e2ff33d9d9fa8316fc58f812d87773c5076a0918d495b172a8071f2df210ee2c

Analysis

max time kernel
175s
max time network
184s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
23-05-2024 01:01

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

69394ddcb0634ded39524b5ee1eb7d49_JaffaCakes118.apk
Size

16.6MB
MD5

69394ddcb0634ded39524b5ee1eb7d49
SHA1

cd4963a30213fbc375a8cc718c416a059c73ea73
SHA256

e2ff33d9d9fa8316fc58f812d87773c5076a0918d495b172a8071f2df210ee2c
SHA512

57349f71dfcd5b2e14023e73a3455a9848e4b45d6f3635009fedae8477ecb0198565c5c19f1749b7626f430f9c666cd9de8ba064c6121e70c5eeef303ca90821
SSDEEP

393216:fALI2agjbaHMGll16Hm5pKoYjNVL8VuK9LwjeqzI:fALI2aYbaHvlP6HVYt9ZX

Score

8^/10

banker discovery evasion impact persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 2 IoCs
evasion

T1426

Processes:

com.xgbuy.xg

ioc process

/system/bin/su com.xgbuy.xg
/system/xbin/su com.xgbuy.xg
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

T1418.001
Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
evasion discovery

T1633.001

T1426

Processes:

com.xgbuy.xg

description ioc process

File opened for read /proc/cpuinfo com.xgbuy.xg
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
evasion discovery

T1633.001

T1426

Processes:

com.xgbuy.xg

description ioc process

File opened for read /proc/meminfo com.xgbuy.xg

ioc	process
/system/bin/su	com.xgbuy.xg
/system/xbin/su	com.xgbuy.xg

description	ioc	process
File opened for read	/proc/cpuinfo	com.xgbuy.xg

description	ioc	process
File opened for read	/proc/meminfo	com.xgbuy.xg

Loads dropped Dex/Jar 1 TTPs 10 IoCs

Runs executable file dropped to the device during analysis.

evasion

T1407

Processes:

com.xgbuy.xgcom.xgbuy.xg:pushcore

ioc	pid	process
/data/user/0/com.xgbuy.xg/.jiagu/classes.dex	4240	com.xgbuy.xg
/data/user/0/com.xgbuy.xg/.jiagu/classes.dex!classes2.dex	4240	com.xgbuy.xg
/data/user/0/com.xgbuy.xg/.jiagu/classes.dex!classes3.dex	4240	com.xgbuy.xg
/data/data/com.xgbuy.xg/.jiagu/tmp.dex	4240	com.xgbuy.xg
/data/data/com.xgbuy.xg/.jiagu/tmp.dex	4240	com.xgbuy.xg
/data/user/0/com.xgbuy.xg/.jiagu/classes.dex	4361	com.xgbuy.xg:pushcore
/data/user/0/com.xgbuy.xg/.jiagu/classes.dex!classes2.dex	4361	com.xgbuy.xg:pushcore
/data/user/0/com.xgbuy.xg/.jiagu/classes.dex!classes3.dex	4361	com.xgbuy.xg:pushcore
/data/data/com.xgbuy.xg/.jiagu/tmp.dex	4361	com.xgbuy.xg:pushcore
/data/data/com.xgbuy.xg/.jiagu/tmp.dex	4361	com.xgbuy.xg:pushcore

Queries information about running processes on the device 1 TTPs 2 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

T1424

Processes:

com.xgbuy.xgcom.xgbuy.xg:pushcore

description	ioc	process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.xgbuy.xg
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.xgbuy.xg:pushcore

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
discovery

T1421

Processes:

com.xgbuy.xg

description ioc process

Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.xgbuy.xg

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.xgbuy.xg

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 2 IoCs

persistence

T1624.001

Processes:

com.xgbuy.xgcom.xgbuy.xg:pushcore

description	ioc	process
Framework service call	android.app.IActivityManager.registerReceiver	com.xgbuy.xg
Framework service call	android.app.IActivityManager.registerReceiver	com.xgbuy.xg:pushcore

Checks if the internet connection is available 1 TTPs 2 IoCs

discovery

T1421

Processes:

com.xgbuy.xg:pushcorecom.xgbuy.xg

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.xgbuy.xg:pushcore
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.xgbuy.xg

Reads information about phone network operator. 1 TTPs
discovery

T1422
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 2 IoCs
impact

T1471

Processes:

com.xgbuy.xgcom.xgbuy.xg:pushcore

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.xgbuy.xg
Framework API call javax.crypto.Cipher.doFinal com.xgbuy.xg:pushcore

