Technical information
- Android.Spy.5534
- UDP(DNS) <Google DNS>
- UDP(DNS) 8####.8.4.4:53
- TCP(HTTP/1.1) 47.99.2####.30:80
- TCP(HTTP/1.1) and####.b####.qq.com:80
- TCP(HTTP/1.1) img-hao####.cdn.fuda####.####.com:80
- TCP(HTTP/1.1) a####.exc.mob.com:80
- TCP(HTTP/1.1) v2.api.haod####.####.cn:80
- TCP(HTTP/1.1) f.gm.m####.com:80
- TCP(HTTP/1.1) api.ve####.mob.com:80
- TCP(HTTP/1.1) 64.2####.161.94:80
- TCP(TLS/1.0) pla####.google####.com:443
- TCP(TLS/1.0) rr2---s####.g####.com:443
- TCP(TLS/1.0) rr18---####.g####.com:443
- TCP(TLS/1.0) img.usd.alibab####.com:443
- TCP(TLS/1.0) p####.google####.com:443
- TCP(TLS/1.0) y####.al####.org.####.com:443
- TCP(TLS/1.0) h-adash####.ut.ta####.com:443
- TCP(TLS/1.0) rr9---s####.g####.com:443
- TCP(TLS/1.0) and####.google####.com:443
- TCP(TLS/1.0) and####.a####.go####.com:443
- TCP(TLS/1.0) user####.al####.com:443
- TCP(TLS/1.0) na61-####.wagbr####.ali####.####.com:443
- TCP(TLS/1.0) ada####.m.ta####.com:443
- TCP(TLS/1.0) 64.2####.161.94:443
- TCP(TLS/1.0) baichua####.al####.com:443
- TCP(TLS/1.2) 2####.85.233.104:443
- TCP(TLS/1.2) 64.2####.161.94:443
- UDP 67.1####.106.47:44453
- UDP 67.1####.106.47:44450
- UDP 67.1####.106.47:44456
- TCP 1####.9.126.21:7001
- UDP 67.1####.106.47:44444
- UDP 67.1####.106.47:44451
- UDP 67.1####.106.47:44455
- UDP 67.1####.106.47:44445
- UDP 67.1####.106.47:44457
- UDP 67.1####.106.47:44459
- UDP 67.1####.106.47:44458
- UDP s.j####.cn:19000
- UDP 1####.0.1.1:137
- UDP 67.1####.106.47:44446
- UDP 67.1####.106.47:44452
- UDP p####.google####.com:443
- UDP 67.1####.106.47:44448
- UDP 67.1####.106.47:44447
- UDP 67.1####.106.47:44454
- UDP 67.1####.106.47:44449
- 30.245.99.####.arpa
- a####.exc.mob.com
- ada####.ut.ta####.com
- adas####.ut.ta####.com
- and####.a####.go####.com
- and####.b####.qq.com
- and####.google####.com
- api.ve####.mob.com
- baichua####.al####.com
- baichua####.ta####.com
- f.gm.m####.com
- gmscomp####.google####.com
- img-hao####.cdn.fuda####.com
- img.al####.com
- m####.go####.com
- p####.google####.com
- pla####.google####.com
- rr18---####.g####.com
- rr2---s####.g####.com
- rr9---s####.g####.com
- s.j####.cn
- user####.al####.com
- v2.api.haod####.com
- www.go####.com
- www.google####.com
- y####.al####.org
- baichua####.al####.com:443/4.0.0.1/28847348/1.0.0/android/rule.htm
- f.gm.m####.com/privacy/policy/ms/version?appkey=####&apppkg=####&appver=...
- h-adash####.ut.ta####.com:443/rest/gc2?ak=####&av=####&c=####&d=####&sv=...
- img-hao####.cdn.fuda####.####.com/049a38e0b6250a3fd1040f738b076997.png_w...
- img-hao####.cdn.fuda####.####.com/35d9df05375ce7d8900f20095ad937d9.png_w...
- img-hao####.cdn.fuda####.####.com/c12753e61e9a6f6e79c5dc7173a499e7.png_w...
- img-hao####.cdn.fuda####.####.com/fabddde7f8ace339a6a1decdbfebc7f6.png_w...
- img-hao####.cdn.fuda####.####.com/fd_1705734404470_271088_310x310.jpg
- img-hao####.cdn.fuda####.####.com/fd_1708149773876_834806_310x310.jpg
- img.usd.alibab####.com:443/i1/2074605417/O1CN018C4si41pt2ARhxjNE_!!20746...
