Техническая информация
Вредоносные функции:
Загружает на исполнение код следующих детектируемых угроз:
- Android.DownLoader.192.origin
Осуществляет доступ к приватному интерфейсу телефонии (ITelephony).
Сетевая активность:
Подключается к:
- UDP(DNS) <Google DNS>
- TCP(TLS/1.0) 1####.217.17.110:443
Запросы DNS:
- 2.h####.net
- bj.e####.net
- h####.net
- sh.e####.net
- so####.com
- up.sa####.net
- www.so####.com
Изменения в файловой системе:
Создает следующие файлы:
- <Package Folder>/databases/Download-journal
- <Package Folder>/databases/Downloado
- <Package Folder>/databases/Downloado-journal
- <Package Folder>/databases/Log-journal
- <Package Folder>/databases/iDownload-journal
- <Package Folder>/files/####/0.dat
- <Package Folder>/files/####/0a.dat
- <Package Folder>/files/####/0b.dat
- <Package Folder>/files/####/0c.dat
- <Package Folder>/files/####/1.dat
- <Package Folder>/files/####/10.dat
- <Package Folder>/files/####/10a.dat
- <Package Folder>/files/####/10b.dat
- <Package Folder>/files/####/10c.dat
- <Package Folder>/files/####/11.dat
- <Package Folder>/files/####/11a.dat
- <Package Folder>/files/####/11b.dat
- <Package Folder>/files/####/11c.dat
- <Package Folder>/files/####/12.dat
- <Package Folder>/files/####/12a.dat
- <Package Folder>/files/####/12b.dat
- <Package Folder>/files/####/12c.dat
- <Package Folder>/files/####/12d.dat
- <Package Folder>/files/####/13.dat
- <Package Folder>/files/####/13a.dat
- <Package Folder>/files/####/13b.dat
- <Package Folder>/files/####/13c.dat
- <Package Folder>/files/####/14.dat
- <Package Folder>/files/####/14a.dat
- <Package Folder>/files/####/14b.dat
- <Package Folder>/files/####/14c.dat
- <Package Folder>/files/####/15.dat
- <Package Folder>/files/####/15a.dat
- <Package Folder>/files/####/15b.dat
- <Package Folder>/files/####/15c.dat
- <Package Folder>/files/####/16.dat
- <Package Folder>/files/####/16a.dat
- <Package Folder>/files/####/16b.dat
- <Package Folder>/files/####/16c.dat
- <Package Folder>/files/####/17.dat
- <Package Folder>/files/####/17a.dat
- <Package Folder>/files/####/17b.dat
- <Package Folder>/files/####/17c.dat
- <Package Folder>/files/####/18.dat
- <Package Folder>/files/####/18a.dat
- <Package Folder>/files/####/18b.dat
- <Package Folder>/files/####/18c.dat
- <Package Folder>/files/####/19.dat
- <Package Folder>/files/####/19a.dat
- <Package Folder>/files/####/19b.dat
- <Package Folder>/files/####/19c.dat
- <Package Folder>/files/####/1a.dat
- <Package Folder>/files/####/1b.dat
- <Package Folder>/files/####/1c.dat
- <Package Folder>/files/####/2.dat
- <Package Folder>/files/####/20.dat
- <Package Folder>/files/####/20a.dat
- <Package Folder>/files/####/20b.dat
- <Package Folder>/files/####/20c.dat
- <Package Folder>/files/####/21.dat
- <Package Folder>/files/####/21a.dat
- <Package Folder>/files/####/21b.dat
- <Package Folder>/files/####/21c.dat
- <Package Folder>/files/####/22.dat
- <Package Folder>/files/####/22a.dat
- <Package Folder>/files/####/22b.dat
- <Package Folder>/files/####/22c.dat
- <Package Folder>/files/####/23.dat
- <Package Folder>/files/####/23a.dat
- <Package Folder>/files/####/23b.dat
- <Package Folder>/files/####/23c.dat
- <Package Folder>/files/####/24.dat
- <Package Folder>/files/####/24a.dat
- <Package Folder>/files/####/24b.dat
- <Package Folder>/files/####/24c.dat
- <Package Folder>/files/####/25.dat
- <Package Folder>/files/####/25a.dat
- <Package Folder>/files/####/25b.dat
- <Package Folder>/files/####/25c.dat
- <Package Folder>/files/####/26.dat
- <Package Folder>/files/####/26a.dat
- <Package Folder>/files/####/26b.dat
- <Package Folder>/files/####/26c.dat
