Техническая информация
Вредоносные функции:
Отправляет СМС-сообщения:
- 1069099903306: ####
Отправляет данные получаемых СМС-сообщений на удалённый хост.
Сетевая активность:
Подключается к:
- sdku####.####.com
- mo####.####.com
- omujr####.####.com
- dynami####.####.com
- mmy####.####.com
- vide####.####.cn
- priceru####.####.com
Запросы HTTP GET:
- vide####.####.cn/20160808/9739906a-a529-4d4c-a21f-ae0af318c773-22_%E5%89...
- vide####.####.cn/20170408/19064fdc-c204-4d15-b93b-d7e45aa9723b-%E6%B7%AB...
- vide####.####.cn/20170330/01608e6e-cb95-4ab8-8496-4719cd96faad-20170330....
- vide####.####.cn/tou2133.jpg
- vide####.####.cn/TOUXIANGS67.png
- vide####.####.cn/TOUXIANGS49.png
- vide####.####.cn/TOUXIANGS65.png
- vide####.####.cn/20170412/ecc16df2-dd6f-4091-a294-8e27bf9d3cf8-41.jpg
- vide####.####.cn/20160808/bdc858b1-e12c-4374-b0bf-0514e75a8a70-dsf017.png
- mmy####.####.com/mmys-cps/rdContent.service?deviceId=####&uuid=####&imei...
- vide####.####.cn/TOUXIANGS56.png
- vide####.####.cn/TOUXIANGS31.png
- mmy####.####.com/mmys-cps/videoDtl.service?id=####&rv=####&deviceId=####...
- vide####.####.cn/tou2103.jpg
- vide####.####.cn/20170424/464c78ce-f2a4-4397-8e2e-43cbaa5443ea-%E5%81%B7...
- vide####.####.cn/TOUXIANGS32.png
- mmy####.####.com/mmys-cps/appUpgrade.service?deviceId=####&uuid=####&ime...
- vide####.####.cn/20170411/abeccea8-1b7c-485e-85e0-c8edbb4a58b1-%E5%90%88...
- mmy####.####.com/mmys-cps/styleTopChlVideo.service?pageNo=####&pageSize=...
- vide####.####.cn/20170424/a5589656-eba9-46c5-b0b4-943162bd9c91-1.jpg
- vide####.####.cn/TOUXIANGS33.png
- vide####.####.cn/tou2080.jpg
- vide####.####.cn/TOUXIANGS34.png
- vide####.####.cn/TOUXIANGS36.png
- vide####.####.cn/20170413/c57c8d54-1407-4c47-aadd-a0a6828ccdda-%E6%BB%A1...
- vide####.####.cn/20160808/43b8105d-5dc5-4319-9054-bbad947886f4-4_%E5%89%...
- vide####.####.cn/TOUXIANGS150.png
- vide####.####.cn/20170413/93bdf7ce-4160-4a34-b867-c7eb8a107b0c-%E5%90%8E...
- mmy####.####.com/mmys-cps/runConfig.service?deviceId=####&uuid=####&imei...
- vide####.####.cn/TOUXIANGS19.png
- vide####.####.cn/tou2100.jpg
- omujr####.####.com/parkedmmys?deviceId=####&uuid=####&imei=####&imsi=###...
- mmy####.####.com/mmys-cps/videoComment2.service?videoId=####&deviceId=##...
- vide####.####.cn/TOUXIANGS74.png
- mmy####.####.com/mmys-cps/vdtRmdVideoList.service?showStyle=####&id=####...
- vide####.####.cn/20170424/499dcd80-010c-41c9-957d-a2da24793004-2.jpg
- vide####.####.cn/tou2093.jpg
- vide####.####.cn/tou2086.jpg
- vide####.####.cn/20170413/6c60ce8d-eec5-4848-8962-da4354ab691b-%E5%BC%BA...
- vide####.####.cn/TOUXIANGS48.png
- vide####.####.cn/TOUXIANGS244.png
- vide####.####.cn/tou1012.gif
- vide####.####.cn/20170306/02c47b04-68d4-4981-ac24-8c83ce4ff3a4-19.jpg
- vide####.####.cn/TOUXIANGS215.png
- vide####.####.cn/20170411/4c032a8d-207e-4031-bd2a-6c027b492f5b-%E4%B8%80...
- vide####.####.cn/20160808/8acf9180-6447-4353-a2ea-e21f02a13382-12_%E5%89...
- vide####.####.cn/tou2092.jpg
- vide####.####.cn/TOUXIANGS52.png
- vide####.####.cn/TOUXIANGS205.png
- vide####.####.cn/tou2094.jpg
- vide####.####.cn/TOUXIANGS278.png
- vide####.####.cn/20170413/126ed455-2551-43d7-ac34-fbe4253d4f94-dasd00373...
