Technical information
- Adware.Gexin.2.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) m.d####.mob.com:80
- TCP(HTTP/1.1) s####.57k.com:80
- TCP(HTTP/1.1) i####.57k.com:80
- TCP(HTTP/1.1) a####.exc.mob.com:80
- TCP(HTTP/1.1) sdk.o####.p####.####.com:80
- TCP(HTTP/1.1) api.s####.mob.com:80
- TCP(TLS/1.0) s####.57k.com:443
- TCP(TLS/1.0) and####.google####.com:443
- TCP(TLS/1.0) gmscomp####.google####.com:443
- TCP(TLS/1.0) and####.a####.go####.com:443
- TCP(TLS/1.0) pla####.google####.com:443
- TCP(TLS/1.0) connect####.gst####.com:443
- TCP(TLS/1.0) v.hu####.com:443
- TCP(TLS/1.2) 74.1####.131.139:443
- TCP(TLS/1.2) and####.google####.com:443
- TCP(TLS/1.2) 1####.177.14.94:443
- TCP s####.57k.com:443
- UDP and####.google####.com:443
- a####.exc.mob.com
- and####.a####.go####.com
- and####.google####.com
- api.s####.mob.com
- connect####.gst####.com
- gmscomp####.google####.com
- i####.57k.com
- m.d####.mob.com
- pla####.google####.com
- s####.57k.com
- sdk.o####.p####.####.com
- v.hu####.com
- i####.57k.com/upload/20210530/60b35b2eaf833.mp4
- m.d####.mob.com/v2/cconf?appkey=####&plat=####&apppkg=####&appver=####&n...
- s####.57k.com/upload/20211021/61710fba7f7f5.png
- s####.57k.com/upload/20211201/61a73e1d03e04.jpg
- s####.57k.com/upload/20211213/61b70bcdd6608.png
- s####.57k.com/upload/20220525/628dd75e92425.png
- s####.57k.com/upload/20220907/631874571d9e0.png
- s####.57k.com/upload/20230104/63b55bdd09249.png
- s####.57k.com:443/upload/20230112/63bf93dbbde03.jpg
- a####.exc.mob.com/errconf
- api.s####.mob.com/conf5
- api.s####.mob.com/conn
- api.s####.mob.com/log4
- api.s####.mob.com/snsconf
- sdk.o####.p####.####.com/api.php?format=####&t=####
- v.hu####.com:443/v7/install
- /data/data/####/.cl
- /data/data/####/.jg.ac
- /data/data/####/.lock
- /data/data/####/.mrecord
- /data/data/####/.mrecord (deleted)
- /data/data/####/.mrlock
- /data/data/####/.old_file_converted
- /data/data/####/.statistics
- /data/data/####/1c7a7006f4309d1b5f45621940517c7a9e9095555e38496....0.tmp
- /data/data/####/1c7a7006f4309d1b5f45621940517c7a9e9095555e38496...fca0.0
- /data/data/####/82c531e3de37ea07_0
- /data/data/####/8cd46f917ac8c238d005c31bccc8fc3e33c2a691f19ccc2....0.tmp
- /data/data/####/8cd46f917ac8c238d005c31bccc8fc3e33c2a691f19ccc2...3e4e.0
- /data/data/####/Cookies-journal
- /data/data/####/ThrowalbeLog.db-journal
- /data/data/####/WebViewChromiumPrefs.xml
- /data/data/####/a25a7c420b978571_0
- /data/data/####/classes.dex
- /data/data/####/classes.dex;classes2.dex
- /data/data/####/classes.dex;classes3.dex
- /data/data/####/classes.dex;classes4.dex
- /data/data/####/classes.dex;classes5.dex
- /data/data/####/classes.oat
- /data/data/####/com.liang530.control.LoginControl.xml
- /data/data/####/com.zhiai.huosuapp.xml
- /data/data/####/com.zhiai.huosuapp_preferences.xml
- /data/data/####/e4612741f52101f89adf13b1b0481b5e74f037380715070....0.tmp
- /data/data/####/f2fe509fd8df61c7_0
- /data/data/####/filedownloader.db-journal
- /data/data/####/getui_sp.xml
- /data/data/####/index
- /data/data/####/init_c1.pid
- /data/data/####/init_er.pid
- /data/data/####/journal
- /data/data/####/libjiagu.so
- /data/data/####/libjiagu_64.so
- /data/data/####/metrics_guid
- /data/data/####/mob_commons_1.xml
- /data/data/####/mob_sdk_exception_1.xml
- /data/data/####/outdbName.db-journal
- /data/data/####/proc_auxv
- /data/data/####/share_sdk_1.xml
- /data/data/####/share_sdk_1.xml.bak (deleted)
- /data/data/####/sharesdk.db-journal
- /data/data/####/sp_rsa_public_key.xml
- /data/data/####/splash.xml
- /data/data/####/splash_img.jpg
- /data/data/####/tasksmanager.db-journal
- /data/data/####/the-real-index
- /data/media/####/.dic_lock
- /data/media/####/.duid
- /data/media/####/.globalLock
- /data/media/####/.pkg_lock
- /data/media/####/.rc_lock
- /data/media/####/outdbName.db
- /data/media/####/tasksmanager.db
- /data/misc/####/primary.prof
- cat /sys/class/net/wlan0/address
- libhs_sdk-lib
- libjiagu_64
- AES-ECB-PKCS7Padding
- RSA-ECB-PKCS1Padding
- AES-ECB-NoPadding