ce4fa1167a93bb89c1a3f24d3af329e0005f54c6d0947ea37fa800749cf6515e

Analysis

max time kernel
178s
max time network
187s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
22-05-2024 02:59

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

65c77a864308c98ebfbeaab23c8296d2_JaffaCakes118.apk
Size

29.9MB
MD5

65c77a864308c98ebfbeaab23c8296d2
SHA1

016337273ca19db2fabbf36e8c4cd6f9c66c3299
SHA256

ce4fa1167a93bb89c1a3f24d3af329e0005f54c6d0947ea37fa800749cf6515e
SHA512

b6140b642cca42a602fd76defddd97545c5742d3c5f5f3c003d529c997b3acac608a40ef5d380f2475cbae48968f84c3bad4f316ae351c71ca5f50ec57919ae8
SSDEEP

786432:sXU8LrRq0o9wJiVQbC/Y2wxDjfSQ5oc+J3i7QomruYr1f08LT0x:WTRq0o9wQICWDSQ5oc43Y7mrJ5/sx

Score

8^/10

banker collection discovery evasion impact persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 2 IoCs
evasion

System Information Discovery
T1426

Processes:

weile.changshamaj.baidu

ioc process

/system/bin/su weile.changshamaj.baidu
/system/xbin/su weile.changshamaj.baidu
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

ioc	process
/system/bin/su	weile.changshamaj.baidu
/system/xbin/su	weile.changshamaj.baidu

Requests cell location 1 TTPs 2 IoCs

Uses Android APIs to to get current cell information.

collection discovery

Location Tracking

T1430

Processes:

weile.changshamaj.baidu

description	ioc	process
Framework service call	com.android.internal.telephony.ITelephony.getAllCellInfo	weile.changshamaj.baidu
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	weile.changshamaj.baidu

Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
evasion discovery

System Checks
T1633.001

System Information Discovery
T1426

Processes:

weile.changshamaj.baidu

description ioc process

File opened for read /proc/cpuinfo weile.changshamaj.baidu
Checks known Qemu files. 1 TTPs 1 IoCs
Checks for known Qemu files that exist on Android virtual device images.
evasion

System Checks
T1633.001

Processes:

weile.changshamaj.baidu

ioc process

/sys/qemu_trace weile.changshamaj.baidu
Checks known Qemu pipes. 1 TTPs 1 IoCs
Checks for known pipes used by the Android emulator to communicate with the host.
evasion

System Checks
T1633.001

Processes:

weile.changshamaj.baidu

ioc process

/dev/qemu_pipe weile.changshamaj.baidu
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
evasion discovery

System Checks
T1633.001

System Information Discovery
T1426

Processes:

weile.changshamaj.baidu

description ioc process

File opened for read /proc/meminfo weile.changshamaj.baidu

description	ioc	process
File opened for read	/proc/cpuinfo	weile.changshamaj.baidu

ioc	process
/sys/qemu_trace	weile.changshamaj.baidu

ioc	process
/dev/qemu_pipe	weile.changshamaj.baidu

description	ioc	process
File opened for read	/proc/meminfo	weile.changshamaj.baidu

Loads dropped Dex/Jar 1 TTPs 4 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

Processes:

/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/weile.changshamaj.baidu/app_SGLib/app_1716346793/libsgmain_1522086942000.zip --output-vdex-fd=101 --oat-fd=105 --oat-location=/data/user/0/weile.changshamaj.baidu/app_SGLib/app_1716346793/oat/x86/libsgmain_1522086942000.odex --compiler-filter=quicken --class-loader-context=&weile.changshamaj.baidu/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/weile.changshamaj.baidu/app_SGLib/app_1716346793/libsgsecuritybody_1522086942000.zip --output-vdex-fd=118 --oat-fd=110 --oat-location=/data/user/0/weile.changshamaj.baidu/app_SGLib/app_1716346793/oat/x86/libsgsecuritybody_1522086942000.odex --compiler-filter=quicken --class-loader-context=&

ioc	pid	process
/data/user/0/weile.changshamaj.baidu/app_SGLib/app_1716346793/libsgmain_1522086942000.zip	4406	/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/weile.changshamaj.baidu/app_SGLib/app_1716346793/libsgmain_1522086942000.zip --output-vdex-fd=101 --oat-fd=105 --oat-location=/data/user/0/weile.changshamaj.baidu/app_SGLib/app_1716346793/oat/x86/libsgmain_1522086942000.odex --compiler-filter=quicken --class-loader-context=&
/data/user/0/weile.changshamaj.baidu/app_SGLib/app_1716346793/libsgmain_1522086942000.zip	4316	weile.changshamaj.baidu
/data/user/0/weile.changshamaj.baidu/app_SGLib/app_1716346793/libsgsecuritybody_1522086942000.zip	4618	/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/weile.changshamaj.baidu/app_SGLib/app_1716346793/libsgsecuritybody_1522086942000.zip --output-vdex-fd=118 --oat-fd=110 --oat-location=/data/user/0/weile.changshamaj.baidu/app_SGLib/app_1716346793/oat/x86/libsgsecuritybody_1522086942000.odex --compiler-filter=quicken --class-loader-context=&
/data/user/0/weile.changshamaj.baidu/app_SGLib/app_1716346793/libsgsecuritybody_1522086942000.zip	4316	weile.changshamaj.baidu

Queries information about running processes on the device 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about running processes on the device.
discovery

Process Discovery
T1424

Processes:

weile.changshamaj.baidu

description ioc process

Framework service call android.app.IActivityManager.getRunningAppProcesses weile.changshamaj.baidu
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
discovery

System Network Connections Discovery
T1421

Processes:

weile.changshamaj.baidu

description ioc process

Framework service call android.net.wifi.IWifiManager.getConnectionInfo weile.changshamaj.baidu
Queries information about the current nearby Wi-Fi networks 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
discovery

