2a548be0b878015a6b753dd590bdd39a35271c2d82df5a8a7be1117c457110d4

Analysis

max time kernel
178s
max time network
186s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
22-05-2024 10:04

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

66e1e50874d0163f8d951f9107f6c40b_JaffaCakes118.apk
Size

20.4MB
MD5

66e1e50874d0163f8d951f9107f6c40b
SHA1

f0e0716e97c3fdcd218f274a33b7b17cc8c715ec
SHA256

2a548be0b878015a6b753dd590bdd39a35271c2d82df5a8a7be1117c457110d4
SHA512

ec75b9ed779c9bb1b6739a22787a12de426e9a7b0c65606769724f69f358590936e1a02d9530b73ff769f60dc31b157e6a468930399dcd6cd352a3bebbb8517b
SSDEEP

393216:6sxJHmtb1LbqMKRY4Haj/a7IBtb349MLKW7QOAsqnJzeu2tn0Vh8ps:hxJ4ZeMg/7m349NORqnZeu2R0Vh8S

Score

8^/10

banker collection discovery evasion impact persistence

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001
Requests cell location 2 TTPs 1 IoCs
Uses Android APIs to to get current cell location.
collection discovery evasion

Location Tracking
T1430

Geofencing
T1627.001

Processes:

com.yxxinglin.xzid32690

description ioc process

Framework service call com.android.internal.telephony.ITelephony.getCellLocation com.yxxinglin.xzid32690
Queries account information for other applications stored on the device 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect account information stored on the device.
collection

Stored Application Data
T1409

Processes:

com.yxxinglin.xzid32690

description ioc process

Framework service call android.accounts.IAccountManager.getAccounts com.yxxinglin.xzid32690

description	ioc	process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.yxxinglin.xzid32690

description	ioc	process
Framework service call	android.accounts.IAccountManager.getAccounts	com.yxxinglin.xzid32690

Queries information about running processes on the device 1 TTPs 2 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

Processes:

com.yxxinglin.xzid32690:mipushservicecom.yxxinglin.xzid32690

description	ioc	process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.yxxinglin.xzid32690:mipushservice
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.yxxinglin.xzid32690

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
discovery

System Network Connections Discovery
T1421

Processes:

com.yxxinglin.xzid32690

description ioc process

Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.yxxinglin.xzid32690
Queries information about the current nearby Wi-Fi networks 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
discovery

System Network Connections Discovery
T1421

Processes:

com.yxxinglin.xzid32690

description ioc process

Framework service call android.net.wifi.IWifiManager.getScanResults com.yxxinglin.xzid32690
Reads the content of photos stored on the user's device. 1 TTPs 1 IoCs
collection

Data from Local System
T1533

Processes:

com.yxxinglin.xzid32690

description ioc process

URI accessed for read content://media/external/images/media com.yxxinglin.xzid32690

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.yxxinglin.xzid32690

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getScanResults	com.yxxinglin.xzid32690

description	ioc	process
URI accessed for read	content://media/external/images/media	com.yxxinglin.xzid32690

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 2 IoCs

persistence

Broadcast Receivers

T1624.001

Processes:

com.yxxinglin.xzid32690com.yxxinglin.xzid32690:mipushservice

description	ioc	process
Framework service call	android.app.IActivityManager.registerReceiver	com.yxxinglin.xzid32690
Framework service call	android.app.IActivityManager.registerReceiver	com.yxxinglin.xzid32690:mipushservice

Checks if the internet connection is available 1 TTPs 2 IoCs

discovery

System Network Connections Discovery

T1421

Processes:

com.yxxinglin.xzid32690:mipushservicecom.yxxinglin.xzid32690

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.yxxinglin.xzid32690:mipushservice
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.yxxinglin.xzid32690

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422
Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

