b42d39b24e6a7a1da6a3caf421842c2742fed25820440a12aea962e8a10d199c

Analysis

max time kernel
2942600s
max time network
157s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
24-12-2023 01:34

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

b42d39b24e6a7a1da6a3caf421842c2742fed25820440a12aea962e8a10d199c.apk
Size

16.6MB
MD5

ad30eda4a673e4471650cfeda7b9a044
SHA1

1b91dc283fe0fde1e7318656fcb13d7b5e535792
SHA256

b42d39b24e6a7a1da6a3caf421842c2742fed25820440a12aea962e8a10d199c
SHA512

767140258c9ff5b31f7ad8789cda3ca64c10555ef9d4bfa6fe3db25d532f989eefe5243fe418526781067614f5a5f8492bfd1f1a24fa2bed2c5582587ff72782
SSDEEP

393216:Te0Vw67Bo3HdCuiHJ/wVYo5jyVL8VuK9Lwjeqzm:Te0AIuiHJoPt9ZN

Score

8^/10

banker

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 IoCs

banker

description	ioc	Process
Framework service call	android.content.pm.IPackageManager.getInstalledApplications	com.xgbuy.xg

Loads dropped Dex/Jar 11 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.xgbuy.xg/.jiagu/classes.dex	4253	com.xgbuy.xg
/data/user/0/com.xgbuy.xg/.jiagu/classes.dex!classes2.dex	4253	com.xgbuy.xg
/data/user/0/com.xgbuy.xg/.jiagu/classes.dex!classes3.dex	4253	com.xgbuy.xg
/data/data/com.xgbuy.xg/.jiagu/tmp.dex	4253	com.xgbuy.xg
/data/data/com.xgbuy.xg/.jiagu/tmp.dex	4305	/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/data/com.xgbuy.xg/.jiagu/tmp.dex --output-vdex-fd=46 --oat-fd=47 --oat-location=/data/data/com.xgbuy.xg/.jiagu/oat/x86/tmp.odex --compiler-filter=quicken --class-loader-context=&
/data/data/com.xgbuy.xg/.jiagu/tmp.dex	4253	com.xgbuy.xg
/data/user/0/com.xgbuy.xg/.jiagu/classes.dex	4353	com.xgbuy.xg:pushcore
/data/user/0/com.xgbuy.xg/.jiagu/classes.dex!classes2.dex	4353	com.xgbuy.xg:pushcore
/data/user/0/com.xgbuy.xg/.jiagu/classes.dex!classes3.dex	4353	com.xgbuy.xg:pushcore
/data/data/com.xgbuy.xg/.jiagu/tmp.dex	4353	com.xgbuy.xg:pushcore
/data/data/com.xgbuy.xg/.jiagu/tmp.dex	4353	com.xgbuy.xg:pushcore

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data) 2 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.xgbuy.xg
Framework API call	javax.crypto.Cipher.doFinal	com.xgbuy.xg:pushcore

com.xgbuy.xg
1⤵
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
- Loads dropped Dex/Jar
- Uses Crypto APIs (Might try to encrypt user data)
PID:4253
- chmod 755 /data/user/0/com.xgbuy.xg/.jiagu/libjiagu.so
  2⤵
  PID:4278
- /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/data/com.xgbuy.xg/.jiagu/tmp.dex --output-vdex-fd=46 --oat-fd=47 --oat-location=/data/data/com.xgbuy.xg/.jiagu/oat/x86/tmp.odex --compiler-filter=quicken --class-loader-context=&
  2⤵
  - Loads dropped Dex/Jar
  PID:4305
- /system/bin/dex2oat --instruction-set=x86 --dex-file=/data/user/0/com.xgbuy.xg/.jiagu/classes.dex --dex-file=/data/user/0/com.xgbuy.xg/.jiagu/classes.dex!classes2.dex --dex-file=/data/user/0/com.xgbuy.xg/.jiagu/classes.dex!classes3.dex --oat-file=/data/user/0/com.xgbuy.xg/.jiagu/oat/x86/classes.odex --inline-max-code-units=0 --compiler-filter=speed
  2⤵
  PID:4556
- sh -c ps
  2⤵
  PID:4614
- ps
  2⤵
  PID:4614

com.xgbuy.xg:pushcore
1⤵
- Loads dropped Dex/Jar
- Uses Crypto APIs (Might try to encrypt user data)
PID:4353
- cat /sys/class/net/wlan0/address
  2⤵
  PID:4480

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.xgbuy.xg/.jiagu/libjiagu.so

Filesize
382KB

MD5
aa01dd97609092ce310e17bf791069ce

SHA1
f000840a8f68ea7beb2e29ea466088daf55609db

SHA256
e432c191f918053ce368e1b1f155b2e1f9e84379611b93aabec0106172b73aa2

SHA512
766c120a06215d0950aae32026fcde3eafed8d18ae0de7bc8135a7378a9055c8f0040d61574d9af67fe2b5b90eeae64c62d787343858ae375bb6658df8afe7b4

