Technical information
- Android.Triada.155.origin
- Android.Triada.178
- UDP(DNS) <Google DNS>
- TCP(GCM) <Google Host>
- TCP(HTTP/1.1) oc.u####.com:80
- TCP(HTTP/1.1) 1####.29.97.128:8012
- TCP(HTTP/1.1) www.z####.com:20002
- api.var####.com
- c.jinqia####.com
- dl.c####.com
- int.d####.s####.####.cn
- mt####.go####.com
- oc.u####.com
- s.jinqia####.com
- sb.n####.com
- www.z####.com
- oc.u####.com/v2/get_update_time
- www.z####.com:20002/advert/app/list
- <Package Folder>/EOZTzhVG.jar
- <Package Folder>/app_dex02310/apk.dex (deleted)
- <Package Folder>/app_dex04680/apk.dex (deleted)
- <Package Folder>/app_dex05506/apk.dex
- <Package Folder>/app_dex06784/apk.dex (deleted)
- <Package Folder>/app_libs/iyoupay.so
- <Package Folder>/app_libs/iyoupay_data.dex
- <Package Folder>/app_temp/iyoupay.so
- <Package Folder>/app_workbench04680/apk.zip
- <Package Folder>/app_workbench15506/apk.zip
- <Package Folder>/app_workbench32310/apk.zip
- <Package Folder>/app_workbench37836/apk.zip
- <Package Folder>/databases/ehooab
- <Package Folder>/databases/ehooep
- <Package Folder>/databases/webview.db
- <Package Folder>/databases/webview.db-journal
- <Package Folder>/files/####/Ak4ILSv62gsPZUwTNH40fg==.new
- <Package Folder>/files/####/Vtll-MEfYmhVjj3mjU488g==
- <Package Folder>/files/####/Vtll-MEfYmhVjj3mjU488g==.new
- <Package Folder>/files/####/Ze5NZkWF9pRp5kqbu3SxjA==
- <Package Folder>/files/####/data.dat.tmp
- <Package Folder>/files/####/libcrypt_sign.so
- <Package Folder>/files/####/libkjOnlinePay.so
- <Package Folder>/files/####/libmegjb.so
- <Package Folder>/files/####/libumc_auth.so
- <Package Folder>/files/####/libus.so
- <Package Folder>/files/####/libzimon.so
- <Package Folder>/files/####/sbcnua_f.dex
- <Package Folder>/files/####/sbcnua_f.zip
- <Package Folder>/libus.lock
- <Package Folder>/shared_prefs/<Package>91YKJ.xml
- <Package Folder>/shared_prefs/ehoopost.xml
- <Package Folder>/shared_prefs/ehoopost.xml.bak
- <Package Folder>/shared_prefs/iapppay_config.xml
- <Package Folder>/shared_prefs/iyouypay.xml
- <Package Folder>/shared_prefs/iyouypay.xml.bak
- <Package Folder>/shared_prefs/onlineconfig_agent_online_setting...e>.xml
- <Package Folder>/shared_prefs/setting.xml
- <Package Folder>/shared_prefs/zzconfig.xml
- <SD-Card>/.twservice/qshp_3002_2206.zip
- <SD-Card>/Android/####/com.skymobi.pay.plugin.main.data
- <SD-Card>/Android/####/com.skymobi.pay.plugin.recordupload.data
- <SD-Card>/Android/####/com.skymobi.pay.plugin.smspay.data
- <SD-Card>/Download/channel_conf
- <SD-Card>/iapppay/####/statistics.log
- <SD-Card>/iyou/####/iyoupay_data.jar
- chmod 666 /storage/emulated/0/Android/data/com.skymobi.pay.newsdk/plugins/com.skymobi.pay.plugin.main.data
- chmod 666 /storage/emulated/0/Android/data/com.skymobi.pay.newsdk/plugins/com.skymobi.pay.plugin.recordupload.data
- chmod 666 /storage/emulated/0/Android/data/com.skymobi.pay.newsdk/plugins/com.skymobi.pay.plugin.smspay.data
- getprop apps.customerservice.device
- ls -l /system/bin/su
- iyoupay
- nxrsk
- us
- zimon
- DES-CBC-PKCS5Padding
- DES