Technical information
- Android.Triada.467.origin
- Android.Xiny.287.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) api.f####.com:80
- TCP(HTTP/1.1) www.koapk####.com:8081
- TCP(TLS/1.0) 1####.217.17.142:443
- api.f####.com
- mt####.go####.com
- www.koapk####.com
- api.f####.com/co?u=####&s=####&gaid=####&imei=####&androidId=####&at=###...
- www.koapk####.com:8081/sm/sr/rt/ry
- /data/data/####/07dc7fd2-daf2-426e-8f44-7d44003c8230.dex (deleted)
- /data/data/####/07dc7fd2-daf2-426e-8f44-7d44003c8230.jar
- /data/data/####/1f4f109e-9452-4a0d-97c8-99b55cff9078.dex (deleted)
- /data/data/####/1f4f109e-9452-4a0d-97c8-99b55cff9078.jar
- /data/data/####/20160121.xml
- /data/data/####/201911201150.apk
- /data/data/####/201911201150.dex
- /data/data/####/363e89d3-d62a-4589-be74-5f1e6f4789df.dex (deleted)
- /data/data/####/363e89d3-d62a-4589-be74-5f1e6f4789df.jar
- /data/data/####/438276c2-627f-47ad-be93-14898cdcc793.dex (deleted)
- /data/data/####/438276c2-627f-47ad-be93-14898cdcc793.jar
- /data/data/####/6a41f1d6-f2e0-4119-8eb3-654b200b5b24.dex (deleted)
- /data/data/####/6a41f1d6-f2e0-4119-8eb3-654b200b5b24.jar
- /data/data/####/90e9b94e-23a8-4595-9d2f-e37ef721251f.dex (deleted)
- /data/data/####/90e9b94e-23a8-4595-9d2f-e37ef721251f.jar
- /data/data/####/MobikokCommonConfig.xml
- /data/data/####/MobikokCommonConfig.xml.bak (deleted)
- /data/data/####/MobikokDeviceConfig.xml
- /data/data/####/Q2hhbm5lbElES2V5MjAxNjEyMjcxODU3.xml
- /data/data/####/ag.xml
- /data/data/####/bdownloaders.db
- /data/data/####/bdownloaders.db-journal
- /data/data/####/c201911201150.apk
- /data/data/####/cbf580c5-d96d-4904-83d6-e8244a316eea.dex (deleted)
- /data/data/####/cbf580c5-d96d-4904-83d6-e8244a316eea.jar
- /data/data/####/rtr.db
- /data/data/####/rtr.db-journal
- /data/data/####/swith1014.db
- /data/data/####/swith1014.db-journal
- /data/data/####/webview.db
- /data/data/####/webview.db-journal
- /data/media/####/Config.txt
- app_process /system/bin com.android.commands.pm.Pm path <Package>
- awk {print $9}
- grep 2136
- grep 3133
- grep 4219
- grep 5308
- grep 6391
- grep 7426
- grep 8169
- logcat -d -v time
- md5 /data/app/<Package>-1.apk
- ps
- sh
- libcom.fellen.armse.moth
- AES-CBC-PKCS5Padding
- AES-CBC-PKCS5Padding