f0a990426ee6a46242638c1185918ce3b2c095f1f6daec7a392d0aa1d03dc2d3

Analysis

max time kernel
3027520s
max time network
159s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
24/12/2023, 07:17

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

f0a990426ee6a46242638c1185918ce3b2c095f1f6daec7a392d0aa1d03dc2d3.apk
Size

18.9MB
MD5

9be0733c06585f3a79a90de2f244f474
SHA1

f8f47588ceefc5ea3e0f9eef3662e00af2ff27a8
SHA256

f0a990426ee6a46242638c1185918ce3b2c095f1f6daec7a392d0aa1d03dc2d3
SHA512

9a4dfb488ebb0d297d984b4dfd1b00cdf1e00124f428c2eedc25da1c76377ff3f1e88adcfd9c7950a7e75b824f63d4238c313ddbb68e20344d205f2a969f65bd
SSDEEP

393216:q+EDecf+JepYoZv36c8q+8q7CDg2TwKtTIJK/l5cqIHh:/EDeFkCoZCc8q+LCrRtcA/l5bo

Score

8^/10

banker

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 IoCs

banker

description	ioc	Process
Framework service call	android.content.pm.IPackageManager.getInstalledApplications	com.taojuanfen

Checks known Qemu files. 1 IoCs

Checks for known Qemu files that exist on Android virtual device images.

ioc	Process
/sys/qemu_trace	com.taojuanfen

Checks known Qemu pipes. 1 IoCs

Checks for known pipes used by the Android emulator to communicate with the host.

ioc	Process
/dev/qemu_pipe	com.taojuanfen

Loads dropped Dex/Jar 4 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.taojuanfen/app_SGLib/libsgmain_312768000000.zip	4466	/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.taojuanfen/app_SGLib/libsgmain_312768000000.zip --output-vdex-fd=148 --oat-fd=149 --oat-location=/data/user/0/com.taojuanfen/app_SGLib/oat/x86/libsgmain_312768000000.odex --compiler-filter=quicken --class-loader-context=&
/data/user/0/com.taojuanfen/app_SGLib/libsgmain_312768000000.zip	4256	com.taojuanfen
/data/user/0/com.taojuanfen/app_SGLib/libsgsecuritybody_312768000000.zip	4523	/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.taojuanfen/app_SGLib/libsgsecuritybody_312768000000.zip --output-vdex-fd=160 --oat-fd=161 --oat-location=/data/user/0/com.taojuanfen/app_SGLib/oat/x86/libsgsecuritybody_312768000000.odex --compiler-filter=quicken --class-loader-context=&
/data/user/0/com.taojuanfen/app_SGLib/libsgsecuritybody_312768000000.zip	4256	com.taojuanfen

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data) 2 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.taojuanfen:remote
Framework API call	javax.crypto.Cipher.doFinal	com.taojuanfen

com.taojuanfen
1⤵
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
- Checks known Qemu files.
- Checks known Qemu pipes.
- Loads dropped Dex/Jar
- Uses Crypto APIs (Might try to encrypt user data)
PID:4256
- /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.taojuanfen/app_SGLib/libsgmain_312768000000.zip --output-vdex-fd=148 --oat-fd=149 --oat-location=/data/user/0/com.taojuanfen/app_SGLib/oat/x86/libsgmain_312768000000.odex --compiler-filter=quicken --class-loader-context=&
  2⤵
  - Loads dropped Dex/Jar
  PID:4466
- /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.taojuanfen/app_SGLib/libsgsecuritybody_312768000000.zip --output-vdex-fd=160 --oat-fd=161 --oat-location=/data/user/0/com.taojuanfen/app_SGLib/oat/x86/libsgsecuritybody_312768000000.odex --compiler-filter=quicken --class-loader-context=&
  2⤵
  - Loads dropped Dex/Jar
  PID:4523

com.taojuanfen:remote
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:4292

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.taojuanfen/app_SGLib/libsgmainso-5.1.81.so.tmp

Filesize
507KB

MD5
bec24c3968fd14fb7b61cac9e34e42cc

SHA1
049a01508d829c284ff08e61c819e9c5b4c18b6c

SHA256
783b491a29835cdf0f400e954b15bef25597f352c833092fcdb9016f34bce0d4

SHA512
dba83f01291b4eec66af6074d85e7a680926dc1b19e3f9f520ff846f3845b6b53bd56b8b72374daeebd37133785b5416cea0754dad5378838f493bf9032fbf35

