw####.com:80
- TCP(HTTP/1.1) a.appj####.com:80
- TCP(HTTP/1.1) loc.map.b####.com:80
- TCP(TLS/1.0) fu-7fab####.upaly####.com:443
- TCP(TLS/1.0) yen.zdw####.com:443
- TCP(TLS/1.0) regi####.xm####.xi####.com:443
- TCP(TLS/1.0) tag.zdw####.com:443
- a.appj####.com
- adc####.zdw####.com
- an.ite####.com
- an1.ite####.com
- an2.ite####.com
- c####.s####.zdw####.com
- c####.s####.zdw####.com
- co####.zdw####.com
- ctt.zdw####.com
- cu####.zdw####.com
- fest####.zdw####.com
- fu-7fab####.upaly####.com
- g####.zdw####.com
- loc.map.b####.com
- network####.zdw####.com
- no####.zdw####.com
- regi####.xm####.xi####.com
- sms.zdw####.com
- tag.zdw####.com
- yen.zdw####.com
- z####.zdw####.com
- c####.s####.zdw####.com/ad/common?platform=####&sid=####&location=####&s...
- c####.s####.zdw####.com/business/1?platform=####&sid=####&location=####&...
- c####.s####.zdw####.com/c?position=####&platform=####&sid=####&location=...
- tag.zdw####.com/config/upload?platform=####&sid=####&last_modified=####&...
- tag.zdw####.com/regex/common?platform=####&sid=####&last_modified=####&s...
- tag.zdw####.com/regex/credit?platform=####&sid=####&last_modified=####&s...
- tag.zdw####.com/safesofts/get?platform=####&sid=####&location=####&sys=#...
- tag.zdw####.com/tag/get?platform=####&sid=####&last_modified=####&sys=##...
- tag.zdw####.com/tips?last_modified_time=####
- yen.zdw####.com/1/config?platform=####&sid=####&sys=####&iid=####&imei=#...
- yen.zdw####.com/1/pop/1001?pm=####&language=####&ver=####&uuid=####&chan...
- yen.zdw####.com/?p=an=bi####
- yen.zdw####.com/holidays/get?platform=####&sid=####&last_modified=####&s...
- a.appj####.com/ad-service/ad/mark
- c####.s####.zdw####.com/
- c####.s####.zdw####.com/get_online_config
- loc.map.b####.com/sdk.php
- yen.zdw####.com/api
- yen.zdw####.com/config
- /data/data/####/.jg.ic
- /data/data/####/1557374631263
- /data/data/####/1557374631962
- /data/data/####/1557374633012
- /data/data/####/1557374643895
- /data/data/####/1557374643931
- /data/data/####/INSTALLATION
- /data/data/####/JsonReportPrefs.xml
- /data/data/####/MonitoringServicesPrefs.xml
- /data/data/####/classes.jar
- /data/data/####/com.yd2bc54.w6d2e20_alarm_invalid.xml
- /data/data/####/com.yd2bc54.w6d2e20_preferences.xml
- /data/data/####/com.yd2bc54.w6d2e20data_sdk_preferences.xml
- /data/data/####/com.yd2bc54.w6d2e20session.xml
- /data/data/####/cooperation_preferences.xml
- /data/data/####/dbrqy-journal
- /data/data/####/firll.dat
- /data/data/####/jg_app_update_settings_random.xml
- /data/data/####/libjiagu.so
- /data/data/####/mipush.xml
- /data/data/####/mipush_extra.xml
- /data/data/####/splash_config
- /data/data/####/splash_pref.xml
- /data/data/####/webview.db-journal
- /data/data/####/zdclock.db-journal
- /data/media/####/.cuid
- /data/media/####/2019-05-09
- /data/media/####/channel.txt
- /data/media/####/conlts.dat
- /data/media/####/ls.db
- /data/media/####/ls.db-journal
- /data/media/####/yoh.dat
- /data/media/####/yol.dat
- /data/media/####/yom.dat
- chmod 755 <Package Folder>/.jiagu/libjiagu.so
- getprop ro.build.version.emui
- libjiagu
- locSDK5
- zdclock
- AES-CBC-PKCS5Padding
- AES-ECB-PKCS5Padding
- DES-ECB-PKCS5Padding
- AES-CBC-PKCS5Padding
- AES-CFB-NoPadding