System Network Connections Discovery
T1421

Processes:

weile.changshamaj.baidu

description ioc process

Framework service call android.net.wifi.IWifiManager.getScanResults weile.changshamaj.baidu
Queries the phone number (MSISDN for GSM devices) 1 TTPs
discovery

System Network Configuration Discovery
T1422
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
persistence

Broadcast Receivers
T1624.001

Processes:

weile.changshamaj.baidu

description ioc process

Framework service call android.app.IActivityManager.registerReceiver weile.changshamaj.baidu
Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

weile.changshamaj.baidu

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo weile.changshamaj.baidu
Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

Data Encrypted for Impact
T1471

Processes:

weile.changshamaj.baidu

description ioc process

Framework API call javax.crypto.Cipher.doFinal weile.changshamaj.baidu

description	ioc	process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	weile.changshamaj.baidu

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	weile.changshamaj.baidu

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getScanResults	weile.changshamaj.baidu

description	ioc	process
Framework service call	android.app.IActivityManager.registerReceiver	weile.changshamaj.baidu

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	weile.changshamaj.baidu

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	weile.changshamaj.baidu

weile.changshamaj.baidu
1⤵
- Checks if the Android device is rooted.
- Requests cell location
- Checks CPU information
- Checks known Qemu files.
- Checks known Qemu pipes.
- Checks memory information
- Loads dropped Dex/Jar
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Queries information about the current nearby Wi-Fi networks
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4316

/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/weile.changshamaj.baidu/app_SGLib/app_1716346793/libsgmain_1522086942000.zip --output-vdex-fd=101 --oat-fd=105 --oat-location=/data/user/0/weile.changshamaj.baidu/app_SGLib/app_1716346793/oat/x86/libsgmain_1522086942000.odex --compiler-filter=quicken --class-loader-context=&
2⤵
- Loads dropped Dex/Jar
PID:4406

sh -c getprop ro.build.version.release
2⤵
PID:4483

getprop ro.build.version.release
2⤵
PID:4483

sh -c /data/user/0/weile.changshamaj.baidu/files/dc16afc6e326097dc8
2⤵
PID:4519

/data/user/0/weile.changshamaj.baidu/files/dc16afc6e326097dc8
2⤵
PID:4519

sh -c getprop ro.build.version.release
2⤵
PID:4545

getprop ro.build.version.release
2⤵
PID:4545

/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/weile.changshamaj.baidu/app_SGLib/app_1716346793/libsgsecuritybody_1522086942000.zip --output-vdex-fd=118 --oat-fd=110 --oat-location=/data/user/0/weile.changshamaj.baidu/app_SGLib/app_1716346793/oat/x86/libsgsecuritybody_1522086942000.odex --compiler-filter=quicken --class-loader-context=&
2⤵
- Loads dropped Dex/Jar
PID:4618

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

Location Tracking

T1430

Process Discovery

T1424

Software Discovery

T1418

Security Software Discovery

T1418.001

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Location Tracking

T1430

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/weile.changshamaj.baidu/app_SGLib/SG_INNER_DATA

Filesize
59B

MD5
c28b5acf59dad67584446264ff523cd8

SHA1
9d8f863d932410b50f74f205cb0549b7adaf006a

SHA256
12f2d263b8e98c43a9cf1e615aa2231b4d5d18edb59b6551e65cc37e69abe8f5

SHA512
eb48648f77038c12f7486475ebd37366713568e5ca4f20299a30543ee577710937695c48118b8495646a9c09a5baee191fea55778b06400c587d5dd4e504502d

Download Submit
/data/data/weile.changshamaj.baidu/app_SGLib/SG_INNER_DATA

Filesize
320B

MD5
07b32a179652876f4c3d85ad3bc6bf46

SHA1
be8384a3e0e30eec68980414adfb599e2e6683ec

SHA256
262e4957e892d4b4ccd68dc8ac5094a0636362ee540d9dfd74c45fae6d06e458

SHA512
388172dd614da3d7b086c7bb69fada5c032e9bd7a8bda3e84818e9269ba2b03fbb897dac8c8bf5154beb4047e988569267fd18f45d005084837022e1fa048ed8

Download Submit
/data/data/weile.changshamaj.baidu/app_SGLib/SG_INNER_DATA

Filesize
532B

MD5
225f00f378b841ddfd31ecd2f1ba5e9e

SHA1
7b105cd7e67c6d813e1a8f0dbf0474bb4ef42b15

SHA256
e537e42dccdebbd9b8e6167256c631fa0d55c0e849db2f9462ac0068ac539711

SHA512
0c3cbc6f6eb9a779f4411717495b57ddff2175c32805647ebdf052308fc492dfec84d98e288184fedbeb5ad660800ba66a3bed905472f02d1fdcd6b5bb8b95b9

Download Submit
/data/data/weile.changshamaj.baidu/app_SGLib/SG_INNER_DATA

Filesize
660B

MD5
4af46cdc4eb5915aab3bc96de0e98e5c

SHA1
5aba8909911ae97c9b8c0f1850bd041fcf1af66a

SHA256
20f98f5235cb25fb9e0d6a5fa99aa0a702e2f5bdcfbae3452d661ab5add7c4ff

SHA512
f1c5f72f468e0492df5545b36f1f8821231802c0a29eb5afbeeeadda8857a4beafbb1e49be7664ee11f3893782be728f67bba8b04ae7ce56881da99ffa2aa68f

Download Submit
/data/data/weile.changshamaj.baidu/app_SGLib/SG_INNER_DATA

Filesize
896B

MD5
e3b2662624910019a82704a7541aa423

SHA1
094160bb9bd0cd94e529bc10e8344b52ad299ea4

SHA256
f2abed95dedecb1ba06b1686bbfea33220ff476fd585b2f272074b33191fb6a1

SHA512
d10c53fc716a77340b8b77df3ef2ccf00e556bd65150b7892a0acf89d364c06aa303de733ae456701e5c9d4a8d78c4279c8cad46eb59519f96fa0d9099c0c77b

