Android.SmsSend.23346

Техническая информация

Вредоносные функции:

Отправляет СМС-сообщения:

10698000036592: 00000000-780b-54f2-6773-c75150ca6f57-1510001510413, 点击发送直接注册百度账号

Осуществляет доступ к приватному интерфейсу телефонии (ITelephony).

Сетевая активность:

Подключается к:

UDP(DNS) <Google DNS>
TCP(HTTP/1.1) loc.map.b####.com:80
TCP(HTTP/1.1) pass####.b####.com:80
TCP(TLS/1.0) e.crashly####.com:443
TCP(TLS/1.0) baif####.b####.com:443
TCP(TLS/1.0) wap####.b####.com:443
TCP(TLS/1.0) sett####.crashly####.com:443

Запросы DNS:

api.tui####.b####.com
app.n####.com
baif####.b####.com
d####.n####.com
e.crashly####.com
h####.b####.com
loc.map.b####.com
log.n####.com
mobads-####.b####.com
nc.b####.com
nsc####.b####.com
pass####.b####.com
sett####.crashly####.com
wap####.b####.com
wap####.b####.com

Запросы HTTP POST:

loc.map.b####.com/offline_loc
loc.map.b####.com/sdk.php

Изменения в файловой системе:

Создает следующие файлы:

