Technical information
- Adware.Appsad.5.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) pl####.mob####.b####.com:80
- TCP(HTTP/1.1) u####.b####.com:80
- TCP(TLS/1.0) c####.b####.com:443
- api.mob####.b####.com
- c####.b####.com
- pl####.mob####.b####.com
- s####.mob####.b####.com
- u####.b####.com
- u####.b####.com/setting/grobal_strategy?p=####&hp=####&l=####&c=####&pro...
- pl####.mob####.b####.com/ad_dex.php
- /data/data/####/AdsBusiness-data.xml
- /data/data/####/AdsBusiness-data.xml (deleted)
- /data/data/####/AdsBusiness-data.xml.bak
- /data/data/####/EventDatabase
- /data/data/####/EventDatabase-journal
- /data/data/####/L-mbt-1587659204059-1352662913.log
- /data/data/####/L-mbt-1587659204238-1652767055.log
- /data/data/####/L-mbt-1587659205023-163404063.log
- /data/data/####/L-mbt-1587659206085-668964118.log
- /data/data/####/L-mbt-1587659215086-874504702.log
- /data/data/####/L-mbt-1587659215108-237905231.log
- /data/data/####/L-mbt-1587659220172-360763330.log
- /data/data/####/L-mbt-1587659220194-1477914947.log
- /data/data/####/L-mbt-1587659220204-1852982530.log
- /data/data/####/L-mbt-1587659220207-1893133912.log
- /data/data/####/L-mbt-1587659220253-334040060.log
- /data/data/####/L-mbt-1587659220276-446061757.log
- /data/data/####/L-mbt-1587659222759-1237185271.log
- /data/data/####/L-mbt-1587659222866-701246454.log
- /data/data/####/L-mbt-1587659222964-1914339714.log
- /data/data/####/L-mbt-1587659223145-114709712.log
- /data/data/####/L-mbt-1587659224522-204964622.log
- /data/data/####/L-mbt-1587659224604-2040929941.log
- /data/data/####/L-mbv-1587659206445-597785571.log
- /data/data/####/L-mbv-1587659221397-253467024.log
- /data/data/####/L-mbv-1587659266418-2022994130.log
- /data/data/####/aps.xml
- /data/data/####/apscomm.xml
- /data/data/####/batsdk_app_life.xml
- /data/data/####/batsdk_crash_switch.xml
- /data/data/####/batsdk_user_info.xml
- /data/data/####/classes.zip
- /data/data/####/com.tools.freereminder_preferences.xml
- /data/data/####/daemon
- /data/media/####/.cuid
- /data/media/####/journal.tmp
- chmod 700 <Package Folder>/app_bin/daemon
- AES-CBC-PKCS5Padding
- AES-ECB-NoPadding
- DES-CBC-PKCS5Padding