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.xgbuy.xg
Framework API call	javax.crypto.Cipher.doFinal	com.xgbuy.xg:pushcore

com.xgbuy.xg
1⤵
- Checks if the Android device is rooted.
- Checks CPU information
- Checks memory information
- Loads dropped Dex/Jar
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4240

chmod 755 /data/user/0/com.xgbuy.xg/.jiagu/libjiagu.so
2⤵
PID:4267

/system/bin/dex2oat --instruction-set=x86 --dex-file=/data/user/0/com.xgbuy.xg/.jiagu/classes.dex --dex-file=/data/user/0/com.xgbuy.xg/.jiagu/classes.dex!classes2.dex --dex-file=/data/user/0/com.xgbuy.xg/.jiagu/classes.dex!classes3.dex --oat-file=/data/user/0/com.xgbuy.xg/.jiagu/oat/x86/classes.odex --inline-max-code-units=0 --compiler-filter=speed
2⤵
PID:4577

sh -c ps
2⤵
PID:4614

ps
2⤵
PID:4614

com.xgbuy.xg:pushcore
1⤵
- Loads dropped Dex/Jar
- Queries information about running processes on the device
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4361

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.xgbuy.xg/.jiagu/classes.dex
Filesize
7.9MB

MD5
4e480514311529eea1296fef5c6f7384

SHA1
bd0ce4203d6f60280cf22fca2533320b2d1720e3

SHA256
8d052c8b067df9b336ecc732e5e2aded6c32d772456651dc828104d53f60700f

SHA512
80422038292af1b453c7d371f09de94d56b5ce89110503bcd87d042a7b45a43d623c58bd144af4ce194486ce36905d022ab7ff060861c747a27c1d9e7e69a014

Download Submit
/data/data/com.xgbuy.xg/.jiagu/libjiagu.so
Filesize
382KB

MD5
aa01dd97609092ce310e17bf791069ce

SHA1
f000840a8f68ea7beb2e29ea466088daf55609db

SHA256
e432c191f918053ce368e1b1f155b2e1f9e84379611b93aabec0106172b73aa2

SHA512
766c120a06215d0950aae32026fcde3eafed8d18ae0de7bc8135a7378a9055c8f0040d61574d9af67fe2b5b90eeae64c62d787343858ae375bb6658df8afe7b4

Download Submit
/data/data/com.xgbuy.xg/.jiagu/tmp.dex
Filesize
284B

MD5
f1771b68f5f9b168b79ff59ae2daabe4

SHA1
0df6a835559f5c99670214a12700e7d8c28e5a42

SHA256
9f8898ce35a47aeafced99ea0d17c33e73037bb2307c7688e50819966f4ae939

SHA512
dae27d19727b89bec49398503baa6801640540355688dfabbe689c97545295c2c2d9b0f0dcd7cbc4cfbf701d0c0c3289e647a152f49ff242d1ecc741efe4145d

Download Submit
/data/data/com.xgbuy.xg/cache/image_manager_disk_cache/6936001b0843c9baaf6a3f320fef658f74b649cd15210e9aafd88153117e16a1.0.tmp
Filesize
79KB

MD5
3ccf674803e2bcca74d940a369b98a1f

SHA1
b82beb53b74476af3563d05f4b49b4628611c19f

SHA256
897e90108102b4d93eed118fbc62f4bd208a2651c52da15431f3ece36f4ff274

SHA512
b98a53d48cee9d8d4fae804736e7b66c28beb429d4e84cad49f4f3e92f5a226c99eebe093fabee98d657d41729eab74fdf6081cc29b693e076b213e0e8e60a5f

Download Submit
/data/data/com.xgbuy.xg/cache/image_manager_disk_cache/journal
Filesize
179B

MD5
572e99e56905de66bd575bbfb70c07ef

SHA1
9c450ebdf2a4591fb24ba098b7d83e7cc6b1ee8a

SHA256
48781da7a8683a58fbe4ec6bb4291c553e94b87c81e81b52fa94a3db6f8f614d

SHA512
c6e78adb63e30af05f6915f2e8416460235d888697c62f0e3dcdf48803143e5052c2d925607cd61e7a273ce684bb021e4db9c0d15082d27b87a50ce0c3aabaab

Download Submit
/data/data/com.xgbuy.xg/cache/image_manager_disk_cache/journal.tmp
Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db
Filesize
20KB

MD5
bb1d75f2624836ea5ca2fa5c8051f3b3

SHA1
b69ccbfcc1cd7940d3977066e658c47a14849d2e

SHA256
cb76d2a14c404db1b9bb022c661d3f5e0e439003cb3658add2428b3c5eb5a7ec

SHA512
f292d68d4e5222cf867bf2bfb3e8fbce425ea69fcb4ed2e47e659e18498aeed7d444ebe3aaaa5f2c94c403b7ffd0af0a1a4a025ff6641b865b95b053edb964da