<Package Folder>/cache/####/data_0
<Package Folder>/cache/####/data_1
<Package Folder>/cache/####/data_2
<Package Folder>/cache/####/data_3
<Package Folder>/cache/####/f_000001
<Package Folder>/cache/####/f_000002
<Package Folder>/cache/####/f_000003
<Package Folder>/cache/####/f_000004
<Package Folder>/cache/####/index
<Package Folder>/cache/dataservice.db-journal
<Package Folder>/cache/mapi.db-journal
<Package Folder>/code_cache/####/<Package>-1.apk.classes1556796415.zip
<Package Folder>/databases/comps.db-journal
<Package Folder>/databases/nuominew.db-journal
<Package Folder>/databases/webview.db-journal
<Package Folder>/databases/webviewCookiesChromium.db-journal
<Package Folder>/files/####/1510001499865
<Package Folder>/files/####/1510001533997
<Package Folder>/files/####/5A00CB3D01CF-0001-0830-20055553ED6E...s_temp
<Package Folder>/files/####/5A00CB3D01CF-0001-0830-20055553ED6Euser.meta
<Package Folder>/files/####/6_03.png
<Package Folder>/files/####/BNAccount.js
<Package Folder>/files/####/DS-Digital.woff
<Package Folder>/files/####/MANIFEST.MF
<Package Folder>/files/####/RenderWorker.js
<Package Folder>/files/####/ajax.js
<Package Folder>/files/####/andpatch.jar
<Package Folder>/files/####/animate.css
<Package Folder>/files/####/animate.js
<Package Folder>/files/####/arc.png
<Package Folder>/files/####/arrow_down.png
<Package Folder>/files/####/banner.js
<Package Folder>/files/####/banner.tpl.js
<Package Folder>/files/####/bannerShadow.png
<Package Folder>/files/####/banner_close_btn.png
<Package Folder>/files/####/banner_spot.png
<Package Folder>/files/####/banner_spot_active.png
<Package Folder>/files/####/barChart.js
<Package Folder>/files/####/barChart.tpl.js
<Package Folder>/files/####/base.js
<Package Folder>/files/####/big_vip_icon.png
<Package Folder>/files/####/bottom-wave.png
<Package Folder>/files/####/boxDetail.css
<Package Folder>/files/####/boxDetail.html
<Package Folder>/files/####/boxDetail.js
<Package Folder>/files/####/boxOffice.js
<Package Folder>/files/####/bt_add_left_click.png
<Package Folder>/files/####/bt_add_left_disable.png
<Package Folder>/files/####/bt_add_left_nomal.png
<Package Folder>/files/####/bt_add_right_click.png
<Package Folder>/files/####/bt_add_right_disable.png
<Package Folder>/files/####/bt_add_right_nomal.png
<Package Folder>/files/####/bt_middle_disable.png
<Package Folder>/files/####/bt_middle_nomal.png
<Package Folder>/files/####/buytimeout.jpg
<Package Folder>/files/####/calendar.js
<Package Folder>/files/####/calendar.tpl.js
<Package Folder>/files/####/callbacks.js
<Package Folder>/files/####/card-icon1.png
<Package Folder>/files/####/card-icon2.png
<Package Folder>/files/####/card-icon3.png
<Package Folder>/files/####/card-icon4.png
<Package Folder>/files/####/cardDetail.css
<Package Folder>/files/####/cardDetail.html
<Package Folder>/files/####/cardDetail.js
<Package Folder>/files/####/cardList.css
<Package Folder>/files/####/cardList.html
<Package Folder>/files/####/cardList.js
<Package Folder>/files/####/catg.715a
<Package Folder>/files/####/catg.css
<Package Folder>/files/####/catg.html
<Package Folder>/files/####/catg.js
<Package Folder>/files/####/catg_film@2x.png
<Package Folder>/files/####/catg_film@3x.png
<Package Folder>/files/####/catg_film_selected@2x.png
<Package Folder>/files/####/catg_film_selected@3x.png
<Package Folder>/files/####/catg_local@2x.png
<Package Folder>/files/####/catg_local@3x.png
<Package Folder>/files/####/catg_local_selected@2x.png
<Package Folder>/files/####/catg_local_selected@3x.png
<Package Folder>/files/####/catg_more@2x.png
<Package Folder>/files/####/catg_more@3x.png