Download Submit
/data/data/com.xgbuy.xg/.jiagu/tmp.dex

Filesize
284B

MD5
f1771b68f5f9b168b79ff59ae2daabe4

SHA1
0df6a835559f5c99670214a12700e7d8c28e5a42

SHA256
9f8898ce35a47aeafced99ea0d17c33e73037bb2307c7688e50819966f4ae939

SHA512
dae27d19727b89bec49398503baa6801640540355688dfabbe689c97545295c2c2d9b0f0dcd7cbc4cfbf701d0c0c3289e647a152f49ff242d1ecc741efe4145d

Download Submit
/data/data/com.xgbuy.xg/cache/image_manager_disk_cache/e0bac8c3c005c727bb9b0b2d00be3d7cf020743113c01c46c33a507d6275519a.0.tmp

Filesize
79KB

MD5
3ccf674803e2bcca74d940a369b98a1f

SHA1
b82beb53b74476af3563d05f4b49b4628611c19f

SHA256
897e90108102b4d93eed118fbc62f4bd208a2651c52da15431f3ece36f4ff274

SHA512
b98a53d48cee9d8d4fae804736e7b66c28beb429d4e84cad49f4f3e92f5a226c99eebe093fabee98d657d41729eab74fdf6081cc29b693e076b213e0e8e60a5f

Download Submit
/data/data/com.xgbuy.xg/cache/image_manager_disk_cache/journal.tmp

Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db

Filesize
20KB

MD5
663f8d35b3e26194ea83197b38e3288d

SHA1
f35ed82f12dbed44b4b254ce9e242c058a46838c

SHA256
d53cdce71380a32e871eb39a023366eccb6589e80cf6821ee8922d5cacfdbb37

SHA512
b935e33db3d1c7c62183ee70f3e845b87372e3fdaa492f89af2e4ee4ca64d8ffd315dcbb529ffe69f6006b124139ce7d4dc971680c6907dc67144f5f4b074780

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db

Filesize
20KB

MD5
4b5609112532a5bf4d1a88cec37f3ada

SHA1
7d78aadc2da0229e828ace9eb42ae59a4aa4239a

SHA256
c590f9633e3279fc3e0e3a9499fa241061b7c6c47315578cf5aae78edb909f52

SHA512
cb106efea77db98d3bf1fcb59ca80724186a162748bed23287e05e691abba089d432fc0c539521dd59a30f61a45178430a8482de8204578cc92518918bae3b50

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db

Filesize
20KB

MD5
4443bc765b611152dac93ba678187d46

SHA1
4de8ce27bbd591519e48f2b319c38b0d4f14cd33

SHA256
d33bc44c621edf91389caaf3a58bac4ce62d6358d71560344a30324e65cb98f1

SHA512
a9b3568c65935bb517b1077256b15d9dc3486030310fcaf6054aba3175eb0fd81c910189e043bffd648071c31ba5fd226b83f2eb7d52502b3fb282e1e49a3b39

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db

Filesize
20KB

MD5
b46d72d3de0e9beff535362df418272b

SHA1
1d13333e56669f0338f51289f92243d22ee1243f

SHA256
711ba93ae6816786fc83e6e905531aecc9d2f7bb09d4f21285257ed1f4e9095a

SHA512
82fd2179441d4cb30b89a7ddea80120096264e536a538d28dd9e59bcf9583dac579a1945efb612b5c479bd4d1eca94e667daf496f58b396ad8f679226a9a0570

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db

Filesize
28KB

MD5
eb573a865ba8b77a0e526802b4db282a

SHA1
7e47d581594a9961f3039302428485046e1aed80

SHA256
f3faa5896a521ea4381b53c5061930fcb36ede18c423f407351dc07a8b7b6005

SHA512
856468ed6af95f9875d57a67261cd6b64bd07428eb4f21ed93469be1075639fba28b392988643872b1f29f4e80df59197e0f0751ba11601390ad5e4703119928

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db-journal

Filesize
512B

MD5
a9b08cb5b16f1f0a116a2f043cd1c660

SHA1
4deba226b992599a62c250643c22afc9527610fa

SHA256
14b9712632d1da549a55f9b2681ce97ff2a917dcb50e44e203ef6d16f92f0785

SHA512
d8f4e77d73f579e9479cef6b078d90e255b8d79dae2a566717d2efe52534a4d695ea5350ea0811b4c8bd66e6a203dcf23f0a852a84df77cb7da0e66f123dbaf2

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db-wal

Filesize
44KB

MD5
249c07ec8b3d5328388869ba5703356b

SHA1
bc49f65502c25672b833caf20adb21406c0d8c59

SHA256
6d97eb3dcdf1a93dd249fcf8332521b7d6f5ddf192f82ce71641248b6af33626

SHA512
8ed3623ac724595be9dc76924f1fae11df495cc1d2ae331758ff96229e506f93d1d80ab352cbc691bebaef77e26439d52533a498662c795dc672c18295fb2d72

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db-wal

Filesize
8KB

MD5
58f4a2f6b765a765328dae58f889cb8c

SHA1
4ab855113e225776592f900d334075c5e6450d7d

SHA256
e9e42f7d8723ddc7d0d267cab7eb4e365a6f00ac4223fd1e08e4017566e88cab

SHA512
d8e8e2d844dcf1281bc24ea5685795b40dd906b840d147ce26579a84693c2fc408031db5676ff9e224392c476d234cc4c9ab84306d8f74c6809a5d2affb39210