Data Encrypted for Impact
T1471

Processes:

com.yxxinglin.xzid32690

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.yxxinglin.xzid32690

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.yxxinglin.xzid32690

com.yxxinglin.xzid32690
1⤵
- Requests cell location
- Queries account information for other applications stored on the device
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Queries information about the current nearby Wi-Fi networks
- Reads the content of photos stored on the user's device.
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4257

ls -al /storage
2⤵
PID:4314

getprop ro.product.cpu.abi
2⤵
PID:4405

com.yxxinglin.xzid32690:mipushservice
1⤵
- Queries information about running processes on the device
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
PID:4378

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Execution Guardrails

T1627

Geofencing

T1627.001

Credential Access

Discovery

Location Tracking

T1430

Process Discovery

T1424

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Data from Local System

T1533

Location Tracking

T1430

Stored Application Data

T1409

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.yxxinglin.xzid32690/databases/HlxFloor.db
Filesize
28KB

MD5
1deb6b895a2280f63ea2f3783f0a5ebd

SHA1
c01eee51a200d2007d3972b551e2515fc8f96d95

SHA256
c14b81f1de9ea7414f9ab576df19d63c1d4f22750ab37f0800a7a0ee6a15a70d

SHA512
269affd56d83a323141c44f786128a60d501d4e0ede0c4b7d9b5757a2e40851872c801dc1355c62c0607b95b1e42e2bf0b824d0230e1455655d1bb020c6a45e4

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/HlxFloor.db-journal
Filesize
512B

MD5
e2a8aab4503289af7a0812206108bb27

SHA1
40be083c59aec08bb26bc2330389a9d19aceaded

SHA256
82019e293f129d747f920fc681c94c61943b7e78a531011b781ffe5457aa142f

SHA512
e5859b8768b390234207a5c8a19c297560d4eb2390a5bd4fa4fe7597dc18be2cf70cf7657be945b3611ea82c53787b5c0885a72ec6672c4c0330d986bf9b06a9

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/HlxFloor.db-shm
Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/HlxFloor.db-wal
Filesize
84KB

MD5
59a69e0bbc72d6b8ed56bd9ec388c95f

SHA1
31e1acddb843b3fee982b3b798be8e4b3d6d01c2

SHA256
49310a152c7953239c95508d74aa86a4e916c16fdd1b18f1af846af28f925623

SHA512
64c21a9c18284c316d6d13d9f9688fd3283bcfb58f3a0762ebe25ab650332b2e08a411b030b7f452ecc23c7889a9f0ce4d14dd1f242753586499ed5ec299b02a

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/hlx_wifi.db
Filesize
4KB

MD5
b5459e38c5c797d05582e3809bbaa0b7

SHA1
451e853f11c77b1c6c36439ed53f92fcd8dc3b52

SHA256
ffd7ffebf544565841d880834e1d8d35aedb62c24b8d62a55c42c1a47cdacbe2

SHA512
56ea1f4b211a32278b0342f91cdd76f3652d5e10f4f537c6dc95cbb65be0d4b43fdd4992ae47798b1ad40779cd1c6face85fab1ed385a377d03ec57965322993

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/hlx_wifi.db-journal
Filesize
40KB

MD5
e926f96ef09870da03697b9d3e56e96a

SHA1
ebd3fdbd3986c0b4d5b7d00fb64a12b62162802f

SHA256
df4fec64feadaaa46bd4439ce1a1cc546c48f66926dc6b77df178f931ef7810e

SHA512
b4a0ead376f02ad7109f664ee8521b4d3e919b4b683b34a19b1382c059f16dd178760803df589c46303e7086a36dc7e5d222a40a3742da73a4dfd0d8a2c15e7d

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/hlx_wifi.db-wal
Filesize
28KB

MD5
d976d5c2d03c054ec44e0c9c07781d3c

SHA1
21aab03e8fa5e04158f3ccf242a7c7344d008009

SHA256
2bd08db4bfaa19f0dc6714bb48d3c6f67c812464e1f47ad3d61af25683f201a9

SHA512
732c2a20071c0491913348a2828e344bec165e734f5d7e254b00da1def58e2e1b490e3030883ae55f115206ecda6166a1c95f460bac74314f77056cd1d59c633