<Package Folder>/files/####/catg_more_select@2x.png
<Package Folder>/files/####/catg_more_select@3x.png
<Package Folder>/files/####/catg_travel@2x.png
<Package Folder>/files/####/catg_travel@3x.png
<Package Folder>/files/####/catg_travel_selected@2x.png
<Package Folder>/files/####/catg_travel_selected@3x.png
<Package Folder>/files/####/chargeFail.css
<Package Folder>/files/####/chargeFail.html
<Package Folder>/files/####/chargeFail.js
<Package Folder>/files/####/chargeSuccess.css
<Package Folder>/files/####/chargeSuccess.html
<Package Folder>/files/####/chargeSuccess.js
<Package Folder>/files/####/chargeTimeout.css
<Package Folder>/files/####/chargeTimeout.html
<Package Folder>/files/####/chargeTimeout.js
<Package Folder>/files/####/check_gray@1.5x.png
<Package Folder>/files/####/check_gray@1x.png
<Package Folder>/files/####/check_gray@2x.png
<Package Folder>/files/####/check_gray@3x.png
<Package Folder>/files/####/check_red@1.5x.png
<Package Folder>/files/####/check_red@1x.png
<Package Folder>/files/####/check_red@2x.png
<Package Folder>/files/####/check_red@3x.png
<Package Folder>/files/####/checkbox.png
<Package Folder>/files/####/checkbox_checked.png
<Package Folder>/files/####/cinema.js
<Package Folder>/files/####/cinemaFeatures.js
<Package Folder>/files/####/cinemaList.css
<Package Folder>/files/####/cinemaList.html
<Package Folder>/files/####/cinemaList.js
<Package Folder>/files/####/circleFun.js
<Package Folder>/files/####/circleFun.tpl.js
<Package Folder>/files/####/clock.jpg
<Package Folder>/files/####/close.png
<Package Folder>/files/####/codeBg.jpg
<Package Folder>/files/####/com.crashlytics.settings.json
<Package Folder>/files/####/comment.css
<Package Folder>/files/####/comment.html
<Package Folder>/files/####/comment.js
<Package Folder>/files/####/commentDetail.css
<Package Folder>/files/####/commentDetail.html
<Package Folder>/files/####/commentDetail.js
<Package Folder>/files/####/commentDetail_old.html
<Package Folder>/files/####/commentDetail_old.js
<Package Folder>/files/####/common.css
<Package Folder>/files/####/config.js
<Package Folder>/files/####/config.json
<Package Folder>/files/####/confirm.css
<Package Folder>/files/####/confirm.html
<Package Folder>/files/####/confirm.js
<Package Folder>/files/####/const.js
<Package Folder>/files/####/control.js
<Package Folder>/files/####/core.js
<Package Folder>/files/####/corner_icon_flash_send.png
<Package Folder>/files/####/corner_icon_free_reservation.png
<Package Folder>/files/####/crashlytics-userlog-5A00CB3D01CF-00...mp.tmp
<Package Folder>/files/####/ctagLog.js
<Package Folder>/files/####/currentBox.js
<Package Folder>/files/####/data.js
<Package Folder>/files/####/dcpscompfingerprint
<Package Folder>/files/####/dec-active.png
<Package Folder>/files/####/dec-click.png
<Package Folder>/files/####/dec.png
<Package Folder>/files/####/deferred.js
<Package Folder>/files/####/delete.png
<Package Folder>/files/####/detail.css
<Package Folder>/files/####/detail.html
<Package Folder>/files/####/detail.js
<Package Folder>/files/####/detect.js
<Package Folder>/files/####/discount.png
<Package Folder>/files/####/dujia.png
<Package Folder>/files/####/echarts.js
<Package Folder>/files/####/error.png
<Package Folder>/files/####/etpl.js
<Package Folder>/files/####/event.js
<Package Folder>/files/####/fastclick.js
<Package Folder>/files/####/filter.js
<Package Folder>/files/####/filterData.js
<Package Folder>/files/####/filterGroup.js
<Package Folder>/files/####/filterGroup.tpl.js
<Package Folder>/files/####/firll.dat
<Package Folder>/files/####/flexslider.js
<Package Folder>/files/####/footer.js
<Package Folder>/files/####/footer.tpl.js
