5368683dc8fc38e3596d03bb1a540abae6b5191c56d5032373fd2c80eec72f45

Analysis

max time kernel
167s
max time network
164s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
22-05-2024 10:31

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

66f4d6932994eefcd492b3b3a93dca9f_JaffaCakes118.apk
Size

30.6MB
MD5

66f4d6932994eefcd492b3b3a93dca9f
SHA1

ae9fb97093ac92d5aa07836bdbcc3590fa7d304f
SHA256

5368683dc8fc38e3596d03bb1a540abae6b5191c56d5032373fd2c80eec72f45
SHA512

44406f98dbbe8ad5e2884473c2682e4c43cfde4848af7309ea011251e18cc267a456dbd8ae93e4cfda9f5db88a581d998250011b4942e23946a8a061b6574764
SSDEEP

786432:5yhyzOSkBGo9Axv//dGbz1SC4hKqtTHZzYqx3JE0cyU9tYyI:TzMBGo9AxvnYbz1n85HFj3hcy5yI

Score

8^/10

banker discovery evasion impact persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 2 IoCs
evasion

System Information Discovery
T1426

Processes:

com.damei

ioc process

/system/bin/su com.damei
/system/xbin/su com.damei
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001
Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
evasion discovery

System Checks
T1633.001

System Information Discovery
T1426

Processes:

com.damei

description ioc process

File opened for read /proc/cpuinfo com.damei
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
evasion discovery

System Checks
T1633.001

System Information Discovery
T1426

Processes:

com.damei

description ioc process

File opened for read /proc/meminfo com.damei
Loads dropped Dex/Jar 1 TTPs 2 IoCs
Runs executable file dropped to the device during analysis.
evasion

Download New Code at Runtime
T1407

Processes:

com.damei

ioc pid process

/data/data/com.damei/.jiagu/classes.dex 4296 com.damei
/data/data/com.damei/.jiagu/classes.dex!classes2.dex 4296 com.damei
Queries information about running processes on the device 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about running processes on the device.
discovery

Process Discovery
T1424

Processes:

com.damei

description ioc process

Framework service call android.app.IActivityManager.getRunningAppProcesses com.damei
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
discovery

System Network Connections Discovery
T1421

Processes:

com.damei

description ioc process

Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.damei
Queries information about the current nearby Wi-Fi networks 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
discovery

System Network Connections Discovery
T1421

Processes:

com.damei

description ioc process

Framework service call android.net.wifi.IWifiManager.getScanResults com.damei
Queries the phone number (MSISDN for GSM devices) 1 TTPs
discovery

System Network Configuration Discovery
T1422
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
persistence

Broadcast Receivers
T1624.001

Processes:

com.damei

description ioc process

Framework service call android.app.IActivityManager.registerReceiver com.damei
Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

com.damei

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.damei
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

Data Encrypted for Impact
T1471

Processes:

com.damei

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.damei

ioc	process
/system/bin/su	com.damei
/system/xbin/su	com.damei

description	ioc	process
File opened for read	/proc/cpuinfo	com.damei

description	ioc	process
File opened for read	/proc/meminfo	com.damei

ioc	pid	process
/data/data/com.damei/.jiagu/classes.dex	4296	com.damei
/data/data/com.damei/.jiagu/classes.dex!classes2.dex	4296	com.damei

description	ioc	process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.damei

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.damei

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getScanResults	com.damei

description	ioc	process
Framework service call	android.app.IActivityManager.registerReceiver	com.damei

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.damei

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.damei

com.damei
1⤵
- Checks if the Android device is rooted.
- Checks CPU information
- Checks memory information
- Loads dropped Dex/Jar
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Queries information about the current nearby Wi-Fi networks
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4296

sh -c ps -ef
2⤵
PID:4535

ps -ef
2⤵
PID:4535

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

Process Discovery

T1424

Software Discovery

T1418

Security Software Discovery

T1418.001

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.damei/.jiagu/classes.dex
Filesize
6.0MB

MD5
79cc294685679c490e7395b3ee0bb5a2

SHA1
36966534af48d3b9ec4966af0e14a6ae6da34d44

SHA256
b83921fe0838cac4d376d9e5526065ef47fa91973ea07be6a67c13c765543ebb

SHA512
5ee129ca2f3fbf083dc51b18676c38b48a26829e3410a2db7af4d0b9754be645a8f37b481dbca032a4272fd575f047648fe8e15b6c25ada6e6bebd152894241f

