8cdf6ba157bcb04f8ef5ee5342f36052fee482febc4ece67dbcf03e52080ecda

Analysis

max time kernel
13s
max time network
138s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
22-05-2024 09:34

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

66cf21252166927a4fc28dcf395a0ed5_JaffaCakes118.apk
Size

31.1MB
MD5

66cf21252166927a4fc28dcf395a0ed5
SHA1

80397c13988e96d6cc67b0e84db34d05ee6e942b
SHA256

8cdf6ba157bcb04f8ef5ee5342f36052fee482febc4ece67dbcf03e52080ecda
SHA512

6cf761826af8d2a7915e0a70efa16e3f083afb4fa9d802ac15cfd9538076db0e663d6d3030fd5922bd0eefdd35c29040a7e5a28cf0f6b6e2d9211831001e4657
SSDEEP

393216:0v9dzbTtHvLkWYyDUB/QEInhjXWKkbyi6Uwoi19+wIk4bCyWMPotBPu4qNDPAoLf:Sr5YWbDUB50hrWyiDDi1tqXot/wDz7f

Score

8^/10

collection discovery evasion impact persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 1 IoCs
evasion

System Information Discovery
T1426

Processes:

com.android.icredit

ioc process

/system/app/Superuser.apk com.android.icredit
Requests cell location 2 TTPs 1 IoCs
Uses Android APIs to to get current cell location.
collection discovery evasion

Location Tracking
T1430

Geofencing
T1627.001

Processes:

com.android.icredit

description ioc process

Framework service call com.android.internal.telephony.ITelephony.getCellLocation com.android.icredit
Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
evasion discovery

System Checks
T1633.001

System Information Discovery
T1426

Processes:

com.android.icredit

description ioc process

File opened for read /proc/cpuinfo com.android.icredit

ioc	process
/system/app/Superuser.apk	com.android.icredit

description	ioc	process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.android.icredit

description	ioc	process
File opened for read	/proc/cpuinfo	com.android.icredit

Loads dropped Dex/Jar 1 TTPs 6 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

Processes:

com.android.icredit

ioc	pid	process
/data/data/com.android.icredit/.jiagu/classes.dex	4258	com.android.icredit
/data/data/com.android.icredit/.jiagu/classes.dex!classes2.dex	4258	com.android.icredit
/data/data/com.android.icredit/.jiagu/classes.dex!classes3.dex	4258	com.android.icredit
/data/data/com.android.icredit/.jiagu/classes.dex!classes4.dex	4258	com.android.icredit
/data/data/com.android.icredit/.jiagu/tmp.dex	4258	com.android.icredit
/data/data/com.android.icredit/.jiagu/tmp.dex	4258	com.android.icredit

Queries information about running processes on the device 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about running processes on the device.
discovery

Process Discovery
T1424

Processes:

com.android.icredit

description ioc process

Framework service call android.app.IActivityManager.getRunningAppProcesses com.android.icredit
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
discovery

System Network Connections Discovery
T1421

Processes:

com.android.icredit

description ioc process

Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.android.icredit
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
persistence

Broadcast Receivers
T1624.001

Processes:

com.android.icredit

description ioc process

Framework service call android.app.IActivityManager.registerReceiver com.android.icredit
Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

com.android.icredit

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.android.icredit
Listens for changes in the sensor environment (might be used to detect emulation) 1 TTPs 1 IoCs
evasion

User Evasion
T1628.002

Processes:

com.android.icredit

description ioc process

Framework API call android.hardware.SensorManager.registerListener com.android.icredit
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

Data Encrypted for Impact
T1471

Processes:

com.android.icredit

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.android.icredit

description	ioc	process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.android.icredit

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.android.icredit

description	ioc	process
Framework service call	android.app.IActivityManager.registerReceiver	com.android.icredit

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.android.icredit

description	ioc	process
Framework API call	android.hardware.SensorManager.registerListener	com.android.icredit