- vide####.####.cn/tou2088.jpg
- vide####.####.cn/TOUXIANGS57.png
- vide####.####.cn/TOUXIANGS44.png
- vide####.####.cn/TOUXIANGS61.png
- vide####.####.cn/20170317/9f638fff-74b3-41f7-8230-b9b4ef514e6c-%E5%B1%88...
- mmy####.####.com/mmys-cps/bannerInfo.service?showStyle=####&deviceId=###...
- priceru####.####.com/price-rule-cmp/rule/matchRule?version=####&deviceId...
- vide####.####.cn/TOUXIANGS15.png
Запросы HTTP POST:
- mmy####.####.com/mmys-cps/userActivation.service?deviceId=####&uuid=####...
- mo####.####.com/mobile-service/getImsiMobilePhone.json
- dynami####.####.com/dynamicpay//syPayInfo.json?
- dynami####.####.com/dynamicpay//getSyFormalChannels.json?
- mmy####.####.com/mmys-cps/userVisit.service?deviceId=####&uuid=####&imei...
- sdku####.####.com/sdk-update/sdkUpdateCdnUpload.json
Изменения в файловой системе:
Создает следующие файлы:
- /data/data/####/cache/picasso-cache/c961b1a573c90f02b0fb30f3046932c9.1.tmp
- /data/data/####/cache/picasso-cache/763b283b9ab7d214f249d685aaa8c453.0.tmp
- /data/data/####/cache/picasso-cache/cf5588c980cfe8adb89cdac8785efc5a.0.tmp
- /data/data/####/cache/picasso-cache/a6213fd5faccb13b505167ad47ba38c4.0.tmp
- /data/data/####/cache/picasso-cache/3d536b0f01f76c6f36d30e17362227ae.0.tmp
- /data/data/####/cache/picasso-cache/774cf0507f9c084cc91eb8a90ebdc715.1.tmp
- /data/data/####/cache/picasso-cache/66a8b855d4b9285ce7396c8d9844dd6b.1.tmp
- /data/data/####/cache/picasso-cache/64f92fbe29e40e8b200f19bc58f8b3e4.1.tmp
- /data/data/####/cache/picasso-cache/57dc097a31569992e7aeca5faa4fc42f.1.tmp
- /data/data/####/shared_prefs/trigger_count.xml
- /data/data/####/cache/picasso-cache/3d536b0f01f76c6f36d30e17362227ae.1.tmp
- /data/data/####/cache/picasso-cache/1cae0f1fef5c89dafde58852694b8055.0.tmp
- /data/data/####/cache/picasso-cache/bbabaca324e9a1e1b88f584e6fd42f84.1.tmp
- /data/data/####/cache/picasso-cache/ddd33a7dd5bef3a3f445b59d86823f2e.1.tmp
- /data/data/####/cache/picasso-cache/9c1abe5eddaaf07ab90a43b16a1be343.0.tmp
- /data/data/####/cache/picasso-cache/790ef0c06f322d34e1d25cf751034d41.1.tmp
- /data/data/####/databases/webview.db-journal
- /data/data/####/cache/picasso-cache/43c0e813443f8e66e2e17ee8bff5ed51.1.tmp
- /data/data/####/shared_prefs/p_config.xml
- /data/data/####/cache/picasso-cache/51863aaa138bcf530a97c94d26ce37a6.1.tmp
- /data/data/####/files/gaClientId
- /data/data/####/databases/sy_video_data_cache-journal
- /data/data/####/cache/picasso-cache/journal.tmp
- /data/data/####/cache/picasso-cache/042c20b811195f6b17b2cc12baa79b39.0.tmp
- /data/data/####/cache/picasso-cache/66a8b855d4b9285ce7396c8d9844dd6b.0.tmp
- /data/data/####/databases/statistics_db
- /data/data/####/cache/picasso-cache/57dc097a31569992e7aeca5faa4fc42f.0.tmp
- /data/data/####/cache/picasso-cache/f525552150afa702dbaa54c0ed65c204.0.tmp
- /data/data/####/cache/picasso-cache/55b4e6c38c669a5462425c40a45d7de9.1.tmp
- /data/data/####/cache/picasso-cache/774cf0507f9c084cc91eb8a90ebdc715.0.tmp
- /data/data/####/cache/picasso-cache/c961b1a573c90f02b0fb30f3046932c9.0.tmp
- /data/data/####/cache/picasso-cache/ddd33a7dd5bef3a3f445b59d86823f2e.0.tmp
- /data/data/####/cache/picasso-cache/697533e7ea5d48fa7ebfeea8a5c88eb7.1.tmp
- /data/data/####/shared_prefs/common.xml