- img.usd.alibab####.com:443/i4/2208443901707/O1CN01GcWvd31OTqsxqWDuf_!!22...
- img.usd.alibab####.com:443/imgextra/i3/2665940077/O1CN01wHAfZj1CRJOZEpBt...
- na61-####.wagbr####.ali####.####.com:443/4.0.0.1/android/pages.htm?appKe...
- user####.al####.com:443/matrix_app/android/matrix_app_config.json
- user####.al####.com:443/matrix_app/android/safe_package_config.json
- v2.api.haod####.####.cn/fastbuy/apikey/dmooo/hour_type/6/min_id/1?token=...
- v2.api.haod####.####.cn/selected_item/apikey/taowuvip/min_id/1?p=####&pe...
- a####.exc.mob.com/errconf
- and####.b####.qq.com/rqd/async?aid=####
- api.ve####.mob.com/api/initSec
- api.ve####.mob.com/api/log
- api.ve####.mob.com/api/pv
- y####.al####.org.####.com:443/saveWb.json?evt=####&pn=####&pv=####&sv=##...
- /data/anr/traces.txt
- /data/data/####/.artc_lock
- /data/data/####/.at_lock
- /data/data/####/.cl
- /data/data/####/.dic_lock
- /data/data/####/.duid
- /data/data/####/.dvcv_lock
- /data/data/####/.globalLock
- /data/data/####/.im_lock
- /data/data/####/.jg.ic
- /data/data/####/.jgck
- /data/data/####/.lesd_lock
- /data/data/####/.lock
- /data/data/####/.pkg_lock
- /data/data/####/.pkgs_lock
- /data/data/####/.vpl_lock
- /data/data/####/0a231bd8575dcf72.txt
- /data/data/####/1004
- /data/data/####/402ae93e-0632-4c8f-8609-a642d718fca8
- /data/data/####/56e0bc9e-82ee-4a40-8bc2-291b7da7a307
- /data/data/####/59e5588b-2bdb-4164-8bea-1caacb12ccf4
- /data/data/####/Alvin2.xml
- /data/data/####/ClassicsHeader.xml
- /data/data/####/ContextData.xml
- /data/data/####/Cookies-journal
- /data/data/####/DeviceInfo.xml
- /data/data/####/DeviceInfo.xml.bak
- /data/data/####/JPushSA_Config.xml
- /data/data/####/JX0WDG83P1ZN.txt
- /data/data/####/JX0WDG83P1ZN.txtd79
- /data/data/####/SGMANAGER_DATA2
- /data/data/####/SGMANAGER_DATA2.tmp
- /data/data/####/SG_INNER_DATA
- /data/data/####/SecVerify_SPDB_V2_1
- /data/data/####/ThrowalbeLog.db-journal
- /data/data/####/UTCommon.xml
- /data/data/####/WebViewChromiumPrefs.xml
- /data/data/####/ap.Lock
- /data/data/####/auth_sdk_device.xml
- /data/data/####/auth_shared.xml
- /data/data/####/auth_shared.xml.bak
- /data/data/####/avmp_312757200.pkgInfo
- /data/data/####/avmp_312757200.pkgInfo.tmp
- /data/data/####/bc_config
- /data/data/####/bugly_db_-journal
- /data/data/####/classes.dex
- /data/data/####/classes.dex;classes2.dex
- /data/data/####/classes.dex;classes3.dex
- /data/data/####/classes.oat
- /data/data/####/cn.jpush.android.user.profile.xml
- /data/data/####/cn.jpush.android.user.profile.xml.bak
- /data/data/####/cn.jpush.preferences.v2.rid.xml
- /data/data/####/cn.jpush.preferences.v2.xml
- /data/data/####/cn.jpush.preferences.v2.xml.bak
- /data/data/####/com.youyisiapp.app_preferences.xml
- /data/data/####/config.xml
- /data/data/####/crashrecord.xml
- /data/data/####/dc4cfbed037cffaf6a
- /data/data/####/dc53e0ff2717f502ac
- /data/data/####/dcc6bf7dc5d7bbf610
- /data/data/####/dcc9793fb0ebbdb7e6
- /data/data/####/dcef7997f0eafbf627
- /data/data/####/dcfef91ec9ebf97a79 (deleted)
- /data/data/####/disk_entries_list_image_cache_-1255335669.xml
- /data/data/####/jAnalysis_genera_config.xml
- /data/data/####/jpush_device_info.xml
