Technical information
- Adware.Dowgin.15.origin
- Adware.Plague.1.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) d####.fl####.com:80
- TCP(HTTP/1.1) 6####.com:80
- TCP(HTTP/1.1) 2####.197.3.85:443
- TCP(HTTP/1.1) diguoLo####.ap-nort####.elb.####.com:80
- TCP(HTTP/1.1) a.appj####.com:80
- TCP(HTTP/1.1) 2####.185.216.10:443
- TCP(HTTP/1.1) a####.u####.com.####.com:80
- TCP(HTTP/1.1) 2####.58.208.104:443
- TCP(HTTP/1.1) 34.1####.157.36:443
- TCP(HTTP/1.1) www.tinyp####.net:80
- TCP(HTTP/1.1) i.w.in####.com:80
- TCP(HTTP/1.1) 2.19.1####.160:443
- TCP(TLS/1.0) 34.1####.157.36:443
- TCP(TLS/1.0) l####.chartb####.com:443
- TCP(TLS/1.0) googl####.g.doublec####.net:443
- TCP(TLS/1.0) 2####.58.208.104:443
- TCP(TLS/1.0) 2####.197.3.85:443
- TCP(TLS/1.0) 2####.185.216.10:443
- TCP(TLS/1.0) 2.19.1####.160:443
- TCP(TLS/1.0) config-####.traffic####.net:443
- 6####.com
- a####.u####.com
- a.appj####.com
- a2.chartb####.com
- ch.bo####.com
- ch1bo####.com
- ch2.bo####.com
- config-####.in####.com
- d####.fl####.com
- d####.in####.com
- d.ap####.com
- diguoLo####.ap-nort####.elb.####.com
- e-####.in####.com
- googl####.g.doublec####.net
- i.l.inmob####.net
- i.w.in####.com
- inmobis####.akam####.net
- l####.chartb####.com
- ssl.google-####.com
- wi.ai.wangw####.cn
- www.tinyp####.net
- 2####.185.216.10:443/banners/FileData/pub-keystore?u-appver=####&u-key-v...
- 2####.185.216.10:443/sdk/sdk/configs/400/adNetwork.json?u-appver=####&u-...
- 2####.185.216.10:443/sdk/sdk/configs/400/carb.json?u-appver=####&u-key-v...
- 2####.185.216.10:443/sdk/sdk/configs/400/commons.json?u-appver=####&u-ke...
- 2####.185.216.10:443/sdk/sdk/configs/400/iat.json?u-appver=####&u-key-ve...
- 2####.185.216.10:443/sdk/sdk/configs/400/rendering.json?u-appver=####&u-...
- 2####.197.3.85:443/creatives/528c822916ba47205e00002b/7f7624ea9e6c63edfd...
- 2####.197.3.85:443/static-assets/interstitials-v2/close-buttons/30x30.png
- 2####.197.3.85:443/static-assets/interstitials-v2/frames/4-3/1024x768.png
- 2####.58.208.104:443/collect?ul=####&ht=####&sr=####&a=####&sc=####&aid=...
- 2.19.1####.160:443/sdk/configs/400/rootConfig.json?u-appver=####&u-key-v...
- 6####.com/GameManage3/appRewardConf.shtml?appId=####&appVersion=####&mac...
- diguoLo####.ap-nort####.elb.####.com/GameManage/mobile.shtml?appId=####&...
- www.tinyp####.net/GameManage/mobile.shtml?appId=####&appVersion=####&dev...
- 34.1####.157.36:443/api/config
- 34.1####.157.36:443/interstitial/get
- 34.1####.157.36:443/more/get
- a####.u####.com.####.com/app_logs
- a.appj####.com/ad-service/ad/mark
- a.appj####.com/jiagu/check/upgrade
- d####.fl####.com/aap.do
- i.w.in####.com/showad.asm
- /data/data/####/.flurryagent.49db70a9
- /data/data/####/.flurryappcircle.49db70a9
- /data/data/####/.imprint
- /data/data/####/.jg.ic
- /data/data/####/.log.lock
- /data/data/####/.log.ls
- /data/data/####/8810366z.jar
- /data/data/####/8823992z.jar
- /data/data/####/8838921z.dex (deleted)
- /data/data/####/8838921z.jar
- /data/data/####/8851262z.jar
- /data/data/####/ApplicationCache.db-journal
- /data/data/####/IMAdTrackerStatusUpload.xml
- /data/data/####/SHARED_PRENFERENCE_LOCAL_ADDRESS.xml
- /data/data/####/a2.chartboost.com.443
- /data/data/####/ads-189378313.jar
- /data/data/####/ads-529762434.jar
- /data/data/####/ads1258294988.jar
- /data/data/####/ads1650960638.jar
- /data/data/####/ads71334321.jar
- /data/data/####/aeskeygenerate.xml
- /data/data/####/app_knkclasses.dex (deleted)
- /data/data/####/app_knkclasses.jar
- /data/data/####/cbPrefs.xml
- /data/data/####/cb_previous_session_info
- /data/data/####/csu
- /data/data/####/data_0
- /data/data/####/data_1
- /data/data/####/data_2
- /data/data/####/data_3
- /data/data/####/dbxvne
- /data/data/####/dbxvne-journal
- /data/data/####/ea080.xml
- /data/data/####/eventlog
- /data/data/####/f_000001
- /data/data/####/f_000002
- /data/data/####/gaClientId
- /data/data/####/google_analytics_v4.db-journal
- /data/data/####/https_googleads.g.doubleclick.net_0.localstorage-journal
- /data/data/####/im.db
- /data/data/####/im.db-journal
- /data/data/####/impref.xml
- /data/data/####/index
- /data/data/####/inmobi.cache
- /data/data/####/inmobi.cache.data.events.number.apiStats
- /data/data/####/inmobi.cache.data.events.number.network
- /data/data/####/inmobi.cache.data.events.timestamp.apiStats
- /data/data/####/inmobi.cache.data.events.timestamp.network
- /data/data/####/inmobiAppAnalyticsAppId.xml
- /data/data/####/inmobiAppAnalyticsSession.xml
- /data/data/####/inmobisdkaid.xml
- /data/data/####/jg_app_update_settings_random.xml
- /data/data/####/libjiagu.so
- /data/data/####/ltvp.db
- /data/data/####/ltvp.db-journal
- /data/data/####/mobclick_agent_cached_com.dressup.beautifultees701250853
- /data/data/####/mobclick_agent_online_setting_com.dressup.beaut...es.xml
- /data/data/####/qihoo_jiagu_crash_report.xml
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/data/####/webview.db
- /data/data/####/webview.db-journal
- /data/data/####/webviewCookiesChromium.db-journal
- /data/media/####/7e265867124e773e7ee5144c9e05b36f20fe43bc.png
- /data/media/####/7f7624ea9e6c63edfd9e4ff394a045755e24f34a.png
- /data/media/####/b6c999dbb30070dbe0204df2f215b860a3cc8bc7.png
- chmod 755 <Package Folder>/.jiagu/libjiagu.so
- ditr
- game
- libjiagu
- AES-CBC-PKCS7Padding
- DES
- DES-ECB-PKCS5Padding
- RSA-ECB-nopadding
- AES-CBC-PKCS5Padding