Technical information
- Adware.Dowgin.3.origin
- Android.DownLoader.192.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) ds.dd.15####.####.net:80
- TCP(HTTP/1.1) bj.bc####.com:80
- TCP(HTTP/1.1) d####.secret####.com:80
- TCP(HTTP/1.1) is.ca.15####.cn:80
- a####.bj.bc####.com
- a####.u####.com
- api.secret####.com
- d####.secret####.com
- ds.dd.15####.cn
- feed####.u####.com
- is.ca.15####.cn
- bj.bc####.com/am1130.txt
- d####.secret####.com/api/data/splash_screen?last_request_time=####
- d####.secret####.com/api/lexicon/amend?last_modify_time=####
- d####.secret####.com/app/rec_apps?app=####
- ds.dd.15####.####.net/apk/20170705/201707051157602.png
- ds.dd.15####.####.net/apk/20171020/201710201050746.apk
- a####.u####.com/app_logs
- is.ca.15####.cn/2e6788e/zaa
- is.ca.15####.cn/2e6788e/zia
- is.ca.15####.cn/2e6788e/zib
- is.ca.15####.cn/2e6788e/zic
- is.ca.15####.cn/2e6788e/zid
- <Package Folder>/databases/Beidanci
- <Package Folder>/databases/Beidanci-journal
- <Package Folder>/databases/Beidanci.zip
- <Package Folder>/databases/Downloado
- <Package Folder>/databases/Downloado-journal
- <Package Folder>/databases/cache_db-journal
- <Package Folder>/databases/ciku_01
- <Package Folder>/databases/ciku_01.zip (deleted)
- <Package Folder>/databases/ciku_02
- <Package Folder>/databases/ciku_02.zip
- <Package Folder>/databases/ciku_03
- <Package Folder>/databases/ciku_03.zip
- <Package Folder>/databases/ciku_04
- <Package Folder>/databases/ciku_04.zip
- <Package Folder>/databases/database_local-journal
- <Package Folder>/databases/tencent_analysis.db-journal
- <Package Folder>/databases/uscom.db
- <Package Folder>/databases/uscom.db-journal
- <Package Folder>/files/spbeidanciq.jar
- <Package Folder>/shared_prefs/<Package>_preferences.xml
- <Package Folder>/shared_prefs/_acospbeidanciz.xml
- <Package Folder>/shared_prefs/_dcospbeidanciy.xml
- <Package Folder>/shared_prefs/_gcospbeidancis.xml
- <Package Folder>/shared_prefs/configo.xml
- <Package Folder>/shared_prefs/mobclick_agent_header_<Package>.xml
- <Package Folder>/shared_prefs/mobclick_agent_state_<Package>.xm...leted)
- <Package Folder>/shared_prefs/mobclick_agent_state_<Package>.xml
- <Package Folder>/shared_prefs/umeng_feedback_conversations.xml
- <Package Folder>/shared_prefs/user_pref.xml
- <Package Folder>/shared_prefs/user_pref.xml.bak (deleted)
- <Package Folder>/tx_shell/libshella-0.0.2.so
- <SD-Card>/.android/####/com.androd.framwork.jkoc.a.dex
- <SD-Card>/.android/####/com.androd.framwork.jkps.a.dex
- <SD-Card>/Android/####/201707051157602#png
- <SD-Card>/Android/####/egnaro_etceles_egap_d
- <SD-Card>/Android/####/egnaro_gbntb_d
- <SD-Card>/Android/####/ehcac_ntb_mottob
- <SD-Card>/Android/####/elcric_cs_d
- <SD-Card>/Android/####/enil_efas
- <SD-Card>/Android/####/enil_efas_d
- <SD-Card>/Android/####/enil_jt_d
- <SD-Card>/Android/####/erahs_ntb_mottob
- <SD-Card>/Android/####/eulb_gbntb_d
- <SD-Card>/Android/####/gb_datuctrohs_d
- <SD-Card>/Android/####/gb_gmi
- <SD-Card>/Android/####/gb_gmi_d
- <SD-Card>/Android/####/gb_mottob
- <SD-Card>/Android/####/gb_pot
- <SD-Card>/Android/####/gb_pot_d
- <SD-Card>/Android/####/gb_sdrowda
- <SD-Card>/Android/####/gb_tluafed_d
- <SD-Card>/Android/####/id
- <SD-Card>/Android/####/kcab_pop
- <SD-Card>/Android/####/kcab_pop_d
- <SD-Card>/Android/####/lecnac_ntb_mottob_d
- <SD-Card>/Android/####/llatsni_ntb
- <SD-Card>/Android/####/llatsni_ntb_d
- <SD-Card>/Android/####/llatsni_ntb_mottob
- <SD-Card>/Android/####/logo.png
- <SD-Card>/Android/####/lomron_egap_d
- <SD-Card>/Android/####/n_kcehcp
- <SD-Card>/Android/####/na_csppa_d
- <SD-Card>/Android/####/neerg_gbntb_d
- <SD-Card>/Android/####/noci_efas
- <SD-Card>/Android/####/noci_efas_d
- <SD-Card>/Android/####/ntb_erom_pc_d
- <SD-Card>/Android/####/ntb_meti
- <SD-Card>/Android/####/ntb_mottob_pop
- <SD-Card>/Android/####/ntb_mottob_pop_d
- <SD-Card>/Android/####/ntb_rehto_pc_d
- <SD-Card>/Android/####/ntbesolc_pot_x
- <SD-Card>/Android/####/ntbesolc_potd_d
- <SD-Card>/Android/####/nwod_worra
- <SD-Card>/Android/####/nwod_worra_d
- <SD-Card>/Android/####/p_kcehcp
- <SD-Card>/Android/####/pot_ntbseolc_d
- <SD-Card>/Android/####/pu_worra
- <SD-Card>/Android/####/pu_worra_d
- <SD-Card>/Android/####/rats_m
- <SD-Card>/Android/####/tnetnocppa
- <SD-Card>/Android/####/wolley_gbntb_d
- <SD-Card>/Download/####/7114549b421d.tmp
- <SD-Card>/dancisuoping/.nomedia
- chmod 700 <Package Folder>/tx_shell/libshella-0.0.2.so
- chmod 777 /storage/emulated/0/download/zspbeidanci//7114549b421d.tmp
- getprop ro.build.version.release
- getprop ro.build.version.sdk
- libshella-0.0.2
- DES
- AES-CFB-NoPadding