<Package Folder>/files/####/fx.js
<Package Folder>/files/####/goods.js
<Package Folder>/files/####/guaka.js
<Package Folder>/files/####/hashmap.js
<Package Folder>/files/####/hot.js
<Package Folder>/files/####/hui.png
<Package Folder>/files/####/ialert.js
<Package Folder>/files/####/icon-bad.png
<Package Folder>/files/####/icon-comment.png
<Package Folder>/files/####/icon-del.png
<Package Folder>/files/####/icon-food@2x.png
<Package Folder>/files/####/icon-food@3x.png
<Package Folder>/files/####/icon-good.png
<Package Folder>/files/####/icon-kid@2x.png
<Package Folder>/files/####/icon-kid@3x.png
<Package Folder>/files/####/icon-ktv@2x.png
<Package Folder>/files/####/icon-ktv@3x.png
<Package Folder>/files/####/icon-location-gray.png
<Package Folder>/files/####/icon-marker.png
<Package Folder>/files/####/icon-movie@2x.png
<Package Folder>/files/####/icon-movie@3x.png
<Package Folder>/files/####/icon-navigator.png
<Package Folder>/files/####/icon-neutral.png
<Package Folder>/files/####/icon-operate.jpg
<Package Folder>/files/####/icon-refresh.png
<Package Folder>/files/####/icon-support.png
<Package Folder>/files/####/icon-telephone.png
<Package Folder>/files/####/icon-video.png
<Package Folder>/files/####/icon-vote.png
<Package Folder>/files/####/icon-voted.png
<Package Folder>/files/####/icon_arrows_gray_right@2x.png
<Package Folder>/files/####/icon_bg_t10.png
<Package Folder>/files/####/icon_buffer@3x.png
<Package Folder>/files/####/icon_cake@3x.png
<Package Folder>/files/####/icon_delicious@3x.png
<Package Folder>/files/####/icon_flash@15x.png
<Package Folder>/files/####/icon_flash@1x.png
<Package Folder>/files/####/icon_flash@2x.png
<Package Folder>/files/####/icon_flash@3x.png
<Package Folder>/files/####/icon_freedom@15x.png
<Package Folder>/files/####/icon_freedom@1x.png
<Package Folder>/files/####/icon_freedom@2x.png
<Package Folder>/files/####/icon_freedom@3x.png
<Package Folder>/files/####/icon_hotpot@3x.png
<Package Folder>/files/####/icon_recommend.png
<Package Folder>/files/####/iconfont.css
<Package Folder>/files/####/iconfont.eot
<Package Folder>/files/####/iconfont.svg
<Package Folder>/files/####/iconfont.ttf
<Package Folder>/files/####/iconfont.woff
<Package Folder>/files/####/ie.js
<Package Folder>/files/####/img_loading_bg.png
<Package Folder>/files/####/img_loading_bg_new.png
<Package Folder>/files/####/img_no_wifi.png
<Package Folder>/files/####/img_no_wifi_new.png
<Package Folder>/files/####/inc-active.png
<Package Folder>/files/####/inc-click.png
<Package Folder>/files/####/inc.png
<Package Folder>/files/####/index.880c
<Package Folder>/files/####/index.css
<Package Folder>/files/####/index.html
<Package Folder>/files/####/index.js
<Package Folder>/files/####/index_api.js
<Package Folder>/files/####/info.html
<Package Folder>/files/####/info.js
<Package Folder>/files/####/info.txt
<Package Folder>/files/####/info_bg.png
<Package Folder>/files/####/initialization_marker
<Package Folder>/files/####/inputAddress.css
<Package Folder>/files/####/inputAddress.html
<Package Folder>/files/####/inputAddress.js
<Package Folder>/files/####/inputPassword.css
<Package Folder>/files/####/inputPassword.html
<Package Folder>/files/####/inputPassword.js
<Package Folder>/files/####/intro-head.jpg
<Package Folder>/files/####/introduction.css
<Package Folder>/files/####/introduction.html
<Package Folder>/files/####/introduction.js
<Package Folder>/files/####/iscroll-zoom.js
<Package Folder>/files/####/iscroll.js
<Package Folder>/files/####/jing.png
<Package Folder>/files/####/ka.png
<Package Folder>/files/####/landmark.png
<Package Folder>/files/####/lantingcuheijian.woff
