Technical information
- Android.Gexin.1
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) newswif####.dftou####.com:80
- TCP(HTTP/1.1) im####.jiemen####.com:80
- TCP(HTTP/1.1) sspro####.smalls####.cn:80
- TCP(HTTP/1.1) s.p.q####.com:80
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) 07img####.eas####.com.####.com:80
- TCP(HTTP/1.1) img.smalls####.cn:80
- TCP(HTTP/1.1) s####.e.qq.com:80
- TCP(HTTP/1.1) qzones####.g####.cn.####.com:80
- TCP(HTTP/1.1) w####.45gu####.com:80
- TCP(HTTP/1.1) mi.g####.qq.com:80
- TCP(HTTP/1.1) o####.smalls####.cn:80
- TCP(HTTP/1.1) luna-im####.qq.com.####.com:80
- TCP(TLS/1.0) im####.jiemen####.com:443
- TCP(TLS/1.0) 1####.217.19.206:443
- 05img####.eas####.com
- 07img####.eas####.com
- 09img####.eas####.com
- a####.smalls####.cn
- a####.u####.com
- im####.jiemen####.com
- img.smalls####.cn
- imgc####.qq.com
- mi.g####.qq.com
- newswif####.dftou####.com
- o####.smalls####.cn
- qzones####.g####.cn
- s####.e.qq.com
- s.p.q####.com
- sdk.o####.t####.####.com
- ss####.smalls####.cn
- sspro####.smalls####.cn
- w####.45gu####.com
- 07img####.eas####.com.####.com/mobile/20200611/2020061117_97fdddcca1274c...
- 07img####.eas####.com.####.com/mobile/20200611/20200611194315_7e3ceb28dc...
- 07img####.eas####.com.####.com/mobile/20200611/20200611221322_868d3c9df2...
- 07img####.eas####.com.####.com/mobile/20200611/20200611232756_aa92fe5192...
- im####.jiemen####.com/new_2020/mianxiang.png
- img.smalls####.cn/profile/2019/12/18/5df9d0b3a72ea.jpg
- img.smalls####.cn/profile/2019/12/18/5df9d177e7058.jpg
- luna-im####.qq.com.####.com/qzone/biz/gdt/mod/android/AndroidAllInOne/pr...
- mi.g####.qq.com/gdt_mview.fcg?datatype=####&posid=####&count=####&r=####...
- mi.g####.qq.com/gdt_mview.fcg?posw=####&posh=####&count=####&r=####&data...
- newswif####.dftou####.com/jsonnew/refresh?ver=####&client=####&market=##...
- o####.smalls####.cn/?ver=####&client=####&market=####&udid=####&mac=####...
- o####.smalls####.cn/api.php?market=####&udid=####&a=####&c=####&os=####&...
- o####.smalls####.cn/api.php?ver=####&client=####&market=####&udid=####&m...
- qzones####.g####.cn.####.com/qzone/biz/gdt/mob/sdk/v2/android01/images/i...
- qzones####.g####.cn.####.com/qzone/biz/gdt/mob/sdk/v2/android01/js-relea...
- qzones####.g####.cn.####.com/qzone/biz/gdt/mob/sdk/v2/android01/js/lib/r...
- qzones####.g####.cn.####.com/qzone/biz/gdt/mob/sdk/v2/android01/splash.a...
- qzones####.g####.cn.####.com/qzone/biz/gdt/mob/sdk/v2/android01/splash.h...
- s.p.q####.com/pub/check_bizup?qver=####&hver=####&pf=####&biz=####&uin=#...
- w####.45gu####.com/uploads/images/2020/03/10/5e66cba44600b.jpg
- a####.u####.com/app_logs
- o####.smalls####.cn/api.php?ver=####&client=####&market=####&udid=####&m...
- s####.e.qq.com/activate
- s####.e.qq.com/msg
- sspro####.smalls####.cn/?ver=####&client=####&market=####&udid=####&mac=...
- /data/data/####/.imprint
- /data/data/####/.jg.ic
- /data/data/####/MarketComment.xml
- /data/data/####/cc.db
- /data/data/####/cc.db-journal
- /data/data/####/config.json
- /data/data/####/constant.js
- /data/data/####/data_0
- /data/data/####/data_1
- /data/data/####/data_2
- /data/data/####/data_3
- /data/data/####/devCloudSetting.cfg
- /data/data/####/devCloudSetting.sig
- /data/data/####/dream.db
- /data/data/####/dream.db-journal
- /data/data/####/exchangeIdentity.json
- /data/data/####/exid.dat
- /data/data/####/gdtAdInfo.xml
- /data/data/####/gdt_plugin.jar
- /data/data/####/gdt_plugin.jar.sig
- /data/data/####/gdt_plugin.tmp
- /data/data/####/gdt_plugin.tmp.sig
- /data/data/####/gdt_suid
- /data/data/####/index
- /data/data/####/init.pid
- /data/data/####/js.zip
- /data/data/####/libjiagu508104081.so
- /data/data/####/notice_red.xml
- /data/data/####/platform.js
- /data/data/####/push.pid
- /data/data/####/pushsdk.db-journal
- /data/data/####/run.pid
- /data/data/####/sdkCloudSetting.cfg
- /data/data/####/sdkCloudSetting.sig
- /data/data/####/tencent.html
- /data/data/####/tencent.js
- /data/data/####/ua.db
- /data/data/####/ua.db-journal
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/data/####/utils.js
- /data/data/####/verify.json
- /data/data/####/verify.signature
- /data/data/####/webview.db-journal
- /data/data/####/webviewCookiesChromium.db-journal
- /data/data/####/weiboprefer.xml
- /data/media/####/-1114404950.tmp
- /data/media/####/-1211627892.tmp
- /data/media/####/-1217768329.tmp
- /data/media/####/-1502221558.tmp
- /data/media/####/-1554838626ing
- /data/media/####/-1719603880ing
- /data/media/####/-2094172377.tmp
- /data/media/####/-353324883.tmp
- /data/media/####/-665254850.tmp
- /data/media/####/1.app.log
- /data/media/####/1249609309.tmp
- /data/media/####/1700753354.tmp
- /data/media/####/1972094997.tmp
- /data/media/####/223639982.tmp
- /data/media/####/50934993ing
- /data/media/####/710872012.tmp
- /data/media/####/ApplicationCache.db-journal
- chmod 755 <Package Folder>/.jiagu/libjiagu508104081.so
- libjiagu508104081
- AES-CBC-PKCS7Padding
- AES-ECB-PKCS7Padding
- AES-CBC-PKCS5Padding
- AES-ECB-PKCS7Padding
- RSA-ECB-PKCS1Padding