Download Submit
/data/data/com.taojuanfen/app_SGLib/libsgsecuritybodyso-5.1.25.so.tmp

Filesize
169KB

MD5
dc8ccd573300e869911b4cb9f456bf46

SHA1
492abe5cc85dc00cd37aa09e1787f561bd556b8a

SHA256
a15ff3c3bd74dce6e24400d9a02b2a44d0ab9153ef0d3e755dcabec784cdc1a2

SHA512
2946eedc57b77697b7efb38b2097eca4e2c1a6242d8624a8b8e34ab7814cd8c4166984d0f324aa767b25f1d4dcfd9264b7ff70d298fc66a1f1159bc7d3173792

Download Submit
/data/data/com.taojuanfen/databases/jscript.db

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.taojuanfen/databases/jscript.db-journal

Filesize
512B

MD5
141386d21681b13cb031042b94deda6c

SHA1
d36a48ad704d971e7084c11f4c9a85ec92fed962

SHA256
24d79a4341575e6180c538442c96fa741d1a23d5599ba06c8d7c7f00f7da99d7

SHA512
516d59911b0fefc832770fb9beebd707f84f804de83b4afecd0d40327f0bae005368c4fc2c74a230e1880d926eefe9c17ae22507e165f77618cdb5ad252b8c65

Download Submit
/data/data/com.taojuanfen/databases/jscript.db-wal

Filesize
32KB

MD5
eadd2a25c335b7b7213877ee37508090

SHA1
3d7e6ead33a97039ab3e70d8259ab3779cd7870a

SHA256
b9fb1c7a8cf13b4767926652a4f808548aa1f439ea2c9566e844121703011a31

SHA512
f63cc5483a3fe98c09612e630b03286e36ed2fc1c63cd7fb58c107d9c9abc0eddab2ea7b2cf1fa70a84531b74f1ec0136ca78dac95dd05dbd6d80c123f8d2413

Download Submit
/data/data/com.taojuanfen/databases/ut.db

Filesize
20KB

MD5
38616785cca0600a03205f84fe330b4b

SHA1
6ac41a6bdcae297d56dac5fdde70be5faccf0832

SHA256
b05c698d5827005da5e04b4fbdcac53cfc83405247353f8e9e145969a820a4e8

SHA512
7ff2901c032607f5fa1f24a48056ae85fe8d67b6c5649233fdad7b66950d359b2fb933344bf1e2fe6255a00c593de7bcf959d201fe8b6ad214249bb31f855a08

Download Submit
/data/data/com.taojuanfen/databases/ut.db

Filesize
20KB

MD5
29ce3d16c1018a17bfa0e409241e27a5

SHA1
d24f21c456a387c93409a30ede85add240432d1d

SHA256
5f3e383e0d0701f278b5f4b32f1511a3a612fe0aadbdd8a3d6f4aeed3c3ece2d

SHA512
f9516b99c6713ea36817aad4010b808bce0eb06d1d32698cd07986117591e6ac358a0d92cf828d658823cd2efd16200a5ecff9c58ab3fcd1cd12d61bd7c4ed06

Download Submit
/data/data/com.taojuanfen/databases/ut.db

Filesize
20KB

MD5
e5c91480872eb9219623d0d1cf2201b5

SHA1
ce80147bd0c7ee45b5b5b49a6f6e83cdf2469ffa

SHA256
770d436a40857f3214787da15227781eb7a95b02732c697b9abc2f827f930638

SHA512
fcca74bbabb4e1bdbb31a00559fa1ae53a30aab02bb4f146b7f33049961bc945173fdc6f549a6b13da41f02dd629faf8a7cd60cfd3ae1dbc8f54beebceb220d1

Download Submit
/data/data/com.taojuanfen/databases/ut.db-journal

Filesize
512B

MD5
afbf4eebc1860546f682ea0c53672a2f

SHA1
3edc9b455abbfaa6590b117f9e6f841a3b8c1507

SHA256
93721732c35d07d91c585ff3dc71bd2ad53775d437c97faa749990c9e7b7f85e

SHA512
61ceb771a31f15285755c87fec7055e94d404b2ca80f7257038b208e750ac3bbc7151593c01d9c861dd7165b2b8248d4cbadd43ad939b786a58b274d071c31fb

Download Submit
/data/data/com.taojuanfen/databases/ut.db-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.taojuanfen/databases/ut.db-wal