Download Submit
/data/data/weile.changshamaj.baidu/app_SGLib/SG_INNER_DATA

Filesize
1KB

MD5
a90af67605458d39ff884a6a511226c0

SHA1
31a49fd0e309bcd341a4a9553193c6b11bfe1fb2

SHA256
e686feb6ee4a85c4130cba9b1efbf1830d7483fd6d12416b4f1a936a00537b95

SHA512
9e9d84b27e57893c0b2328713a338ee638c3a4edf24a728edeca4b05e4d83389955465c8181e08a5ce6fa01bff57d322ca8c29f8c951799ce0e54abcbb33904f

Download Submit
/data/data/weile.changshamaj.baidu/app_SGLib/app_1716346793/libsgmainso-5.4.38.so.tmp.4316

Filesize
658KB

MD5
37e6383ee3a98dd848a70f506535957a

SHA1
65e79520fceb74f6a6fcb931b47dfd21bf774e68

SHA256
9e236d24f8c9a3d46e80e5286dab3deebb05e44686950db3aec24f6dcea7d647

SHA512
de5e8ca80f1b714034947ddbe9e3de43bae26e94dbf2cbdaf53e7fd4e3f3b8cabd4c75931e0840ffd12e0694f611a57e5e98760aed14c3ed7f6b10fcc682ac4a

Download Submit
/data/data/weile.changshamaj.baidu/app_SGLib/app_1716346793/libsgsecuritybodyso-5.4.28.so.tmp.4316

Filesize
221KB

MD5
a2e97cd62adfa67ce4ed993cd4cb18ed

SHA1
bc1dfb0c587bd6182bda7f284520a48c60f3ae13

SHA256
22b9e6bddc3b6c032b8308de58372bd04691b3617c6d14bfd29546c6df010beb

SHA512
ced3a1e282214fc8293e018b183cd7f40a7aea93e9b6c60e2c2eaca1ca5a197ff9ed41ed4192f38b7b228cca251a06be91f893ae6031331199ef3acc0f9cc1f7

Download Submit
/data/data/weile.changshamaj.baidu/app_crashrecord/1004

Filesize
232B

MD5
94903a213a719a13ed2ad5144f6c19f2

SHA1
35a77225296559e182fdfbf9c4cd27a03ece665c

SHA256
78b0babf53d21c680f9a0d294ddc637b147fc6d4f9f99d1ae0631bf082a9a392

SHA512
485b179bcc0c4760b841e9a4d89423557cac953bee2eea9fa6a2d012212242bbf98b5e4741e6854bd70697747e81b7617d47b71ed4f7f31aa4a6b8b9ba865081

Download Submit
/data/data/weile.changshamaj.baidu/app_crashrecord/1004

Filesize
58B

MD5
0d210bfb2a0e1f1b4c082a6a0f79de07

SHA1
bb8ed9e364db79d1d9f2fcde3f15091893222faa

SHA256
988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d

SHA512
536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1

Download Submit
/data/data/weile.changshamaj.baidu/database/pushinfo.db

Filesize
24KB

MD5
ce37b1cb818c2836e4a1ee0f54866eab

SHA1
8213f33164c8d1a2f7467bc0ef3bb94a65e4b847

SHA256
ec9fd9d15679d6b8858e8d62ebed123cce3d7132a1caaf9315840a7c6793929e

SHA512
c6282ff9fdcd27991048eacc77029b3912906d330bb96fa27d254d46f4ff0b9be9f9205e52a6fe33ce17b62ace53904a34880974a5e95a64541f03aa73f87872

Download Submit
/data/data/weile.changshamaj.baidu/database/pushinfo.db

Filesize
20KB

MD5
371bd85a5bae18c98526f0ee7a55da82

SHA1
feaea34b60e9b02733f27624a272d2ee101cee50

SHA256
1d3c8d12402801985140378e006782ccd62f99d6976c9a0b7f9242d7944c038b

SHA512
f643de77c719cad924545e6308cf9cdea5c8ab26db5ed6ed336697b52deef8e055c834278af8e9961d8b60cb9a2fd4cd8f302310144667d932addcb54a31fecd

Download Submit
/data/data/weile.changshamaj.baidu/database/pushinfo.db-journal

Filesize
512B

MD5
eacda70e56c714ecb00bc474e2c71e4d

SHA1
e0a6a7c59cdbd254b2ecc38c85adc8c97f6cf84e

SHA256
13b7c3560a5601b833752478f468c6d29374e7f2ef2bea134d63200f53e91bf1

SHA512
260ca590c8cc620c7c3e8a2dfa6636de5cecb33066560cae301343ff0db0c996fe29415d75537ef8c4f1978c2d506a4c621174ccd449c78d1187c52da74c57c6

Download Submit
/data/data/weile.changshamaj.baidu/database/pushinfo.db-wal

Filesize
36KB

MD5
e528ef8865bc5e13d24e2d753ed2d6f2

SHA1
3c2f47f65c759eb9e1cea6c0503135cfa3e9577e

SHA256
652f70ed91874f342ce78dc26c7e122e39b45fe629d2e4f326c25d3b840cf5b0

SHA512
99e5fa3c7706e4ee75ec7fb187405e438463382106026d63115178f0ad548037001c6ee33e76a4d4a36be69bdcef1d3bdca07f3e3405e3cc1148c08f7cfdd01f

Download Submit
/data/data/weile.changshamaj.baidu/database/pushinfo.db-wal

Filesize
8KB

MD5
d540eeebe1eae54b3ab8478226a11bee

SHA1
0bab530d388455acd48e5dff7c6cbaa7fdc17278

SHA256
d9c9ee28d620014ddeb6685dff0baad6b63f470b027f3103625ff1c49ff05df1

SHA512
da602258f3583f460f9e4fac6f1c44cf74b99eca57fba3a3810ce5cf12ecbd2ab3f184f8acea97dbc932fbc3d4f550baabfb82b58d0e5c67e322b0a0cc39cfaf

