Technical information
Malicious functions:
Downloads the following detected threats from the Internet:
- Android.DownLoader.5635
Network activity:
Connects to:
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) s4-hot####.100mo####.com:80
- TCP(TLS/1.0) ev####.mz.uni####.com:443
- TCP(TLS/1.0) configv####.unit####.uni####.com:443
- TCP(TLS/1.0) gce-auc####.unit####.uni####.com:443
- TCP(TLS/1.0) cdn.liftoff####.io:443
- TCP(TLS/1.0) impress####.lif####.io:443
- TCP(TLS/1.0) hy####.mtgglo####.com:443
- TCP(TLS/1.0) httpk####.unit####.uni####.com:443
- TCP(TLS/1.0) 1####.250.74.10:443
- TCP(TLS/1.0) mt####.mtgglo####.com:443
- TCP(TLS/1.0) ads.appbund####.com:443
- TCP(TLS/1.0) happ####.com:443
- TCP(TLS/1.0) app.happymo####.com:443
- TCP(TLS/1.0) cdn-cre####.acq####.unity3d####.com:443
- TCP(TLS/1.0) gmscomp####.google####.com:443
- TCP(TLS/1.0) prd-le####.cdp.inte####.####.com:443
- TCP(TLS/1.0) g####.face####.com:443
- TCP(TLS/1.0) nl-gcp-####.mtgglo####.com:443
- TCP(TLS/1.0) net.mtgglo####.com:443
- TCP(TLS/1.0) c####.lif####.io:443
- TCP(TLS/1.0) cdn-sto####.unit####.uni####.com:443
- TCP(TLS/1.0) om-se####.b####.com:443
- TCP(TLS/1.0) cdn####.unit####.uni####.com:443
- TCP(TLS/1.2) 1####.250.74.131:443
- TCP(TLS/1.2) 1####.250.74.10:443
- TCP(TLS/1.2) 1####.250.74.174:443
- TCP(TLS/1.2) gmscomp####.google####.com:443
- TCP(TLS/1.2) 1####.250.74.68:443
- TCP(TLS/1.2) 1####.250.74.110:443
- TCP app.apkli####.com:443
- TCP i####.apkpud####.com:443
- TCP cdn.liftoff####.io:443
- TCP hy####.mtgglo####.com:443
- TCP h####.happ####.com:443
- TCP cdn-adn####.mtgglo####.com:443
- TCP analy####.ray####.com:443
- TCP log.zoob####.com:443
- TCP fk-conf####.ray####.com:443
- TCP ads.appbund####.com:443
- TCP fk-sett####.mtgglo####.com:9377
- TCP app.happymo####.com:443
- TCP net.mtgglo####.com:443
- TCP i####.apkloll####.com:443
DNS requests:
- ads.appbund####.com
- analy####.ray####.com
- app.apkli####.com
- app.apko####.com
- app.happymo####.com
- auction####.unit####.uni####.com
- c####.lif####.io
- cdn-adn####.mtgglo####.com
- cdn-cre####.acq####.unity3d####.com
- cdn-sto####.unit####.uni####.com
- cdn.liftoff####.io
- conf####.unit####.uni####.com
- confi####.ray####.com
- configu####.mtgglo####.com
- d####.fl####.com
- ev####.mz.uni####.com
- g####.face####.com
- gmscomp####.google####.com
- h####.happ####.com
- happ####.com
- httpk####.unit####.uni####.com
- hy####.mtgglo####.com
- i####.apkloll####.com
- i####.apkpud####.com
- i.apko####.com
- img.apko####.com
- impress####.lif####.io
- l####.apko####.com
- log.zoob####.com
- mt####.mtgglo####.com
- net.mtgglo####.com
- net.ray####.com
- nl-gcp-####.mtgglo####.com
- om-se####.b####.com
- s4-hot####.100mo####.com
- t####.unit####.uni####.com
- web####.unit####.uni####.com
- www.happ####.com
HTTP GET requests:
- app.happymo####.com:443/ad_banner/202003/19/mzgfosfbvdzt8p7-pn-158461922...