Filesize
32KB

MD5
b24a4a1669fae8ec967114c05bd3bbbf

SHA1
e55e3dc92c1378b5279c295e97c2a138e2806452

SHA256
5877d832bc83747f65061a9c230957e6b39719eae99fda664ee233f7eedc8289

SHA512
b5909418316bda8f2ecfc960dd2b03a70153ce2c9f41977311a81ce75a3a0c511175a91d7112706833a047727b84ce0a0858617d02a490f6bac22f768f70571e

Download Submit
/data/data/com.taojuanfen/databases/ut.db-wal

Filesize
8KB

MD5
f7708c69947acadfbf2a3376bbed0aa0

SHA1
fc2a1b572441b2df7d3326fc90166e7f50b2a102

SHA256
90b6e09e9f5e0ca7551072c30a9300dab971c71b163dea9a967182a02709e2e7

SHA512
7401bd66df11219bfd27a8a9e2faa8b9c7334e6326e14f5dfc1ff0dfe75ddebe54f61c70b2a8e823c0c4578c6fdc4a85dacc555d10ed14ea885b7f299589252f

Download Submit
/data/data/com.taojuanfen/databases/ut.db-wal

Filesize
8KB

MD5
f230f4b371455a675240491406f233b7

SHA1
52c25f4ee5be31de5bbc7bbf21ac5146e8a82e2c

SHA256
e864fd6b69f45fb9be5de965b62789d90cdac51766384529ed9cc1efa36fd4e6

SHA512
c94bf46952da503975ff1335e5f660a4825023689ba3d0df5651496dfbef0bb5c1e01ca2e62704204b2abfb8e3ac56008a609e54f644657a2bb8fd80099b56b9

Download Submit
/data/data/com.taojuanfen/files/0a231bd8575dcf72.txt

Filesize
40B

MD5
a2c43eafb7f949b1a327812b59d52a6b

SHA1
38b34d5280de9933ff0d7796847c04b0401d153d

SHA256
952d971b264035cf831c7d1004a1086c0510c73f3583aa2f8af9a0eefd01b630

SHA512
fee49ad700fc051399339a7b5526744f8d18b8cb4fac932de7064f8c0903576eb608bf6f8ea5829be57422c615a5a0f92a7e182866b1d0c1fa77b030ce9fca87

Download Submit
/data/data/com.taojuanfen/files/21c22f492aba3de8.lock

Filesize
16B

MD5
f5b54c59cb514f97ae14b6309cb32371

SHA1
9ade789b5808bf2b420d0aa0c3013f9429401491

SHA256
cc8d0245fae06568f27e88e8d8778ebbe192085fc22fd9cdda3fd2d371616c04

SHA512
9f93006a882d0b75fa6d27bc2ee06cb3b5ccb9f7fc7a0e00d843e8fe373c53a3eefd6b4dddf7f5417d1d47afac0aefed4c04cb121d8104d249a04f26cc90fbd5

Download Submit
/data/data/com.taojuanfen/files/SGMANAGER_DATA2.tmp

Filesize
72B

MD5
f58f13d0fc991322df1eec4c68481464

SHA1
fac54fd6dfb4fa6e0b0f548eb024573dca8cd259

SHA256
1d3ba112a38305e67ffb1aa4a0e0e70b3a22809904675efecec0c949d0b76396

SHA512
e1ef5bbe84095b5ed02d1d9b23bc7e034b67715b3535473553a2d797b86ddbb81028e0cd5ccc457be1828893413eb368e04f29b7c3a2878f933a025153cca535

Download Submit
/data/data/com.taojuanfen/files/SGMANAGER_DATA2.tmp

Filesize
143B

MD5
e226bf9446849dc009baa24a537ac74c

SHA1
b6b4de6d0febe5a29c94656ddbf85823f20d6204

SHA256
f4748057d8d507d1ff277a03fdef8184f0e215e4be2de5315b48c647fb0d8a19

SHA512
0acf633e9b926ee1c43ba5f11357a9f31524a62e7487fe95b70feee27740197a4cf725c3a0aaeadb2fdc441ce4af69e0800ae23bb7a64c7525e7044ed49c6541