Download Submit
/data/data/com.damei/.jiagu/classes.dex!classes2.dex
Filesize
4.0MB

MD5
aea0f583155ac45c09f1a6d0ac7b0cda

SHA1
7e91319aab0082559498b39e8345ab56ab3e6370

SHA256
6aa31eebda54d72a97b080e9e05687895ecf96257869696b5bf506ffbbcfb332

SHA512
cd5ea57b28b43cd20c91d80f256d25f3520bca4de8aa8538b8afa0fb3bd42395b967b92af36bafabcc7a259535a2c782b375c7095ff5f77724ef370590abf79c

Download Submit
/data/data/com.damei/.jiagu/libjiagu.so
Filesize
477KB

MD5
39d77dcad8e2a44dd7226f442b3a6c92

SHA1
6560fa96c6b5a038abaeee5f139a16e46088d9d7

SHA256
99cba035cae818dbdef989e70e738463798528b8ca52dbf38d2b8a72152680c0

SHA512
7ddfc6c05839160813e58e8f8c50d2dcda7e7b5e7f1d27cffb802ee91de4bb664bc5c257137d39152ed6e8cad0d3c1b067bf8aeb7e53f884893887b54480a5e5

Download Submit
/data/data/com.damei/cache/VAdNetSdk/reqQueue/-1127729055-1266689676
Filesize
1KB

MD5
0f1f378c94c316a4b0ac7f8e4f9f98ec

SHA1
8e07c5244d466c31a88cbc590b8f8487b7c943ec

SHA256
7e0dfc3eae25594e28f54a9ade39f78944380364b97c583a4e4e5da1ab8847ff

SHA512
4664f65d4f6ca7afa93c73be4dc67a380cdfcaca3a54ec523413d3c0a1d3fb0fe604e214176736f3bc159af08bc65e163444c6273e3f675a0c5b659d885375d5

Download Submit
/data/data/com.damei/cache/VAdNetSdk/reqQueue/-1127729055-1266689676
Filesize
1KB

MD5
ef12aa957010911ac1be7f9d0268db5f

SHA1
51c3630a4157429c427e44b4a550fe754bd3a713

SHA256
9b9e374ea68224d83e0720c2f904e1b8104c095044a0f5e4eb3f42bb6bc0bb82

SHA512
046f9bb5a1dc27eee02c70a6b87fd713bb63ed35da02c8f42d31bfef63173e34dc8f97e96613fa25d5e99dbb8d07eaa6846c9d7169221fac1d44a3a5c8807459

Download Submit
/data/data/com.damei/cache/VAdNetSdk/reqQueue/-5998622401067643521
Filesize
6KB

MD5
b5df03a47ce57b461b8ee47fc7f2dae1

SHA1
8109beabcd6f07e1727e8bf2a16e0b34b1cd0200

SHA256
81d4114e5a219a54b5e3bba4edc80f71cc56193454c37a76a29e9ff4eec63ede

SHA512
e82b959ccde3f6ba01bcafece2412c82a3e8e2f20d936fe6253e3658eb9f57cb0d9e807edd76a08f24e6673e61400e8066432787c893a0482c6218554f2ac36d

Download Submit
/data/data/com.damei/cache/VAdNetSdk/reqQueue/1021689741840853517
Filesize
1KB

MD5
a7d00bef6defb2007e8e4f09d0430d69

SHA1
0f56eab2c19bb243a103e1ad1b8accb8fd2b0187

SHA256
d857f35c595abfe953c7242c0aa17fa5bef689483d12e9af19d1e28f8a2dcd4a

SHA512
4988a2b2faf9ef1be46ab5003f62dce4bd34cf1e76c9e24b1492dd79ead206db311016ff09be64f6139fa8e9cf2d3a0529c9223692ba184e1451d4472f5e616e

Download Submit
/data/data/com.damei/cache/VAdNetSdk/reqQueue/1021689741840853517
Filesize
1KB