- app.happymo####.com:443/ad_banner/202302/10/icon-pn-1676009184.jpg
- app.happymo####.com:443/ad_banner/202304/13/04-pn-1681354568.jpg
- app.happymo####.com:443/ad_banner/202304/28/5-pn-1682642576.jpg
- app.happymo####.com:443/ad_banner/202306/07/bilingcall-banner-pn-1686127...
- app.happymo####.com:443/ad_banner/202306/13/1-pn-1686646546.jpg
- app.happymo####.com:443/ad_banner/202306/13/3-pn-1686646573.jpg
- app.happymo####.com:443/ad_banner/202309/13/1-pn-1681351089--1694594028....
- app.happymo####.com:443/ad_banner/202309/13/idle-miner-tycoon-150x150-pn...
- app.happymo####.com:443/app_img/20191208/86/40/60/1575787482.webp
- app.happymo####.com:443/app_img/20220601/92/67/70/1654081304.webp
- app.happymo####.com:443/upload/android/icon/1/3/2/2e04862af7f751a998b6ee...
- app.happymo####.com:443/upload/android/icon/2/6/1/adff6180217ff66dbefe46...
- app.happymo####.com:443/upload/android/icon/2/9/4/9c9b2bb41d65be69d3d6e2...
- app.happymo####.com:443/upload/android/icon/2023/03/06/6b95ecd917915a109...
- app.happymo####.com:443/upload/android/icon/2023/11/01/a758e35f561d883a2...
- app.happymo####.com:443/upload/android/icon/2023/11/02/00c1e0655d02cfe7f...
- app.happymo####.com:443/upload/android/icon/2023/11/02/6050ca92a48821967...
- app.happymo####.com:443/upload/android/icon/2023/11/02/75b1375d3f6bc9eba...
- app.happymo####.com:443/upload/android/icon/2024/02/20/358933e441fa10456...
- app.happymo####.com:443/upload/android/icon/2024/04/11/3181a300cb1258753...
- app.happymo####.com:443/upload/android/icon/2024/04/11/bf3956ba5a2017cda...
- app.happymo####.com:443/upload/android/icon/2024/04/11/f2ffabb73dfa8efcd...
- app.happymo####.com:443/upload/android/icon/2024/06/04/17bab56bf92c12b79...
- app.happymo####.com:443/upload/android/icon/2024/06/20/686cd59a48f527400...
- app.happymo####.com:443/upload/android/icon/2024/07/04/e4d1d5275fe08f746...
- app.happymo####.com:443/upload/android/icon/2024/09/05/ea1468551a0592645...
- app.happymo####.com:443/upload/android/icon/2024/09/25/cbff3034651759751...
- app.happymo####.com:443/upload/android/icon/2024/10/05/86c58b4340b2e3b3b...
- app.happymo####.com:443/upload/android/icon/2024/10/25/c96fe6fa492bcc4a5...
- app.happymo####.com:443/upload/android/icon/2024/10/26/f9161ab03c0a365fd...
- app.happymo####.com:443/upload/android/icon/2024/11/04/7997856f7ed117d81...
- app.happymo####.com:443/upload/android/icon/2024/11/09/0798d5e89501278c1...
- app.happymo####.com:443/upload/android/icon/2024/11/20/a87228e2e21f8d222...
- app.happymo####.com:443/upload/android/icon/2024/12/19/eceff6fa85daf31e2...
- app.happymo####.com:443/upload/android/icon/2024/12/30/93dd8e7e7415463e0...
- app.happymo####.com:443/upload/android/icon/2025/01/01/545409c20de8c7ea3...
- app.happymo####.com:443/upload/android/icon/2025/02/08/666655292ea8122ed...
- app.happymo####.com:443/upload/android/icon/2025/02/08/a33ab7a81828fd60a...
- app.happymo####.com:443/upload/android/icon/2025/02/08/c29cc2c97d2a3056e...
- app.happymo####.com:443/upload/android/icon/2025/02/27/3cf95890d2e795809...
- app.happymo####.com:443/upload/android/icon/2025/03/06/40da25a3298490183...
- app.happymo####.com:443/upload/android/icon/2025/03/08/418110231b127eea4...
- app.happymo####.com:443/upload/android/icon/2025/03/22/fc0d8305dca47db5a...