Download Submit
/data/data/com.taojuanfen/files/SGMANAGER_DATA2.tmp

Filesize
189B

MD5
6a8863dd4be7802445180fb86132a879

SHA1
318b6be6ca08b4edd3c0e949f0c4ee34b1b1b768

SHA256
003384a9be52ac8b293ce45c557533b3e72efebf1165f128bc9dcaee5b414e08

SHA512
21c52dbe0c216efc38950433e9601102dbb0abfc1bcf844e24da21e047cface75f0fabacb07bc38042bd46638611dbd6b7cc7a41e25c824725ec8112f0094780

Download Submit
/data/data/com.taojuanfen/files/SGMANAGER_DATA2.tmp

Filesize
262B

MD5
0438489e26550304ace8e365664531ae

SHA1
cb4e150d8a2f36dcffb61bf28f01f2c6313f30e4

SHA256
a179e2d846f440a85be5d1837704df7092888784914b38b61067568308ec76bb

SHA512
6e0782109933287e1fc72b2da6db675e4ec1b0d3cd17e95e2769fe362b4a880664d2159c5521f7b15d7287cf2671d8e73a93b570d16888cc4280a90c38072dd4

Download Submit
/data/data/com.taojuanfen/files/SGMANAGER_DATA2.tmp

Filesize
334B

MD5
706db59100d55b7e1d6003cfe6ee807d

SHA1
f6b1bd2a6b4e23bb84a2db169bf75e034c1144bb

SHA256
664792bdb0e1f05f9d06f3e5a03d7c578ee97a1a22d8546d7e2adea8c51f9d64

SHA512
45095f26158dc4de7c3b3923b6728fb39f78bdc637867cce5a1588f883ccea1455b791121454a0d9c809c38739d0d2efa8cd019fa0135f114a51376398ed37dc

Download Submit
/data/data/com.taojuanfen/files/SGMANAGER_DATA2.tmp

Filesize
414B

MD5
6a272117e53323f49b36bc18f743e87c

SHA1
15c423597ca947f5edc40a809986b17696a7d919

SHA256
63bd3566cf85b800905a5fb757d6899a7fe3a4aa701b1cb537ebc9b5df70231c

SHA512
d84c5529a5122e0a945f9852d86dcd54c7b8a93f344da07d1eee85119f95a3a54412772fd0ed9481134eb3220af32f0abf554e77d810df3f58a8b45486ba3d47

Download Submit
/data/data/com.taojuanfen/files/jpush_stat_history/active_user/nowrap/a1cce802-9483-4188-9634-005b3f7d3a26

Filesize
159B

MD5
72908829c6b92ee2bdb4a530b9740456

SHA1
2c1ccd64c8bc20c2dd33bc0eee0aa5a65c33e8ef

SHA256
2d5294807dce0e4d989d9a550a18c28ad1bbc722a33e5b2aa270b0a8d88ec9bd

SHA512
64dadde1c005cea141238c63bfec51ace2585a35147a64bbd0b24cfb7ba3cd8ae32b32c40e3721c9ba7a67e793ff4e9bb1b67879d372a55c7ac5705c71f1dcb0

Download Submit
/data/user/0/com.taojuanfen/app_SGLib/libsgmain_312768000000.zip

Filesize
65KB

MD5
0c2f2989749ff3910446998637c28286

SHA1
054aba5cdeb4e66a4473b0a81680bc50f6a0cfc3

SHA256
f3c52a07c3cb0a749aa880b5819ce43a5b76065396037f5f50c4577ae522d49d

SHA512
72acb607e89f7dd62c21e9449ceba58c8917afcf4dc32c789f515d6a866e6549b2fd53e90cffbdfb7a62d577534bd9eec052d1ec9a912321f9bf25e7f719a70f

Download Submit
/data/user/0/com.taojuanfen/app_SGLib/libsgmain_312768000000.zip

Filesize
65KB

MD5
522947eaa37b029a247e3973f3be3621

SHA1
31c88e0d7c9b51904c0f598e80245bba41b1c7d9

SHA256
d06601f9eb8d8c991f00426ad30bada9d2bb7886a6de21d78cd0ccb7b7e62156

SHA512
f5eaa9ccf08096bf0df8f004fbfc1b893ae08fed3e6722e0adea1fdea2719a45876314b765134905841f440c27216c897876e3ac6c8903fc44b697854eb02c0c

Download Submit
/data/user/0/com.taojuanfen/app_SGLib/libsgsecuritybody_312768000000.zip