- /data/data/####/cache/picasso-cache/763b283b9ab7d214f249d685aaa8c453.1.tmp
- /data/data/####/cache/picasso-cache/7fbca5c0a04e17dba79a0adf1a376ddc.0.tmp
- /data/data/####/shared_prefs/ds_configer.xml
- /data/data/####/cache/picasso-cache/526a9c87e64d5ffbba80e57a34ce72f0.0.tmp
- /data/data/####/databases/local_comment-journal
- /data/data/####/cache/picasso-cache/a65ff67cb50dde51ab68d09d55c1dbdb.1.tmp
- /data/data/####/cache/picasso-cache/10a48ad56d4f51ac0739c897aed60fff.0.tmp
- /data/data/####/cache/picasso-cache/97c35f67369ca8cf5569cbaf09710bc6.1.tmp
- /data/data/####/cache/picasso-cache/042c20b811195f6b17b2cc12baa79b39.1.tmp
- /data/data/####/cache/picasso-cache/915d6b3a7ec591ff8ae5e46fde9fe625.0.tmp
- /data/data/####/cache/picasso-cache/ebd67e419d1101669c299a7d2d85b14b.1.tmp
- /data/data/####/shared_prefs/global_count.xml
- /data/data/####/cache/picasso-cache/624c3bebe848f6413501e5d3b5cd107a.0.tmp
- /data/data/####/cache/picasso-cache/c3637981fae34f260f270552c8de13b3.1.tmp
- /data/data/####/cache/picasso-cache/6ce098dbc97fa4df609eabf3d93c036d.0.tmp
- /data/data/####/cache/picasso-cache/21e4d458624ea138e882300449f44fc5.1.tmp
- /data/data/####/cache/picasso-cache/3c79e789c2acdb9d00cefb23065bef61.0.tmp
- /data/data/####/cache/picasso-cache/55b4e6c38c669a5462425c40a45d7de9.0.tmp
- /data/data/####/shared_prefs/trigger_count.xml.bak
- /data/data/####/cache/picasso-cache/915d6b3a7ec591ff8ae5e46fde9fe625.1.tmp
- /data/data/####/cache/picasso-cache/65aa9847121fb1a96626daae798ae0e4.1.tmp
- /data/data/####/cache/picasso-cache/cf5588c980cfe8adb89cdac8785efc5a.1.tmp
- /data/data/####/cache/picasso-cache/a65ff67cb50dde51ab68d09d55c1dbdb.0.tmp
- /data/data/####/cache/picasso-cache/7fbca5c0a04e17dba79a0adf1a376ddc.1.tmp
- /data/data/####/cache/picasso-cache/988f96bae6cd6791bf6aed41f5421fa3.0.tmp
- /data/data/####/cache/picasso-cache/ebd67e419d1101669c299a7d2d85b14b.0.tmp
- /data/data/####/cache/picasso-cache/bf6d0970fe6d4145bf404c542849b2b1.0.tmp
- /data/data/####/shared_prefs/global_count.xml.bak
- /data/data/####/cache/picasso-cache/da4667aa345e5b348e535ff73ccdf495.1.tmp
- /data/data/####/shared_prefs/uuid_reg.xml
- /data/data/####/shared_prefs/domain.xml
- /data/data/####/cache/picasso-cache/34fbba0d1475d489eedd49468cf69abe.1.tmp
- /data/data/####/cache/picasso-cache/10a48ad56d4f51ac0739c897aed60fff.1.tmp
- /data/data/####/cache/picasso-cache/66a6c94081fefddbfd6333d29b872db3.0.tmp
- /data/data/####/cache/picasso-cache/34fa2eeb7634ba3e3e0a0ba7b3cee49e.1.tmp
- /data/data/####/cache/picasso-cache/51863aaa138bcf530a97c94d26ce37a6.0.tmp
- /data/data/####/cache/picasso-cache/6a28287eae10de2daf9711acca6c559a.1.tmp
- /data/data/####/cache/picasso-cache/1cae0f1fef5c89dafde58852694b8055.1.tmp
- /data/data/####/cache/picasso-cache/da4667aa345e5b348e535ff73ccdf495.0.tmp
- /data/data/####/cache/picasso-cache/48235eeb7858951fdd74f0a64fa12c03.0.tmp
- /data/data/####/cache/picasso-cache/a94adc08c1c154289cac5545e3e5f05c.1.tmp
- /data/data/####/cache/picasso-cache/66a6c94081fefddbfd6333d29b872db3.1.tmp
- /data/data/####/cache/picasso-cache/34fbba0d1475d489eedd49468cf69abe.0.tmp
- /data/data/####/cache/picasso-cache/97c35f67369ca8cf5569cbaf09710bc6.0.tmp
- /data/data/####/databases/upgrade_app-journal
