Executes next shell scripts:
- /data/data/com.halo.wifikey.wifilocating/lib/libnative.so rpcx com.halo.wifikey.wifilocating
- /system/bin/sh -c getprop ro.aa.romver
- /system/bin/sh -c getprop ro.board.platform
- /system/bin/sh -c getprop ro.build.fingerprint
- /system/bin/sh -c getprop ro.build.nubia.rom.name
- /system/bin/sh -c getprop ro.build.rom.id
- /system/bin/sh -c getprop ro.build.tyd.kbstyle_version
- /system/bin/sh -c getprop ro.build.version.emui
- /system/bin/sh -c getprop ro.build.version.opporom
- /system/bin/sh -c getprop ro.gn.gnromvernumber
- /system/bin/sh -c getprop ro.lenovo.series
- /system/bin/sh -c getprop ro.lewa.version
- /system/bin/sh -c getprop ro.meizu.product.model
- /system/bin/sh -c getprop ro.miui.ui.version.name
- /system/bin/sh -c getprop ro.vivo.os.build.display.id
- /system/bin/sh -c type su
- <error:2>
- chmod 0644 /system/app/time.apk
- chmod 0777 /system/app/key.bat
- chmod 700 /data/data/com.halo.wifikey.wifilocating/tx_shell/libnfix.so
- chmod 700 /data/data/com.halo.wifikey.wifilocating/tx_shell/libshella-2.10.1.so
- chmod 700 /data/data/com.halo.wifikey.wifilocating/tx_shell/libufix.so
- chmod 700 <Package Folder>/tx_shell/libnfix.so
- chmod 700 <Package Folder>/tx_shell/libshella-2.10.1.so
- chmod 700 <Package Folder>/tx_shell/libufix.so
- cp <Package Folder>/app_a/key.bat /system/app/
- getprop ro.aa.romver
- getprop ro.board.platform
- getprop ro.build.fingerprint
- getprop ro.build.nubia.rom.name
- getprop ro.build.rom.id
- getprop ro.build.tyd.kbstyle_version
- getprop ro.build.version.emui
- getprop ro.build.version.opporom
- getprop ro.gn.gnromvernumber
- getprop ro.lenovo.series
- getprop ro.lewa.version
- getprop ro.meizu.product.model
- getprop ro.vivo.os.build.display.id
- getprop ro.yunos.version
- ip a
- logcat -d -v threadtime
- ls data
- mount -o rw,remount /system
- mv /system/app/key.bat /system/app/time.apk
- sh
- su
Loads the following dynamic libraries:
- Bugly
- liblegudb.x86
- libnfix
- libshella-2.10.1
- libufix
- nfix
- ufix
Uses the following algorithms to encrypt data:
- AES-CBC-NoPadding
- AES-ECB-PKCS7Padding
- AES-GCM-NoPadding
- RSA-ECB-PKCS1Padding
Uses the following algorithms to decrypt data:
Uses elevated priveleges.
Uses special library to hide executable bytecode.
Gains access to telephone information (number, imei, etc.)