- app.happymo####.com:443/upload/android/icon/2025/03/25/4ea7c0d44257ea95f...
- app.happymo####.com:443/upload/android/icon/2025/03/28/a94688e9a3e52415b...
- app.happymo####.com:443/upload/android/icon/2025/03/28/bf843f6e391e24700...
- app.happymo####.com:443/upload/android/icon/2025/03/28/c446b110797815c3a...
- app.happymo####.com:443/upload/android/icon/2025/03/29/ee14a438159e866d9...
- app.happymo####.com:443/upload/android/icon/2025/04/01/3f114e68ea317347f...
- app.happymo####.com:443/upload/android/icon/2025/04/10/81837d2fb294a61ff...
- app.happymo####.com:443/upload/android/icon/2025/04/12/f03863856cbeb75b8...
- app.happymo####.com:443/upload/android/icon/2025/04/14/156e37b766d598071...
- app.happymo####.com:443/upload/android/icon/2025/04/18/64e5abc3e4e3551b3...
- app.happymo####.com:443/upload/android/icon/2025/04/21/0dc644e9baa621340...
- app.happymo####.com:443/upload/android/icon/2025/04/22/e65f68b109efe14b0...
- app.happymo####.com:443/upload/android/icon/2025/05/06/7443cbf14916890c3...
- app.happymo####.com:443/upload/android/icon/2025/05/13/21209c83b62636b40...
- app.happymo####.com:443/upload/android/icon/2025/05/14/8bd18d8795dc7b8ad...
- app.happymo####.com:443/upload/android/icon/2025/05/19/0bddd4b668d8e918b...
- app.happymo####.com:443/upload/android/icon/2025/05/21/98ee9af76b9b6324b...
- app.happymo####.com:443/upload/android/icon/2025/05/23/0097f92a39000ab1d...
- app.happymo####.com:443/upload/android/icon/2025/05/24/65e37b63a43b0b372...
- app.happymo####.com:443/upload/android/icon/2025/05/26/38d15f20f2082a9e9...
- app.happymo####.com:443/upload/android/icon/2025/05/27/dc4ab95dc15fd9305...
- app.happymo####.com:443/upload/android/icon/2025/05/29/8586fbc71a1c57f12...
- app.happymo####.com:443/upload/android/icon/2025/05/30/27480ec41ad0a2ee2...
- app.happymo####.com:443/upload/android/icon/2025/05/30/2f70ff32b5c1f9d50...
- app.happymo####.com:443/upload/android/icon/2025/05/30/4cecbaafb8d6cab04...
- app.happymo####.com:443/upload/android/icon/3/6/1/4641684cc36ed7bfa0b307...
- app.happymo####.com:443/upload/android/icon/3/9/4/5034ef20949bb6cc987294...
- app.happymo####.com:443/upload/android/icon/4/2/3/4e4d524bba3d0a44c8059f...
- app.happymo####.com:443/upload/android/icon/7/6/3/39f51f815ac7ed3bcfa1a6...
- app.happymo####.com:443/upload/android/icon/9/6/7/9dc618649aec0dd4453a63...
- cdn####.unit####.uni####.com:443/webview_test/4.0.0/30c0bf3e965d1978d467...
- cdn-cre####.acq####.unity3d####.com:443/assets/68232f876cf684b05c15f92a/...
- cdn-cre####.acq####.unity3d####.com:443/assets/68233b2062dd9a78ad6cb39b/...
- cdn-sto####.unit####.uni####.com:443/store-icons/e1698cd6-9b13-4c06-abe3...
- cdn.liftoff####.io:443/dev/customers/c811312144/videos/mobile/af25bb209e...
- cdn.liftoff####.io:443/dev/customers/f3a9772255/videos/mobile/6d3d7249d4...
- happ####.com:443/static/img/logo.png
- hy####.mtgglo####.com:443/rv-zip-2019/1113/mini-260291c208bf3376b5111db8...
- hy####.mtgglo####.com:443/rv-zip-2024/0508/tpl4-1bcf49a195b58f3e94024bc8...
- hy####.mtgglo####.com:443/rv-zip-2024/0826/endcard-dsp-1302-330684fdf996...