Download Submit
/data/data/weile.changshamaj.baidu/databases/bugly_db_

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/weile.changshamaj.baidu/databases/bugly_db_-journal

Filesize
512B

MD5
96fd7f9f1a9298b31aa64ede1d7774d4

SHA1
8e76493d442567e33ae734fc9ec84c7cf6b75a88

SHA256
71acdfc8bc92477de3f6e485447ea090a598983f73a00c7204dc4ec0b0d2c586

SHA512
f47a9a539a4de9372499771ae459a28ef890d543fa518b0e898379a108382198476bfe9997dfb5dd07aaa409dcd9e7bea3bf79769a64133a64f5126f866263b3

Download Submit
/data/data/weile.changshamaj.baidu/databases/bugly_db_-wal

Filesize
72KB

MD5
944714cd6dc515c3dd54c154969478d4

SHA1
750e887137fc7bd150bdcad8b5d40f224cf3dd69

SHA256
87aba0e44e7288fe927d1eaf289f0e5e710c62bc6dc45963c49bf3975261f979

SHA512
6c731024e49b43addf96f243723b102a3a73a7e50f7aea93448a05fb918e3a31069fa379ea5218785b468f105a6e8f81f20a967c43162da682086fb1a14dbb03

Download Submit
/data/data/weile.changshamaj.baidu/databases/dk_thirdpay.db

Filesize
20KB

MD5
a2b5a3837739997e84d2772b2f5fe59a

SHA1
0da502a45aa21e27bfb3707b210d5650a7655d60

SHA256
262b3938de7ffed9aabee561791d09bdfa7d5975d9639fa7cbc05a9f54b19764

SHA512
5d4d5d0f6d5f41e4756b8a22286f2229679510d557913a1fcf833cb48b285558c48bc73310157719fd233f6ed696faa587bd2fbf7f71981c7e4602527e8f23cd

Download Submit
/data/data/weile.changshamaj.baidu/databases/dk_thirdpay.db-journal

Filesize
512B

MD5
9c2b3277926921d2472d7fbe290f79cb

SHA1
4700722defdca9f211e3a671972563bc663ae0f1

SHA256
b32bfb68a4d8559bfc3925336513a03340fd196118005d0861e733180f9a8527

SHA512
6e367d63a857a7413e45fa3760a854e24da4c1c4e8f978198efc3e05d3497c73d7623346d90b419022bd5e4da717267126128d38075472a40af8829ee8dbf442

Download Submit
/data/data/weile.changshamaj.baidu/databases/dk_thirdpay.db-wal

Filesize
32KB

MD5
b8f7dbcdaa9a6fd2be0f5b879b475c98

SHA1
a213fe8819d669a6180af279db0c68c148374526

SHA256
b7f1dba57522d542ce7e71eb1868d85e418fc6e1e28938af1c655f81753580b9

SHA512
94047645fd76dffc4054432f4e5a93c3050a976070d23c52ab5e727a1ac86e304dd14c3ea82f358e4908765d47165a512fb229d56040f2ef266caccc3d865a99

Download Submit
/data/data/weile.changshamaj.baidu/files/0a231bd8575dcf72.txt

Filesize
40B

MD5
ffd04987eea1238cd5a6181f2f7462c1

SHA1
845430ee7dee9d8591bcb2f12b852e310aec6618

SHA256
743a92ce3eb153a6230825766a5343e3a18a27b01cd8d8518dfd9accf1f7e7f7

SHA512
669a99603047315ff430f6b5d9d681f72fbbcbe2a0916e8c70c658d6060955a746af0194c2c7cf15124fc1e8bfdb31a1664d5246e018ff591f0efd55515d723f

Download Submit
/data/data/weile.changshamaj.baidu/files/0a231bd8575dcf72.txt

Filesize
80B

MD5
e50e20c784e806dc242c2a15723f2262

SHA1
a1194337064b8fe5cd79dd6e78d0bb87ab95dc1c

SHA256
02a0b6f1deb38f0c390ad6667ff12aea54a8e7f6329a7a50c05f440aad3e056a

SHA512
6c7a3aa47b8f40eabb373fb4e2fb6f69a9d239781b527905e5ef18d9082f10d194a61716e338add5b200dde009c867a5dec56f32180cafaaacb94eb4b2a1e6ff

Download Submit
/data/data/weile.changshamaj.baidu/files/0a231bd8575dcf72.txt

Filesize
40B

MD5
1d8a285f4fc9449a71cc685a7d9ca450

SHA1
76feee33118d27d90f6061e57e7499bb3897bd1f

SHA256
300ab5ce40062ec2eebfcc8a4092a44844c9010aad0d5419c21ac16d94099502

SHA512
fb70c2de77f5624fd79e2b583522dea4775b2b0d8d1e664416096a6307f63829f6ee5b9f1a9cab96768ead4875abc353ddcc55fcd36f7fe6673bd98ce685950d

Download Submit
/data/data/weile.changshamaj.baidu/files/0a231bd8575dcf72.txt

Filesize
80B

MD5
9d8325361ad260c7a3a1a74dd71f0b26

SHA1
f5946b2e60e31ec73c5859115cd1cdb4fe91e514

SHA256
0bb4b7052a05d52e1ee0d850cdcf235006073b73e96d6e2c6cdf7c25263fbeb7

SHA512
aa85dae7dc34f33369ba14e6c220d96bd088851ea69cbbabf62f7bb66b5d2f44cb647d9d81fa4557e7ca9d5d7d5c3f10493fd14aace1bda18981cc2a6b881c65

