Technical information
Malicious functions:
Sends SMS messages:
- 10665999: 50
Network activity:
Connecting to:
- a####.####.net
- r####.####.net
- s####.####.net
- t####.####.net
HTTP GET requests:
- a####.####.net/banner/v4/req?s=####
- a####.####.net/offer/dist/aos/pkg/2.6.1/offers_2.6.1.zip
- a####.####.net/v3/reqf?s=####
- r####.####.net/spot/aos/v2/reqv3?s=####
- s####.####.net/stat/aos/v3/pkc?s=####
- t####.####.net/v1/active?appid=####&cid=####&dv=####&ts=####&ft=####&pt=...
HTTP POST requests:
- t####.####.net/v1/android/packages?rt=####&sign=####
Modified file system:
Creates the following files:
- <Package Folder>/cache/####/data_0
- <Package Folder>/cache/####/data_1
- <Package Folder>/cache/####/data_2
- <Package Folder>/cache/####/data_3
- <Package Folder>/cache/####/index
- <Package Folder>/databases/5c05e1415d9432badce0dfd602b52415
- <Package Folder>/databases/5c05e1415d9432badce0dfd602b52415-journal
- <Package Folder>/databases/77da77255e7fee0f40d0adf4fffd991d
- <Package Folder>/databases/77da77255e7fee0f40d0adf4fffd991d-journal
- <Package Folder>/databases/OxgHkj2lz09F
- <Package Folder>/databases/OxgHkj2lz09F-journal
- <Package Folder>/databases/P15pKIjsm64m
- <Package Folder>/databases/P15pKIjsm64m-journal
- <Package Folder>/databases/T1oX0rhhuXWt
- <Package Folder>/databases/T1oX0rhhuXWt-journal
- <Package Folder>/databases/XKwVoK0huy3R
- <Package Folder>/databases/XKwVoK0huy3R-journal
- <Package Folder>/databases/Xil2xk2Ix1lF
- <Package Folder>/databases/Xil2xk2Ix1lF-journal
- <Package Folder>/databases/e669b4ad6fd971bca7770126548ef1a3
- <Package Folder>/databases/e669b4ad6fd971bca7770126548ef1a3-journal
- <Package Folder>/databases/jqIqJYOT3JpT
- <Package Folder>/databases/jqIqJYOT3JpT-journal
- <Package Folder>/databases/wIU6pTyUBYWX
- <Package Folder>/databases/wIU6pTyUBYWX-journal
- <Package Folder>/databases/webview.db-journal
- <Package Folder>/databases/webviewCookiesChromium.db-journal
- <Package Folder>/databases/webviewCookiesChromium.db-journal (deleted)
- <Package Folder>/databases/wsUL1uCdKvjD
- <Package Folder>/databases/wsUL1uCdKvjD-journal
- <Package Folder>/files/####/arrow-left.png
- <Package Folder>/files/####/arrow-right.png
- <Package Folder>/files/####/blank.gif
- <Package Folder>/files/####/close-icon.png
- <Package Folder>/files/####/default.png
- <Package Folder>/files/####/detail-wx.html
- <Package Folder>/files/####/detail-wx.js
- <Package Folder>/files/####/detail.html
- <Package Folder>/files/####/detail.js
- <Package Folder>/files/####/feedback.html
- <Package Folder>/files/####/feedback.js
- <Package Folder>/files/####/form.css
- <Package Folder>/files/####/global.js
- <Package Folder>/files/####/lists.css
- <Package Folder>/files/####/lists.html
- <Package Folder>/files/####/lists.js
- <Package Folder>/files/####/md5.js
- <Package Folder>/files/####/pic_m.png
- <Package Folder>/files/####/pic_tips_01.png
- <Package Folder>/files/####/pic_tips_02.png
- <Package Folder>/files/####/result.png
- <Package Folder>/files/####/rule.html
- <Package Folder>/files/####/sdetail.html
- <Package Folder>/files/####/share.css
- <Package Folder>/files/####/share.html
- <Package Folder>/files/####/share.js
- <Package Folder>/files/####/sprite-face.png
- <Package Folder>/files/####/sprite-icons.png
- <Package Folder>/files/####/sprite-icons2.png
- <Package Folder>/files/####/wx-step1.jpg
- <Package Folder>/files/####/wx-step2.jpg
- <Package Folder>/files/####/wx-step3.jpg
- <Package Folder>/files/####/wx-step4.jpg
- <Package Folder>/files/####/wx-step5.jpg
- <Package Folder>/files/0ba42510ae9bce054459888380664307.zip
- <Package Folder>/shared_prefs/C306239E75034d979DB1957AC06E4612.xml (deleted)
- <Package Folder>/shared_prefs/CE94557724F842149D690D0E8CBB1CBD.xml
- <Package Folder>/shared_prefs/OFFERSCONFIG1.xml
- <Package Folder>/shared_prefs/spotData.xml
- <SD-Card>/Android/####/373240561418738c721572c1da14b85e
- <SD-Card>/Android/####/373240561418738c721572c1da14b85e.ymtf
- <SD-Card>/Android/####/e5998dd07b13c07339d8d1727092a9e0
- <SD-Card>/Android/####/e5998dd07b13c07339d8d1727092a9e0b
- <SD-Card>/Android/####/i42d45df023jnkdd93la483f9xGFKXI
- <SD-Card>/Android/####/s92TjjdfoP2n3o9dfji2l9s1olkjf0p