MD5
a73ca4b80bf3b3e2e43358bd00e47dd2

SHA1
b32605aab897e02e2a2f5b7d2753a074746ebb45

SHA256
a70c04ad65b96d846cfd5ff5b0b2ed75684b5bc676d8097d61751622367c8b68

SHA512
2c5bd81a31c096d48262c77baf1ee7810c6c7587d1d30c849dc21b5b7d0e859d6b098e353627109fc5ae0992332cb20207a9c416b622d381ba9c4b5e635cbb61

Download Submit
/data/data/com.damei/cache/VAdNetSdk/reqQueue/1021689741840853517
Filesize
1KB

MD5
46845a38256d273ca71d8b1242f4eb95

SHA1
b3e230437b018991daa51b82897362c9bc69f7e1

SHA256
ba17c73cbeb871670bc2bf50bb303cc451ceddc92a9c9efa12f51c999ded95db

SHA512
058402774ee95078670b7c3712752889dabd3670294043070e7f1b73b8a13151f62c6552865cc84da4279f76b63c77a58890c6601ecafd3ea21d89178de626b8

Download Submit
/data/data/com.damei/cache/VAdNetSdk/reqQueue/1021689741840853517
Filesize
1KB

MD5
759516692379a5b4cc291fa6730b99d8

SHA1
fb849fbbe007cf3462ed47d53961ffe525628ab8

SHA256
06eb99bbf04157f18e0dccd23ff4cfe6b98eaedbc318c0b559c01c565c374bcf

SHA512
ee400ee34c132ea59b597c6c4c93b6c2852cd5b3e7d709b02876485dc8119d6604511f298abf029b26a4bd7a8ae113d1f213664a43bdd61a120ea5df347626d1

Download Submit
/data/data/com.damei/cache/http-cache/journal.tmp
Filesize
36B

MD5
37e8e716e0e2f4a0b05cd9571d95b84d

SHA1
f8d068f6931707bddb8cd69f706f2224ad1fea3c

SHA256
7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca

SHA512
e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6

Download Submit
/data/data/com.damei/databases/RKStorage
Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.damei/databases/RKStorage-journal
Filesize
512B

MD5
25a1f67856ba8f66c1b7b5daee6f2844

SHA1
0b2c30ee44b3fad4c8ae2f677f616cbd05a837a6

SHA256
3620c40f9a7969ea98e56399e633d0b3b617e385cb19d76349d5d839999842b9

SHA512
4a81bf23c8ab0d8e8f86b32623a57b5a633f8d4cac09468dc300a613de914de3adb12a589299330471bcfc7b09c0ed578455e902566e6f43598cf0e85b8863d3

Download Submit
/data/data/com.damei/databases/RKStorage-shm
Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.damei/databases/RKStorage-wal
Filesize
40KB

MD5
5e99735fb25f3636510220e604a11083

SHA1
a2110999041e6614a44031031ee2507ec447b8b7

SHA256
d4e441a91916fabf9e0e01fe94548a4764e50ee285edfb2dfb3083d46482f7ca

SHA512
83050c6353771c337b5c686ac425046452f4ddd82d8df57475cac35ed917318eaaa81c19637a932740b56d40a725b12c331d2ffc8405ad80be5ba7625da74b97

Download Submit
/data/data/com.damei/databases/downloader.db-journal
Filesize
512B

MD5
4c7beaef4db3eec80ccff014c11c2639

SHA1
24c2696b21f8f605dfd07fd0472a76aa45c41475

SHA256
f6e483285dd4fdb6580fc820ff5ebfe211e367c6467a51d481954c31bafd50c9

SHA512
4a52631b4f4beb1370dfd2b40360fd4f94dfd19e07d1f25e431aaef18798ee56b97b912127493ba1ac0b7aed94f901cb1d487bda03fee6dbc8120845bcd2acd0

Download Submit
/data/data/com.damei/databases/downloader.db-wal
Filesize
32KB

MD5
4d84b4cb50f143401629de650fa0414d

SHA1
2473e772a35b337f2fc32e42f147d63443ccfc50

SHA256
0985a259f6aa702a6ea2ceff748dddb01abb320efe060bfcb0273ed945065379

SHA512
36ccb51cb02efd8ccaa4a11ea1fabba690c4feac5f238d168c40a9b696be81af100a282516ed7649b100c8facb0194c9b79c1ab7b74f142f8fd6f00dcfcc4bd7