<Package Folder>/files/####/like.png
<Package Folder>/files/####/liked.png
<Package Folder>/files/####/line-rp-bg.png
<Package Folder>/files/####/list.css
<Package Folder>/files/####/list.html
<Package Folder>/files/####/list.js
<Package Folder>/files/####/listener.js
<Package Folder>/files/####/loadMore.js
<Package Folder>/files/####/loadMore.tpl.js
<Package Folder>/files/####/loading.gif
<Package Folder>/files/####/loading.png
<Package Folder>/files/####/loadinggif.gif
<Package Folder>/files/####/localstorage.js
<Package Folder>/files/####/location.js
<Package Folder>/files/####/location.tpl.js
<Package Folder>/files/####/lockseats.js
<Package Folder>/files/####/logger.js
<Package Folder>/files/####/map.css
<Package Folder>/files/####/map.html
<Package Folder>/files/####/map.js
<Package Folder>/files/####/mapNa.js
<Package Folder>/files/####/mask.js
<Package Folder>/files/####/masonry.js
<Package Folder>/files/####/menuData.js
<Package Folder>/files/####/mixin.css
<Package Folder>/files/####/more-seq.png
<Package Folder>/files/####/more_icon.png
<Package Folder>/files/####/movie.354b
<Package Folder>/files/####/movie.js
<Package Folder>/files/####/movieList.css
<Package Folder>/files/####/movieList.html
<Package Folder>/files/####/movieList.js
<Package Folder>/files/####/new.png
<Package Folder>/files/####/no-img.png
<Package Folder>/files/####/no-img@2x.png
<Package Folder>/files/####/nuomi-error.png
<Package Folder>/files/####/nuomi-loading.gif
<Package Folder>/files/####/nuomi-no-data.png
<Package Folder>/files/####/nuomiLoadTip.js
<Package Folder>/files/####/offlinedata.js
<Package Folder>/files/####/ofl.config
<Package Folder>/files/####/ofl_location.db
<Package Folder>/files/####/ofl_location.db-journal
<Package Folder>/files/####/ofl_statistics.db
<Package Folder>/files/####/ofl_statistics.db-journal
<Package Folder>/files/####/page.js
<Package Folder>/files/####/paginator.js
<Package Folder>/files/####/payback.css
<Package Folder>/files/####/payback.html
<Package Folder>/files/####/payback.js
<Package Folder>/files/####/phbcon@3x.png
<Package Folder>/files/####/phone.js
<Package Folder>/files/####/photoList.css
<Package Folder>/files/####/pic_option@1.5x.png
<Package Folder>/files/####/pic_option@1x.png
<Package Folder>/files/####/pic_option@2x.png
<Package Folder>/files/####/player.css
<Package Folder>/files/####/player.html
<Package Folder>/files/####/player.js
<Package Folder>/files/####/portal.html
<Package Folder>/files/####/portal.js
<Package Folder>/files/####/prepaidList.html
<Package Folder>/files/####/prepaidList.js
<Package Folder>/files/####/price-inc-icon.png
<Package Folder>/files/####/price.js
<Package Folder>/files/####/profile.js
<Package Folder>/files/####/pugin.js
<Package Folder>/files/####/pullUpUpload.js
<Package Folder>/files/####/qrPic.jpg
<Package Folder>/files/####/quan.png
<Package Folder>/files/####/rankStar.tpl.js
<Package Folder>/files/####/rankstarnew.png
<Package Folder>/files/####/rcmdGroupon.js
<Package Folder>/files/####/rcmdGroupon.tpl.js
<Package Folder>/files/####/rcmdgoods.js
<Package Folder>/files/####/rcmdgoods.tpl.js
<Package Folder>/files/####/refresh-static.gif
<Package Folder>/files/####/refresh.gif
<Package Folder>/files/####/remind_close_icon.png
<Package Folder>/files/####/remind_close_icon@3x.png
<Package Folder>/files/####/remind_location_icon.png
<Package Folder>/files/####/remind_location_icon@3x.png
<Package Folder>/files/####/remind_maidan.png
<Package Folder>/files/####/remind_maidan@3x.png
<Package Folder>/files/####/remind_notice_icon.png
<Package Folder>/files/####/remind_notice_icon@3x.png