- /data/data/####/databases/statistics_db-journal
- /data/data/####/cache/picasso-cache/526a9c87e64d5ffbba80e57a34ce72f0.1.tmp
- /data/data/####/cache/picasso-cache/21e4d458624ea138e882300449f44fc5.0.tmp
- /data/data/####/cache/picasso-cache/3c79e789c2acdb9d00cefb23065bef61.1.tmp
- /data/data/####/cache/picasso-cache/65aa9847121fb1a96626daae798ae0e4.0.tmp
- /data/data/####/databases/google_analytics_v2.db-journal
- /data/data/####/cache/picasso-cache/06b938544a1db75a36948402e70a2786.1.tmp
- /data/data/####/cache/picasso-cache/9c1abe5eddaaf07ab90a43b16a1be343.1.tmp
- /data/data/####/cache/picasso-cache/48235eeb7858951fdd74f0a64fa12c03.1.tmp
- /data/data/####/cache/picasso-cache/a6213fd5faccb13b505167ad47ba38c4.1.tmp
- /data/data/####/cache/picasso-cache/43c0e813443f8e66e2e17ee8bff5ed51.0.tmp
- /data/data/####/cache/picasso-cache/06b938544a1db75a36948402e70a2786.0.tmp
- /data/data/####/shared_prefs/DIALOG_SHOW_TAG.xml
- /data/data/####/cache/picasso-cache/ee68cfaf945ea870854f7b06868e4d0a.0.tmp
- /data/data/####/cache/picasso-cache/4c00e279a1b4626ed3021e5bf93f2c84.1.tmp
- /data/data/####/cache/picasso-cache/bf6d0970fe6d4145bf404c542849b2b1.1.tmp
- /data/data/####/cache/picasso-cache/dbe7445461a2aa62656c004538ffa566.0.tmp
- /data/data/####/cache/picasso-cache/bed586580a8dcbba19c8d3ce13c5486c.0.tmp
- /data/data/####/cache/picasso-cache/72191092ceb36d7ace46bd3e27efbff7.0.tmp
- /data/data/####/cache/picasso-cache/6a28287eae10de2daf9711acca6c559a.0.tmp
- /data/data/####/databases/sy_pay_record-journal
- /data/data/####/cache/picasso-cache/697533e7ea5d48fa7ebfeea8a5c88eb7.0.tmp
- /data/data/####/cache/picasso-cache/4c00e279a1b4626ed3021e5bf93f2c84.0.tmp
- /data/data/####/cache/picasso-cache/790ef0c06f322d34e1d25cf751034d41.0.tmp
- /data/data/####/cache/picasso-cache/624c3bebe848f6413501e5d3b5cd107a.1.tmp
- /data/data/####/cache/picasso-cache/34fa2eeb7634ba3e3e0a0ba7b3cee49e.0.tmp
- /data/data/####/cache/picasso-cache/c3637981fae34f260f270552c8de13b3.0.tmp
- /data/data/####/cache/picasso-cache/b22fc6ce8a0bdcc8ba4f15d6a7fa152b.1.tmp
- /data/data/####/cache/picasso-cache/2e3d34b6d0bd9e1f5fb32e45e20807ba.0.tmp
- /data/data/####/cache/picasso-cache/bed586580a8dcbba19c8d3ce13c5486c.1.tmp
- /data/data/####/cache/picasso-cache/a94adc08c1c154289cac5545e3e5f05c.0.tmp
- /data/data/####/cache/picasso-cache/bbabaca324e9a1e1b88f584e6fd42f84.0.tmp
- /data/data/####/cache/picasso-cache/72191092ceb36d7ace46bd3e27efbff7.1.tmp
- /data/data/####/cache/picasso-cache/988f96bae6cd6791bf6aed41f5421fa3.1.tmp
- /data/data/####/cache/picasso-cache/ee68cfaf945ea870854f7b06868e4d0a.1.tmp
- /data/data/####/cache/picasso-cache/64f92fbe29e40e8b200f19bc58f8b3e4.0.tmp
- /sdcard/SYPAYFILENAME/CACHE/SMSCACHE/ISDELSMS
- /data/data/####/cache/picasso-cache/6ce098dbc97fa4df609eabf3d93c036d.1.tmp
- /data/data/####/cache/picasso-cache/f525552150afa702dbaa54c0ed65c204.1.tmp
- /data/data/####/databases/recommend_app-journal
- /data/data/####/cache/picasso-cache/dbe7445461a2aa62656c004538ffa566.1.tmp
- /data/data/####/cache/picasso-cache/b22fc6ce8a0bdcc8ba4f15d6a7fa152b.0.tmp
- /data/data/####/cache/picasso-cache/2e3d34b6d0bd9e1f5fb32e45e20807ba.1.tmp
Другие:
Может автоматически отправлять СМС-сообщения.
