Техническая информация
Вредоносные функции:
Загружает на исполнение код следующих детектируемых угроз:
- Program.DDCoreSDK.1.origin
Изменения в файловой системе:
Создает следующие файлы:
- <Package Folder>/files/temp_category/2d
- <Package Folder>/files/temp_category/2e
- <Package Folder>/files/temp_category/2f
- <Package Folder>/files/temp_category/2a
- <Package Folder>/files/temp_category/2b
- <Package Folder>/databases/widgetpreviews.db-journal
- <Package Folder>/shared_prefs/update.xml
- <Package Folder>/files/temp_category/37
- <Package Folder>/files/temp_category/36
- <Package Folder>/files/temp_category/35
- <Package Folder>/files/temp_category/34
- <Package Folder>/files/temp_category/33
- <Package Folder>/files/temp_category/32
- <Package Folder>/files/temp_category/31
- <Package Folder>/files/temp_category/30
- <Package Folder>/files/temp_category/39
- <Package Folder>/files/temp_category/38
- <Package Folder>/files/temp_category/f8
- <Package Folder>/files/temp_category/f9
- <Package Folder>/files/temp_category/63
- <Package Folder>/databases/launcher.db-journal
- <Package Folder>/files/temp_category/f1
- <Package Folder>/files/temp_category/f2
- <Package Folder>/files/temp_category/2c
- <Package Folder>/files/temp_category/f4
- <Package Folder>/files/temp_category/f5
- <Package Folder>/files/temp_category/f6
- <Package Folder>/files/temp_category/f7
- <Package Folder>/files/temp_category/e4
- <Package Folder>/files/temp_category/9c
- <Package Folder>/files/temp_category/3f
- <Package Folder>/files/temp_category/3e
- <Package Folder>/files/temp_category/3d
- <Package Folder>/files/temp_category/3c
- <Package Folder>/files/temp_category/3b
- <Package Folder>/files/temp_category/3a
- <Package Folder>/files/temp_category/a3
- <Package Folder>/files/temp_category/24
- <Package Folder>/files/temp_category/25
- <Package Folder>/files/temp_category/26
- <Package Folder>/files/temp_category/27
- <Package Folder>/files/temp_category/20
- <Package Folder>/files/temp_category/21
- <Package Folder>/files/temp_category/22
- <Package Folder>/files/temp_category/23
- <Package Folder>/files/plugin/apks/plugin.apk
- <Package Folder>/files/temp_category/28
- <Package Folder>/files/temp_category/29
- <Package Folder>/files/temp_category/a4
- <Package Folder>/files/themeservice.jar
- <Package Folder>/shared_prefs/LqServiceUpdater.xml
- <Package Folder>/shared_prefs/<Package>_preferences.xml
- <Package Folder>/files/temp_category/d1
- <Package Folder>/files/temp_category/fa
- <Package Folder>/files/temp_category/fb
- <Package Folder>/files/temp_category/fc
- <Package Folder>/files/temp_category/fd
- <Package Folder>/files/temp_category/fe
- <Package Folder>/files/temp_category/ff
- <Package Folder>/files/temp_category/99
- <Package Folder>/files/temp_category/98
- <Package Folder>/files/temp_category/da
- <Package Folder>/files/temp_category/df
- <Package Folder>/files/temp_category/dd
- <Package Folder>/files/temp_category/de
- <Package Folder>/files/temp_category/0f
- <Package Folder>/files/temp_category/90
- <Package Folder>/files/temp_category/0d
- <Package Folder>/files/temp_category/0e
- <Package Folder>/files/temp_category/0b
- <Package Folder>/files/temp_category/0c
- <Package Folder>/files/temp_category/97
- <Package Folder>/databases/app_icons.db-journal
- <Package Folder>/files/temp_category/11
- <Package Folder>/files/temp_category/10
- <Package Folder>/files/temp_category/13
- <Package Folder>/files/temp_category/12
- <Package Folder>/files/temp_category/15
- <Package Folder>/files/temp_category/14
- <Package Folder>/files/temp_category/17
- <Package Folder>/files/temp_category/16
- <Package Folder>/files/temp_category/19
- <Package Folder>/files/temp_category/18
- <Package Folder>/files/temp_category/e9
- <Package Folder>/files/temp_category/e8
- <Package Folder>/shared_prefs/com.google.android.gms.analytics.prefs.xml.bak
- <Package Folder>/files/temp_category/8f
- <Package Folder>/files/temp_category/8d