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.android.icredit

com.android.icredit
1⤵
- Checks if the Android device is rooted.
- Requests cell location
- Checks CPU information
- Loads dropped Dex/Jar
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Listens for changes in the sensor environment (might be used to detect emulation)
- Uses Crypto APIs (Might try to encrypt user data)
PID:4258

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Execution Guardrails

T1627

Geofencing

T1627.001

Hide Artifacts

T1628

User Evasion

T1628.002

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

Location Tracking

T1430

Process Discovery

T1424

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Location Tracking

T1430

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.android.icredit/.jiagu/classes.dex
Filesize
5.4MB

MD5
6142e6cbd39ad92eb09c7122de62a8b0

SHA1
4343a0cb0d734136320174146e54c027bb56c6b7

SHA256
caed8823e91507fda8ff1ae7cdf8a1189a98eb696e78ffdf9249d04fc389ee85

SHA512
5485ef5657c94d7dcb56efc1c0d8d4f9ad6ab875f143b7b66757841562e777711260e70a1d503d67ce0d08d8f73833ae5df7211a0850473377cf34f1c0f57e3b

Download Submit
/data/data/com.android.icredit/.jiagu/classes.dex!classes2.dex
Filesize
5.0MB

MD5
6f40561909bf738531ea52f3708bd63b

SHA1
a53a4fbe44b37a3fbde81e975288c868f64aa891

SHA256
22c75f8ce8340dd7a3944daa4ab4ed664914fd5e4ea62615bac77208a1088bd8

SHA512
498c75a65eb3e576bf9122bc708df96b2437ff225c54ad2f9f3940539cda2ec85804e597607e20462dc1752ec253bd3b721a31daff2c8bccf6a0b15622a03f60

Download Submit
/data/data/com.android.icredit/.jiagu/classes.dex!classes3.dex
Filesize
5.3MB

MD5
8a61fa4fc17afd3654952a1deada03a2

SHA1
f52d88be1ca6b46b432d1cc0539173057080c813

SHA256
b33ab1b5b0616c501cdbe4aeb1ef457ccafa521c0b57b0b884e2073d8022505d

SHA512
b2bff0b37668d3b48d3f74fb5e59753e62b8571cf0493579a2b167ec5fe3a266522a70f9ca4104d1bff9b112cff502f26613969a4fc8157ab7bc8ff15b3f08e6

Download Submit
/data/data/com.android.icredit/.jiagu/classes.dex!classes4.dex
Filesize
2.6MB

MD5
e8e76aa362c9c827b0c995c45ba32379

SHA1
69fd055ccdcf0c84e1cd0c2c3bb9a266e2a26395

SHA256
4a67f098ebb5ae4df7340f78c976273c900d4f8cf7c37f60af22d10c0f1bca46

SHA512
5727e7709622b8691818fc87484f728cc1176de2bc9075ab6b8fab5f100ea3358fff6a6c2af1993d771590da3ccbfc2afaa5626d1f0c9bec952a735268825863

Download Submit
/data/data/com.android.icredit/.jiagu/libjiagu.so
Filesize
496KB

MD5
f07656a2f51ecb23edc102003c32b764

SHA1
3ef18f74b609313887b9e825c56a54b5a9eef20e

SHA256
f6847402ab69102f8495aac58b9beddde9a71dc52470c5de17e382eec2a6b913

SHA512
34b337d2cf98ec3009f80ff299e43984a1c911e5f9eb5942a915915cb7b5b591ffc9f1b79a7989534c2583a703a3f0857e74be68cdd71388f68d5bef354f7238

Download Submit
/data/data/com.android.icredit/.jiagu/tmp.dex
Filesize
284B

MD5
f1771b68f5f9b168b79ff59ae2daabe4

SHA1
0df6a835559f5c99670214a12700e7d8c28e5a42

SHA256
9f8898ce35a47aeafced99ea0d17c33e73037bb2307c7688e50819966f4ae939

SHA512
dae27d19727b89bec49398503baa6801640540355688dfabbe689c97545295c2c2d9b0f0dcd7cbc4cfbf701d0c0c3289e647a152f49ff242d1ecc741efe4145d

