Technical information
- Adware.Gexin.2.origin
- Android.Backdoor.564.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) connect####.gst####.com:80
- TCP(HTTP/1.1) s1.w####.com:80
- TCP(HTTP/1.1) i####.c####.q####.####.net:80
- TCP(HTTP/1.1) sdk.c####.g####.####.cn:80
- TCP(HTTP/1.1) sdk.o####.p####.####.com:80
- TCP(HTTP/1.1) cdn-sdk####.g####.com.####.cn:80
- TCP(HTTP/1.1) c-h####.g####.com:80
- TCP(TLS/1.0) digital####.google####.com:443
- TCP(TLS/1.0) loc.map.b####.com:443
- TCP(TLS/1.0) rr9---s####.g####.com:443
- TCP(TLS/1.0) api.map.b####.com:443
- TCP(TLS/1.0) pla####.google####.com:443
- TCP(TLS/1.0) connect####.gst####.com:443
- TCP(TLS/1.0) and####.a####.go####.com:443
- TCP(TLS/1.0) schedul####.w####.com:443
- TCP(TLS/1.0) f####.gst####.com:443
- TCP(TLS/1.0) md####.google####.com:443
- TCP(TLS/1.0) s1.w####.com:443
- TCP(TLS/1.2) md####.google####.com:443
- TCP(TLS/1.2) 64.2####.164.104:443
- TCP(TLS/1.2) connect####.gst####.com:443
- TCP(TLS/1.2) pla####.google####.com:443
- UDP digital####.google####.com:443
- TCP sdk.o####.t####.####.com:5224
- UDP md####.google####.com:443
- UDP 1####.194.163.36:443
- TCP cm-10####.g####.com:5225
- and####.a####.go####.com
- and####.cli####.go####.com
- api.map.b####.com
- black####.w####.com
- c-h####.g####.com
- cdn-sdk####.g####.com
- cm-10####.g####.com
- co####.w####.com
- connect####.gst####.com
- cr####.w####.com
- digital####.google####.com
- dyn.w####.com
- f####.gst####.com
- kd.w####.com
- loc.map.b####.com
- m####.go####.com
- md####.google####.com
- microse####.w####.com
- mo####.w####.com
- pla####.google####.com
- pla####.googleu####.com
- rr9---s####.g####.com
- s1.w####.com
- sdk-ope####.g####.com
- sdk.c####.g####.com
- sdk.o####.p####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.com
- sdk.o####.t####.####.net
- www.go####.com
- www.w####.com
- cdn-sdk####.g####.com.####.cn/tdata_CoH340
- cdn-sdk####.g####.com.####.cn/tdata_EDB102
- cdn-sdk####.g####.com.####.cn/tdata_GKM601
- cdn-sdk####.g####.com.####.cn/tdata_jFf739
- cdn-sdk####.g####.com.####.cn/tdata_pKX830
- i####.c####.q####.####.net/proton/white-list.json
- s1.w####.com/wis/486/6812415fcfcfa60b_1242x1878.jpg
- s1.w####.com/wis/512/85ee34a7f2ace4fb_615x462.png
- s1.w####.com:443/wis/539/fa2c635620769efa_1029x360.png
- schedul####.w####.com:443/bodyguard/showBlackListURL?blackurl=####
- schedul####.w####.com:443/client/api/getPrism?name=####&version=####&os=...
- schedul####.w####.com:443/fingerprint/key/public_key
- schedul####.w####.com:443/hibrid/now.jsp
- schedul####.w####.com:443/loan/client/getBannerListV2
- schedul####.w####.com:443/loan/client/getBaseCreditV3?waxVersion=####
- schedul####.w####.com:443/loan/client/getFlashScreen
- schedul####.w####.com:443/loan/client/getLoanSummary
- schedul####.w####.com:443/loan/client/getMultipleInLoan
- schedul####.w####.com:443/loan/client/getNotification?pageName=####
- schedul####.w####.com:443/loan/client/getPushConfig
- schedul####.w####.com:443/loan/client/getRedBoyConfig
- schedul####.w####.com:443/loan/client/getTabbarItems
- schedul####.w####.com:443/sensor/config/Android.conf
- schedul####.w####.com:443/sensor/config/Android.conf?v=####
- sdk.c####.g####.####.cn/config/hzv9.conf
- sdk.o####.p####.####.com/api/addr.htm
- c-h####.g####.com/api.php?format=####&t=####
- schedul####.w####.com:443/appActive
- schedul####.w####.com:443/client/android-patch/api/fetch
- schedul####.w####.com:443/client/rn-bundle/api/v2/fetch
- schedul####.w####.com:443/client/tongtiao/api/router_and_rewrite
- schedul####.w####.com:443/loan/client/postAppQuit
- schedul####.w####.com:443/sensor/sa?project=####
- sdk.o####.p####.####.com/api.php?format=####&t=####
- sdk.o####.p####.####.com/api.php?format=####&t=####&d=####&k=####
- /data/data/####/-79081908715765256
- /data/data/####/.jg.ic
- /data/data/####/2CD91DE9A0F1D93BFFAEF848DEF79462
- /data/data/####/37A6259CC0C1DAE299A7866489DFF0BD-0
- /data/data/####/43XGUZuugfRcCN6s6cwfIWag7wc.1486560536.tmp
- /data/data/####/4AlT-WFgh1xN2qAviwc4UXHlhdo.cnt
- /data/data/####/6A8F4A8B985091BA4BAD14A6238AA3D1-0
- /data/data/####/72a5961f863f
- /data/data/####/Cookies-journal
- /data/data/####/EB1626FC01FA03211514508F224A2B70-0