- <Package Folder>/files/temp_category/8e
- <Package Folder>/files/temp_category/8b
- <Package Folder>/files/temp_category/8c
- <Package Folder>/files/temp_category/8a
- <Package Folder>/files/temp_category/eb
- <Package Folder>/files/temp_category/cf
- <Package Folder>/files/temp_category/ce
- <Package Folder>/files/temp_category/cd
- <Package Folder>/files/temp_category/cc
- <Package Folder>/files/temp_category/cb
- <Package Folder>/files/temp_category/ca
- <Package Folder>/databases/google_analytics_v4.db
- <Package Folder>/shared_prefs/com.android.launcher3.prefs.xml
- <Package Folder>/files/temp_category/1a
- <Package Folder>/files/temp_category/ed
- <Package Folder>/files/temp_category/1c
- <Package Folder>/files/temp_category/1b
- <Package Folder>/files/temp_category/1e
- <Package Folder>/files/temp_category/1d
- <Package Folder>/files/temp_category/ec
- <Package Folder>/files/temp_category/1f
- <Package Folder>/files/gkload.jar
- <Package Folder>/files/temp_category/d2
- <Package Folder>/files/temp_category/d3
- <Package Folder>/files/temp_category/d0
- <Package Folder>/files/temp_category/b7
- <Package Folder>/files/temp_category/d6
- <Package Folder>/files/temp_category/d7
- <Package Folder>/files/temp_category/08
- <Package Folder>/files/temp_category/09
- <Package Folder>/files/temp_category/06
- <Package Folder>/files/temp_category/07
- <Package Folder>/files/temp_category/04
- <Package Folder>/files/temp_category/05
- <Package Folder>/files/temp_category/02
- <Package Folder>/files/temp_category/03
- <Package Folder>/files/temp_category/00
- <Package Folder>/files/temp_category/01
- <Package Folder>/files/temp_category/c7
- <Package Folder>/files/temp_category/c6
- <Package Folder>/files/temp_category/c5
- <Package Folder>/files/temp_category/c4
- <Package Folder>/files/temp_category/c3
- <Package Folder>/files/temp_category/c2
- <Package Folder>/files/temp_category/c1
- <Package Folder>/files/temp_category/c0
- <Package Folder>/shared_prefs/update_check.xml
- <Package Folder>/files/temp_category/b3
- <Package Folder>/files/temp_category/c9
- <Package Folder>/files/temp_category/c8
- <Package Folder>/files/temp_category/86
- <Package Folder>/files/temp_category/87
- <Package Folder>/files/temp_category/84
- <Package Folder>/files/temp_category/85
- <Package Folder>/files/temp_category/82
- <Package Folder>/files/temp_category/83
- <Package Folder>/files/temp_category/80
- <Package Folder>/files/temp_category/81
- <Package Folder>/files/temp_category/88
- <Package Folder>/files/temp_category/89
- <Package Folder>/files/temp_category/db
- /data/anr/traces.txt
- <Package Folder>/files/temp_category/f3
- <Package Folder>/files/temp_category/d4
- <Package Folder>/files/temp_category/dc
- <Package Folder>/files/temp_category/6a
- <Package Folder>/files/temp_category/6c
- <Package Folder>/files/temp_category/6d
- <Package Folder>/files/temp_category/6e
- <Package Folder>/files/temp_category/6f
- <Package Folder>/files/temp_category/9a
- <Package Folder>/files/temp_category/79
- <Package Folder>/files/temp_category/78
- <Package Folder>/files/temp_category/73
- <Package Folder>/files/temp_category/72
- <Package Folder>/files/temp_category/71
- <Package Folder>/files/temp_category/70
- <Package Folder>/files/temp_category/77
- <Package Folder>/files/temp_category/76
- <Package Folder>/files/temp_category/75
- <Package Folder>/files/temp_category/74
- <Package Folder>/files/temp_category/b4
- <Package Folder>/files/temp_category/b5
- <Package Folder>/files/temp_category/9b
- <Package Folder>/files/temp_category/b0
- <Package Folder>/files/temp_category/b1
- <Package Folder>/files/temp_category/b2
- <Package Folder>/files/gkload_temp.jar
- <Package Folder>/files/temp_category/9e
- <Package Folder>/files/temp_category/b8
- <Package Folder>/files/temp_category/b9
- <Package Folder>/files/temp_category/9d
- <Package Folder>/files/temp_category/aa
- <Package Folder>/files/temp_category/91
- <Package Folder>/files/temp_category/ac
