Technical information
- Android.HiddenAds.137.origin
- i####.####.cn
- sunny####.xyz
- v####.####.com
- i####.####.cn/iplookup/iplookup.php?format=####
- sunny####.xyz/ad/adu?gffw=####&frrw=####&dlkvv=####&wdazz=####&fkk9ll=##...
- sunny####.xyz/ad/adc?gffw=####&frrw=####&dlkvv=####&wdazz=####&fkk9ll=##...
- v####.####.com/api/va
- <Package Folder>/cache/####/data_0
- <Package Folder>/cache/####/data_1
- <Package Folder>/cache/####/data_2
- <Package Folder>/cache/####/data_3
- <Package Folder>/cache/####/index
- <Package Folder>/cache/1470286953684.jar
- <Package Folder>/cache/1470286953684.tmp
- <Package Folder>/cache/ApplicationCache.db-journal (deleted)
- <Package Folder>/databases/easv.data-journal
- <Package Folder>/databases/google_app_measurement_local.db
- <Package Folder>/databases/google_app_measurement_local.db-journal
- <Package Folder>/databases/plug.dataBase
- <Package Folder>/databases/plug.dataBase-journal
- <Package Folder>/databases/webview.db-journal
- <Package Folder>/databases/webviewCookiesChromium.db-journal (deleted)
- <Package Folder>/files/DEAB89CE10FEAA11
- <Package Folder>/filesbb.jar
- <Package Folder>/no_backup/com.google.android.gms.appid-no-backup
- <Package Folder>/shared_prefs/Prefres.xml
- <Package Folder>/shared_prefs/SSP.xml
- <Package Folder>/shared_prefs/SSPPrefe.xml
- <Package Folder>/shared_prefs/SSPPrefe.xml.bak
- <Package Folder>/shared_prefs/com.google.android.gms.appid.xml
- <Package Folder>/shared_prefs/com.google.android.gms.measurement.prefs.xml
- <Package Folder>/shared_prefs/com.google.android.gms.measurement.prefs.xml.bak
- <Package Folder>/shared_prefs/kbkbUpdateVerPreference.xml
- <Package Folder>/shared_prefs/local_storage0.xml
- <Package Folder>/shared_prefs/local_storage1.xml
- <Package Folder>/shared_prefs/local_storage1.xml.bak
- <Package Folder>/shared_prefs/sp.xml
- <Package Folder>/shared_prefs/sp.xml.bak
- <SD-Card>/Ysfiles/aaa.jar
- <SD-Card>/Ysfiles/mmm.jar
- <SD-Card>/pasv.txt
- <Package Folder>/lib/libnat-lib3537.so -pkg <Package> -pid 2187 -svr <Package>/com.game91.fastrun.keep.ClkService -url http://www.sunny-day.xyz/ad/adc?ohmamami=ohno&fkk9ll=<IMEI>&cvsds=<IMSI>&frrw=64500&f4rr=00:00:00:00:00:14 -log
- cat /sys/class/net/wlan0/address
- sh <Package Folder>/lib/libnat-lib3537.so -pkg <Package> -pid 2187 -svr <Package>/com.game91.fastrun.keep.ClkService -url http://www.sunny-day.xyz/ad/adc?ohmamami=ohno&fkk9ll=<IMEI>&cvsds=<IMSI>&frrw=64500&f4rr=00:00:00:00:00:14 -log
- mod-jni
- nat-lib3537
- AES-CBC-PKCS5Padding
- DES-CBC-PKCS5Padding
- AES-CBC-PKCS5Padding
- DES
- DES-CBC-PKCS5Padding
- DESede