Download Submit
/data/data/com.android.icredit/app_SGLib/libsgmainso-5.1.88.so.tmp
Filesize
248KB

MD5
bff9eaa08d81f2f8eb1546a964096cb1

SHA1
94d3504010378185ea0bac0118a746a6fc1b9df6

SHA256
bd37e963af0a30fb7ca870abbb49e722dc0c8e49376ffefee5f894d9c52a6cbe

SHA512
89ef325fab0d930f92fac4f464c9050015cece64778680dae9a341dbbaba80cc66f544ffd5e72139f42eeef23924706526a65b8ca613e6e1201677ca5b0f9d62

Download Submit
/data/data/com.android.icredit/databases/MessageStore.db
Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.android.icredit/databases/MessageStore.db-journal
Filesize
512B

MD5
2ba27af5b4eb4d3eb3e13109a57cf92d

SHA1
787f07d3ae5b7b1775668c72ce0020cea22b63c6

SHA256
775f5028de51092b402f6e3dc928ac0c326324e679f50958b43b2430d722c697

SHA512
0d06b55a0196a1d723b9bfab4d94ab11e1145d7df1b25f368c26dcee6929f1c3c37a3813908e3f993ba84677c8e53ca955d519622adea8bb0d92f97388119ca7

Download Submit
/data/data/com.android.icredit/databases/MessageStore.db-shm
Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.android.icredit/databases/MessageStore.db-wal
Filesize
48KB

MD5
229a33a243af54351bd534f1e4f7c466

SHA1
646a0290854dcf0eb0540114988fee0df586ad8a

SHA256
6c656d4d410e5afdb94bbbf02c4708e13cd245b95378c6950b7d08ceb43a36b6

SHA512
2e14e697ae6f7a05546c3bfa6bef71d5139a4eb9b5cb820fa8988e9e0cba7f6ed0b0c9ce6e7df50bba7ef38994111e88e0d0c3bbbb20e40767dfefdd8f21e43e

Download Submit
/data/data/com.android.icredit/databases/MsgLogStore.db-journal
Filesize
512B

MD5
0a548a47b30ec229f0574a60792e925d

SHA1
2c8c4be77a568d75482273d133860deee52f6c1b

SHA256
6bdc12a5e832ba97bfde653543a9f2a6016f5e16978a500991a19d79a79dfcf5

SHA512
4d1c424e6955de464ff3e4d7b37ba020bfdd5b81e6e24aad0f9b49ce7fa6c3cc72b7ea075b96857c866ce129e3d4625a2079b533448cb578a16266728f044269

Download Submit
/data/data/com.android.icredit/databases/MsgLogStore.db-wal
Filesize
68KB

MD5
3aa4f8dd70cfecb5fba21acbb2d26e35

SHA1
f0955fac49ee6f963ecd94ff46c4131cfd597ee9

SHA256
35e4d7791d0266d3533b321aa36cfd43ecf1ebb9691ebf023fce0ea53806aa1c

SHA512
3ce4c29246cbc01b4a113cb83b93edfd913c6523a4f853fbf9455ac327077ebe4b5e06b110400c2d8ec7cb79f4bc0b5a0ffb9096c0309e72c1b7134db8082c65

Download Submit
/data/data/com.android.icredit/databases/accs.db-journal
Filesize
512B

MD5
f02f8b9c142c42e7b2f250ea0ae1fc96

SHA1
121d205e6d68f0fcff34902d5b4cd35aec67d488

SHA256
29c867e3614c51f5c8fc55582ea543e48fc3f7de6b8d6f8e03602d620be71828

SHA512
95e4098b130940d715c4dc53ee0a319702cecd4c79fb6a8b721a55af1cf0fc9d5a49550ea0beeb9c6bed1b51fd8cca74a3c14a64033bc6679b5cb1b8d6c4bc5e