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/hmdb
Filesize
12KB

MD5
3fe30614d7e0d11db870b4624f6c50e0

SHA1
053ff0fc621ab40f2afeddb3e7b4a73ee41ec533

SHA256
67c532f0324228dd33b445cd399c1426e3a0e0cdc7b9358c66b402c5d40a838d

SHA512
c7c09e97a408e88aacaf8099ad4d1fa604d58113393500a384eb3c2eb7c3c105af41314934b86eca2f088045cbab5a20d768bbb295448dc1ae6cb6c3f59821ae

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/hmdb
Filesize
20KB

MD5
df23dcfa6354807eebbb8ab838c40f5c

SHA1
6c7c2a2f621ff59a0819dafab5b4afb48ac6e266

SHA256
320d4c4be1d74345d9769b7d54c1939ad249f48ae3085395fbcb77afe5911eba

SHA512
ed170826247ecedd99bb8d9f4a9948c3716fce73e4fd53810a2c0cdce1856e88829dd7277cc148ec405717bfe44c0e0696b9a1ac7944ae1ab487b44e12cec11a

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/hmdb-journal
Filesize
512B

MD5
300fa7e46c04785d9425c8f14da23b15

SHA1
15648742ff5d61763f2a3e9323a0d5bdaa1c8837

SHA256
5257ff4cf33562df7ef9b4f27df6c0b30bd9292a4c5b913228fb196e0c8f1628

SHA512
d3a8c46c32a462434bacaaf1f92cf30c9656b7d811a6037d2b054ecf5befad19dc77a5e4ce0de92eb85bd48d8623bfa0083f08c7f55c2c4b9945e517a4723dd1

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/hmdb-wal
Filesize
16KB

MD5
61243d8352335924e8778b4b34371e62

SHA1
7c2692fdf73b0477d77576943154780ddb477ed2

SHA256
bcdfff42b8aa4c83c2145e5527c84274922a7ce3b15d4132ca490341c9a399a3

SHA512
f5cb8de2d20e50fab027f6ee7ec60e31357d1d0539be66855fc503deb534f21714661866d6e559b9153efb782692a071b2af4e29571e6b19e539243f1392e8c2

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/hmdb-wal
Filesize
16KB

MD5
e629bb439d4c76170cb26df50ebcf8ec

SHA1
e18eeb8703db9ae6df9705a610d5e0bf60585b8c

SHA256
016b64c3fbd2a1da1d84eecce7561508e23ada929ae088b2756745935ecaa41e

SHA512
7e7df3c55e1df06334001e632f630ed5b7cda9e211d3136b4f7f9fb371bd35005bd5642009b7d30309d271c695c10c4522f68101a86073091a125608ae943ca3

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/logdb.db
Filesize
36KB

MD5
a7b5debf648af8527d38065f285c6754

SHA1
ad8513c878ca1483a2472c7f8dfc8a416418517e

SHA256
0d8f1987d41b042ee7aa1ae97d1950a40884ff4ed620fd02371017160e50eaf5

SHA512
c879b912d723e9c382e547f605dea4d77830d9300c3cdb1a14c2758cf4e895000c7ba2afe37584ed2fb94a9893e8ff47bdfda4dfbf2dc47aca75efc5d28984e4

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/logdb.db
Filesize
20KB

MD5
fc0b7f128d85fa2648e42abcda02d1b9

SHA1
dabbad55c2de63a173960b9375dcd91c1219a00f

SHA256
9a5914b51ffba38dd16344f10f25039adf47bf208fdbec8217dda51a5ad78a98

SHA512
62b54bb44cc12ac538450e3c2d0de9953346b097b5dfcf9b0d0a25393ccc11a36a80d3bdfb9bd381ce702f919e5fc959fc7caf7385405b113d6adb58b9c3ee75