<Package Folder>/files/####/remind_right_arrow.png
<Package Folder>/files/####/remind_right_arrow@3x.png
<Package Folder>/files/####/remind_vip_icon.png
<Package Folder>/files/####/remind_vip_icon@3x.png
<Package Folder>/files/####/remind_yanquan.png
<Package Folder>/files/####/remind_yanquan@3x.png
<Package Folder>/files/####/reply.css
<Package Folder>/files/####/reply.html
<Package Folder>/files/####/reply.js
<Package Folder>/files/####/reputation.js
<Package Folder>/files/####/reset.css
<Package Folder>/files/####/resetPassword.css
<Package Folder>/files/####/resetPassword.html
<Package Folder>/files/####/resetPassword.js
<Package Folder>/files/####/right_arrow.png
<Package Folder>/files/####/sa_167b6b44-0555-4a24-adc3-7002ae62...42.tap
<Package Folder>/files/####/sa_5c0efce0-2dd2-45cd-8390-15a07e17...30.tap
<Package Folder>/files/####/sale.js
<Package Folder>/files/####/sale.tpl.js
<Package Folder>/files/####/schedule.css
<Package Folder>/files/####/schedule.html
<Package Folder>/files/####/schedule.js
<Package Folder>/files/####/schedules.js
<Package Folder>/files/####/scrollloading.js
<Package Folder>/files/####/scrollspy.js
<Package Folder>/files/####/search.css
<Package Folder>/files/####/search.html
<Package Folder>/files/####/search.js
<Package Folder>/files/####/searchlist-dp.css
<Package Folder>/files/####/searchlist-mt.css
<Package Folder>/files/####/searchlist.968c
<Package Folder>/files/####/searchlist.css
<Package Folder>/files/####/searchlist.html
<Package Folder>/files/####/seat.png
<Package Folder>/files/####/seats.js
<Package Folder>/files/####/seats.png
<Package Folder>/files/####/select.css
<Package Folder>/files/####/select.html
<Package Folder>/files/####/select.js
<Package Folder>/files/####/selectorIcon_03.png
<Package Folder>/files/####/selectorIcon_05.png
<Package Folder>/files/####/selectorIcon_06.png
<Package Folder>/files/####/sellers.css
<Package Folder>/files/####/sellers.html
<Package Folder>/files/####/sellers.js
<Package Folder>/files/####/session_analytics.tap
<Package Folder>/files/####/session_analytics.tap.tmp
<Package Folder>/files/####/setPassword.css
<Package Folder>/files/####/setPassword.html
<Package Folder>/files/####/setPassword.js
<Package Folder>/files/####/setting.css
<Package Folder>/files/####/setting.html
<Package Folder>/files/####/setting.js
<Package Folder>/files/####/shake.js
<Package Folder>/files/####/share.png
<Package Folder>/files/####/shareGetVoucher.js
<Package Folder>/files/####/shareGetVoucher.tpl.js
<Package Folder>/files/####/show-nav-icon.png
<Package Folder>/files/####/show.css
<Package Folder>/files/####/show.html
<Package Folder>/files/####/show.js
<Package Folder>/files/####/showClick.js
<Package Folder>/files/####/slider.css
<Package Folder>/files/####/slider.js
<Package Folder>/files/####/sm_icon.png
<Package Folder>/files/####/smallseat.tpl.js
<Package Folder>/files/####/smartSelect.js
<Package Folder>/files/####/socks.css
<Package Folder>/files/####/socks.js
<Package Folder>/files/####/star-score-new.png
<Package Folder>/files/####/star-score.png
<Package Folder>/files/####/star.png
<Package Folder>/files/####/star_jing.png
<Package Folder>/files/####/stared.png
<Package Folder>/files/####/sticky.js
<Package Folder>/files/####/stillsList.html
<Package Folder>/files/####/stillsList.js
<Package Folder>/files/####/success.jpg
<Package Folder>/files/####/switch_double.png
<Package Folder>/files/####/switch_list.png
<Package Folder>/files/####/symbol.png
<Package Folder>/files/####/tab_spot.png
<Package Folder>/files/####/tab_spot_active.png
<Package Folder>/files/####/tabs.js