Download Submit
/data/data/com.android.icredit/databases/accs.db-wal
Filesize
32KB

MD5
340ff2ccb0460cc1862bc11309dd499f

SHA1
165e077f50ee50426f59af9f995d2f79f779f0ba

SHA256
21e4b39f3217d843d5ef7776c00fba7a95702eb7d5a956dbfa6b8ce660770d00

SHA512
71499be6a7908c7d286209e25fd1ced54973cbf1c0f351d9446a8c191afadf25b7a36e409edf69c35bafdafd930a1beac5dca9f25668f6b43df0ce987f6526a7

Download Submit
/data/data/com.android.icredit/databases/zhuge
Filesize
24KB

MD5
7c3e90409d4df832488dc5d600c2b3cd

SHA1
041b8676dd118789d012a7058fd9e5a43b993d1d

SHA256
071ad11ed5da85e3c0f9340d2830842dc5503cc49f7db72f0723f94e1ac27fe0

SHA512
4c8fb14d7ca8bc041bd920fa346a0b3b6fe6ee6dabfe5773767cb57df7d6baead467efb2269fea103a3a8690b4c69c2358f4750a195e1b1d3afb4db7bf62b082

Download Submit
/data/data/com.android.icredit/databases/zhuge
Filesize
24KB

MD5
3987926bf58b17249aabff3f41f9e3a6

SHA1
40d94c1a107c6fd3923311e09a2df1a60fe82930

SHA256
9971748ed00a0c1ebc8fddc1a8690dc5565cb46566d0181f7028d7a7b97fa5d7

SHA512
8f9c3562f10bade7de28a06c32a351ede8215dd86eff037e1a8d14094c5d28e13aef38acf570fb6b7cdde012358df7893217cd1ebac6b0ff5ec3be29a27e86ad

Download Submit
/data/data/com.android.icredit/databases/zhuge-journal
Filesize
512B

MD5
080fbba83dd36006da0d084593fd4b52

SHA1
25eedc064d316150dd4a2b036da4c9091a1cb9b7

SHA256
39b93c72e8a13d1a3adb79b01eeff0a0ff569dfb5ff07eba0c825f3cf365c925

SHA512
1978357f9543d4a3de6d58288305812d610c93e3e253413526560692929e8c97958e5bda87c4ede1b05edf343599c40c15b76091ebcb98fcf24cb917014e076d

Download Submit
/data/data/com.android.icredit/databases/zhuge-wal
Filesize
36KB

MD5
c0728ee85c4b13956b4fd49eb96a049e

SHA1
045339dcef3215e6fcd7ac0d47d22858c906d6ce

SHA256
3834b401cb2bfde7897bff73d39912b7a86084f90c6014157721078beb2f8920

SHA512
6b8459a370f475c03195b5e5b6b09790d980e38d0ee3cc27ad596a194a7fd5c0bea9b9b81b596dd28b926a915170104573a03d9d7ba6aa35aef77dbe77eaf0d2

Download Submit
/data/data/com.android.icredit/databases/zhuge-wal
Filesize
12KB

MD5
f9080b0a298f8bc1d6dcc4eff9d4bc53

SHA1
c4b631b72a36a7dc263a43cb1a80723ccec21927

SHA256
233f7be76382ffd9b1500989f15273570e5d159298be752476bd9ccd187b7466

SHA512
d4cb2347f25598683e508441b850260396ba76015414b0655383f9813339058675f342558751ec92dc5f19c483ded14c26bedc425ecdb337b886c88a312591e6