- <Package Folder>/files/temp_category/ab
- <Package Folder>/files/temp_category/ae
- <Package Folder>/files/temp_category/ef
- <Package Folder>/files/temp_category/af
- <Package Folder>/files/temp_category/9f
- <Package Folder>/files/temp_category/93
- <Package Folder>/files/temp_category/92
- <Package Folder>/shared_prefs/com.android.launcher3.prefs.xml.bak
- <Package Folder>/files/temp_category/7c
- <Package Folder>/files/temp_category/7b
- <Package Folder>/files/temp_category/7a
- <Package Folder>/files/temp_category/7f
- <Package Folder>/files/temp_category/7e
- <Package Folder>/files/temp_category/7d
- <Package Folder>/files/temp_category/68
- <Package Folder>/files/temp_category/69
- <Package Folder>/files/temp_category/ea
- <Package Folder>/shared_prefs/SDKUpdate.xml
- <Package Folder>/files/temp_category/60
- <Package Folder>/files/temp_category/61
- <Package Folder>/files/temp_category/62
- <Package Folder>/files/temp_category/0a
- <Package Folder>/files/temp_category/64
- <Package Folder>/files/temp_category/65
- <Package Folder>/files/temp_category/66
- <Package Folder>/files/temp_category/67
- <Package Folder>/files/temp_category/a1
- <Package Folder>/files/temp_category/e5
- <Package Folder>/files/temp_category/95
- <Package Folder>/files/temp_category/a2
- <Package Folder>/files/temp_category/a5
- <Package Folder>/files/temp_category/94
- <Package Folder>/files/temp_category/a7
- <Package Folder>/files/temp_category/a6
- <Package Folder>/files/temp_category/a9
- <Package Folder>/files/temp_category/a8
- <Package Folder>/files/temp_category/e7
- <Package Folder>/files/temp_category/be
- <Package Folder>/files/temp_category/bf
- <Package Folder>/files/temp_category/e6
- <Package Folder>/files/temp_category/ba
- <Package Folder>/files/temp_category/bb
- <Package Folder>/files/temp_category/bc
- <Package Folder>/databases/google_analytics_v4.db-journal
- <Package Folder>/files/temp_category/e1
- <Package Folder>/files/category
- <Package Folder>/files/temp_category/f0
- <Package Folder>/files/temp_category/e0
- <Package Folder>/files/temp_category/55
- <Package Folder>/files/temp_category/54
- <Package Folder>/files/temp_category/57
- <Package Folder>/files/temp_category/56
- <Package Folder>/files/temp_category/51
- <Package Folder>/files/temp_category/50
- <Package Folder>/files/temp_category/53
- <Package Folder>/files/temp_category/52
- <Package Folder>/files/temp_category/e2
- <Package Folder>/files/temp_category/59
- <Package Folder>/files/temp_category/58
- <Package Folder>/files/temp_category/4b
- <Package Folder>/files/temp_category/4c
- <Package Folder>/shared_prefs/update.xml.bak
- <Package Folder>/files/temp_category/4a
- <Package Folder>/files/temp_category/4f
- <Package Folder>/files/temp_category/4d
- <Package Folder>/files/temp_category/4e
- <Package Folder>/files/temp_category/d5
- <Package Folder>/files/temp_category/96
- <Package Folder>/files/temp_category/42
- <Package Folder>/files/temp_category/43
- <Package Folder>/files/temp_category/40
- <Package Folder>/files/temp_category/41
- <Package Folder>/files/temp_category/46
- <Package Folder>/files/temp_category/47
- <Package Folder>/files/temp_category/44
- <Package Folder>/files/temp_category/45
- <Package Folder>/files/temp_category/48
- <Package Folder>/files/temp_category/49
- <Package Folder>/shared_prefs/ServicePref.xml
- <Package Folder>/files/temp_category/ee
- <Package Folder>/files/temp_category/5e
- <Package Folder>/files/temp_category/5d
- <Package Folder>/files/temp_category/5f
- <Package Folder>/files/temp_category/5a
- <Package Folder>/files/temp_category/5c
- <Package Folder>/files/temp_category/5b
- <Package Folder>/files/temp_category/d9
- <Package Folder>/files/temp_category/e3
- <Package Folder>/files/temp_category/d8
- <Package Folder>/shared_prefs/com.google.android.gms.analytics.prefs.xml
Другие:
Запускает следующие shell-скрипты:
- <dexopt>
Может автоматически отправлять СМС-сообщения.