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/logdb.db
Filesize
36KB

MD5
60e918a66670488ae5e111bdcbcfa95d

SHA1
ee81e2f5ad9a7301adfce5999095370e532a43d9

SHA256
0126f776c2c01bb621001c4d80787b706902fa8fdd89fd1f062d063ec74d5313

SHA512
1abb9311fce204649d299a19efab820981c427a8f3778a9848fdfe99aac19fbb3d62bdc4f5fc93bad66c090d198e9db33c23066041207272f2942272167796d2

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/logdb.db
Filesize
28KB

MD5
ea8985a75b326163e0c57f365935a741

SHA1
65ffcd52aacf9bcdb776149626cfaa9c9556f147

SHA256
b096245a8bdabebe026ddc838db0b4f9eac5f0219101066b318c024aa3a50421

SHA512
a8a6489f1825e71a73d4d96d27d0759b410b78684c190511b2b98ed4741b18cc6d03412ac994bddadb862c5dbc433a2e7ac34419ee50d2b0179933a72866943c

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/logdb.db
Filesize
28KB

MD5
959177b652430ececcad3cebf98ab4b6

SHA1
e10289fea59894e0f876657d735314b46bfb9f3d

SHA256
da3b572632962dc0e1536124c3eb87d509e05f72d7f734d81816593979d4d03e

SHA512
6389bc2c4092da1a7bfa969e6d855a91ab840a9b358b5205428fc5de5e8dc87c7369d925c16abda5d409e54c3c7389c9ce63b72376d0354a3a7815da310aa551

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/logdb.db
Filesize
28KB

MD5
1bcf7ea3df9f56826c6621c60a89c483

SHA1
88b9087df3d52fcc9230c3ec4cbb03b8eb232015

SHA256
0839d4740f40fba73c72e085271b2e635c296ab23ceac4567f83aae81c506054

SHA512
e232ba60f8db0a9521424f126f8839fb291c70a05b7375f6250fa5e9eb31661efbced4649305c01022d11c031d666a011d4a9c654a94c5bd6cde5ab3abfd26ac

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/logdb.db-journal
Filesize
512B

MD5
fff2d41be8b6af56c32b4aff34cca038

SHA1
fff615ca5e10611cc11c14861c0325ca775c6ff1

SHA256
48a59bd9145799ac8abae9d8c1286a2902f9a386086fd07637f4e892859891ca

SHA512
cfa4151d773519e7dad4c649505a5a26227c9d32817d96b38d6db8a43e03f5af6a7348dbc4446c9e7a43c0007f102852288fec2b3a9e02a44e33babeb84cfc37

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/logdb.db-wal
Filesize
48KB

MD5
f8dbf60a386c08c5361705a090325155

SHA1
101ea30a3022c67b38cb25064380fbccb250a5c4

SHA256
55fb3072882f34944801bb293636d7a20679ec628789addf9489f6ac51de43f3

SHA512
a5c301860be950ab19efa8b98840cf4c02ccf88369b2d3f974dccf888502962d6313e3d9d7a243775bdfd59aa68d5aa28eb474899749a0cdad931dda983eeeb3

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/logdb.db-wal
Filesize
8KB

MD5
562f3843ad48a29a7413461f52dc0669

SHA1
02846599eeae8be22afab9037640eca2f659a90d

SHA256
297d0d5ebd14fc6d97bbc36dec94c7ebf6a5270215ba60fd4e9dbf20b1f0ab83

SHA512
f577b51b65ea9415293063c910b8354e52f10c638aca32497d86ed2f09e74420f7db75f5f54066a4d504eb48f264a1ff49c5cf8cba3f2027727bd726f7c831ad