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db-wal

Filesize
8KB

MD5
9e1132140b93fd9fafb236ac7f1ba168

SHA1
d0e0ed913492df92a70a6776d41f501f8bc51ce9

SHA256
ae6023bec423b1a7294ad9123d2b9fc212487dc809914cc779ba19134a03d5b3

SHA512
0c31dd8ea3331379f19016752a4b915bda83d29b9db380a85e5df0892e9ea0ec8e1fd52693484df8a3013ebed530531c86708f97aaab0a859c150717c3fe6fda

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db-wal

Filesize
8KB

MD5
216f3ccdd8ab914b4122eed492142957

SHA1
e627373f2e3109983bb890f4ba18f998284591a3

SHA256
1b04f109e8ee4854a85933e5c460307e1917a4cc4d853e4e90886bbabb0dc05f

SHA512
3dc6003d8ee3c45e687672bc0a066b5f3b76e3cfa13ca50a9e923291515ab12d2b203bc67d299307243b22644564a9969dfa7775ddde08b439a7ae0d124fa69b

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db-wal

Filesize
8KB

MD5
fdaac73342eb9cfa6bc257b5c8a13e72

SHA1
e415609b66a098c0ddfe99522a4b3540779661a1

SHA256
56cd153760a10c7a5bd12d13c3a5ff879d4fe1bc03b49f34be13a3f8c586b904

SHA512
bf9f507a05999c3ab844b72117172ea6bf2ae0a88ae870907de78b7af9dd835d45c96a6212c495f85a6ae43fae1b2a216e7738d245f69190b6c9e35715419492

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db-wal

Filesize
24KB

MD5
830ee37726e449097fe4d5d395be10eb

SHA1
177bcbc206748b7e68422723fea348f45af27885

SHA256
381752f9cb0f0c3681e9ba550bdf8b35f634c3597517b662e70953d5f4867bf8

SHA512
2b2d744b290b18e4663aac3bc6fe2d61153fb88bd096026cd02458227e026251ad3b49e1a83de244af9356fe37becd47a2b792856138b0a0833db0ceaf646914

Download Submit
/data/data/com.xgbuy.xg/databases/ThrowalbeLog.db-journal

Filesize
512B

MD5
50a5cd19bf873d3fe5a655f1591a3ab3

SHA1
b74828d72d5b2cd3465ebf35485731748433809c

SHA256
c2713b33ae0b62567e35080416572947b6bdac57cb04d5e962bc421c12cb9292

SHA512
ce1f257cb53bbd76cb3c0f6afc7ee9817a09b5327fa85a7bba84ede1f7f7254058c52994c4bf1884d6e715e182ec820a1f6719b5788113bf8ef4b4ff06ef5a02

Download Submit
/data/data/com.xgbuy.xg/databases/ThrowalbeLog.db-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.xgbuy.xg/databases/ThrowalbeLog.db-wal

Filesize
48KB

MD5
c06701b6e776a49c8ef7e8252c8fdd23

SHA1
47fd79e3533618f480b81f4b876ca3b0cff02693

SHA256
69d98e8da46a1acf3348c248c1eb347395a5fc6afaed60da8039ea66e0bba5f9

SHA512
6abd2b5c2f1b888d5015dda16a1e3b5d9ad845a91d68a3b886d47dd14eb4585d3add32c5ed4c06a1c7747a6a64f81e7f0e67f1673151fe361e69cf9504623925

Download Submit
/data/data/com.xgbuy.xg/databases/ThrowalbeLog.db-wal

Filesize
32KB

MD5
406f02de565050d461b2fe2d61d6dcb8

SHA1
8ecedd2686f20308d9accc2de66acfb111d19fce

SHA256
8f4deb9fadd12bb46bc85174fe3518767186b1aaa4ee5e5501aa3390c382aa7a

SHA512
bda4016064348a838bc1bd8d6e85a1d8eb1d1244b914fcd1113e8c0b96087b967c7a6360d86d37d37b472f9aeac41945a96de0ff3de5c47558ad892aab6ac3da

Download Submit
/data/data/com.xgbuy.xg/databases/cc/cc.db

Filesize
36KB

MD5
5d7ea1a23af19b4340cc8d90f28297d5

SHA1
4cfe95b23a9e98378d69c4290af81b51fbe76aea

SHA256
474c4a54534ed96beacad7cc9a805a3f53ec9c0522fc7bcc59771cf500a6a0da

SHA512
33071f4c92da0a3df01c4a61dd165df7c7e0f4f37753cafe02d19fc876a5e7fcbb01c069c804e140ab8bfa0644a55f50fd1373646d1c439f817baa5ffbd47f7b

Download Submit
/data/data/com.xgbuy.xg/databases/cc/cc.db-journal

Filesize
512B

MD5
9b65c70aa6b49966016da51fd5ea547a

SHA1
e057e5e49bd0a6c7460e7adfe038def52d4383eb

SHA256
39bc31868c1206426b6a0c68abd41a7efe04c82a4b7e0769b8c5e625da1c325d

SHA512
b050b168341c9f27e8290d1a1899b5953869f231d1b77e311ca9f17a76e1c3b152830635d9fd8bc7b55a39f418ff22d5db0c8ebb53c96df014d0872884473140