Download Submit
/data/data/weile.changshamaj.baidu/files/0a231bd8575dcf72.txt

Filesize
160B

MD5
777b10db3bb3d9b8112789fbac9681bc

SHA1
fb06d7d625b486931c7849f56003aff65e176ddb

SHA256
c34b4144abe817698965adc9ca802703eecf22af0f02beea5ba25c7d9b78fbf1

SHA512
50c496d3e8435c2227952f5c17dcc42f11d3a21736b2674d15692f8830ff4a30f444b749418baa9d5215097c714903ac1b68cb4bce78fa4258a7a359021e0176

Download Submit
/data/data/weile.changshamaj.baidu/files/2cb6687eb5__local_stat_cache.json

Filesize
25B

MD5
2d805b13f2f28dc3ca9bbcc000f49bb5

SHA1
9eac165b4d81258fd3967cde5cc53b53b1dabcb1

SHA256
c8a6624f390568f0ddcb9841336aec6a564460fdaf6624e562b32935b8956f19

SHA512
5db8c57bab36bcf9db698c1dce70318cbffc156dd1d1c1e09e5b7ba60aff07b598ebbf26c4bd8a2b03bd6e59ef2dde2d944a22a8d8a19ecc8378e83afb7c83b0

Download Submit
/data/data/weile.changshamaj.baidu/files/2cb6687eb5__local_stat_cache.json

Filesize
100B

MD5
fd7c6cfcd1d5b4ff507835d0be9ec225

SHA1
bb3e9185f91297743110ec96ac80912129d467fa

SHA256
7b266bf3ff0ce27c525b094fb95135a96ac4d8bbef2391db97d7cbcf91140418

SHA512
3b6f8a2e67d7f6a3a3d90db66a5b31208e5f2dd68a77b5d060c9bc4cf0d57105a6047cf53c1c3af785850e30adbe95872a3e01069bc15c25c218b536d1a9b9da

Download Submit
/data/data/weile.changshamaj.baidu/files/Q0VSVC5SU0EK.txt10dc

Filesize
1KB

MD5
0bdaf40c96b85de877fb2e687e90271d

SHA1
2e8b89f6dab6e36b348fe1631c36b6f321827310

SHA256
936c30d08c3f7b0b070b57cf0a93838e47ceafaea97e6d2d6fd08ff2f8c9215b

SHA512
3c12499157407901db6a92e3c7e3d9c0ef01d9a4349236f3254dde72524f9198a59946a9265ffb45775fa7b3a42b6f7d12a2df86c153d86294e705207673022f

Download Submit
/data/data/weile.changshamaj.baidu/files/SGMANAGER_DATA2.tmp

Filesize
45B

MD5
920b82515edcb1399719081a856d55ad

SHA1
eefef734d6a201c1ab79c4caa6cf7782bdcdc975

SHA256
5d2df1708baf38ad2f853c5db59a33b744732fabfa75bb5c1f753b04517586ec

SHA512
d32e26b1e755dccd5fab75a38f78701c912d05ce3cd9c885ae78fd6a22ca571a052439555fcf7c1d50214a56236551df613557c027525b4be4ff4643f716221d

Download Submit
/data/data/weile.changshamaj.baidu/files/SGMANAGER_DATA2.tmp

Filesize
108B

MD5
871717f8c6f6e9c166c7d76f87ba871f

SHA1
4641314e195cf02d13b8fa6627eade5ae8f2f901

SHA256
ae0219ed953560baf91c3ed0e1e21d7af160145241859f4dec6383ba880fd74d

SHA512
34df1b4d6c83f4fc0f84cc70a0711064712391c80a3fb160e34a2144469cea932eeec4f53c3522a3026e29c560420d93e9336d01ded65724d7672787a09146c0

Download Submit
/data/data/weile.changshamaj.baidu/files/SGMANAGER_DATA2.tmp

Filesize
152B

MD5
35593f37f1c8389562905f8458fe8433

SHA1
43a9a103e598b9a4194cfec4c550583faf3ec927

SHA256
afdcf7dabd24fad003954f286864cba9953d6e3ca2f1201fdee4d47f91870edd

SHA512
750a774bf4fec8ff8e2ca84abbb8551349acd37eb18672d248d44dec6afff06137ef0c31cfe4237486421d6bc211b71e364093f69b1dfb05df295d39a14e5980

Download Submit
/data/data/weile.changshamaj.baidu/files/SGMANAGER_DATA2.tmp

Filesize
233B

MD5
40e09ba2cc8d6489e53c0f5e0100fb53

SHA1
55f937b11667cc2426ea74dab45eb616cea02194

SHA256
29a26a11840cdb095cd1001d2a473c06394f4765ab9d3c08b5b665df60e5112c

SHA512
ca6cc497d3db5bd9be6e850516acb1d7711daa4ad81005e88dfa223aa53be725b0512ce14f7d2207c95aecb1f5cb549d13310a347d97ee24d63ca83a6c852dab

Download Submit
/data/data/weile.changshamaj.baidu/files/SGMANAGER_DATA2.tmp

Filesize
505B

MD5
ef651f5a8173ab05ec1e52fcbae6fb28

SHA1
c28e5943717182a7c466b01c6d543667479cc5af

SHA256
61ec1e9b43304e9337f8209fb479f883a45b41c1b5c49498b51c9fadce20fe4e

SHA512
322ab7ddaa3e87c1da09ed8d050f67d16d5e4abae54e7ddaacad6f718d41ab4ba5554955c5b8b9213c7e3332ee81c66fae845966f995bc563914180b0e5c8be2

Download Submit
/data/data/weile.changshamaj.baidu/files/SGMANAGER_DATA2.tmp

Filesize
5KB

MD5
cbae53c10cbfa7121721bf4d582f9e1f

SHA1
03ae61f714b6c80db32ef5161cc435fb2ffff58c

SHA256
682cc531e236d54dee148db58622b4a6491f6a9bdf64cbcc85de5542d26db471

SHA512
c60bd13e447f9e3e6fff879dd925d70272a13aefcbe6b1283979d60745d8d4f4a025c98eeace8e6664267edc2ffbdb852de18f0b3f1a6558a2c8fde50e361e2c

