Technical information
- Adware.Harmight.1.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) l####.tbs.qq.com:80
- TCP(HTTP/1.1) upg####.114sc####.cn:80
- TCP(HTTP/1.1) t####.c####.q####.####.com:80
- TCP(HTTP/1.1) de.harm####.com:80
- TCP(HTTP/1.1) 1####.239.134.164:8080
- TCP(HTTP/1.1) h####.b####.com:80
- app.c####.net
- de.harm####.com
- h####.b####.com
- l####.tbs.qq.com
- p.xy####.com
- s####.singl####.cn
- s####.singl####.cn
- upg####.114sc####.cn
- t####.c####.q####.####.com/sdk/2017/05/16/09/46/36/SDK-release-0516_v46....
- upg####.114sc####.cn/clientupdate/shanxun/version.json
- de.harm####.com/Package/sdk/
- h####.b####.com/app.gif
- l####.tbs.qq.com/ajax?c=####&k=####
- <Package Folder>/app_tbs/####/core_info
- <Package Folder>/app_tbs/####/tbscoreinstall.txt
- <Package Folder>/app_tbs/####/tbslock.txt
- <Package Folder>/cache/####/data_0
- <Package Folder>/cache/####/data_1
- <Package Folder>/cache/####/data_2
- <Package Folder>/cache/####/data_3
- <Package Folder>/cache/####/index
- <Package Folder>/databases/webview.db-journal
- <Package Folder>/databases/webviewCookiesChromium.db-journal
- <Package Folder>/files/__local_ap_info_cache.json
- <Package Folder>/files/__local_stat_cache.json
- <Package Folder>/files/__send_data_1510835484753
- <Package Folder>/files/com.harmight.sdk.dex
- <Package Folder>/files/libcuid.so
- <Package Folder>/files/rSlC.dat
- <Package Folder>/shared_prefs/<Package>.push_sync.xml
- <Package Folder>/shared_prefs/Env.config.xml
- <Package Folder>/shared_prefs/__Baidu_Stat_SDK_SendRem.xml
- <Package Folder>/shared_prefs/bindcache.xml
- <Package Folder>/shared_prefs/framework.xml
- <Package Folder>/shared_prefs/miaoxiaoyuan.xml.xml
- <Package Folder>/shared_prefs/notification_builder_storage.xml
- <Package Folder>/shared_prefs/tbs_download_config.xml
- <Package Folder>/shared_prefs/tbs_download_stat.xml
- <SD-Card>/Android/####/.nomedia
- <SD-Card>/backups/####/.confd
- <SD-Card>/backups/####/.confd-journal
- <SD-Card>/backups/####/.cuid
- <SD-Card>/backups/####/.cuid2
- <SD-Card>/backups/####/.timestamp
- <SD-Card>/hmtlock.dat
- <SD-Card>/sdk-data/####/app.log
- <SD-Card>/sdk-data/####/hmSVGZjvaOivRzrSlC
- getprop ro.product.cpu.abi
- bdpush_V2_5
- crash_analysis
- AES-CBC-PKCS5Padding
- AES-ECB-PKCS5Padding
- RSA-ECB-NoPadding
- DES-ECB-PKCS5Padding