- hy####.mtgglo####.com:443/rv/endv4.html?mof=####&ec_id=####&mof_uid=####...
- mt####.mtgglo####.com:443/2021/0629/confirmDialog-2b9fddb88412e09a244a9b...
- nl-gcp-####.mtgglo####.com:443/ms_clk?&n_lib=####&srp=o0x####&tc_token=#...
- nl-gcp-####.mtgglo####.com:443/ms_imp?&n_lib=####&srp=o0x####&tc_token=#...
- nl-gcp-####.mtgglo####.com:443/mt_clk?&drp=####&sp=####&ap=####&spp=####...
- nl-gcp-####.mtgglo####.com:443/mt_imp?&drp=####&sp=####&ap=####&spp=####...
- nl-gcp-####.mtgglo####.com:443/mt_imp?&drp=oyG####&sp=####&ap=####&spp=#...
- nl-gcp-####.mtgglo####.com:443/mt_only_imp?&drp=####&sp=####&ap=####&spp...
- nl-gcp-####.mtgglo####.com:443/mt_only_imp?&drp=ilD####&sp=####&ap=####&...
- s4-hot####.100mo####.com/download_file/mod/f1bba583037b2e711bf90e2779449...
HTTP HEAD requests:
- s4-hot####.100mo####.com/download_file/mod/f1bba583037b2e711bf90e2779449...
HTTP POST requests:
- configv####.unit####.uni####.com:443/webview/4.5.0/release/config.json
- ev####.mz.uni####.com:443/operative/123456
- gce-auc####.unit####.uni####.com:443/v6/games/4151416/requests?idfi=####...
- httpk####.unit####.uni####.com:443/v1/events
- om-se####.b####.com:443/init?v=####&plat=####&sdkv=####&k=####
- om-se####.b####.com:443/lr?v=####&plat=####&sdkv=####
- om-se####.b####.com:443/wf?v=####&plat=####&sdkv=####
- prd-le####.cdp.inte####.####.com:443/v1/events
File system changes:
Creates the following files:
- /data/data/####/.YFlurrySenderIndex.info.AnalyticsData_Y66MCFK7...XY_339
- /data/data/####/.YFlurrySenderIndex.info.StreamingMain
- /data/data/####/.dex2oatlock
- /data/data/####/.old_file_converted
- /data/data/####/.updateIV.dat
- /data/data/####/.updateIV.dat_0
- /data/data/####/.updateIV.dat_1
- /data/data/####/.yflurrydatasenderblock.43e42e59-9194-4ce5-95eb...6799c7
- /data/data/####/.yflurrydatasenderblock.9c2f4c65-02cc-4330-835a...be5b11
- /data/data/####/.yflurrydatasenderblock.aa1c5ca4-5bf2-4cb7-9d3b...58751c
- /data/data/####/0000000lllll_0.dex
- /data/data/####/0000000lllll_1.dex
- /data/data/####/000O00ll111l_0.dex
- /data/data/####/000O00ll111l_1.dex
- /data/data/####/00O000ll111l_0.dex
- /data/data/####/00O000ll111l_0.dex (deleted)
- /data/data/####/00O000ll111l_0.dex.flock
- /data/data/####/00O000ll111l_0.dex.flock (deleted)
- /data/data/####/00O000ll111l_1.dex
- /data/data/####/00O000ll111l_1.dex (deleted)
- /data/data/####/00O000ll111l_1.dex.flock
- /data/data/####/00O000ll111l_1.dex.flock (deleted)
- /data/data/####/0OO00l111l1l
- /data/data/####/0OO00l111l1l.lock
- /data/data/####/2fb8bce246d8f30b_0
- /data/data/####/2fb8bce246d8f30b_1
- /data/data/####/32e616d5018fb06b_0
- /data/data/####/3b61ee9dc32964c0_0
- /data/data/####/3b61ee9dc32964c0_1
- /data/data/####/51fd210551e5d38a_0
- /data/data/####/51fd210551e5d38a_1
- /data/data/####/7e77a235a528e3f0_0
- /data/data/####/83836a3f9b1c6f92_0
- /data/data/####/86e5e1525febb522_0
- /data/data/####/86e5e1525febb522_0 (deleted)
- /data/data/####/Cookies-journal