Download Submit
/data/data/com.xgbuy.xg/databases/cc/cc.db-wal

Filesize
48KB

MD5
9e1666d2b053fc528f571c95fc01bb6b

SHA1
e0d24013500ab97fd6d33a629db978e0ef92f0d1

SHA256
4ea5bc502ff197999f36d233a005061b70456fa71e85ff23451cbe689ef835a8

SHA512
2a9efe13de419b37a5b2558bb3e49694bca56d4dd1725297b328c109950c45f86a7cef80463448a7bdde24aa18d4f272efa08f21679c4f69a5753783c3ede84e

Download Submit
/data/data/com.xgbuy.xg/databases/cc/cc.db-wal

Filesize
8KB

MD5
fad9fd1257eee0e7e6c21452e6a9c1f6

SHA1
2282bd0825813c0424fb8c469af9385bfbac1e00

SHA256
d3e86281cce53906aa52eb594918825cc19494cbb6ca5c942f9e7df9ab9b78b2

SHA512
4b29763d3cb5adf4f256c8e855edd50c1ea81aef2d7687bf0f515302dadb3c673e488b7992b6d3f88f2092dfea5dd43bfd8c1527c1ee51f5304ce8a3c843a687

Download Submit
/data/data/com.xgbuy.xg/databases/je_1000_ISME9754_guest66750638278256525384164485203009722640-journal

Filesize
512B

MD5
1af2628e6df11263ea43b04cd797bfbf

SHA1
4f6762f665b906b63c4b4aa7096ae5a83e4a8cb4

SHA256
146f7b9cc2629a25c011e54ddb0d643b0bdc8662dfabea70b6c035a14ee9ac9f

SHA512
363afb180d588e4466f30e25e3e6a0d2893290c8eebc7d300fb7c0f8b3e1a7c04a2652eee797b416a457b172188c28e29bf6002bab8532990a8e199749280208

Download Submit
/data/data/com.xgbuy.xg/databases/je_1000_ISME9754_guest66750638278256525384164485203009722640-wal

Filesize
48KB

MD5
08ec2f466ebe6093c55fefb0dca4f9e2

SHA1
ef56c578f3e13fad946830599bfb710dbc11bb63

SHA256
262e05c903a438e225daaf0d5c57e059d950abea887eea5f5f28fe887a3128c1

SHA512
47786510f41c3aa3a74ceaeda2d2b52c7a8e3ee11da26bf086d19acbe211326d2f755f93f8eeafa559dce99e29a9995c34eb86ba58b48106eac64216b0a68196

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db

Filesize
32KB

MD5
20f400ea103ac7cd348fe049e9c554de

SHA1
2ddde6dd44d9aacee804100ef40d03de2735dc4e

SHA256
5c78d480f563216998840b0238d68a80ca33b8b456fc85e795f13bc0b019e983

SHA512
e533084a02e856be9a240ee9bcc640aa401a33d9b1543f8bb2e1f47917f9ae1d3a0c9615b762430b3c56cd81a47925139984688a95764f2e821aae859168c0e2

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db

Filesize
16KB

MD5
e5fd4209ed9ab1746dc0e7ab090ff504

SHA1
d9b76839a81a9454cc149390cbf622a210ad5639

SHA256
8094c2bbef02f789ab3584a15b72387a96ba003d62edf4f5298f2a9b2955fc80

SHA512
9ad255cfc98f73f1916479d1d4ddb85f936eb570d8c0c6e6a692b70cc3c652d339937261bc3ba507d2ab3912b7f209a1f51dc970c2d54d97d78552360068fa04

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db

Filesize
16KB

MD5
eda9520ab41a401c3eee99c042170c2a

SHA1
ae03fefb99dc13793b9c071407a20753e27e2f96

SHA256
b245c24130c5a9673af7a7321b14147be46586c332604795a4061544df51743a

SHA512
decf2be8e6ba518772c828116ac3749a2966fdf153143934e228b40fde02a8234828e40ce77a5b8c196732592725f80e49cbb56ef9d3253fcbb8c1c0c51d8da4

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db

Filesize
32KB

MD5
d604a3bf1f8d992cc320ea5b1f7609bd

SHA1
247f88df0b55c7d523ea5398637711a0e4a483a4

SHA256
329940b4d46326d58e73c842dd099704061d0ef7338777bf31ad895f29013c17

SHA512
67e28f6713cb5c238a9664df128f01a89a2efb7c8c9330c1e45bc0d40ebab81fa20df5166743d84d81dc0386a89ff0329f022281c098339baa2e851ff0a1e1ab

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db

Filesize
16KB

MD5
27d907ef10388551de6f512e26ffcf5c

SHA1
1dfd6738513785833727fe0ec08d26065ec16c97

SHA256
5619c03eb80ff4e3fe7d68c9d02a280b4e207eef5a802c8cdca8eafa09726b4d

SHA512
a020b1160bdcbb8002a13520fbeac475d0cbe9d0c4a8b1d342f730c1491c68e24e413bfc023d0ec015ac5ad4767c27094c9b07e555ad206ffe08d10c3c9a5436