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/logdb.db-wal
Filesize
8KB

MD5
c23be52b28fb112251652e7b1b687023

SHA1
ae5df5832424b0addd8e647740f09c436560d4ec

SHA256
089c49c8c5a0cb6d274e79fe171bcdcf7cecd89312f8c25c5eb9d5aa818c3d9c

SHA512
eea0cbd84d1bf78d7cf8f50f873480496f788bf50b319417979c15470e39c03c5a2d69cd7258939689b15d9b906ce160bfe2f5c1671a9ad52dd5fce5ef002023

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/logdb.db-wal
Filesize
8KB

MD5
e4e5c5418688809cb3673f674363c99c

SHA1
91e89455b8475a1f3465d054462f4318408da213

SHA256
6b4471e15b8b5baa601b52e335fa8d2624ab04577d40e7ec733f7dd1e5f45b0f

SHA512
3c04f717798e9bc8eec132eb75ce183d433db915bbe7cf9bc6859f771ec9bc74e6f187189aceb4b77e7ae64a9a3e76cdf5f1fe9593585a1eb1cb5a628c6086a5

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/logdb.db-wal
Filesize
4KB

MD5
a8773b13931a67154aa5e07d1502cc38

SHA1
0a6897fe0987a29e36f63d5203bda8a1d00b6a14

SHA256
bdafc84cb52d8400085d6c64e0d979b0c619f41febd913cdf58e4401b9a12f50

SHA512
58b331e5fb3fb4e34cbf959de15603d7b064fc0653e79fe653e2ab72fa6fc3cda64fdb4a84f5e987716856a4e6e417a7aaef697374088d9b98091fc31743bbae

Download Submit
/data/data/com.yxxinglin.xzid32690/databases/logdb.db-wal
Filesize
8KB

MD5
5c378aebb0e638e8a4b409005ba0fb58

SHA1
d5298308f3b909746cf01855580925488e846313

SHA256
295a3a53de016cbef37bc7ee5980465a98ad53e2a9db4abce8dbca9fee298e5b

SHA512
e76c3f6d0d5b3da0f9ca328c7bff7f8a3c1b7d05e789f07d21ed33baf1b796975a3485eee5e17e8dc1469be12beab54a3792a41b1d8af8e936caef71b2106e3a

Download Submit
/data/data/com.yxxinglin.xzid32690/files/a/b/302ba74a656c04e34a61632854136ab2.0.tmp
Filesize
564B

MD5
af41607ec0967b885f5126f0d62e6a30

SHA1
e9a2afa70fca972c0821fc8200bea6fd8c2e8f8c

SHA256
576cdac49e6c736dfc75fbdb90ac97900b22a24e1d2c5a8fceaed6c30845eeb7

SHA512
cd08cda970faec1ad03db2b88b23afdf9372543b0c18571e6ae0388bcd7ad9d4cf91bd605c5860c0c5d95de9847d3005c23f9357c2a2f4d6e01ee3e3ecc13afc

Download Submit
/data/data/com.yxxinglin.xzid32690/files/a/b/4c984fe24161907e5b5b9423ecec3163.0.tmp
Filesize
564B

MD5
d12f70ed6ba908749831c0d67cfbb8ec

SHA1
290c3d233dff51933dcf130cdc1b5b75b9b07f69

SHA256
e4807657150a7e52454d8fad5e9627e2ff541f8fbc93967ca4907fdc355bd615

SHA512
44c9d9ef376fa51808c1fe54fc3587d4b60e2195d3df544372c3abb1fc715d517a3dcc6f85a0145f0a07b57c47f6b7d716e096b5f8da069ed67f37c149df8003

Download Submit
/data/data/com.yxxinglin.xzid32690/files/a/b/journal
Filesize
113B

MD5
adf74c6eeb18424ae96792f31795a85e

SHA1
2a1791759434831de0bde90fb1016ae02fb44875

SHA256
9dfe39523699289bddc58b5d35346e131916607ca6cba18336133700429c065a

SHA512
e39604cf92527f820533f60fb94ec3bce2a75d5192e9009bf1218b6a570fe53c791a0d23860ffe33517431d00d7e98763f9c930992b68ef430a9d7f72ec0a5ec