Download Submit
/data/data/weile.changshamaj.baidu/files/dc16afc6e326097dc8

Filesize
5KB

MD5
a86dfd7a465778b86aa21d5d5a26c7af

SHA1
60db617b6ed9313cc23f4b41aaed121b65a72107

SHA256
7256f1fb64cf5130f0e0810c8f5be73d46f881f38de5bc6405c92d6d21ce1276

SHA512
dd31946acd018c2e9b5e54c486ff5f3bd134c4bd1f2c2b3b957f4dfc82cf2115287b6e2ed8b3723ad86c0ce679a88467d2db8bcc0e5071563f6d96cf36907a10

Download Submit
/data/data/weile.changshamaj.baidu/files/localcfg.dat

Filesize
27B

MD5
befe7163c6f1f0eedd97e00e5ba492d5

SHA1
294af6b8e549f51ac35b4c6051b4c3dbbf1e104e

SHA256
a9215b2b7becbca0ed4c581268847c991526bb15065342ee664097f28c0d4b19

SHA512
acbacdf3b3dbfb9dd38feb4e10f5929c2cab4f02d01bcbeb93a57733c2ad26901ccf95ba7f283efb4c7373c871887736281efbad3d8b631a21968990d4de0ea5

Download Submit
/data/data/weile.changshamaj.baidu/files/weile/img_ewm.jpg

Filesize
19KB

MD5
aa0faae258af76655e188e4533d34fb7

SHA1
704ebe28d645a912b19ba8672a7575f64772bcf1

SHA256
c70c639d75ffa9d797dbb690d27fe10d7ebe107fa02e284b7004a50f6591306c

SHA512
1de2ab31f15d2310cc033537937299f5a79d0a45ba80688366b830d2531d225979f16a8711ed6f56f300f795500956c6fae22181e53e245fd8ef4ff2e90bfd4c

Download Submit
/data/user/0/weile.changshamaj.baidu/app_SGLib/app_1716346793/libsgmain_1522086942000.zip

Filesize
63KB

MD5
19a5feec8610183b93aa7ebca4c48802

SHA1
ba104f8cba45c5715af1348d4de26f269ea2e473

SHA256
d89d3c993fb2fc6661a9ee9ddd1b3c3316d09637e50ecfbda6d8057cba15b563

SHA512
7fd7871a3e7c0b0b0d2239e4a7f82251eaf9be6967b9dc1e151e33992c464e00e19a9bb8ccf210a7a3fd29a11cd2d00fc86d007f51282293ce2849114618f5e5

Download Submit
/data/user/0/weile.changshamaj.baidu/app_SGLib/app_1716346793/libsgmain_1522086942000.zip

Filesize
63KB

MD5
8c0e6c9b072ee3fb859cd999e8420de6

SHA1
5f34904635634c452ae3a79904674870ed7c537e

SHA256
341fe9a38aadb839142a9b17b20731ab069fec07eb72147480be9a7b370f7b48

SHA512
58ae839793f8bfd1fa0ba7f0d68c4a01fe56e2758be6325a1b64c69fce3e70a7d51418a0c5e1744dea9a7da29074cb3e79a2f838926c378f8160db0d0d6a334a

Download Submit
/data/user/0/weile.changshamaj.baidu/app_SGLib/app_1716346793/libsgsecuritybody_1522086942000.zip

Filesize
10KB

MD5
cfa67d2deab7aadfacb8be76c1505d0a

SHA1
53dc46374b5ea94cef438d6ffbac80a3324c20c9

SHA256
ab9a11092cb857625763791b41350389aae1f4b0d763a860bdd02ff89a74e7e0

SHA512
ccd97be5197536ae90f195017d4f480b1229667d2ec4ac513712eef6a54b3b3aaefb8d5a5d6cb0fbd80a0ee67d6de591cb72ed1b96725c9d7263d3af5b62bee5

Download Submit
/data/user/0/weile.changshamaj.baidu/app_SGLib/app_1716346793/libsgsecuritybody_1522086942000.zip

Filesize
10KB

MD5
e80ab66bfec10ed29e59a6c3dfa18f00

SHA1
8846e582e728c921addb172edf2e3ceadc002853

SHA256
613af3e67a8a6ab2f0b41a3c3ddee1d5ef4a5afef56827b4884aaef236a898f3

SHA512
7461e70ae717ab27f6ac8b43a25a0803e0c0a711418b414c4373b35b6886baa1bb9634eb7789b1bd5d0008a472ad1316140477ed0a9ef912d28f749b2c6c32db

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml

Filesize
111B

MD5
db3b8fb4e573c10f0da657466f3397a4

SHA1
97d7314d13817c7de1a837547d0edb0a6c77d073

SHA256
17626a6616063c90c99f4470d332c26b36d8faff27302ab251ea9c05c7ee7828

SHA512
9bb3880374eff02703cf48e587870141e9a5734e73d0f128824b08fcd4711abd01694a8ee719f1408f0fb753498983d879c0fb92c898c05d7b2df14e67d36a99

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml

Filesize
213B

MD5
da1330e3e20841f5f26f9ccd7ac109e7

SHA1
0c4fe95404a2b9222195d66d06eaac945c92a392

SHA256
07a33cc4f9cd71d1e5305e6e634f377f6c66a401a5195f06d51c1f5feb49e426

SHA512
edadfcbd0df289cb57607145ee03d85baa480b83a5a600d2a879e6e0008c0e6d8ff066c4cbe4deaedd1adc7e5f7c2319338f5ceb0d81ac3cdc57c58c711acf8b