- <Package Folder>/files/####/27.dat
- <Package Folder>/files/####/27a.dat
- <Package Folder>/files/####/27b.dat
- <Package Folder>/files/####/27c.dat
- <Package Folder>/files/####/28.dat
- <Package Folder>/files/####/28a.dat
- <Package Folder>/files/####/28b.dat
- <Package Folder>/files/####/28c.dat
- <Package Folder>/files/####/29.dat
- <Package Folder>/files/####/29a.dat
- <Package Folder>/files/####/29b.dat
- <Package Folder>/files/####/29c.dat
- <Package Folder>/files/####/2a.dat
- <Package Folder>/files/####/2b.dat
- <Package Folder>/files/####/2c.dat
- <Package Folder>/files/####/3.dat
- <Package Folder>/files/####/30.dat
- <Package Folder>/files/####/30a.dat
- <Package Folder>/files/####/30b.dat
- <Package Folder>/files/####/30c.dat
- <Package Folder>/files/####/31.dat
- <Package Folder>/files/####/31a.dat
- <Package Folder>/files/####/31b.dat
- <Package Folder>/files/####/31c.dat
- <Package Folder>/files/####/32.dat
- <Package Folder>/files/####/32a.dat
- <Package Folder>/files/####/32b.dat
- <Package Folder>/files/####/32c.dat
- <Package Folder>/files/####/33.dat
- <Package Folder>/files/####/33a.dat
- <Package Folder>/files/####/33b.dat
- <Package Folder>/files/####/33c.dat
- <Package Folder>/files/####/34.dat
- <Package Folder>/files/####/34a.dat
- <Package Folder>/files/####/34b.dat
- <Package Folder>/files/####/34c.dat
- <Package Folder>/files/####/35.dat
- <Package Folder>/files/####/35a.dat
- <Package Folder>/files/####/35b.dat
- <Package Folder>/files/####/35c.dat
- <Package Folder>/files/####/36.dat
- <Package Folder>/files/####/36a.dat
- <Package Folder>/files/####/36b.dat
- <Package Folder>/files/####/36c.dat
- <Package Folder>/files/####/37.dat
- <Package Folder>/files/####/37a.dat
- <Package Folder>/files/####/37b.dat
- <Package Folder>/files/####/37c.dat
- <Package Folder>/files/####/38.dat
- <Package Folder>/files/####/38a.dat
- <Package Folder>/files/####/38b.dat
- <Package Folder>/files/####/38c.dat
- <Package Folder>/files/####/39.dat
- <Package Folder>/files/####/39a.dat
- <Package Folder>/files/####/39b.dat
- <Package Folder>/files/####/39c.dat
- <Package Folder>/files/####/3a.dat
- <Package Folder>/files/####/3b.dat
- <Package Folder>/files/####/3c.dat
- <Package Folder>/files/####/4.dat
- <Package Folder>/files/####/40.dat
- <Package Folder>/files/####/40a.dat
- <Package Folder>/files/####/40b.dat
- <Package Folder>/files/####/40c.dat
- <Package Folder>/files/####/41.dat
- <Package Folder>/files/####/41a.dat
- <Package Folder>/files/####/41b.dat
- <Package Folder>/files/####/41c.dat
- <Package Folder>/files/####/42.dat
- <Package Folder>/files/####/42a.dat
- <Package Folder>/files/####/42b.dat
- <Package Folder>/files/####/42c.dat
- <Package Folder>/files/####/43.dat
- <Package Folder>/files/####/43a.dat
- <Package Folder>/files/####/43b.dat
- <Package Folder>/files/####/43c.dat
- <Package Folder>/files/####/44.dat
- <Package Folder>/files/####/44a.dat
- <Package Folder>/files/####/44b.dat
- <Package Folder>/files/####/44c.dat
- <Package Folder>/files/####/45.dat
- <Package Folder>/files/####/45a.dat
- <Package Folder>/files/####/45b.dat
- <Package Folder>/files/####/45c.dat
- <Package Folder>/files/####/46.dat
- <Package Folder>/files/####/46a.dat
- <Package Folder>/files/####/46b.dat
- <Package Folder>/files/####/46c.dat
- <Package Folder>/files/####/47.dat
- <Package Folder>/files/####/47a.dat
- <Package Folder>/files/####/47b.dat
- <Package Folder>/files/####/47c.dat
- <Package Folder>/files/####/48.dat
- <Package Folder>/files/####/48a.dat
- <Package Folder>/files/####/48b.dat
- <Package Folder>/files/####/48c.dat
- <Package Folder>/files/####/49.dat
