Technical information
- 106575206321505460: dyl#null,<IMEI>,6000189-1-1-A010001A00-0
- 10691009: @8DYL#null,<IMEI>,6000189-1-1-A010001A00-0
- Android.Backdoor.613.origin
- Android.Spy.205.origin
- UDP(DNS) <Google DNS>
- TCP(GCM) <Google Host>
- TCP(HTTP/1.1) sdk.shfy####.cn:8000
- TCP(HTTP/1.1) www.huangda####.com:80
- TCP(HTTP/1.1) m.mig####.com:80
- TCP(HTTP/1.1) and####.5####.com:8077
- TCP(HTTP/1.1) 1####.129.132.111:8001
- TCP(HTTP/1.1) dl.eleve####.net.####.com:80
- TCP(HTTP/1.1) wap.cm####.com:80
- TCP(HTTP/1.1) sdk.ye####.top:8000
- TCP(HTTP/1.1) 1####.55.89.238:8977
- TCP(HTTP/1.1) sdk.shxz####.cn:8000
- TCP(HTTP/1.1) m####.hej####.com:80
- and####.5####.com
- apm-co####.qte####.com
- dl.eleve####.net
- m####.hej####.com
- m.mig####.com
- p####.mili####.com
- p3.i####.cc
- sdk.shfy####.cn
- sdk.shxz####.cn
- sdk.ye####.top
- ut####.cn
- wap.cm####.com
- www.huangda####.com
- dl.eleve####.net.####.com/apkf/3rdapk2/M01/18/36/wKhklFnNuLSAbn7lAAGn7qG...
- m####.hej####.com/get139.php?apiKey=####&imsi=####
- m.mig####.com/course/504703.html?cm=####
- wap.cm####.com/r/378609775/378609778/index.htm?cm=####
- wap.cm####.com/r/378609775/index.htm?cm=####
- wap.cm####.com/r/p/index.jsp?vt=####&cm=####
- wap.cm####.com/r/p/lyxy.jsp?ln=####&t1=####&cm=####
- www.huangda####.com/active!activeLog.action?provider=####&clickId=####&m...
- www.huangda####.com/resource!resource?resTypes=####&appid=####&channel=#...
- and####.5####.com:8077/android/sms/netpay/prefetch.do
- sdk.shfy####.cn:8000/sp/targetInit.e?pid=####&appid=####&qcid=####
- www.huangda####.com/shop/shop_upload_log
- <Package Folder>/app_dex/utopay.jar
- <Package Folder>/app_dex/utopay_close.png
- <Package Folder>/app_dex/utopay_icon.gif
- <Package Folder>/app_dex03394/apk.dex
- <Package Folder>/app_dex04446/apk.dex (deleted)
- <Package Folder>/app_dex08920/apk.dex (deleted)
- <Package Folder>/app_dexlm/classes.jar
- <Package Folder>/app_workbench04446/apk.zip
- <Package Folder>/app_workbench21024/apk.zip
- <Package Folder>/app_workbench26550/apk.zip
- <Package Folder>/app_workbench71370/apk.zip
- <Package Folder>/app_workbench71450/apk.zip
- <Package Folder>/app_workbench76750/apk.zip
- <Package Folder>/app_workbench82116/apk.zip
- <Package Folder>/app_workbench82196/apk.zip
- <Package Folder>/app_workbench82342/apk.zip
- <Package Folder>/app_workbench82422/apk.zip
- <Package Folder>/app_workbench87642/apk.zip
- <Package Folder>/app_workbench87948/apk.zip
- <Package Folder>/app_workbench93394/apk.zip
- <Package Folder>/app_workbench98920/apk.zip
- <Package Folder>/cache/####/dmdata.jar
- <Package Folder>/databases/.fb
- <Package Folder>/databases/.fb-journal
- <Package Folder>/databases/Data_sync.db-journal
- <Package Folder>/databases/mp.db
- <Package Folder>/databases/mp.db-journal
- <Package Folder>/databases/webview.db-journal
