Technical information
- Android.Xiny.116.origin
- Android.Xiny.197
- Android.Xiny.232.origin
- Android.Xiny.233.origin
- Android.Xiny.244.origin
- Android.Xiny.116.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) fb.vi####.com:80
- TCP(HTTP/1.1) build####.com:80
- TCP(HTTP/1.1) www.go####.com:80
- TCP(HTTP/1.1) mcc.god####.com:80
- TCP(HTTP/1.1) ak.im####.com.####.net:80
- TCP(HTTP/1.1) www.zfr####.com:80
- TCP(HTTP/1.1) www.modam####.es:80
- TCP(HTTP/1.1) vi####.com:80
- TCP(HTTP/1.1) mo.freeind####.com:80
- TCP(HTTP/1.1) tra####.tc-cl####.com:80
- TCP(HTTP/1.1) pag####.googles####.com:80
- TCP(HTTP/1.1) ea.sno####.1####.com:18088
- TCP(HTTP/1.1) 2####.177.13.68:8288
- TCP(HTTP/1.1) www.n####.com:80
- TCP(HTTP/1.1) api.mob####.b####.com:80
- TCP(HTTP/1.1) s####.mob####.b####.com:80
- TCP(HTTP/1.1) www.mmmmmm####.com:80
- TCP(HTTP/1.1) www.cu####.com:80
- TCP(HTTP/1.1) ali.f####.cdn.####.com:80
- TCP(HTTP/1.1) www.admobim####.com:80
- TCP(HTTP/1.1) en.sno####.1####.com:8088
- TCP(SSL/3.0) formula####.com:443
- TCP(TLS/1.0) p####.lead####.com:443
- TCP(TLS/1.0) img.mo####.com:443
- TCP(TLS/1.0) www.god####.com.####.net:443
- TCP(TLS/1.0) googl####.g.doublec####.net:443
- TCP(TLS/1.0) pag####.googles####.com:443
- TCP(TLS/1.0) js-a####.newr####.com:443
- TCP(TLS/1.0) c.n####.com:443
- TCP(TLS/1.0) adser####.go####.nl:443
- TCP(TLS/1.0) formula####.com:443
- adser####.go####.com
- adser####.go####.nl
- ak2.im####.com
- akw.e####.space
- ali.f####.cdn.####.com
- api.mob####.b####.com
- build####.com
- c.n####.com
- ea.sno####.1####.com
- en.sno####.1####.com
- fb.vi####.com
- formula####.com
- googl####.g.doublec####.net
- img.mo####.com
- js-a####.newr####.com
- mcc.god####.com
- mo.freeind####.com
- p####.lead####.com
- pag####.googles####.com
- s####.mob####.b####.com
- tra####.tc-cl####.com
- vi####.com
- www.admobim####.com
- www.cu####.com
- www.go####.com
- www.god####.com
- www.mmmmmm####.com
- www.modam####.es
- www.n####.com
- www.zfr####.com
- ak.im####.com.####.net/script/jquery-1.3.1.min.js
- ali.f####.cdn.####.com/20180511120524-snowfox_v19n157a.jar
- api.mob####.b####.com/index.php?r=####
- api.mob####.b####.com/index.php?r=####&al=####&l=####&p=####&hp=####&lc=...
- api.mob####.b####.com/strategy/api/v1/rule/get?p=####&hp=####&l=####&c=#...
- build####.com/L201P/21kq/1V06/jRFnBQqjN9K-dCfTsHfkAQJHTmJ20OebBGASUNHECr...
- fb.vi####.com/?utm_medium=####&utm_campaign=####&cid=####
- fb.vi####.com/PjPaZ/?utm_medium=####&utm_campaign=####&cid=####
- mcc.god####.com/park/nKMwZGuzYaOvrt==
- pag####.googles####.com/pagead/js/adsbygoogle.js
- pag####.googles####.com/pagead/js/r20180613/r20180604/show_ads_impl.js
- tra####.tc-cl####.com/?p=####&media_type=####&pi=####&source_type=####&c...