- <Package Folder>/files/####/49a.dat
- <Package Folder>/files/####/49b.dat
- <Package Folder>/files/####/49c.dat
- <Package Folder>/files/####/4a.dat
- <Package Folder>/files/####/4b.dat
- <Package Folder>/files/####/4c.dat
- <Package Folder>/files/####/5.dat
- <Package Folder>/files/####/50.dat
- <Package Folder>/files/####/50a.dat
- <Package Folder>/files/####/50b.dat
- <Package Folder>/files/####/50c.dat
- <Package Folder>/files/####/51.dat
- <Package Folder>/files/####/51a.dat
- <Package Folder>/files/####/51b.dat
- <Package Folder>/files/####/51c.dat
- <Package Folder>/files/####/52.dat
- <Package Folder>/files/####/52a.dat
- <Package Folder>/files/####/52b.dat
- <Package Folder>/files/####/52c.dat
- <Package Folder>/files/####/53.dat
- <Package Folder>/files/####/53a.dat
- <Package Folder>/files/####/53b.dat
- <Package Folder>/files/####/53c.dat
- <Package Folder>/files/####/54.dat
- <Package Folder>/files/####/54a.dat
- <Package Folder>/files/####/54b.dat
- <Package Folder>/files/####/54c.dat
- <Package Folder>/files/####/55.dat
- <Package Folder>/files/####/55a.dat
- <Package Folder>/files/####/55b.dat
- <Package Folder>/files/####/55c.dat
- <Package Folder>/files/####/56.dat
- <Package Folder>/files/####/56a.dat
- <Package Folder>/files/####/56b.dat
- <Package Folder>/files/####/56c.dat
- <Package Folder>/files/####/57.dat
- <Package Folder>/files/####/57a.dat
- <Package Folder>/files/####/57b.dat
- <Package Folder>/files/####/57c.dat
- <Package Folder>/files/####/58.dat
- <Package Folder>/files/####/58a.dat
- <Package Folder>/files/####/58b.dat
- <Package Folder>/files/####/58c.dat
- <Package Folder>/files/####/59.dat
- <Package Folder>/files/####/59a.dat
- <Package Folder>/files/####/59b.dat
- <Package Folder>/files/####/59c.dat
- <Package Folder>/files/####/5a.dat
- <Package Folder>/files/####/5b.dat
- <Package Folder>/files/####/5c.dat
- <Package Folder>/files/####/6.dat
- <Package Folder>/files/####/6a.dat
- <Package Folder>/files/####/6b.dat
- <Package Folder>/files/####/6c.dat
- <Package Folder>/files/####/7.dat
- <Package Folder>/files/####/7a.dat
- <Package Folder>/files/####/7b.dat
- <Package Folder>/files/####/7c.dat
- <Package Folder>/files/####/8.dat
- <Package Folder>/files/####/8a.dat
- <Package Folder>/files/####/8b.dat
- <Package Folder>/files/####/8c.dat
- <Package Folder>/files/####/9.dat
- <Package Folder>/files/####/9a.dat
- <Package Folder>/files/####/9b.dat
- <Package Folder>/files/####/9c.dat
- <Package Folder>/files/####/coins.dat
- <Package Folder>/files/####/enemies.dat
- <Package Folder>/files/####/first.dat
- <Package Folder>/files/####/level.dat
- <Package Folder>/files/####/music.dat
- <Package Folder>/files/####/score.dat
- <Package Folder>/files/####/sound.dat
- <Package Folder>/shared_prefs/config.xml
- <Package Folder>/shared_prefs/configo.xml
- <Package Folder>/shared_prefs/iConfig.xml
- <SD-Card>/.android/####/.iid
- <SD-Card>/.android/####/com.demomyi.dex
- <SD-Card>/.android/####/com.demomyo.dex
- <SD-Card>/.android/####/com.demomyp.dex
- <SD-Card>/.android/####/spot_in.png
- <SD-Card>/.android/.android.dat
- <SD-Card>/.android/.android.dat-journal
- <SD-Card>/Android/####/id
- <SD-Card>/Android/####/logo.png
- <SD-Card>/download.db
- <SD-Card>/download.db-journal
Другие:
Загружает динамические библиотеки:
- gdx
Осуществляет доступ к информации о геолокации.
Осуществляет доступ к информации о сети.
Осуществляет доступ к информации о телефоне (номер, imei и тд.).
Осуществляет доступ к информации об установленных приложениях.
Добавляет задания в системный планировщик.
Отрисовывает собственные окна поверх других приложений.