- <Package Folder>/databases/zpay_db
- <Package Folder>/databases/zpay_db-journal
- <Package Folder>/files/####/onib_clz.dex
- <Package Folder>/files/####/onib_clz.jar
- <Package Folder>/files/1.0-859.stacktrace
- <Package Folder>/files/1.0-88860.stacktrace
- <Package Folder>/files/libabc
- <Package Folder>/files/libexec.so
- <Package Folder>/files/libexecmain.so
- <Package Folder>/files/noend.ini
- <Package Folder>/hunt.conf
- <Package Folder>/shared_prefs/<Package>_preferences.xml
- <Package Folder>/shared_prefs/ACCOUNT_SYSTEM_ACCOUNT_INFO.xml
- <Package Folder>/shared_prefs/BOOT_SMS_INFO.xml
- <Package Folder>/shared_prefs/BOOT_SMS_SENT_TIME.xml
- <Package Folder>/shared_prefs/cpMsg.xml
- <Package Folder>/shared_prefs/device_id.xml.xml
- <Package Folder>/shared_prefs/dispatch_log.xml
- <Package Folder>/shared_prefs/getFlag.xml
- <Package Folder>/shared_prefs/jmsdk.dat.xml
- <Package Folder>/shared_prefs/pref_recomm.xml
- <Package Folder>/shared_prefs/pretw.xml
- <Package Folder>/shared_prefs/pz_sharedpre_cmreaderlogininfo.xml
- <Package Folder>/shared_prefs/twc.xml
- <Package Folder>/shared_prefs/umeng_general_config.xml
- <Package Folder>/shared_prefs/version.dat.xml
- <Package Folder>/shared_prefs/zpay_info.xml
- <Package Folder>/shared_prefs/zpay_info.xml.bak (deleted)
- <SD-Card>/.tpservice/####/qsha_80001_5096.jar
- <SD-Card>/.twservice/####/tw
- <SD-Card>/.twservice/qshp_3003_2271.zip
- <SD-Card>/Android/####/Crash-2017-10-04-12-48-32-1507121312930.log
- <SD-Card>/Android/####/Crash-2017-10-04-12-48-33-1507121313686.log
- <SD-Card>/Android/####/com.newpay.spsdk.smspay.shsy.brush.new.apk
- <SD-Card>/Android/####/com.newpay.spsdk.smspay.shsy.brush.new.apk.temp
- <SD-Card>/Android/####/com.skymobi.pay.plugin.main.data
- <SD-Card>/Android/####/com.skymobi.pay.plugin.recordupload.data
- <SD-Card>/Android/####/com.skymobi.pay.plugin.smspay.data
- <SD-Card>/Android/####/user.sys
- <SD-Card>/CrashLog/WyyyCrashLog_20171004124832_3046.log
- <SD-Card>/CrashLog/WyyyCrashLog_20171004124833_3046.log
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_min_freq
- cat /sys/block/mmcblk0/device/cid
- chmod 666 /storage/emulated/0/Android/data/com.skymobi.pay.newsdk/plugins/com.skymobi.pay.plugin.main.data
- chmod 666 /storage/emulated/0/Android/data/com.skymobi.pay.newsdk/plugins/com.skymobi.pay.plugin.recordupload.data
- chmod 666 /storage/emulated/0/Android/data/com.skymobi.pay.newsdk/plugins/com.skymobi.pay.plugin.smspay.data
- getprop apps.customerservice.device
- getprop ro.build.product
- getprop ro.product.board
- getprop ro.product.brand
- getprop ro.product.cpu.abi
- getprop ro.product.device
- getprop ro.product.model
- sh -c cat /proc/cpuinfo
- sh -c cat /proc/tty/drivers
- sh -c ggetprop ro.hardware
- zniu -c id
- gdx
- goldcoast
- hunt
- libabc
- libexec
- libexecmain
- smsiap
- yummy
- zpay