- vi####.com/?reqp=####&reqr=####
- vi####.com/OcjoZ/?reqp=####&reqr=####
- www.cu####.com/20180518145925.d_201805181500.zip
- www.go####.com/adsense/domains/caf.js
- www.modam####.es/index2_IW.php?formato=####&a=####
- ea.sno####.1####.com:18088/ping
- ea.sno####.1####.com:18088/sdk/api/checklib
- ea.sno####.1####.com:18088/sdk/api/regclient
- en.sno####.1####.com:8088/sdk/api/log/record
- mo.freeind####.com/detail/getOfferListNew?enc=####
- s####.mob####.b####.com/cgi-bin-py/ad_sdk.cgi?ty=####&enc=####&bt=####
- www.admobim####.com/surl/api2_reg.action?ecy=####
- www.mmmmmm####.com/osp/oaen_reg.action
- www.n####.com/api/v2/task/getTask.do
- www.zfr####.com/up.do?enc=####
- /data/data/####/134905922
- /data/data/####/134905922.data
- /data/data/####/92c51c3427cd0b74
- /data/data/####/92c51c3427cd0b74-journal
- /data/data/####/ActivatePreUtil.xml
- /data/data/####/AdsBusiness-data.xml
- /data/data/####/D838hunter_config.xml
- /data/data/####/D838other_config.xml
- /data/data/####/D838serv_config.xml
- /data/data/####/D838sp_config.xml
- /data/data/####/D838upgrade_config.xml
- /data/data/####/LoginPreUtil.xml
- /data/data/####/adblib.db
- /data/data/####/adblib.db-journal
- /data/data/####/aps.xml
- /data/data/####/apsad.xml
- /data/data/####/apscomm.xml
- /data/data/####/ari.xml
- /data/data/####/com.oka.gds.qewe_preferences.xml
- /data/data/####/d.dex
- /data/data/####/d.dex (deleted)
- /data/data/####/d.zip
- /data/data/####/data_0
- /data/data/####/data_1
- /data/data/####/data_2
- /data/data/####/data_3
- /data/data/####/db_snowfox.db
- /data/data/####/db_snowfox.db-journal
- /data/data/####/device_info.xml
- /data/data/####/dtemp.apk
- /data/data/####/f.dex
- /data/data/####/f.zip
- /data/data/####/f_000001
- /data/data/####/f_000002
- /data/data/####/f_000003
- /data/data/####/f_000004
- /data/data/####/f_000005
- /data/data/####/f_000006
- /data/data/####/fiwmw
- /data/data/####/google.db
- /data/data/####/hunter_config.xml
- /data/data/####/index
- /data/data/####/isupdate.xml
- /data/data/####/lib_v19n.dat
- /data/data/####/libugpl.so
- /data/data/####/m_cfg.xml
- /data/data/####/mesosphere_v19n.jar
- /data/data/####/my.db
- /data/data/####/my.db-journal
- /data/data/####/ob.dex
- /data/data/####/ob.zip
- /data/data/####/other_cfg.xml
- /data/data/####/pgbwaa
- /data/data/####/serv_cfg.xml
- /data/data/####/serv_cfg.xml.bak
- /data/data/####/snowfox_v19n.jar
- /data/data/####/snowfoxad_msg.db
- /data/data/####/snowfoxad_msg.db-journal
- /data/data/####/snowfoxprf.xml
- /data/data/####/sp_cache.xml
- /data/data/####/sp_config.xml
- /data/data/####/t_ini.xml
- /data/data/####/up_cfg.xml
- /data/data/####/webview.db
- /data/data/####/webview.db-journal
- /data/data/####/webviewCookiesChromium.db
- /data/data/####/webviewCookiesChromium.db-journal
- /data/media/####/.cuid
- /data/media/####/.nomedia
- /data/media/####/dev_3cd4e63c.txt
- /data/media/####/gads.db
- /data/media/####/imei.txt
- /data/media/####/journal
- /data/media/####/journal.tmp
- /data/media/####/pid
- /data/media/####/sp
- /data/media/####/ua.dat
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
- app_process /system/bin com.android.commands.am.Am startservice --user 0 -n <Package>/com.iuh.okjl.KS
- cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
- chmod 777 <Package Folder>/ugpl
- dd if=<Package Folder>/lib/libugpl.so of=<Package Folder>/ugpl
- sh
- fiwmw
- libugpl
- AES-CBC-PKCS5Padding
- AES-ECB-NoPadding
- AES-ECB-PKCS5Padding
- DES
- desede-ECB-PKCS5Padding
- AES
- AES-ECB-PKCS5Padding
- DES
- desede-ECB-PKCS5Padding