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db

Filesize
16KB

MD5
9b9421fba705ec5680e6e2ee8ddb3e5a

SHA1
5a7ce97b6bef7e2c146735e9bfe03f53488bbf35

SHA256
a2f37a4c29e20e37f5046b78489ccd466465effa5d7d0fe61e8cbab08e64bfc1

SHA512
8f5d4927ffa8569635a4e90bac3875d3523974e04a9d347bb0391402f3b8b99bfb8203c44e544b81a50afbb95830f35588871e04963447d5ada563d668ccdbe1

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db-journal

Filesize
512B

MD5
a0742d39df15eecabb070fbef4bd3710

SHA1
41bcc7dc80feb6c1341f20cefe117b88a4545c01

SHA256
4d46ad634b00350e9a05c370838433ba5a8ffa70bc0e71ad23e6c8425138a7e1

SHA512
39fa52bbf03878df535bf3545334ee5073476261a63fb3bb9946c298f40a0a9fef54200e0eb2076eb4d169aec258d9fa4cd2b06d9181368c3ff2888f9bde464f

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db-wal

Filesize
56KB

MD5
cb69c13e63e0a2428e7a693f288c106d

SHA1
7c0fa94b7ce218fec147df02aa6f0b3bf0932d22

SHA256
6cbad98b92575954b95723064cf1d6899e9a0974c72f2a4bfe632168551c805f

SHA512
c34114e968cbb56f88880f7584db1d3e893f1a454c4f2407c4f37f432b8eee7cb406dfb8a39cb07afc6c79f121700959eac3d4e0656db676e8ac869df8c7ae57

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db-wal

Filesize
4KB

MD5
a16af40d18ed5109025c75067789246d

SHA1
050f9765d7cf41e32961fb6ead5f6fd4ce350874

SHA256
48c4621617840129bb3d0fe7254444f4bb7db31e53ea5343dfbdde46aa335488

SHA512
7c84ff767a7189537fc2e74c8bb6a15916da011fe079237f3c8b1e68bcb464f8fdf3f794a891f90d15d4979d0fe02bb232da55654ab130d787775de357e747ba

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db-wal

Filesize
4KB

MD5
d3aa625f95cc573efd89b74fcc134b91

SHA1
9e40750cbea053f3bdcc5d71dbb48a8ed6ca3284

SHA256
69d3767dc7ed4b1b55c592138bf40f9a079e91ac6102491668c9d0d437911f45

SHA512
fe4a31de241402c40601f26903009d1da9717960837f2439ae7b4a96472d7ea20f8d387ea47697fa79216d20cf2f8cf34a73e790b3e1582a3dc00d82dbdee363

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db-wal

Filesize
8KB

MD5
341d221ebed2b97c8d575e1f02b62c1c

SHA1
1bfcc5065f57f64eb737131009aca231d3230753

SHA256
758a1f64e4d73b4a1cdd09a858c589a93655bb72e941dcc032cea57c4b97337c

SHA512
4e271905d415e35be6483c7099fd3a7d4fd63b2bb07a5ab956b3022d6b5d48f6a1bc79faf8ddb884446d3333a8e533aeb079e19d5bab07a7701b3b115d61bd85

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db-wal

Filesize
4KB

MD5
5c10abcc1989453778c6457d09a047b3

SHA1
b452774788ba513d365d49b38d6410efe29dd21a

SHA256
30c740f85d895ff815ff0d339d40d403ea48f75622b9276dd85d60a09eccd62a

SHA512
e4345a63b02cdfba843752887b52dcb08f87b75aad677b95e809f16ffe9d6772923a59cc1a38ef2e3188eb8c1a4b1cf87fe5c0950b28f5a26620f3f80d258f2a

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db-wal

Filesize
4KB

MD5
c8e8d8c16379fdde90132ea743b0addf

SHA1
fcb2b654fdd6bc2f66f8ab09af8874ff04253116

SHA256
c5f007410d3182eeaaed6d15e13db43a2cf023dd6303c43fd605b801f7e8567e

SHA512
d2de9e3faa0960d8c3a17c9de17d1a3f13d3f57c950d2926db2316a8175a0cd01e51cb31f6a07b7f8351d5b1bee55db98de20127a62b623db6ce31aa07d1f747

Download Submit
/data/data/com.xgbuy.xg/databases/xinggou

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.xgbuy.xg/databases/xinggou-journal

Filesize
512B

MD5
ef88cb233131327d2a5cbed1639801cf

SHA1
e04e555aa2c0aa0aba9541cd0f8e2a18741b74e0

SHA256
0781614ea0fe37cc12bcd43b1741b615d5096c000e7c837675dec536cdd21f10

SHA512
6c1d3cfe6ceef1ac82aaa6d5f7fe692aa4bc5393ee98bf63625de00cb21e86c2de89bfb86435edbab28cf514a734f7f7eca4fde0a49af8cd8f0dfac1bb16d042