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
111B

MD5
39dc69f8ee015293e171796ffc99dc2d

SHA1
9041f1e5c5883ca6c8ca39b5ebf1aaf9bcb50ec3

SHA256
4ef5e443e25f5fa5e8c4e8e0ebb2e84add4ce9819d6cd7e62ff990f837d3fff8

SHA512
f4fcb38074b812a3eeb72ae6bda571c6e9c47698da42e50be71652ad54cf7860f5130ce624043b75ab07a4305660518237e4fe7fe036455bbcb63ca5693f4090

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
167B

MD5
b89832b9287d21bf589e353f6ddc85e2

SHA1
206c0fed61255aeb000e4db4a2789a6a462dbbe8

SHA256
ebdeb5314eac7bc380d9176b08f58f4bd5c4d95f1eeb9c4b62e0a1014d8499df

SHA512
1d4163dfd52e4ce5a3e7461565da044eca782208289c43ced9405ad82c5c936eaba8fa2ab66fee61276040b49135bba2a55786e7d8769a3d1f3cef7d52476fa3

Download Submit
/storage/emulated/0/.com.taobao.dp/dd7893586a493dc3

Filesize
576B

MD5
5e3e3c8142113e45717a005348353977

SHA1
3cfc9886a17de44010166ea578b22a86c5ea536a

SHA256
df34bf83bde560ff21ac6726567d4ba4571967a14789d62abb9f7397d4f4d5a8

SHA512
562394ba22923756cc86032b578a2ec7ea114afd593fcc94935a678ac834637db939494953736048c272b14b9f78f6696f2ae00857d898f871a70888dfd08bdf

Download Submit
/storage/emulated/0/.com.taobao.dp/hid.dat

Filesize
96B

MD5
6f13b732c074e6fa627632d0479d6740

SHA1
a5a2e247fa4184b34dc332ca4441a0091f6ba2de

SHA256
e819da09da8724db0c4b62c469909671854d3e408d7ebfbfb7a33021fd8f0e55

SHA512
9000ed3f719dae14db1c8c570ca3870e5dfa495b6e7d9695ae8ea128f38c9e95691b2d2cad36c3c75b20c02267f09d5c9d775ba402cc26bc534656e6c1251086

Download Submit
/storage/emulated/0/Statstic.txt

Filesize
25B

MD5
068bc48dea4fcacfbd7e295713f89379

SHA1
8820178ff94d4ea6d52bd7c29e746780ddab24cc

SHA256
29375675d66ade7f904ac138567b0ca83b6ccca8b2d7ee9efba9017dfdcadeec

SHA512
93218a3ef71359c11f75d339d7659a799632d1e1b39377f4a81dbcea60f2128b56147aa00d949184061bf9625c75ec58f09345203de6f710b7a4eb06b080cf1f

Download Submit
/storage/emulated/0/backups/system/.confd

Filesize
28KB

MD5
b588e2490bcce471506ee6753ce4bf63

SHA1
3420e6a0337dbe618b2c16c66b86c8f0f2237dce

SHA256
f5cf0d292b2f3327cb1d33835fe05fd9f805090615df7e22341b1a060ce74e59

SHA512
f66c61ddfecad4d50cc8a16a03ef09b71033fb9ae24368ef9f2c9cef34f54324471c67205244ed9b729a651ba5d23b814b9f0c23a10d7e4317425fa4f98b1038

Download Submit
/storage/emulated/0/backups/system/.confd

Filesize
28KB

MD5
b0885d1cbfa9b95a39ff6f0b8e05c267

SHA1
ab3317ffe124f63f6953e845e920493d4daada16

SHA256
978b8572bb2e04d07542247053f6ac39258aa7badc90f24afa3df387f0073119

SHA512
00b98293ed770984e582db8af47900906c7c334c1cd5195eb7a77ac455a0f37f93bea72ce38adf6fd14651f32cdfda2160ec03920b6d8f289715bd7acc1d9eb2

Download Submit
/storage/emulated/0/backups/system/.confd

Filesize
32KB

MD5
fa8659431632b78f04c2cc6e56b740f6

SHA1
7e4a7d900d7c796b1b8b441a0a2c60eef347d306

SHA256
68743edb0d68b93105abe9eaa8cd8220389f0401e2b9bbd0575199b82826e5de

SHA512
80da6b9a31f03480598eeaefa1b3349a5b7df55ed8038aae1da713b3919d3aef12d78c6d6fbadaeca44e7b6cbedafe12212f44c5aeb83a66b3fd3505b724f9bf

Download Submit
/storage/emulated/0/backups/system/.confd

Filesize
20KB

MD5
048c73f536f234f0ad0d2fa8bdbda899

SHA1
dba2e666721e0b0988807b8bb3ce0452dad3448c

SHA256
f1a64586ce75e770e2f36a7ef6f7419e26ebb9e9e786df3c5adce50a196d2d07

SHA512
6ae398c682724f0008ce47cfc790a7ad3dd7cc801fb3a8a692d28da5533ea7ed830ea36933bd3e3219fc8cbade90f073c2c418611921bc7d6877d94b6745c4f0

Download Submit
/storage/emulated/0/backups/system/.confd

Filesize
24KB

MD5
55923621b66b89d2bcb3226796538513

SHA1
c24904af6bf2db5a2269f187e02c87ab669de605

SHA256
2cc715954d142a0570ae0076302b838abf36d79d490a57276d4abe86ee0f1fa6

SHA512
ccd5c705840da97b877966fc02acdaab17cc0370e291eb7b38a9dd94a9107300bf6b74353a9512307fce1c9166b1576732b326e313cdd8fab1517e9e2f278859