Download Submit
/data/data/com.android.icredit/files/.jglogs/.jg.ac
Filesize
32B

MD5
5dd6d71784d0efcf0d815166b441b2b7

SHA1
65ce33eb84f487330a8ed612b25cf7db71162f10

SHA256
8fc6477965ee970b4f7bdeaf712f91cfd6541d9549b9c556441a5d2ff56df2a5

SHA512
6beea13c569b5bf1515e843725088c10deb4a212e7e2b644d0c952222960e40f83aa2807909c0bd996a8ee344d0649f82816a5d063f1466504c5827c699decb9

Download Submit
/data/data/com.android.icredit/files/.jglogs/.jg.di
Filesize
340B

MD5
74e49d2f2b03a84e300aa65cae3e55cd

SHA1
07b8b3a27e1f37624884bd7475993be8ff4c5f81

SHA256
71b821275285888567275832ecc9a8dafeeb1fab906a54f81b96a3b47ab42efe

SHA512
a12d65fd6ca1a8ee8700db2113d0f6e8a65ab70e82ca4ade41bd6b129988f50afadf12c21257e3fbc06e0c1e373b87b6e6332fd203845e03f2c8d71ec446c27f

Download Submit
/data/data/com.android.icredit/files/.jglogs/.jg.ic
Filesize
32B

MD5
cbb6306ff58511563c64a72473b7bfdb

SHA1
1128c055f7a8ab06caba5d848e7a395b9c2d44df

SHA256
952a538a684c995254dc99add9469e5ffe61db5fac432b8ddd419b1eada61f71

SHA512
c2957f7b41121a127fbf171a65309b840e5821a09b2435d9085d4924ae2bddfdda4558512e6cb5848db1ed6dad735e673a01ea9a473bbcd2471aabcf2fa2f3d8

Download Submit
/data/data/com.android.icredit/files/.jglogs/.jg.li
Filesize
100B

MD5
d2a2d68830f2223c305bb7c6a4113d4c

SHA1
6c3bae60d796672b7ecbb227f8c0a9b434795234

SHA256
401f1e9f27b22aa58bbbfe999188e89a907123f3b81e8685cc08ec975c36d33e

SHA512
9ff644a581841d5ac165bc0e0b37ccde0493151f0e1f0884fde34ccc9f5f04df0ade62362a6e623ac6b0b287edb146b2ebadb0cbe44a3d5c78ab8a93c32c623b

Download Submit
/data/data/com.android.icredit/files/.jglogs/.jg.rd
Filesize
73B

MD5
9a9b5ae857a5f6be9ace9e329d0281af

SHA1
cdb817f5bfecf28858805546d7e7319a2d7c1536

SHA256
aebf629f0e2f1bab16bbfaaa3d7b9be2cca9ce3ce9bc2f76c8eb529a06dbe88e

SHA512
3f6c4bd4250f43df02d16e95b609b88012da925150c3b50bdeed59d73d47c7167256a601c8c47ee7ed47cf81894b838e06dbbd8efdaf89caeeee0b32c0c4de98

Download Submit
/data/data/com.android.icredit/files/.jglogs/.jg.ri
Filesize
314B

MD5
dfdecc08c213808b449b51a2f54ea45c

SHA1
625691974fc4069a8def062c8f3dac67172a0f0c

SHA256
73b717de0b3102ace937d7cebf75a1b8cd9d55abb19ce1c94f163980ad62cf59

SHA512
9d28ef30d0909ef0deab4b5ef3109baff0258d64cc643e80a240c28ce514d453698873e22f59bd566c3bc0885336a67a5375e29f938abbf2e5aa5d6320b35dfa

Download Submit
/data/data/com.android.icredit/files/.jiagu.lock
Filesize
27B

MD5
e29778cccbb2e68a7d8a484580550965

SHA1
505c51b5062fa33dc7b2506e60dd815e71a6b7fd

SHA256
9d7a22c1f4225bf0d9898e14bf769211a14e2ba86bd8cd056034d589209ecb7c

SHA512
3eb6383b718627887911633d1ef452b3521334b7463cbc18b503c05bd4168efd730c3fb8d2bb8e95a9fa4d888a3feb5d5395e22bbb507e03e90124461683e2c4