<Package Folder>/files/####/tabs.tpl.js
<Package Folder>/files/####/tag-recommend.png
<Package Folder>/files/####/test.html
<Package Folder>/files/####/ticket-bg.jpg
<Package Folder>/files/####/ticket.js
<Package Folder>/files/####/time.png
<Package Folder>/files/####/timer.js
<Package Folder>/files/####/toggle.js
<Package Folder>/files/####/toggle.tpl.js
<Package Folder>/files/####/top10.png
<Package Folder>/files/####/top10@2x.png
<Package Folder>/files/####/top10_vip_icon.png
<Package Folder>/files/####/top10bg.png
<Package Folder>/files/####/topnews.png
<Package Folder>/files/####/touch.js
<Package Folder>/files/####/track-comment.png
<Package Folder>/files/####/track-interest.png
<Package Folder>/files/####/track.js
<Package Folder>/files/####/track.tpl.js
<Package Folder>/files/####/tuanlist_category_icon_bendi_high.png
<Package Folder>/files/####/tuanlist_category_icon_bendi_normal.png
<Package Folder>/files/####/tuanlist_category_icon_choujiang_high.png
<Package Folder>/files/####/tuanlist_category_icon_choujiang_high@3x.png
<Package Folder>/files/####/tuanlist_category_icon_choujiang_normal.png
<Package Folder>/files/####/tuanlist_category_icon_choujiang_normal@3x.png
<Package Folder>/files/####/tuanlist_category_icon_dianying_high.png
<Package Folder>/files/####/tuanlist_category_icon_dianying_normal.png
<Package Folder>/files/####/tuanlist_category_icon_gengduo_high.png
<Package Folder>/files/####/tuanlist_category_icon_gengduo_normal.png
<Package Folder>/files/####/tuanlist_category_icon_gouwu_high.png
<Package Folder>/files/####/tuanlist_category_icon_gouwu_high@3x.png
<Package Folder>/files/####/tuanlist_category_icon_gouwu_normal.png
<Package Folder>/files/####/tuanlist_category_icon_gouwu_normal@3x.png
<Package Folder>/files/####/tuanlist_category_icon_huoguo_high.png
<Package Folder>/files/####/tuanlist_category_icon_huoguo_high@3x.png
<Package Folder>/files/####/tuanlist_category_icon_huoguo_normal.png
<Package Folder>/files/####/tuanlist_category_icon_huoguo_normal@3x.png
<Package Folder>/files/####/tuanlist_category_icon_jinrituangou...3x.png
<Package Folder>/files/####/tuanlist_category_icon_jinrituangou_high.png
<Package Folder>/files/####/tuanlist_category_icon_jinrituangou_normal.png
<Package Folder>/files/####/tuanlist_category_icon_jiudian_high.png
<Package Folder>/files/####/tuanlist_category_icon_jiudian_high@3x.png
<Package Folder>/files/####/tuanlist_category_icon_jiudian_normal.png
<Package Folder>/files/####/tuanlist_category_icon_jiudian_normal@3x.png
<Package Folder>/files/####/tuanlist_category_icon_ktv_high.png
<Package Folder>/files/####/tuanlist_category_icon_ktv_high@3x.png
<Package Folder>/files/####/tuanlist_category_icon_ktv_normal.png
<Package Folder>/files/####/tuanlist_category_icon_ktv_normal@3x.png
<Package Folder>/files/####/tuanlist_category_icon_liren_high.png
<Package Folder>/files/####/tuanlist_category_icon_liren_high@3x.png
<Package Folder>/files/####/tuanlist_category_icon_liren_normal.png
<Package Folder>/files/####/tuanlist_category_icon_liren_normal@3x.png
<Package Folder>/files/####/tuanlist_category_icon_lvyou_high.png
<Package Folder>/files/####/tuanlist_category_icon_lvyou_normal.png
<Package Folder>/files/####/tuanlist_category_icon_meishi_high.png
<Package Folder>/files/####/tuanlist_category_icon_meishi_high@3x.png
<Package Folder>/files/####/tuanlist_category_icon_meishi_normal.png
<Package Folder>/files/####/tuanlist_category_icon_meishi_normal@3x.png
<Package Folder>/files/####/tuanlist_category_icon_shenghuo_high.png
<Package Folder>/files/####/tuanlist_category_icon_shenghuo_high@3x.png