Download Submit
/data/data/com.xgbuy.xg/databases/xinggou-wal

Filesize
64KB

MD5
d724170645f3edd41147d49035256a07

SHA1
d1778602a9094837d914331922ee68c4054fd044

SHA256
97c212900d6a93890b36137564d888f992d5acedb1a3e26d0f70762890095611

SHA512
45948c5653cf71a15f6b5970d607b28e3dfd861caa29037609bb4c2056c83d109827bcf1fe599780571588823943ac95de513b56c536ccd6efeb9d35b98cb585

Download Submit
/data/data/com.xgbuy.xg/files/.imprint

Filesize
1010B

MD5
2e64d4f6a0c23cc31d6d4653b79334a3

SHA1
8f62b9ba88246b7e23db6142acc86b6e678c8b22

SHA256
579bca590005ef712fb02f0b6fb04770b40a913ce39dc94be6d28818784e095f

SHA512
4de4b5d11cf2f6da606fbaba581a5176bf2d32a74294966c4c67c0450476dbbddaf0732ca337d067952d9d539af90aa21ba03940817199d494461c2b877f4aa5

Download Submit
/data/data/com.xgbuy.xg/files/.jglogs/.jg.ac

Filesize
40B

MD5
81024874f926b0c0c9e613997c9370b1

SHA1
a7b4c37570f3e5aa7bd575d0dbcc71ff9079a95c

SHA256
da5ea38fae9a292777936eae50a76aae4d2a589550448aa6970383e44aabe7d6

SHA512
8ae3ca2a1a4ea6c514fffeb911f4c42ff173433a7fd82980193d883196e748e458e83ee42051ccbabfa7f49792dabbf1eb8a72fea3db16c2f157e7ada4182830

Download Submit
/data/data/com.xgbuy.xg/files/.jglogs/.jg.di

Filesize
340B

MD5
5ea12f9c29b02c948407bbd4f0a820f7

SHA1
51af700851659cc3b211861c2e0ef1cf1e345942

SHA256
b6c830e7ebc450e8887acb8abd7e7a2f8fd8a5c52fa48a89ac3be2a73a7fd9d0

SHA512
49002028b619e43ed5d925412a8761c1715984a3ea159db51b146b2a6e2edc91e9445fc3a5899e9a244366a3ebbfe326add5151ef660fa38428232fe525c2507

Download Submit
/data/data/com.xgbuy.xg/files/.jglogs/.jg.di

Filesize
340B

MD5
4c95727ef273255d26cf02a0a869ccc3

SHA1
4db12fa0d8f054fbe8fbf44bba4774faf3fbe258

SHA256
ef3a6babf12a2df12ff280e26678bba441c8246aafc5e313bae8c3a29e91744c

SHA512
ad2a3c0891384ae57517d7e52385264b60aeb0c3ba937b98ce68e3de1ef23d37ac57a4b38bfd3467ce948598d1716e5b153761e1148157b393d52e5b830e54a6

Download Submit
/data/data/com.xgbuy.xg/files/.jglogs/.jg.ri

Filesize
314B

MD5
2533c48a3544158736331dc6e64c8c79

SHA1
c10bf41a27e38383f06ca36377834349f866887d

SHA256
4bce67d6340a3232ee96b108510521bf4d10642557c009f4ea552c600fe313cb

SHA512
3af51b6232e471738eee0d3deb59df1f757d23290e18f697861d11ffa8d7426a9499412f13cf033e1f77dec030c7027f483f2a6b4d9050329587086d4df83695

Download Submit
/data/data/com.xgbuy.xg/files/.jiagu.lock

Filesize
27B

MD5
89b452ac478ffa78f87611620c42ebdc

SHA1
a7ebb2f7969aa5c750cec022cca23e278a49ceb9

SHA256
e21a99fa8d553af0a19b128e23a5c16929b52862333410915536d6a4a915010d

SHA512
fb1a6339f5044ece744f09b6ddaababc35037cd5b339ee37533a3075983000c2ae32a4912634cb8c58e4c8386c1909d5a6eb0333c95f6bae0062aaac0a3fe25e

Download Submit
/data/data/com.xgbuy.xg/files/.umeng/exchangeIdentity.json

Filesize
162B

MD5
f4bf8400da33ecb5bf75bcf103ed6110

SHA1
15f76beb02c5adfc2c284e08ca12fe83022c27dd

SHA256
fe5f74b5f3edd607d917dbe61495685061b063930903cd06de71851f7d3ecbb0

SHA512
88fdf62e36659c6edf92bf85b9bf4fc4e193ba4ef86dc1c20cb3a995f2f8a0aba95372795a4b561af540ce4be259f6f1a8ef8259a2073afa5899287227488bf1

Download Submit
/data/data/com.xgbuy.xg/files/Mob/mob_commons_1

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
/data/data/com.xgbuy.xg/files/Mob/share_sdk_1

Filesize
23B

MD5
8e24e79baab91c4d0604eaa9006a0cb3

SHA1
e427afc94a4b957a7096f73e395a10ea404c076b

SHA256
65ee797326cb9d94a4c8b13fb114a7273d80af9ae547496bf56556c479f75e4d

SHA512
45bde5e1b5da5e54f7f5baf24cf4d9158ccf5813f0babc05677437bfedf1d54c4707090a1c425089e8f9582a85fed80b25c1e1f30ec2051afc6fe68bb8a76bae