Filesize
10KB

MD5
3204fcefcc0eefb1fa76bc6f0fda6264

SHA1
b5a5fa1723ecc6c531d7728163489d72ab20cf6e

SHA256
15da7c769b4a6b8c48e85a27c3e052d6b2c88c53e4098ff4713f5afbc591102c

SHA512
a7ae4bcc5dec798d8b6934a361068698bba74aaae0e4443b73ed31f9696ca6f1953349e385172a5630f587ed64a17801ed3e1651c3a20d7b20ff3b6b33711a2b

Download Submit
/data/user/0/com.taojuanfen/app_SGLib/libsgsecuritybody_312768000000.zip

Filesize
10KB

MD5
f59597732a9069b73e16c027faf78d05

SHA1
e3558f4e5041a6c6d4372001bed847f2ef77958c

SHA256
9e416ffbeda9461f3efca490dfaaee955f68fbc1f3e455f2394bf4c4310b83d6

SHA512
7a8dae723cf5fff494cb2fc16a75bf347732ee3da99f1cbda99d8c6d26a47e4a7526c5340fa33bf9ee98463a84c1fe276a3683ca8e7bfbc50206e589a82aa6d2

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml

Filesize
111B

MD5
d04dc2957c455e16c67c39fb6efe9a40

SHA1
d6f70a12d9bee9ce1fa8b316b38f5d9ab3988e1d

SHA256
568820e3f46b273703f211800d0d31327e9f6e7c1029bea701a801e4fb920fb7

SHA512
1dc13960f6fb7e065d5fe4298ae5a3ec71de5b4f7f58e16c28cf8af8ebdda67cbaee5808df7dd3d06da1f2af01a0f5ee3a3b1bcc1b303e182448bf0199a9056f

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml

Filesize
213B

MD5
168f76605c45cd3e7f025bef0deca735

SHA1
4149579e18817903d5b343188e4d71392860d61a

SHA256
765a9bbdccf4fd4538c558a832904e0e1a75f2722a277345caa7f816cf7f0083

SHA512
35bddbcb02f5371257a87a8702597d7b7bfe0527e877034e4c5e772785842da6deb02f9327db0f1a27213e7a2637e04b7054fef474e03cb52e7c9f796e90ed80

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
111B

MD5
a653981b2a67fe72d2a7865abcfc7781

SHA1
e801acedc8af3bd370703d3e1c6abefe06570e6b

SHA256
1d810413be1db329dac1c52d1bd20d42993e9e8501bf0bce5528d94c675be43e

SHA512
187e047d7d922702b762fcdd107b94555d1a325c6de3203997bc3dca9a2bdb05a5365ec5d2e6370e884da44cec2a74eedd52c38f4ce8d1ef2db57d7a5ac49741

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
167B

MD5
686f32fc08f17bc60cead91b8ca94210

SHA1
c4cdde006233a985983eb0d9f19f7c7c811ab514

SHA256
f8b6e62878273104c7ac76cae47827d51063760623c98af66f54fd4b4aa20a14

SHA512
c2a661b0b207e31aceba7c350110f84b5ee5d0af1af8f66fd27e72c801ab944f8942cb07dfea971036dd285a0fe044b5f02b366f19fddec9f24d958a3845cbdb

Download Submit
/storage/emulated/0/.com.taobao.dp/dd7893586a493dc3

Filesize
512B

MD5
553822461218621521e570a00c8e5546

SHA1
6a51149cc0a6906835f849c08be3353211056249

SHA256
2c3b3b21553cd0229d57f4941e733aecc49a539c434ae9566dfa44e1b5b94dd9

SHA512
3e1902ea2a12878c68fe5d8eadebdeacd4d65a06c67c5c6b75a335f6b1364ec516b6d655b6f924601f592b48beda3caf06ed19c51c76af472c0ddcafc19c744f

Download Submit
/storage/emulated/0/Android/data/com.taojuanfen/cache/uil-images/journal.tmp

Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/storage/emulated/0/data/.push_deviceid

Filesize
32B

MD5
d87f2290951e0d28e1a19bea72371078

SHA1
9361075671252511c04d0e559179cce874d8ab0d

SHA256
a4e696a08b85221eb77f1a2c61630aa3d956538a7cfb3104a843906d33af7478

SHA512
de8202158682170210d88627efce4ceff5cda3dd28ce8ce0b5e64132b08acc77ff1f995a32de4bbf3e92f9928a5c6ba5d0feabccb1c61b5d72e52a5bdb085a82

Download Submit