Запускает следующие shell-скрипты:
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/2VV3TT2PJQOUOYIO4RP72KI8BSRZBWR.zip.cur.prof
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/5ZH8N9WH9NZ6UJL9EOJKXC4O9GLVQ8M.zip.cur.prof
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/8U0ZE8BC8UMDH6CWX7ANG7JZ0RGM9RL.zip.cur.prof
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/ICYDCM5M68G3B8I6VDKH6D9X2DEWBX7.zip.cur.prof
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/K6SZIGFC4QE5X2WKDJ63SRNRK7065ND.zip.cur.prof
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/KYS3I0RCSEALTQSKDVY30B33GJSU1FT.zip.cur.prof
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/PUEAKSTK6LVTB1TBN60IHV97YVI6QRA.zip.cur.prof
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/USAL0IXMEGK73GAUV90HY1PDUXISFDB.zip.cur.prof
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/VHZMLNQ771TWO1RJCADENIA2R2Z5SEO.zip.cur.prof
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/X3TCR1CHTN7EQ31HES7KHG4858D3YWU.zip.cur.prof
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/ZCWWMEJA87H3HJN150Q4RPJ9WT4W45O.zip.cur.prof
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/2VV3TT2PJQOUOYIO4RP72KI8BSRZBWR.odex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/2VV3TT2PJQOUOYIO4RP72KI8BSRZBWR.vdex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/5ZH8N9WH9NZ6UJL9EOJKXC4O9GLVQ8M.odex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/5ZH8N9WH9NZ6UJL9EOJKXC4O9GLVQ8M.vdex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/7XBA9ZI7F9HK0937WQ9EF6A23631WAC.odex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/7XBA9ZI7F9HK0937WQ9EF6A23631WAC.vdex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/8U0ZE8BC8UMDH6CWX7ANG7JZ0RGM9RL.odex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/8U0ZE8BC8UMDH6CWX7ANG7JZ0RGM9RL.vdex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/ICYDCM5M68G3B8I6VDKH6D9X2DEWBX7.odex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/ICYDCM5M68G3B8I6VDKH6D9X2DEWBX7.vdex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/J50FD4H1VB2IBT5E8NKP44OXCHZMSY9.odex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/J50FD4H1VB2IBT5E8NKP44OXCHZMSY9.vdex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/K6SZIGFC4QE5X2WKDJ63SRNRK7065ND.odex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/KYS3I0RCSEALTQSKDVY30B33GJSU1FT.odex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/KYS3I0RCSEALTQSKDVY30B33GJSU1FT.vdex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/PUEAKSTK6LVTB1TBN60IHV97YVI6QRA.odex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/PUEAKSTK6LVTB1TBN60IHV97YVI6QRA.vdex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/USAL0IXMEGK73GAUV90HY1PDUXISFDB.odex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/USAL0IXMEGK73GAUV90HY1PDUXISFDB.vdex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/VHZMLNQ771TWO1RJCADENIA2R2Z5SEO.odex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/VHZMLNQ771TWO1RJCADENIA2R2Z5SEO.vdex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/X3TCR1CHTN7EQ31HES7KHG4858D3YWU.odex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/X3TCR1CHTN7EQ31HES7KHG4858D3YWU.vdex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/XB98RX0H5ZRIAVPHU0F09W8WTWLVMKE.odex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/XB98RX0H5ZRIAVPHU0F09W8WTWLVMKE.vdex
- chmod 777 /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/oat/arm/ZCWWMEJA87H3HJN150Q4RPJ9WT4W45O.odex
- cp /data/user/0/<Package>/app_payload_lib/empty_classes.dex /data/user/0/<Package>/app_payload_lib/<Package>/T3946PLGLVENB6348JAXR3J9H64LCZ7R.dex
- cp /data/user/0/<Package>/app_payload_lib/empty_classes.zip /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/2VV3TT2PJQOUOYIO4RP72KI8BSRZBWR.zip
- cp /data/user/0/<Package>/app_payload_lib/empty_classes.zip /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/5ZH8N9WH9NZ6UJL9EOJKXC4O9GLVQ8M.zip
- cp /data/user/0/<Package>/app_payload_lib/empty_classes.zip /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/7XBA9ZI7F9HK0937WQ9EF6A23631WAC.zip
- cp /data/user/0/<Package>/app_payload_lib/empty_classes.zip /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/8U0ZE8BC8UMDH6CWX7ANG7JZ0RGM9RL.zip
- cp /data/user/0/<Package>/app_payload_lib/empty_classes.zip /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/ICYDCM5M68G3B8I6VDKH6D9X2DEWBX7.zip
- cp /data/user/0/<Package>/app_payload_lib/empty_classes.zip /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/J50FD4H1VB2IBT5E8NKP44OXCHZMSY9.zip
- cp /data/user/0/<Package>/app_payload_lib/empty_classes.zip /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/K6SZIGFC4QE5X2WKDJ63SRNRK7065ND.zip
- cp /data/user/0/<Package>/app_payload_lib/empty_classes.zip /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/KYS3I0RCSEALTQSKDVY30B33GJSU1FT.zip
- cp /data/user/0/<Package>/app_payload_lib/empty_classes.zip /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/PUEAKSTK6LVTB1TBN60IHV97YVI6QRA.zip
- cp /data/user/0/<Package>/app_payload_lib/empty_classes.zip /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/USAL0IXMEGK73GAUV90HY1PDUXISFDB.zip
- cp /data/user/0/<Package>/app_payload_lib/empty_classes.zip /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/VHZMLNQ771TWO1RJCADENIA2R2Z5SEO.zip
- cp /data/user/0/<Package>/app_payload_lib/empty_classes.zip /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/VLF2L327VPDO8HVJC6H6JY263EV14Q8.zip
- cp /data/user/0/<Package>/app_payload_lib/empty_classes.zip /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/X3TCR1CHTN7EQ31HES7KHG4858D3YWU.zip
- cp /data/user/0/<Package>/app_payload_lib/empty_classes.zip /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/XB98RX0H5ZRIAVPHU0F09W8WTWLVMKE.zip
- cp /data/user/0/<Package>/app_payload_lib/empty_classes.zip /data/user/0/<Package>/app_payload_lib/<Package>_empty_classes/ZCWWMEJA87H3HJN150Q4RPJ9WT4W45O.zip
- dex2oat --dex-file=/data/user/0/<Package>/app_payload_lib/<Package>/T3946PLGLVENB6348JAXR3J9H64LCZ7R.dex --oat-file=/data/user/0/<Package>/cache/<Package>/T3946PLGLVENB6348JAXR3J9H64LCZ7R.dex --compiler-filter=verify-none --instruction-set=x86
- getprop ro.dalvik.vm.isa.arm
- getprop ro.dalvik.vm.isa.arm64
- sh -c dex2oat --dex-file=/data/user/0/<Package>/app_payload_lib/<Package>/T3946PLGLVENB6348JAXR3J9H64LCZ7R.dex --oat-file=/data/user/0/<Package>/cache/<Package>/T3946PLGLVENB6348JAXR3J9H64LCZ7R.dex --compiler-filter=verify-none --instruction-set=x86
Загружает динамические библиотеки:
Получает информацию о сети.
Получает информацию о телефоне (номер, IMEI и т. д.).
Получает информацию об активных администраторах устройства.
Получает информацию об установленных приложениях.
Добавляет задания в системный планировщик.
Отрисовывает собственные окна поверх других приложений.
Получает информацию об отправленых/принятых SMS.
Перехватывает уведомления.