- /data/data/####/FLURRY_SHARED_PREFERENCES.xml
- /data/data/####/FLURRY_SHARED_PREFERENCES.xml.bak
- /data/data/####/GETLASTDATE.xml
- /data/data/####/ServerTimestamp.xml
- /data/data/####/UnityAdsStorage-private-data.json
- /data/data/####/UnityAdsStorage-public-data.json
- /data/data/####/WebViewChromiumPrefs.xml
- /data/data/####/androidx.work.workdb-journal (deleted)
- /data/data/####/cd60787781b2fa01_0
- /data/data/####/cd9708c7bff11389_0
- /data/data/####/cd9708c7bff11389_1
- /data/data/####/cefd7d109ccb5c0e_0
- /data/data/####/com.facebook.sdk.USER_SETTINGS.xml
- /data/data/####/com.facebook.sdk.appEventPreferences.xml
- /data/data/####/completed-1748591207238
- /data/data/####/completed-1748591214028
- /data/data/####/completed-1748591214064
- /data/data/####/controltime.db
- /data/data/####/controltime.db-journal
- /data/data/####/controltime.db-journal (deleted)
- /data/data/####/currentFile
- /data/data/####/d0ceae7fd212e7f8_0
- /data/data/####/deviceuid.xml
- /data/data/####/downgradeallgamel.xml
- /data/data/####/downloading.db
- /data/data/####/downloading.db-journal
- /data/data/####/downloading.db-journal (deleted)
- /data/data/####/e48f78bac1c07761_0
- /data/data/####/e48f78bac1c07761_1
- /data/data/####/f96649bd27298c3f_0
- /data/data/####/filedownloader.db-journal
- /data/data/####/firstinstall_open.xml
- /data/data/####/firstlanguage.xml
- /data/data/####/grayscaleupdate.xml
- /data/data/####/hmuser.db
- /data/data/####/hmuser.db-journal
- /data/data/####/hmuser.db-journal (deleted)
- /data/data/####/index
- /data/data/####/installationNum
- /data/data/####/launch_doman.xml
- /data/data/####/libshellx-super.com.happymod.apk.so
- /data/data/####/log.db
- /data/data/####/log.db-journal
- /data/data/####/log.db-journal (deleted)
- /data/data/####/mb_optimization_setting.xml
- /data/data/####/mbridge.msdk.db-journal
- /data/data/####/metrics_guid
- /data/data/####/newusern.xml
- /data/data/####/no_cdn_config.xml
- /data/data/####/o0oooOO0ooOo.dat
- /data/data/####/omDB.db
- /data/data/####/omDB.db-journal
- /data/data/####/ping_config.xml
- /data/data/####/proc_auxv
- /data/data/####/slanguage.xml
- /data/data/####/splash.xml
- /data/data/####/supersonic_shared_preferen.xml
- /data/data/####/temp-index
- /data/data/####/the-real-index
- /data/data/####/tosversion
- /data/data/####/unityads-installinfo.xml
- /data/media/####/-144940594.tmp
- /data/media/####/-371846786.tmp
- /data/media/####/.DS_Store
- /data/media/####/.adjson_data.txt
- /data/media/####/.nomedia
- /data/media/####/0bb729d0da360097014dd88755771b42c0d899b43615bf....0.tmp
- /data/media/####/0e2789d96de615128a92f7d3b4979ebb648e320c193de2....0.tmp
- /data/media/####/11e564d0f464d875aa83cd2e74e81b8c.html
- /data/media/####/1680921357.tmp
- /data/media/####/1745d3f38a2c5d9b6d1ec95ed7bd4ad97b4aedfd9bb12b....0.tmp
- /data/media/####/187dd0859d7edaa29ae7e57e28abe29643424316a0a9fb....0.tmp
- /data/media/####/1ac1c604c581fe6cf31feb42ebb2ea515cf8edc95da905...6640.0
