Executes next shell scripts:
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
- /system/bin/sh -c getprop ro.board.platform
- /system/bin/su
- /system/bin/toolbox chcon u:object_r:system_data_file:s0 /data/data-lib
- /system/bin/toolbox chcon u:object_r:system_data_file:s0 /data/data-lib/ariel
- /system/bin/toolbox chcon u:object_r:system_data_file:s0 /data/data-lib/ariel/<Package>
- /system/bin/toolbox chcon u:object_r:system_file:s0 /data/data-lib/ariel/<Package>/arield.jar
- /system/bin/toolbox chcon u:object_r:system_file:s0 /data/data-lib/ariel/<Package>/ipme
- <Package Folder>/applib/kd
- <Package Folder>/applib/kd --global
- app_process /system/bin com.android.commands.content.Content insert --uri content://settings/secure --bind name:s:enabled_notification_listeners --bind value:s:<Package>/com.kingroot.kingmaster.toolbox.accessibility.extras.KmAccessNotification
- app_process /system/bin com.android.commands.content.Content query --uri content://settings/global --projection value --where name='device_provisioned' and value='1'
- app_process /system/bin com.android.commands.content.Content query --uri content://settings/secure --projection value --where name='enabled_notification_listeners'
- chcon u:object_r:system_data_file:s0 /data/data-lib
- chcon u:object_r:system_data_file:s0 /data/data-lib/ariel
- chcon u:object_r:system_data_file:s0 /data/data-lib/ariel/<Package>
- chcon u:object_r:system_file:s0 /data/data-lib/ariel/<Package>/arield.jar
- chcon u:object_r:system_file:s0 /data/data-lib/ariel/<Package>/ipme
- chcon u:object_r:system_file:s0 /system/etc/install-recovery.sh
- chmod 0711 /data/data-lib
- chmod 0711 /data/data-lib/ariel
- chmod 0711 /data/data-lib/ariel/<Package>
- chmod 0755 /data/data-lib/ariel/<Package>/arield.jar
- chmod 0755 /data/data-lib/ariel/<Package>/ipme
- chmod 0755 /system/etc/install-recovery.sh
- chmod 0755 /system/usr/ikm
- chmod 0755 <Package Folder>/applib/kd
- chmod 0755 <Package Folder>/applib/kmd
- chmod 0755 <Package Folder>/applib/p_monitor2_x
- chmod 0755 <Package Folder>/files/23_wod.jar
- chmod 0764 <Package Folder>/applib/busybox
- chmod 0764 <Package Folder>/applib/ktools
- chmod 0764 <Package Folder>/applib/libNativeRQD.so
- chmod 0764 <Package Folder>/applib/supolicy
- chmod 0764 <Package Folder>/applib/tools
- chmod 0771 <Package Folder>/applib
- chmod 0777 /data/uswitch
- chmod 0777 /data/uswitch/usw.txt
- chmod 6755 /system/usr/ikm/ikmsu
- chmod 755 /data/data-lib/ariel/<Package>/arield.jar
- chmod 755 /data/data-lib/ariel/<Package>/ipme
- chmod 755 /dev/p_monitor2_x
- chmod 755 <Package Folder>/.jiagu/libjiagu.so
- chmod 755 <Package Folder>/app_permission/ipme_2x
- chmod 755 <Package Folder>/app_permission/solo_km.10
- chmod 755 <Package Folder>/files/firewall-2.0.2.dat
- chown 0.0 /system/etc/install-recovery.sh
- chown 0:0 /data/data-lib
- chown 0:0 /data/data-lib/ariel
- chown 0:0 /data/data-lib/ariel/<Package>
- chown 0:0 /data/data-lib/ariel/<Package>/arield.jar
- chown 0:0 /data/data-lib/ariel/<Package>/ipme
- dumpsys activity -a provider com.kingroot.common.framework.task.provider.KTaskProvider
- dumpsys iphonesubinfo
- getprop ro.board.platform
- id
- ku.sud
- ls /data/data-lib/ariel/<Package>
- ls /data/data-lib/ariel/<Package>/arield.jar
- ls /data/data-lib/ariel/<Package>/ipme
- mkdir /data/data-lib
- mkdir /data/data-lib/ariel
- mkdir /data/data-lib/ariel/<Package>
- mkdir /data/uswitch
- mkdir /system/usr/ikm
- mount -o remount -rw /system
- mount -o ro,remount /system /system
- ps
- ps k_ul
- rm /data/data-lib/ariel/<Package>/arield.jar
- rm /data/data-lib/ariel/<Package>/ipme
- rm /dev/p_monitor2_x
- rm /system/usr/ikm/ikmsu
- rm <Package Folder>/files/sh.tmp
- service list
- sh
- sh <Package Folder>/applib/kd
- sh <Package Folder>/applib/kd --global
- su -v
Loads the following dynamic libraries:
- Tmsdk-2.1
- libNativeRQD
- libjiagu
Uses elevated priveleges.
Uses special library to hide executable bytecode.
Gains access to network information.
Gains access to telephone information (number, imei, etc.).
Gains access to information about installed applications.
Gains access to information about running applications.
Gains access to information about accounts (Google, Facebook, etc.) registered on the device.
Adds tasks to the system scheduler.
Displays its own windows over windows of other applications.