Download Submit
/data/data/com.xgbuy.xg/files/Mob/share_sdk_1

Filesize
62B

MD5
97fec4f148bee01fd9556f86919f3da5

SHA1
1037d110bca441480507a301a287b6d70f875171

SHA256
08354ceeacd92030a2e058eaa7da4fbcd2c4a182eeb667c8a9f3f313c5bdbcbc

SHA512
0cc01eb73e63ce7ea3520100c8ac983a512d17628d71cf1e9d99d1fe60b7a3c8f0b0e891a4d0de56de790ebe4a15c1f52054df69d5d056d14b941a4935ff93c9

Download Submit
/data/data/com.xgbuy.xg/files/Mob/share_sdk_1

Filesize
86B

MD5
546c568ad13d3c52b4f9e8bce754116b

SHA1
10e2377a513f0553c39b260a65ca9a3861a1c481

SHA256
751746b0a172fdd4c5dcac0c7b8161d71071a38ae497491f9aa40bff004764cd

SHA512
9ef164362807a906d9a3b7a3fb3e478891e95be0dadcf5db595336e791ff858245cb6a023d21d8556ff6e7a63fb1ff9a671148e7180f796c169e02953bd74135

Download Submit
/data/data/com.xgbuy.xg/files/exid.dat

Filesize
61B

MD5
74f8a946772af1f3c1095b69f05afdc9

SHA1
510372e67bbd254111d351d11be3b48b18cf109a

SHA256
ed91fce1e707ad70575d67a0071fa286dc02f7cf5928ddca619179aae086a627

SHA512
026a256d161a08e0425f66c754db74a140cc4f54ea359592a79916c25fc33eff17152da4dfd5dc075a8c8bda1bb3ac7c2e1abddce0f1e5c582cf1701619b6907

Download Submit
/data/data/com.xgbuy.xg/files/jpush_stat_cache.json

Filesize
131B

MD5
591df99bbf8a7919475de9a35f47eee4

SHA1
86c09f47d0f4fc9a7e42fa825455f00dd2c117df

SHA256
d07414e57d5a6b51c3e644ce2abf01f9b8877af2812848e479c3e0eb66b4a529

SHA512
a5c9b44e3f7d592a1b395144fc42bff38c3b54632ba344e29d5ae1a161637b1c95c9ab6885c978ad8550f8fb38490ccf089946cee432f1b4d46681cf1b3c1109

Download Submit
/data/data/com.xgbuy.xg/files/jpush_stat_cache.json

Filesize
190B

MD5
3adc1b5452c9b1d279898720f40998a2

SHA1
cab692aa1d849d77acba1871145af1de0aa393ba

SHA256
2932b881a45cae05a576ccb4cc55756c3b2b5704971873b5c850c84db7505776

SHA512
fc757612b373456836a146d40e778032789a105e04238af28bcf7635fbefef77ceb5086f5a528184fddefd03a1be8733b9c21199cbfd1aa21ac36316284970db

Download Submit
/data/data/com.xgbuy.xg/files/sobot_chat_log/sobot_chat_20231228_log.txt

Filesize
201B

MD5
c682332a42b3a8c0059f0e3cfe8b916e

SHA1
94829dd14d63a2677ad29ebc83a60e23fd3c1728

SHA256
9736d6686722b95b5dd9c1df89363cc132023874ecd4b0e24cf61ea29a52c591

SHA512
94d227d506725f43647d92a99483109e2ef75a126fdd408b37f6db7523b86258f6c5c43661bffd4500eccbf0be2584490280e3e7e0eb5eccfca7c57f61051269

Download Submit
/data/data/com.xgbuy.xg/files/umeng_it.cache

Filesize
413B

MD5
fdf5c79cd0346276e7a536d6de51a90d

SHA1
86817c0a22be16349798031a39286bb65c7291c7

SHA256
eaf4ae6ba84fe971c643751d9b5e92e4be8ef8a2eaa9a7b80af7967c0168e6d4

SHA512
da1655d05556f70c3a6d844c91728199eaf311d0481c5737d72880244e0c12d038d441249e342d494f7d7b1e147d021eb4217ac0d2febf0a848f1b9a26649dc2

Download Submit
/data/data/com.xgbuy.xg/files/umeng_it.cache

Filesize
210B

MD5
d959ff1547d64ea180c08095b8e3aa5a

SHA1
028468e5e12b8033c96c27bffb699649f7e42b24

SHA256
013b91f8ca961a43a2c4a6f70fb68ce466657a6b3cb7620b7eabe42076250939

SHA512
120f65352f1aa61bb2415653c6c0b469fb0f4d8066103ecbb27ec2b26feb514364e9fe25148e4fc47d73d2e5415494ad595229234673e8799832aa8f3d8e3fbf