- /data/media/####/1d432873ae86affb9e912d7c356dcaeed6e3ac85d4380b....0.tmp
- /data/media/####/1e49f09470706d2d5635a0666eb25d3940b0edc34d2adc....0.tmp
- /data/media/####/1eb53e2229cb0b7fd4923a3153ad3a5b.zip
- /data/media/####/22a49c88a89599bf55859dc92a03a0ccb1ca7c13d3bb7a....0.tmp
- /data/media/####/233dae3c75181e8c55f7ffc88a0cb2d565c8af4ec96b2c...5807.0
- /data/media/####/2b6a172805d498b248366aa7d6375003
- /data/media/####/2dae75fba0606efea8cef46968d606bf
- /data/media/####/2dae75fba0606efea8cef46968d606bf.tmp
- /data/media/####/2f2f1b0dda2d1d0f0aac3cb52a6186c3
- /data/media/####/2f2f1b0dda2d1d0f0aac3cb52a6186c3.tmp
- /data/media/####/30a455cb3bdaa21d2c4c8078f0023cfd5d213ada1a5c3f....0.tmp
- /data/media/####/337b42ff9990d1858eb266a8b647f47875dfa679161ada....0.tmp
- /data/media/####/3388639e4f330a650e2bb73a7e26ccae.html
- /data/media/####/3740ace5774d645a0017dfb4e021910967dce158c3ae04...0a89.0
- /data/media/####/39eebd0a7bed8b7ea36a70b675a9d4bc7343060bac97a9....0.tmp
- /data/media/####/41d11017f0971407d721fea33fece1fde05e4505fa0289...6c24.0
- /data/media/####/4233c1a0927894d435f056fd005ebe7907090b2d1c2c6d....0.tmp
- /data/media/####/47224b70f247f3180d35addf536e9f15e8c88662a235ec....0.tmp
- /data/media/####/4813d4e948aaa45f9dbc423a772f8d5692b701cd69d023....0.tmp
- /data/media/####/542cd73fd6ca9f2a70848d558bbd97abf058fe8a7df470....0.tmp
- /data/media/####/542cd73fd6ca9f2a70848d558bbd97abf058fe8a7df470...ca01.0
- /data/media/####/551529641705e291819078a6affa091e922976abbeafc2....0.tmp
- /data/media/####/5a364bd064399146b45571bd414816bcffb2388b1cbcf3....0.tmp
- /data/media/####/5ac32b69fe07082e8988b8958daaba48e35afbfb2f07bf...1780.0
- /data/media/####/5de7f20eaeec15e72f8d127f11919c45ecfd3bf440e775....0.tmp
- /data/media/####/626737a31f51c940e257c71f9c4cb7f571cbe74fd5a90f....0.tmp
- /data/media/####/662bf3ad9a643716da493b9d21ded02db263df8c4fd198....0.tmp
- /data/media/####/66c00a059912bc6b39b66631bc283a70f60d3d04d8a282...ed31.0
- /data/media/####/67176249bbe44acd7ad3e3c33e771aae0269e91fd91061....0.tmp
- /data/media/####/67d6a4fba84e3b9120ed8ca749119b6138990e40fce682...5e9e.0
- /data/media/####/6970834acdc20c25872548c56b6ff1dbffcfb84f0d0c97....0.tmp
- /data/media/####/70dde647f7f58027853873282d90371bbf95ab1ec52752...37a6.0
- /data/media/####/741980465f2c29735ff3e0d40083dfa56a1bcd6e495f5d...bf49.0
- /data/media/####/75458732706aa3a95ec246caa35c50f4fb821a72718334....0.tmp
- /data/media/####/7f18f65b8105004103a9af42153ed08360fbda659f8861....0.tmp
- /data/media/####/805fa3f4aeb946fc8f53898fec2a5d8589d83ffa649744....0.tmp
- /data/media/####/81692c8764e19a334de7d6ae86a1fcba55afcf68f1f82e....0.tmp
- /data/media/####/83f7e74da620e80d17ca41da1e17e560e93b6cdfbeb4e0...57a8.0
- /data/media/####/83fa8b96960a40fff5cbdff0142afc32
- /data/media/####/8456a756947010e73789b5a5366c6662da41fc5df2f061...866f.0
- /data/media/####/88d7dd4eca2738eea6d1f0111aab26b10a490584a7333d....0.tmp
- /data/media/####/97fa7bb585d980fa6ccb9eb040358c46f32789b97f728a...4498.0