Download Submit
/storage/emulated/0/backups/system/.confd-journal

Filesize
512B

MD5
525b99a9d165dfa80e6faf6bae0760f9

SHA1
a14f0529453e48f9a03f6482da4977fe826b6961

SHA256
fff4733f2f60dd2f709b5b2f890125c118b4c200f6143ae4fac6f8d64fd49fc8

SHA512
00def836822b4cee3a6e0e31bdb0788bb5ba6db78d1541d16af48cf2a0cef545852752ec16019242baa25f967d007a6a23f55c8b41b1b7e8b58a50d59e65f7bc

Download Submit
/storage/emulated/0/backups/system/.confd-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
12KB

MD5
6ab68798300d7f561333e59188e2aa1f

SHA1
fd223d78ae3aa8a0c37b75173140884f899792cd

SHA256
8cac70966165e1edcad0604c10ff334a80e8fb51cadbd02a4c90e19898f6a58a

SHA512
e2eeccafe97fa3dfcaa81a41879faab1b355e5c3cdc8f21fed37c19de871d97fbea83f6db299e65ae2325efa717447e91f698f0585d4a5d0ddc69aa3f8572701

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
8KB

MD5
db885cca21ce61dd65f6b146deeff7c1

SHA1
74a74c094b5c42208f94db8399112703b539e47c

SHA256
990fdc22c7a7e0a4ae530e0733591889bf4c4687702388fdf2268fd75f2b2a55

SHA512
1f9e16825e20d7afb5e445b58ce9fa3e47a10484e32b70247bc0f7f22f07bcf60f5a5300d7f938b249042139113fbf105d56ac49cb98652754f729cfc716cb33

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
12KB

MD5
7be8803ff3b9aafee23b7bd3999e9268

SHA1
8e0b1967507e9b283a9d154ab4068dfb26d671ba

SHA256
4366a86b392b4a2ac9fcceb1de1509ec083a1ae31b89b0dafac1835d7e5634b5

SHA512
10ed3e5989f44b3714ec01228798b6ccd01d3b9ead07f1b9dae927d3de8230f450ffd49c059444a6b34da86af378452b7aa4a7adbc9fb9c9fc27afad709f2361

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
36KB

MD5
92fabec470550a28a5e180787f3e6945

SHA1
ba2e722d55551159b8dc6c5c5a7e72229827cdd2

SHA256
9331ab8ab470fb3d299ff3f4f6f688c0a98d5a74f6497c300345251756ba316a

SHA512
2887b10634327c0912b728e293b64aec29de1632dfb55a81c9038522e74e8bf3757448be4c2d8ab0355eb3f98f88704322f9fc5eabb461b2ec67d7b65b09d140

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
12KB

MD5
2eba59ec41141fa303a3da7fc147d664

SHA1
48752bb4d31d225627838c040b1408004008fba3

SHA256
517795cc141c30599a81fff6890ad44dae24753c97c335aa3e7b39b40b9a757f

SHA512
1d73a7a7f3d7ac6961dda5b517089113c3ee043183be63552f9970008874f08b8d4d457b72cef920b8d95f41d0430aa1e813b77dae030a4ca66a9437a777cbd0

Download Submit
/storage/emulated/0/backups/system/.config

Filesize
50B

MD5
1cd252f4102ed77c789cd095d382f9f5

SHA1
cf0456a9f5bdac04e47be51e4d0d287e28339299

SHA256
c7bf0ed8f6a2df0816bdb9099a938c82a71b83a19411dfe952757757277ed0f4

SHA512
b07e949d75cddbbc8f7fa88969f88005a58b7c6285a24743c94371668582c58a3a97ed5d61bfc5708cf1518de34c341eb380f46661953c3f35c3e1f7a0ef73f8

Download Submit
/storage/emulated/0/backups/system/.config

Filesize
25B

MD5
a79219519132c4576ca18d5abe33537b

SHA1
58eb9d5ca8b05210265b30a88957517a8cd9c6a3

SHA256
2d9ab3b82e4a2cc6d4c01174dcb64e63a54bf7e437b422b5263ca60d524ed7b5

SHA512
be4e1fd6aa01696f0d459a0694fc24bb453933a7f13fce232a81fc8a7bb3ddbb6d19ce64ae1f158b1a5c10eae8e14ea3c4681925ff6e103dc476eb3989826347

Download Submit
/storage/emulated/0/baidu/.cuid

Filesize
89B

MD5
ff5eeeb4ca88064f85309a4c6db98eef

SHA1
6445b5ceec846a9473d28f26996bf4333fcdfab2

SHA256
d1fcee89ab8d39aa420d1642b13b9d2c8faa95b6619d838b95b8875060680cbc

SHA512
f932c8f7ed8c0eda67a1ff70271731909280706b78c0d353fde7934c0403f250e935b8deff872e21f10882ef2d0b9c14284e79a1f2a078c1cd793288eb2894e9

Download Submit
/storage/emulated/0/yaya/asdf

Filesize
23B

MD5
a4cd864d89d287ae7c0e79e95c4fed1f

SHA1
160611de2d8fa2fe44a18c6805d4d3af7e1ac0d3

SHA256
fcf35621b4184172dd199a34e19bc3a61e01d5b91725852536097f4f9e07b274

SHA512
b220bce53fc35682139ec46ed65b7a965c33cc8a2a884e511b3fa2514dfa4ef41b044c42463109247056d8fa25505b5ff35a8e6b31e8a8f8c50d9f6f62601205

Download Submit
/storage/emulated/0/yaya/uuinfo/phone_uuid.tmp

Filesize
32B

MD5
3e6ff06ef6f42a174a9a31fb12b58972

SHA1
4fea90b4fa3f4d29a34c949bdd676ca3022f6995

SHA256
04b6441b01606cea64d9b6e403b85f26df0a9a4df520535ea6f6831793738282

SHA512
eb61697c4d61a769feca77a608fa950f85f3556684bd32536c1fbfa296290f010d3ef22e567ae4666a1c125784d3d5b4991e1e592f5e2a938e2839e932bc4331

Download Submit