- /data/data/####/P_F.xml
- /data/data/####/RKStorage-journal
- /data/data/####/WebViewChromiumPrefs.xml
- /data/data/####/activate.xml
- /data/data/####/app_preferences.xml
- /data/data/####/authStatus_com.caimi.kuaidai;remote.xml
- /data/data/####/classes.dex
- /data/data/####/classes.dex;classes2.dex
- /data/data/####/classes.dex;classes3.dex
- /data/data/####/classes.dex;classes4.dex
- /data/data/####/classes.dex;classes5.dex
- /data/data/####/classes.dex;classes6.dex
- /data/data/####/com.caimi.kuaidai-journal
- /data/data/####/com.caimi.kuaidai_preferences.xml
- /data/data/####/com.caimi.kuaidai_preferences.xml.bak
- /data/data/####/com.sensorsdata.analytics.android.sdk.SensorsDataAPI.xml
- /data/data/####/com.wacai.android.skyline.xml
- /data/data/####/dianshi.host
- /data/data/####/dso_deps
- /data/data/####/dso_lock
- /data/data/####/dso_manifest
- /data/data/####/dso_state
- /data/data/####/firll.dat
- /data/data/####/getui_sp.xml
- /data/data/####/gkt-journal
- /data/data/####/gx_sp.xml
- /data/data/####/hst.db
- /data/data/####/hst.db-journal
- /data/data/####/init.pid
- /data/data/####/init_c1.pid
- /data/data/####/ku6wqOdLsmpUTgZdpsNrv1hSnUo.1920304266.tmp
- /data/data/####/libIDCARDDLL.so
- /data/data/####/libcuid.so
- /data/data/####/libfacial_action.so
- /data/data/####/libfb.so
- /data/data/####/libfolly_json.so
- /data/data/####/libgetuiext2.so
- /data/data/####/libgifimage.so
- /data/data/####/libglog.so
- /data/data/####/libglog_init.so
- /data/data/####/libgnustl_shared.so
- /data/data/####/libicu_common.so
- /data/data/####/libimagepipeline.so
- /data/data/####/libjiagu.so
- /data/data/####/libjsc.so
- /data/data/####/libkey.so
- /data/data/####/libreactnativejni.so
- /data/data/####/libweibosdkcore.so
- /data/data/####/libyoga.so
- /data/data/####/mac.xml
- /data/data/####/metrics_guid
- /data/data/####/monitor.db
- /data/data/####/monitor.db-journal
- /data/data/####/proc_auxv
- /data/data/####/push.pid
- /data/data/####/push_config.xml
- /data/data/####/pushext.db-journal
- /data/data/####/pushg.db-journal
- /data/data/####/pushk.db-journal
- /data/data/####/pushsdk.db-journal
- /data/data/####/red_boy.xml
- /data/data/####/run.pid
- /data/data/####/sdk.taobao.app.xml
- /data/data/####/sdk.taobao.user.xml
- /data/data/####/sensorsdata.xml
- /data/data/####/sharePreferencePatch.xml
- /data/data/####/splash.xml
- /data/data/####/tdata_CoH340
- /data/data/####/tdata_CoH340.dex
- /data/data/####/tdata_CoH340.dex.flock (deleted)
- /data/data/####/tdata_CoH340.jar
- /data/data/####/tdata_GKM601
- /data/data/####/tdata_GKM601.dex
- /data/data/####/tdata_GKM601.dex.flock (deleted)
- /data/data/####/tdata_GKM601.jar
- /data/data/####/tdata_jFf739
- /data/data/####/tdata_jFf739.dex
- /data/data/####/tdata_jFf739.dex.flock (deleted)
- /data/data/####/tdata_jFf739.jar
- /data/data/####/tdata_pKX830
- /data/data/####/tdata_pKX830.dex
- /data/data/####/tdata_pKX830.dex.flock (deleted)
- /data/data/####/tdata_pKX830.jar
- /data/data/####/trinity-config.info
- /data/data/####/webview_data.lock
- /data/data/####/ws_config.xml
- /data/media/####/.SDCardSerialNumber
- /data/media/####/.cuid
- /data/media/####/.cuid2
- /data/media/####/app.db
- /data/media/####/com.caimi.kuaidai.bin
- /data/media/####/com.caimi.kuaidai.db
- /data/media/####/com.getui.sdk.deviceId.db
- /data/media/####/com.igexin.sdk.deviceId.db
- /data/media/####/gkt
- /data/media/####/gkt-journal
- /data/media/####/gktper (deleted)
- /data/media/####/tdata_CoH340
- /data/media/####/tdata_GKM601
- /data/media/####/tdata_jFf739
- /data/media/####/tdata_pKX830
- /data/media/####/test.log
- /data/media/####/test.log (deleted)
- /data/media/####/yoh.dat
- /data/media/####/yol.dat
- /data/media/####/yom.dat
- /data/misc/####/primary.prof
- /system/bin/cat /proc/cpuinfo
- cat /proc/self/cgroup
- mount
- sh
- libfb
- libfolly_json
- libglog
- libglog_init
- libgnustl_shared
- libicu_common
- libimagepipeline
- libjiagu
- libjsc
- liblocSDK7b
- libreactnativejni
- libyoga
- AES-CBC-PKCS5Padding
- AES-CFB-NoPadding
- AES-ECB-PKCS5Padding
- RSA-NONE-OAEPWithSHA1AndMGF1Padding
- AES
- AES-CBC-PKCS5Padding
- AES-ECB-PKCS5Padding