- /data/media/####/9b3099b771a9012020d255e630996d74bdd9a6344be4d7....0.tmp
- /data/media/####/UnityAdsCache-1c228127a49c1045c20cc1f177272eb9...0.webm
- /data/media/####/UnityAdsCache-548a907fce802d12725b2493ec6db6a8...9c.jpg
- /data/media/####/UnityAdsCache-7012ae6966d428713d863678e58ab0e0...61.jpg
- /data/media/####/UnityAdsTest.txt
- /data/media/####/UnityAdsTest.txt (deleted)
- /data/media/####/UnityAdsWebApp.html
- /data/media/####/UnityAdsWebViewConfiguration.json
- /data/media/####/a2083c8aba5b88cedf9b9073ce41a184eddbc72bdc4c3f....0.tmp
- /data/media/####/a2a2de3756667de4d1775fe2d800b0d6590d8aae207696....0.tmp
- /data/media/####/a2b90a1be1b583f6f3fd986df073c826847987cf99d5ce....0.tmp
- /data/media/####/a5cf71b6a49b6274bd12adf395aa1ee419a0dfb6e744a1...fccd.0
- /data/media/####/a6c8b6ab529c792ceab9c6cf4a266b354182081200fc31....0.tmp
- /data/media/####/a9ac73b902b719476363227f30298e0a.zip
- /data/media/####/aad6ff98ca0605bc7bc8fab28e4dd0cd52baa7361d716d....0.tmp
- /data/media/####/ab48b15f5d54de52560bd030b5c2f3a3720fe36c461453....0.tmp
- /data/media/####/afd1707ad76c449f9c1ce4de75dac80e.zip
- /data/media/####/b396d36cbee7040d30da91eecc27fd4b24e67d2744540f....0.tmp
- /data/media/####/b52f46f40e8e3ea7bf248382e0869bbec4059298ccc1ab....0.tmp
- /data/media/####/b52f46f40e8e3ea7bf248382e0869bbec4059298ccc1ab...bc87.0
- /data/media/####/b569b158089066fb46b25a00097d1bcad1b45f52ba9a58....0.tmp
- /data/media/####/b7f8e389036d7b21880b2d0473f43ce3dacc0371d18abe...b07d.0
- /data/media/####/bc8bc6c1f74e11ffc6c5d8d37a72ef920fc6a256e2c8d0...d52f.0
- /data/media/####/bells.png
- /data/media/####/bf9f49382eefbf5ca00f92769026039a7018b32103b407....0.tmp
- /data/media/####/btn_download_long.png
- /data/media/####/c059da14bf186bc566bdb45979e1bf0c752ef2687779d8....0.tmp
- /data/media/####/c46750cc08e28bee4dc160f3e9df28cd55e88620e593e7....0.tmp
- /data/media/####/c47adc4d1426cf9790443932b05bc9d3b0b87975b8795c...ce8b.0
- /data/media/####/c7139d7f67bf1a360ef4294254500afc
- /data/media/####/c91cb0e8bebf5b2d738a14a001019e390e2d43423f8a6c....0.tmp
- /data/media/####/c91cb0e8bebf5b2d738a14a001019e390e2d43423f8a6c...3a89.0
- /data/media/####/cbbbc1ac62239d27de132ebba7a74a94fa21eb63c4ae12...2e15.0
- /data/media/####/close_v2.png
- /data/media/####/cloud_h.png
- /data/media/####/cloud_v.png
- /data/media/####/com.happymod.apk.apk.temp
- /data/media/####/common.min.js
- /data/media/####/confirmDialog.html
- /data/media/####/confirmDialog.js
- /data/media/####/d34d320d55e36c54b942d11bf5c84d3309468983c8e144....0.tmp
- /data/media/####/d4ef1ecefa883cb38839e2b0112873970d8118d3ad4c1b....0.tmp
- /data/media/####/d5a3386cd18567cf96c44841c668503fce9ce4d7d59ef6...24fb.0
- /data/media/####/d5c1380394ccf407ebea9210cf4f0739f6855582170fd8...bd83.0
- /data/media/####/d957b350c8f19d0cdb93a738616d9228ec0692a329b7a3....0.tmp
- /data/media/####/d98ed99d5e4659f11a9a4241ee70c1b9769fbadaf85fdb....0.tmp
- /data/media/####/da0063d98364c9462d7aa4c8f6b28aa8a46bb9cd30dabb....0.tmp