Download Submit
/data/data/com.damei/databases/ttopensdk.db-journal
Filesize
512B

MD5
7250974d2e695b1deca500a5c7cf53d0

SHA1
b85f51a24a6fd440fc62a91acabad2ab253485ce

SHA256
3cbb0f24b050eb29becc766c720ac6d3a8c093560e3f95fd49b828c8af616c9e

SHA512
e2e842c5b48fcc2652083059f65ae8ad1d2d522e8f04b8887bb52e525b242334710f5a8154ffc03002c83f8ef056e46a31b8c8c9143dd957a2fc176ded78661c

Download Submit
/data/data/com.damei/databases/ttopensdk.db-wal
Filesize
140KB

MD5
c5be2440855f8605a2b04fbd82634f1a

SHA1
9a751d87b21421316a2ce0093292a4587c9b8c36

SHA256
067fa8160907b9c106d244032278257de2d52e62450be907d90218fa4c2e8f67

SHA512
b9cd0789e9f4238731041d85fc47a2700c3e89837da1802bd1dc4d7c4dc179ed6a477989757df776ffb0a5398d30ea66f60345ffb400254e856d35cd37cf5a6c

Download Submit
/data/data/com.damei/files/.jglogs/.jg.ac
Filesize
32B

MD5
75fd014883ea58ca6af6d57a61016355

SHA1
9c77756ff7d5f2736d12d66fde509df3ef636837

SHA256
2bd12ac0e8db0e50863b3699f6a1e72e550be230c1c14190468212dc801895fa

SHA512
70c4ce7773e1dfb871e55a7a0fe87809294fe5c527e8ce2bc722858e6c72035346eaf97218fd1070e82b0e9dccdfd77332a6b73f8dce3ab72d9ce3c154632686

Download Submit
/data/data/com.damei/files/.jglogs/.jg.ic
Filesize
32B

MD5
1a520a45b5e0b3e41f8e5a4a4b337821

SHA1
6fce039678a4a1d228bd0e70c3a93a2619bbe4ac

SHA256
88e0ffb7ab8243b55bf728f5e178edc9e08bf996a628ba0178a148f42ef86f39

SHA512
95c73c930e751326d71f82ffe4d75a734261c50475307f00e212cd0ea0916c6aab854ac8148ffb4890514569b5f02a2d4774efd1125dc5191acd50fb1195dd10

Download Submit
/data/data/com.damei/files/.jglogs/.jg.pk
Filesize
32B

MD5
a441469c2a852915e496dd43a2f24382

SHA1
a7cb193326dab19b5ec6e530a9fed8a8ee14a9fb

SHA256
a22f1ca6ecf1548f6911266416090f7ec46f0a0b92045a79c69a9685bd974de9

SHA512
3ed75b0c5757d4b528821476a5abf9b2d4fb94d5dd8f7ddebecaed17d5c7408b71c421378300e1c2f8f64a9e2e4637ca356bccdd64a39126b7aeaddb188169c6

Download Submit
/data/data/com.damei/files/.jglogs/.jg.pk.h
Filesize
64B

MD5
47ab6426d1e643f9910daf162ba43b53

SHA1
4e6e2663741f908602069082a6b47c8d86c4cc3b

SHA256
78293a1e1357ddaf908c187b9905f0de15a56ccc30a70449232ef13fc4b4f8af

SHA512
4d3f51cdda2847d7ce506a506213bdcd6ea2d337be72d1c54ef0ced5d67106ceaaf482528319ebf56975f9defa8f359f31b55ce390260587401329725abc96b6

Download Submit
/data/data/com.damei/files/.jglogs/.jg.rd
Filesize
73B

MD5
e93d69efe2f578cf790baa1b74762a50

SHA1
c7504f0236bafd7e1b1ebb74924f0059c4e08303

SHA256
5745c39d1ef17e94c8c5fbdae548650026793897aed8b05a98c3703f1df915c5

SHA512
7ac9b108d5ed4a227e0c4d042e55229f007eb01c738c8948b57b6f258cee3f67454972de25afbfed1a210781b6222d21b531bfff78e01816dbd756a4f5b66dc7