Download Submit
/data/data/com.yxxinglin.xzid32690/files/a/b/journal
Filesize
38B

MD5
5e35c852bb1cd4d3321c28193e135856

SHA1
27b0569d4b298eeacb67d0399428c0eae5490b79

SHA256
54fe2f86841cff94835c1390c315464e40258c1b2486bda31251e99c29e9d364

SHA512
3ca12fb5e47ca8b77c75c23284719ee1aa8edad4d4124ccdb9c9e8fd21b2cdde4e4425ef9a6a31d41eaf0962345dd09ebea0664ad841bb97b9e70db1adb76fd1

Download Submit
/data/data/com.yxxinglin.xzid32690/files/a/b/journal
Filesize
233B

MD5
6d351b6304fbcad13cda87f35f526526

SHA1
588f66883c423ad46313c8172d1e6a61c3068635

SHA256
23dc799ad608006575a87319021d95b098b74ac1b5133904da5840db47c00022

SHA512
b11f995732ee68911e3ccfed55a046e6dd0e6bff1a123e33ca7b45b99ff1c20d0913cc54e9d905de4c9f66f3f956f84ce8f446fb4b78c604d2c7a8ca9aeb228b

Download Submit
/data/data/com.yxxinglin.xzid32690/files/a/b/journal
Filesize
38B

MD5
6331c0b887554a0967a49f6bf18ae6b4

SHA1
6e8202bda4654e04615bb35b251485fb6de9ee8d

SHA256
1bec914289d4ef5095fd7c0b3dd743eb3b715d0d9c6609136a6bb6e1aae62d43

SHA512
e3db3fe673650074d1f2ab8b5e3f4e3a010360aa4fdc841d0ce1d9d3051ceee62023ff966a495843199c29cd136c8c56a2afa6a156e92e14163479b91d071e5d

Download Submit
/data/data/com.yxxinglin.xzid32690/files/a/b/journal.tmp
Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/storage/emulated/0/Android/data/com.yxxinglin.xzid32690/files/tbslog/tbslog.txt
Filesize
16KB

MD5
eb32a9fce23b3fe09bed267d8bd2f1f2

SHA1
bde4cf11c7292970bb0104cbfecd3615d81390e6

SHA256
e9c81aca01e7db64adc1e55ea8afa8b395fd7babe0883b819a09fa85b1df4cc9

SHA512
ca907cb96bd9822d5f84481207c8f91e3549ae7fe9140705e7e70eea0181e77144c6446b1517060a6eb7d4bf5ccdcbed0fb5cdf5f6e88ad1dc8de3792fdd23f2

Download Submit
/storage/emulated/0/huluxia/floor/logger/HLX.mmap2
Filesize
150KB

MD5
06ae8a01d80da962c7987c264af64cec

SHA1
63a497994321f254b535a846ce89f076d4e378ee

SHA256
0c5cc90b079d0d9c1ded1376357d23a9782a704a83e01731f50ccd162e246492

SHA512
8720928fbe7cf8351c9dc45cb1a9c8243939c7e3c9c6957d24dbe18c0819d05ea7475e3953018f0365461fb2987ad68d8ec9f59b03aef3adbd3e4ae8ebbd0427

Download Submit
/storage/emulated/0/huluxia/floor/logger/HLX_20240522.xlog
Filesize
1KB

MD5
36521589bb4b5c2b12805ee381421b01

SHA1
32358aee3dd5b947298eb8815ccf3da94610a002

SHA256
917000e975ff9ebc697d7963b08170be7bf584fe569c0f690ce83a24c1afacac

SHA512
40328667a7c6c6dbfa113ae6f988fa8bde69e467c49268cb8d33f89c624a96172c4646faa6d4ad59da0ce83b888fc75e7a5b02e2561f8e087ab6c75e22360b7a

Download Submit