- /data/data/####/jpush_stat_cache.json
- /data/data/####/jpush_stat_cache_history.json
- /data/data/####/keycursession
- /data/data/####/keyevent
- /data/data/####/keysession
- /data/data/####/libjiagu.so
- /data/data/####/libsgavmpso-5.4.36.so
- /data/data/####/libsgmainso-5.4.171.so
- /data/data/####/libsgsecuritybodyso-5.4.99.so
- /data/data/####/libsgsecuritybodyso-5.4.99.so.tmp.3449
- /data/data/####/libsgsgmiddletierso-5.4.7.so
- /data/data/####/local_crash_lock
- /data/data/####/lock.lock
- /data/data/####/main_312757200.pkgInfo
- /data/data/####/main_312757200.pkgInfo.tmp
- /data/data/####/metrics_guid
- /data/data/####/mob_commons_1
- /data/data/####/mob_sdk_exception_1
- /data/data/####/native_record_lock
- /data/data/####/native_record_lock (deleted)
- /data/data/####/pattern_urls
- /data/data/####/proc_auxv
- /data/data/####/security_info
- /data/data/####/securitybody_312757200.pkgInfo
- /data/data/####/securitybody_312757200.pkgInfo.tmp
- /data/data/####/sgFile.lock
- /data/data/####/sgmiddletier_312757200.pkgInfo
- /data/data/####/sgmiddletier_312757200.pkgInfo.tmp
- /data/data/####/smart_link_sp.xml
- /data/data/####/smart_link_sp.xml (deleted)
- /data/data/####/smart_link_sp.xml.bak
- /data/data/####/sp.lock
- /data/data/####/timestamp
- /data/data/####/ut.db
- /data/data/####/ut.db-journal
- /data/media/####/.0
- /data/media/####/.1
- /data/media/####/.10
- /data/media/####/.11
- /data/media/####/.2
- /data/media/####/.3
- /data/media/####/.4
- /data/media/####/.5
- /data/media/####/.6
- /data/media/####/.7
- /data/media/####/.8
- /data/media/####/.9
- /data/media/####/.di
- /data/media/####/.lock (deleted)
- /data/media/####/.mn_1666188972
- /data/media/####/.push_deviceid
- /data/media/####/.slw
- /data/media/####/1fbcfc600135ae94b16c02bc807fbb02792e5f2baa29ef...74d1.0
- /data/media/####/2b1caa88e9a6ea212fc6ca98581b943cb14e0bde174042...e689.0
- /data/media/####/646752daea656be8027d9574f77c8ed78eef9f5390643d...5427.0
- /data/media/####/733022d81fdc060749bdc59f5c35d8d6a31eaff41b7d3a....0.tmp
- /data/media/####/@gs_1241_com.youyisiapp.app_
- /data/media/####/@gs_1241_com.youyisiapp.app_.lock (deleted)
- /data/media/####/Alvin2.xml
- /data/media/####/ContextData.xml
- /data/media/####/adc88553d584fcba82eb0c49e421edbe77eedf3c08b0b3...f821.0
- /data/media/####/b0c210941376346b46b4aaca9fc5cfd9924cbada3a3fee...eed5.0
- /data/media/####/e0cace38728bcd5131017498f52696ea150ed4cf712723....0.tmp
- /data/media/####/e9d912c9b85a47f33ab72941b0e7e9181229aa31c078a0...be86.0
- /data/media/####/hid.dat.new
- /data/media/####/journal
- /data/media/####/journal.tmp
- /data/misc/####/primary.prof
- /data/user/0/<Package>/files/dc4cfbed037cffaf6a
- /data/user/0/<Package>/files/dcc6bf7dc5d7bbf610
- /data/user/0/<Package>/files/dcc9793fb0ebbdb7e6
- /data/user/0/<Package>/files/dcef7997f0eafbf627
- /system/bin/sh -c getprop
- cat /sys/class/net/wlan0/address
- getprop
- libjcore125
- libjiagu
- libsgavmpso-5.4.36
- libsgmainso-5.4.171
- libsgsecuritybodyso-5.4.99
- libsgsgmiddletierso-5.4.7
- AES-CBC-PKCS5Padding
- AES-ECB-PKCS7Padding
- AES-GCM-NoPadding
- RSA-ECB-PKCS1Padding
- AES-ECB-NoPadding
- AES-GCM-NoPadding