Download Submit
/data/data/com.damei/files/.jglogs/.jg.ri
Filesize
307B

MD5
aadc47b1deaeebfb16dfc2d623b71a67

SHA1
2a8d4f927b125dc9dfd0d9a6fe5141587a652738

SHA256
f16ff09fbb1af8ab447a1b79bf5ff61939fec19d3a56175793184a3239ba177c

SHA512
1dfa26a3dab5f1235f9d30a413f07ac4c54e73fbdee06f8aadd4b1922b27021912593e5b2fe811b8e418c422689895c9d09134c19f9f5ca7536993a6fa022436

Download Submit
/data/data/com.damei/files/.jglogs/.jg.ri
Filesize
314B

MD5
d3cbe6f87a9ce51fd4899f1966ab7053

SHA1
9ea239f0fd493a4c78a75a1e0278980fc29ba5f0

SHA256
c6cbf1647a7fdadaf0a6d4a5b736623836617c9739f102f378b3692b7abb627d

SHA512
65df1052a7e468c56f9d90fc15616b6935e808464f20d1a5d8b8814057cd91d1ecd5b03ad14898d1631f00b9c5f0d0edd6d656ee5aaba166d124c2dc5507b20a

Download Submit
/data/data/com.damei/files/.jglogs/.jg.store.report_pid
Filesize
32B

MD5
d4f18be0a9c65c72fb8f2001f73ce699

SHA1
6d73ff7affebad0cd55472c3bd3fc3170af07d26

SHA256
21bff36b194b64df1b3ca1cc9466691cf95d2d0caead0d15b2d0699292537392

SHA512
04942ae26c8838423b99d9bf6043837792653a42b1eff709d01d84abb80a3b131406c85c505f5214350f4a7539e748430b0c8bca88454e12a60352128b83e94c

Download Submit
/data/data/com.damei/files/.jglogs/.jg.store.report_pid
Filesize
54B

MD5
ec1ddaed790f53d23cdd2f0d3536e4bb

SHA1
70267e7a0d78e9ef60aa484f15801e1136da557c

SHA256
754fa0477b3e709f2168ce04896ce12d9e97492a16cc9ffe2866b0096ec79e9f

SHA512
7839dc6cd82571357b8aa9b83ac7b09f0597d6032785b71d770b85da0829e4c94f96a09e2afe8afad7425358d50908df0cd86aa5cd6f58979a52efdbe7593827

Download Submit
/data/data/com.damei/files/.jiagu.lock
Filesize
27B

MD5
d47e41ae680568b4b408abebb00a8670

SHA1
7fa58d952715ca0f6952de9c032cd8655fe6b771

SHA256
f7dc3ca3d2ed5c0d3409a2d22ece8d5aa00843e1299bf839b131a139af308fbe

SHA512
f89afb9522da9e933fff76d404dce5741dbd2759b79580e41bb7ab1f861a11f5301a54d4e62f0d78fc1583a2c3d0bf5cf4a81b6870df44a514065184d69a2f19

Download Submit
/data/data/com.damei/lib-main/dso_deps
Filesize
252B

MD5
292b897d83b47b657bd49e11226baa37

SHA1
2dc322b7f2db632ed9b9f68337fe4698e1dce47f

SHA256
eb8a17a584b43f198747ea1064ab2ededed807b54c4f1ff4a5b1c43d364ae991

SHA512
32d71b6a195b56367ab2a7e513a86dade9c372d082012320f2ff2d27c4c6c339cfff57a0fe69afc5229a5b232e24dcec60a7fbb802e3c79a55420c5ce45b6a30

Download Submit
/data/data/com.damei/lib-main/dso_manifest
Filesize
5B

MD5
c06857e9ea338f3f3a24bb78f8fbdf6f

SHA1
c5a0a2529d2deb60fec041b4fbd722a2ebe31702

SHA256
957b88b12730e646e0f33d3618b77dfa579e8231e3c59c7104be7165611c8027

SHA512
29f61516876c25379a7bf4faa2b3ca6f6b53eac90e7de47671fec4a818d51441b4025cd7909f7c0a0d113ab6c5ff00cb3700c286bac7319185b77905feec4fb1