- /data/media/####/db728171d818985ba12f14c431852e00b8523ddaab195f...80ad.0
- /data/media/####/df8502bf00741f283c97120a7076dd3a6f1db612ca9ad6....0.tmp
- /data/media/####/df8502bf00741f283c97120a7076dd3a6f1db612ca9ad6...00ea.0
- /data/media/####/e075507e713913089928b7a854003354.zip
- /data/media/####/e085136319e8e631f8fc85d3f7ab332593bd1e3e0b2ca9...c382.0
- /data/media/####/e48dfc97592f3a56b06cd9b4ea247ccf.html
- /data/media/####/e8b3ea5895434a0b30335c129a66abe1f561b5ccab172e...8f72.0
- /data/media/####/ebdbc279b7d1a9b3b76976d7a420550eebf668f38c26b6....0.tmp
- /data/media/####/endcard-dsp-1302.css
- /data/media/####/endcard-dsp-1302.html
- /data/media/####/endcard-dsp-1302.js
- /data/media/####/exc_log.kva
- /data/media/####/exc_log.kvb
- /data/media/####/f15bfac4cd1109461d5ca040cde3b692a9b8d7dd73923d...5742.0
- /data/media/####/f4fe6a9c678e964503030191e0e20d781f88c1a7696795....0.tmp
- /data/media/####/f4fe6a9c678e964503030191e0e20d781f88c1a7696795...8311.0
- /data/media/####/f6953bc60fad056f13bf1aac37cf24e3d688f62f6dad7b...1bbd.0
- /data/media/####/f83c476b77c96602312f0cb1354b3a418e38160dba8afc...ff82.0
- /data/media/####/f971f13ac26c3668821b081c80f8e166ba0bb06a2ee1e7....0.tmp
- /data/media/####/f97f71fd747335c1ac51451b7dc64ead47f8e498d53722...4c0e.0
- /data/media/####/fc53e303194e792be846ed4d262972e7fed5a637cab1fd....0.tmp
- /data/media/####/icon_cloud.png
- /data/media/####/icon_privacy.png
- /data/media/####/info3.png
- /data/media/####/journal
- /data/media/####/journal.tmp
- /data/media/####/loading.gif
- /data/media/####/logo-black.png
- /data/media/####/logo-gray.png
- /data/media/####/m.bundle.js
- /data/media/####/mbridge.kva
- /data/media/####/mbridge.kvb
- /data/media/####/mini.html
- /data/media/####/mraid_js.txt
- /data/media/####/mraid_js.txt (deleted)
- /data/media/####/no_bg_horizontal.png
- /data/media/####/no_bg_vertical.png
- /data/media/####/om_js_content.txt
- /data/media/####/paper_cut_h.png
- /data/media/####/paper_cut_v.png
- /data/media/####/rv_bg_0.jpg
- /data/media/####/rv_bg_1.jpg
- /data/media/####/rv_bg_2.jpg
- /data/media/####/share_date.kva
- /data/media/####/share_date.kvb
- /data/media/####/snow_bg.png
- /data/media/####/sound_off_v2.png
- /data/media/####/sound_open_v2.png
- /data/media/####/star.png
- /data/media/####/star1.png
- /data/media/####/tpl4.html
- /data/media/####/tpl4.js
- /data/media/####/tree_landscape.png
- /data/media/####/tree_portrait.png
- /data/misc/####/primary.prof
Miscellaneous:
Executes the following shell scripts:
- ls -l /system/bin/su
Loads the following dynamic libraries:
- libCSTAMP
- libHappymodPrincess
- libshellx-super.com.happymod.apk
Uses the following algorithms to encrypt data:
- AES-CBC-PKCS7PADDING
Accesses the ITelephony private interface.
Uses special library to hide executable bytecode.
Gets information about network.
Gets information about phone status (number, IMEI, etc.).
Gets information about installed apps.
Displays its own windows over windows of other apps.