<Package Folder>/files/####/tuanlist_category_icon_shenghuo_normal.png
<Package Folder>/files/####/tuanlist_category_icon_shenghuo_normal@3x.png
<Package Folder>/files/####/tuanlist_category_icon_yule_high.png
<Package Folder>/files/####/tuanlist_category_icon_yule_high@3x.png
<Package Folder>/files/####/tuanlist_category_icon_yule_normal.png
<Package Folder>/files/####/tuanlist_category_icon_yule_normal@3x.png
<Package Folder>/files/####/tuanlist_category_icon_zizhucan_high.png
<Package Folder>/files/####/tuanlist_category_icon_zizhucan_high@3x.png
<Package Folder>/files/####/tuanlist_category_icon_zizhucan_normal.png
<Package Folder>/files/####/tuanlist_category_icon_zizhucan_normal@3x.png
<Package Folder>/files/####/ui.js
<Package Folder>/files/####/unliked.png
<Package Folder>/files/####/useInstruc.css
<Package Folder>/files/####/useInstruc.html
<Package Folder>/files/####/useInstruc.js
<Package Folder>/files/####/util.js
<Package Folder>/files/####/videoList.css
<Package Folder>/files/####/videoList.html
<Package Folder>/files/####/videoList.js
<Package Folder>/files/####/view.js
<Package Folder>/files/####/vip.css
<Package Folder>/files/####/vip.html
<Package Folder>/files/####/vip.js
<Package Folder>/files/####/vote.js
<Package Folder>/files/####/voucher.css
<Package Folder>/files/####/voucher.html
<Package Folder>/files/####/voucher.js
<Package Folder>/files/####/voucher.tpl.js
<Package Folder>/files/####/wanda.html
<Package Folder>/files/####/wanda.js
<Package Folder>/files/####/xSliderMenu.js
<Package Folder>/files/####/xSliderMenu.tpl.js
<Package Folder>/files/####/zan.png
<Package Folder>/files/####/zan_old.png
<Package Folder>/files/####/zepto.js
<Package Folder>/files/####/zepto.min.js
<Package Folder>/files/####/zepto_extend.js
<Package Folder>/files/####/zoom.js
<Package Folder>/files/__local_ap_info_cache.json
<Package Folder>/files/__local_last_session.json
<Package Folder>/files/__local_stat_cache.json
<Package Folder>/files/libcuid.so
<Package Folder>/files/unpreverified.patch
<Package Folder>/shared_prefs/<Package>.push_sync.xml
<Package Folder>/shared_prefs/<Package>.xml
<Package Folder>/shared_prefs/<Package>_preferences.xml
<Package Folder>/shared_prefs/TwitterAdvertisingInfoPreferences.xml
<Package Folder>/shared_prefs/__Baidu_Stat_SDK_SendRem.xml
<Package Folder>/shared_prefs/andpatch.xml
<Package Folder>/shared_prefs/bindcache.xml
<Package Folder>/shared_prefs/com.crashlytics.prefs.xml
<Package Folder>/shared_prefs/com.crashlytics.sdk.android;answe...gs.xml
<Package Folder>/shared_prefs/comps.xml
<Package Folder>/shared_prefs/io.fabric.sdk.android;fabric;b.a.a.a.u.xml
<Package Folder>/shared_prefs/multidex.version.xml
<Package Folder>/shared_prefs/pst.xml
<Package Folder>/shared_prefs/sapi_system.xml
<SD-Card>/backups/####/.cuid
<SD-Card>/backups/####/.cuid2
<SD-Card>/baidu/####/.info
<SD-Card>/baidu/####/conlts.dat
<SD-Card>/baidu/####/ller.dat
<SD-Card>/baidu/####/ls.db
<SD-Card>/baidu/####/ls.db-journal
<SD-Card>/baidu/####/pushstat_4.5.5.db
<SD-Card>/baidu/####/pushstat_4.5.5.db-journal
<SD-Card>/test.0

Другие:

Запускает следующие shell-скрипты:

ls -l /system/bin/su

Загружает динамические библиотеки:

bdpush_V2_4
crashlytics
locSDK6a
nt

Может автоматически отправлять СМС-сообщения.

Осуществляет доступ к информации о геолокации.

Осуществляет доступ к информации о сети.

Осуществляет доступ к информации о телефоне (номер, imei и тд.).

Добавляет задания в системный планировщик.

Отрисовывает собственные окна поверх других приложений.

Технологии

Термины

Обучение и просвещение

Мифы

Техническая информация

Рекомендации по лечению

Демо бесплатно на 14 дней