Download Submit
/data/user/0/com.xgbuy.xg/.jiagu/classes.dex

Filesize
6.5MB

MD5
86a98fc1fc5a4be8c586f51c67a97268

SHA1
8685f420a04b365aca6d513c3c9913224428edc9

SHA256
8b522c8b1ae9ed55748d64c35ff70e401f1559e259adac525e8616a18acccaec

SHA512
8c00265385037273b424019d49b84c7ca7ee1ac5a146ef3e81b647a6af21b6a1205ffd760d538fc9db4065ddb2722b13feb7471235f4f98f77f58ea3d62da98f

Download Submit
/data/user/0/com.xgbuy.xg/.jiagu/classes.dex!classes2.dex

Filesize
6.5MB

MD5
5e0a085d5972a8ca4468666f58f466d7

SHA1
40b5b262f0ded720f3ef02413d5df1005f3dc3e1

SHA256
34da18eb7460f63eb9d85ae512bcd803fbc817251ce491765beb0fddb8c9aef5

SHA512
a537adbda036f608d5f283addb82c5d77ff93946eed0f5da5f1b1a43bbb95ab3aebbe88d792c81686063005f732a7a0050f8467f35f2b22d94ee38d20948cb3c

Download Submit
/data/user/0/com.xgbuy.xg/.jiagu/classes.dex!classes3.dex

Filesize
1.8MB

MD5
b4a7f9124e5e694816518dc3fa08769c

SHA1
80f49a6f2b10b8ed4203338ca52d3c761964465f

SHA256
27faebea6826f04d1bb9e2166025b9c5efba572fae566c0d1522d575921d640b

SHA512
e841072c34e8a6c6e6dd3bf994837b24ae648f52a7c6180e48f30cc115be817d78893b40839a1f5d3435fa11b495c12d45cd7619ee0a9373e307b7d197774131

Download Submit
/storage/emulated/0/360/.deviceId

Filesize
48B

MD5
1d8d16c4e3b19ebf18988530d9b9a757

SHA1
bc94c1cce05cd848a53271ecb9c5311e27ffebf5

SHA256
abd87140da8de3d0aa39a24a8d52bfe7b2eb28f7a3d505f205471c7e8f4964d7

SHA512
4562d1eedbc5c2dd7f25cd1c70343053fd451026403585182b142a64f17016c1bd0bf6ad51667b439b220e425640e55fbbda08517e7106376cdc220a4555da82

Download Submit
/storage/emulated/0/360/.iddata

Filesize
32B

MD5
75bc1c5fc446d0d39b42ab0dcddcd87a

SHA1
a946d232747836340e9e3de5e3e4dac985fc04da

SHA256
022ee48574ae3615bd5d2bb14f2b1cffa77104ff6390f47f9ab0bbdc1c84cafc

SHA512
7d131367b15bf3d351460637a55ad72cfd87834c1e865f470b0d22127d3f14814a12367d607227e215a8f29bb5cabe345e9914fe07d4f7c8b274d80cfba2a57c

Download Submit
/storage/emulated/0/Mob/.slw

Filesize
314B

MD5
1ca8067f140b8d107662eb91b157db59

SHA1
6cc250934d843a3c504108ec11a0c589285d9a16

SHA256
371837475e73c8a0f85afc80f6f4d6b3bcfc4a8409243cfd12a2b56e696d261c

SHA512
20e0221dfa670321a7cebb7a2d19f7efc3f1ed4e40241f3cc06a323833a86a9eebcfbfc454cbf9f2526e404d30a5318f9b25e7bb1ee563052b2cfcf9f2d4ce38

Download Submit
/storage/emulated/0/Mob/.slw

Filesize
66B

MD5
19402718bfb1c685a726b4e1d846ad98

SHA1
02a7e30044a67085f2f1da24e16e4ecfede65b72

SHA256
079f790e6a1934a94542559f53a89a824aafd3173d956b6019291955aeeb33d0

SHA512
25254318c22cfd301c8bcd479f45797d502b6ab5f14265dadfa3d87b4dd1942a629d3cbc2f0b600cf73b4fe910e3773432f56a0a7b4343e280e20c5a6af0320b

Download Submit
/storage/emulated/0/Mob/comm/.di

Filesize
57B

MD5
70a42cba408700f9a6c01c7941a8829e

SHA1
eab01cc2c0671538795fb0b1146017dc099d0984

SHA256
499576707ce2623293166979e59c832be5b8636c64ad39aa63ebcf961910c35f

SHA512
8900d4dc8eed0430babbacb72942401bd22ef7fe5430cad90d3ce0c2c53010220d666aa0e2eb1026f3ec81d574c7fa12585b49222a5f15b01637f6ba134fe70c

Download Submit
/storage/emulated/0/data/.push_deviceid

Filesize
32B

MD5
cd3f68cc619dc2e9fb41e06349176461

SHA1
3fd3601986f23329eee9a6d3f87a9134d8578051

SHA256
e6107b8cbea084f278cf0e23f899f5a923ee2ad78d0cf3b0052e03299e93aa21

SHA512
e65c368361e85c57e6a7dc72823cfd99bff0d7224137e7c5c3018215c02b57799ef1493bfd52bc06cf404c46c5f8ac1430b89ab5331008b0d9fd95b422e2d58d

Download Submit