Technical information
- Adware.Plague.1.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) up.cm.ksmo####.com:80
- TCP(HTTP/1.1) in####.d####.net:80
- TCP(HTTP/1.1) u####.ad####.com:80
- TCP(TLS/1.0) 1####.217.17.142:443
- TCP(TLS/1.0) api.face####.com:443
- TCP(TLS/1.0) c####.ksmo####.com:443
- c####.ksmo####.com
- g####.face####.com
- in####.d####.net
- u####.ad####.com
- u.zntia####.com
- u1.zntia####.com
- u2.zntia####.com
- up.cm.ksmo####.com
- u####.ad####.com/b/?action=####
- u####.ad####.com/b/?action=####&postype=####&mid=####&posid=####&cver=##...
- u####.ad####.com/b/?v=####&mid=####&sdkt=####&lan=####&brand=####&model=...
- up.cm.ksmo####.com/filemanager//controller/CloudCfg.php
- in####.d####.net/c/
- /data/data/####/.jg.ic
- /data/data/####/.log.lock
- /data/data/####/.log.ls
- /data/data/####/FBAdPrefs.xml
- /data/data/####/ad_sdk.db-journal
- /data/data/####/app_qszvclasses.jar
- /data/data/####/cmcmadsdk_config.xml
- /data/data/####/com.sdfjhue.wjglq_preferences.xml
- /data/data/####/com.sdfjhue.wjglq_service_preferences.xml
- /data/data/####/dbmfkio-journal
- /data/data/####/fm_hd_menu_1536349438344.ich
- /data/data/####/fm_hd_menu_1536349438361.ich
- /data/data/####/fm_hd_menu_1536349450836.ich
- /data/data/####/fm_hd_menu_1536349450852.ich
- /data/data/####/fm_hd_menu_1536349460019.ich
- /data/data/####/fm_hd_menu_1536349460020.ich
- /data/data/####/kctrl.dat
- /data/data/####/kfmt.dat
- /data/data/####/libjiagu.so
- /data/data/####/market.db-journal
- /data/data/####/market_config.xml
- /data/data/####/nqfj
- /data/data/####/rhmsoft.fm.db-journal
- /data/data/####/webview.db-journal
- /data/media/####/.nomedia
- chmod 755 <Package Folder>/.jiagu/libjiagu.so
- libjiagu
- libkcmutil
- obb
- DES-ECB-PKCS5Padding