Download Submit
/data/data/com.android.icredit/files/libcuid.so
Filesize
129B

MD5
47d5c67e2d94d70c086dd84f28072634

SHA1
c8341eff4d2f648c69f08111594b47c82d9efe01

SHA256
db1eda98a2986a4b473ee419f6371368198b8779c4fbead8302e0432bb6b57b3

SHA512
723dc58a0e3f088e456d6a02188c044131fcfed1fd69bf75ac6ae7d507452afc54698886d559e77bb2dd16d3e98166d21dd988258642856372215c3ce2092c0b

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml
Filesize
111B

MD5
d90a44639af5fbf600adf3f6f937719c

SHA1
0ed2b6775dc800ac42e2f6d0f15702840984f4a6

SHA256
740755d1dabf2b9b562ca97ba1f3d99569438e6d216d781062015995c829ec0b

SHA512
0fb488441863b8e3d2006cf22b3153a8f807a74b386515d69bf1d041fb91f4bd75fd20d1e74ebafd4d7a6f4d4b06bc0b4bbcfdcda2e70f9cff064dfee68d3ea2

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml
Filesize
213B

MD5
f44b5765ec1460dc4b05f4aad11d9e22

SHA1
e132f367f21070bee9de24726009cc331efa59c8

SHA256
45a5a75af5465de0a487baa87d74146ba632f986881aaa4b13968d30a6942af0

SHA512
30de2fde3166d4db2d6fa4be76a7600e4fa03180a2825866ea5bf38d08e3a2865454a2e7c1089dd0491930ee32a989ab5402d42931de5e0d0c0ad24f3c0a8138

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
111B

MD5
75058037c90ec84ce75f5ccab0d8522d

SHA1
bbb1e9ae6ca2dbae7efb974c3f86c0fa39d8626f

SHA256
67fcb8353a072e611553abc6a437dbb485e76e4b0d444f9b5fd69eac9e6ddf33

SHA512
2c5908fc6d2aa55d5fcb3b84b2504e9c4fa0c177b771b736102ee6b533d7087baac105057337d90620b5e0c5b54712caaf23663f8e6bcf386aa866e371c8ff2e

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
167B

MD5
6eb6284d5b025ce78a19ab237ae7fb38

SHA1
18e122e9affc53b52b27f1d9845b161853239ba8

SHA256
d3b2f13ab016d8626bb694cd7bdea846cd058e67809338d17af3d40587432be2

SHA512
24a084cbccacba105c350b3b521bb4fc3eabc15b9b75e724a8c6ee48b5583c883e891137b6ea3d5f38d86da8c9c69270746d2f13d01022b315099c37e987dde8

Download Submit
/storage/emulated/0/360/.deviceId
Filesize
48B

MD5
1d8d16c4e3b19ebf18988530d9b9a757

SHA1
bc94c1cce05cd848a53271ecb9c5311e27ffebf5

SHA256
abd87140da8de3d0aa39a24a8d52bfe7b2eb28f7a3d505f205471c7e8f4964d7

SHA512
4562d1eedbc5c2dd7f25cd1c70343053fd451026403585182b142a64f17016c1bd0bf6ad51667b439b220e425640e55fbbda08517e7106376cdc220a4555da82

Download Submit
/storage/emulated/0/360/.iddata
Filesize
32B

MD5
e681ea5f1a4bb7fc40a43315d304af1a

SHA1
d377eb36544118b7d7392641e3871071b3e2c730

SHA256
84bfe02647f3006f9a422ead9452c70636224e843c21e560860943f65fd16c58

SHA512
84534e718036d7a1260872bdbc8229f7b8da97bf55f006c1d8d4b2bcff944309eba01874de56d5b7ba597d3b8781df2b1570fac29190957dc6fa3fcdf5e91559

Download Submit