Download Submit
/data/data/com.damei/lib-main/dso_state
Filesize
1B

MD5
93b885adfe0da089cdf634904fd59f71

SHA1
5ba93c9db0cff93f52b521d7420e43f6eda2784f

SHA256
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

SHA512
b8244d028981d693af7b456af8efa4cad63d282e19ff14942c246e50d9351d22704a802a71c3580b6370de4ceb293c324a8423342557d4e5c38438f0e36910ee

Download Submit
/data/data/com.damei/lib-main/dso_state
Filesize
1B

MD5
55a54008ad1ba589aa210d2629c1df41

SHA1
bf8b4530d8d246dd74ac53a13471bba17941dff7

SHA256
4bf5122f344554c53bde2ebb8cd2b7e3d1600ad631c385a5d7cce23c7785459a

SHA512
7b54b66836c1fbdd13d2441d9e1434dc62ca677fb68f5fe66a464baadecdbd00576f8d6b5ac3bcc80844b7d50b1cc6603444bbe7cfcf8fc0aa1ee3c636d9e339

Download Submit
/data/data/com.damei/no_backup/com.google.InstanceId.properties
Filesize
2KB

MD5
37579b1b9e49efb8b78688b3b0272ab2

SHA1
40714b590e950593155f20c2bfd87af68730d83c

SHA256
692f5cc1d4aa256e055dfe12f23d52a298e00d5d8ecdfc596523d9644fd8f672

SHA512
4fe31500b87d77eb5e54eb4d2b441034fe9933bbdd3ad99d2000891a5b87c630d48fabe00738ce38396a1cfc77063e0533a4b32a29599456448951e58c4e5036

Download Submit
/storage/emulated/0/Android/data/com.damei/cache/tt_tmpl_pkg/template/02f2ef1a767dfc76146111a11ec3fc02.tmp
Filesize
143KB

MD5
3cb18addbd563508da9d8b24af3e9bad

SHA1
9b6ce986414cf209e720bf0f7515688df1101062

SHA256
9614a250c3921ab426426cf2df2a3f5d5741449de032a053e40ff056bba9d8d3

SHA512
afad51a9747680a5160defd977ddd4c75c7a05f851688c56b6acad284cf06077ea99eefbec9770f5c111d8d544af9ab43572ace5ac7310c350f77b22c7cf5379

Download Submit
/storage/emulated/0/Android/data/com.damei/cache/tt_tmpl_pkg/template/8d8a3f198fd43721f6df3c8c005a75c0.tmp
Filesize
1.2MB

MD5
202c02e567a78b6ed7ee4bad8bed1e8a

SHA1
57a9d44fc986cafb6dbe7a9cd59a5f7c4dffc76c

SHA256
75ea668dfbc7f2e6d5907bb8288ba56125670af07af4460f9a92e305dac992c6

SHA512
93044a3b557cfdbfde8d4b767bc7aa9c4b6f21cdf03e2ecc7a5ebaca3b4a72677b72721b4c557514de98275cb765c641fd05ae1f0ac71c677eb9e72bbbf4d276

Download Submit
/storage/emulated/0/Android/data/com.damei/cache/tt_tmpl_pkg/template/e6dff7b87a015e61b6897f0b4e10f373.tmp
Filesize
151KB

MD5
3610043095edfae0fde800376f4f63b0

SHA1
c58f32ab313bc9c8b0a2a9d2ee7f445972973c8c

SHA256
b37b20aef8aedef7f952401b48d8d2da271ab65c8acbc1c6a296b244875ed088

SHA512
d9440d22eb1886705a8936d16585a9c0f439a04303a432818b61ec608aec9fb21785f2098fff0607c23a2f6ae1727c4103b350d82591d0c5bf470ac5d17555b7

Download Submit
/storage/emulated/0/Android/data/com.damei/cache/tt_tmpl_pkg/template/temp_pkg_info.json.tmp
Filesize
617B

MD5
803deefdc6fb13da2e0fbdf034f031f3

SHA1
205fd90212bc0a4bc1b38a3ce4da9ebfcab0bf6f

SHA256
c9aea7ad5168b6a053e8a78d276de4f9ec918f3c9395a70d1d685617ab8bf3fb

SHA512
4a37db5e7657ebcfc4dfdeda047a87aec0d7bc849e847b9a2fa5ae5ee2c8029a925679cfa509d64c0d5017c06cc62e3e63f3e726519bd1cd13561bd2975514e0

Download Submit