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db
Filesize
20KB

MD5
584aa0bae5af597c44420e8630f2fb86

SHA1
137701cb1de933eacbb6d9a934c98f9f3c1abd10

SHA256
27874742f55d983681e46208a2f6a82e0daef882c69b3e73b5bc65f97ac57a25

SHA512
86f1431330b45fae136493c333598f54d2cd887eb37e74099ce2229c97aaa4f92761ae803c8e149ff56fe9015d5d6757142b78cbee3b4adede45e8505876a3cd

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db
Filesize
20KB

MD5
1e2f072d8dbaf4427ae321e3f92d18ff

SHA1
96984e7b0b6dcf768cbc2e60816ab511a90c3122

SHA256
4de38cd3b7f96453307b0f20a0b69d972a7759ea74ce364dff71938f6c58998e

SHA512
e20d3968b79022f86e1a061b071a0d33a1ae871c4d054e4ff4a7b80ad25c049deb01da7f0b49d3e53743e88e75c6d03885190e8cd20dc86288382edaa6711e48

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db
Filesize
20KB

MD5
d0bc3ded2bc1137d3537bee5d411d58b

SHA1
f2f1c594db748cd5cf7562b0e5824947ef43e7b6

SHA256
91d70ed828610edd85206de88e16ae0a0fefefed554d0b003db70cdca982d4a9

SHA512
fab970153fc8d92693ddcf7b6b00c5be1fee57fd37250ed35bdf5b9c28b770618257026727aadb918e0b2c9f7e47b11e06c7bdda9706eb01573508d4ccbcb751

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db
Filesize
20KB

MD5
44bc2d40c7c27695589a75728e0d0797

SHA1
39118712a9574481e45a724e00673bfa83e71427

SHA256
8ca96e7d1989833525230a06bea15f85e1aba0cf9549dc3c207092e1325ad626

SHA512
1de7048475a1a9e005c36f114253b113d415b21c9755800ad772423cdcac028a72fd3b69f894d1dd0c953f840a72eecdfb3f27374077c6feba6bbc702ccfec92

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db
Filesize
28KB

MD5
5bc85ff59a8c65c6e22f2c61a8b93c4b

SHA1
6e3d18423d50f749db84768435cb3fe40132f08b

SHA256
0b9dfe5b414679de961d65192b8087254014d40e532e696f232b7ee5556b2d15

SHA512
e56d657168c12d28f9870ca5c6d9776e7424302cc786e5f7ccdbd673133765797a63482ad369979e0bb076a91b322a374fefa0e6db8201b0e144565132893a6b

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db-journal
Filesize
512B

MD5
37a12f616f9c0ec89527a98382a79b3b

SHA1
c98fcc7ad05f2ac0998bb32ef36d951a943b8f47

SHA256
ef1944d57772ced65c5dba26d2fabfec05f13a484de0292ad55355b96c5928ea

SHA512
4921d0ba51c56d527380376e9cbe2b9c16f91dd9358550e231918c0e7801029fa3459c727107c276d682b536b711d640ed534a8b69640f8d5e8e86f7a6c91908

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db-wal
Filesize
44KB

MD5
8cd757f3a8036f18d94c8fc5e87b9968

SHA1
2fc22582ee4672b1cc95c04f5f7ee45f57746b50

SHA256
aea8b7bacb7814c0d48c9b8b7783c50319f3fba62622868cd841f78db23c21f4

SHA512
f96efa2e4fd6498f9a67d794d7bc0e249942c44fb04ac85ca8fbe5be252bd3d9d07a657b3a1af4de0a417ed93e3a1f7bf7ad2d59eb64cdb3c83176cbe701742a

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db-wal
Filesize
8KB

MD5
6b3734317010ff3609efb9c79b2d8fff

SHA1
a0ebc61ed37011179dc7734f203382c27f31b962

SHA256
048ddcd48e981414d61c23aa66d60279f4ad281ddeb20d3ecaf0672b9548a419

SHA512
5900e544392e5e6db4deed17a701b9a236ee8dc0acffd5e03adc27e6c83289d8b7094eadf380b6183bbd25a73cf4b094e36914705cc35a644f72a82cb9a0d636

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db-wal
Filesize
8KB

MD5
ddb7e87ad1a95b1238950d491efeb2d2

SHA1
da47c1c907e3671a7952467b052021ff26f3ac09

SHA256
176d8399c3dcb2fecb4ec40b12f8fef1c59fa0fbabfeabaa692496f39982be2c

SHA512
faf2bcdfffd6306e379a64d76b561ccfa84fc4dff845bbcf43454e5aa9ddc14f1ee10ac823b6b96dfc837e9a1e8cecdd8d9d2e25b8ce9f7a563a7007ab2322e7

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db-wal
Filesize
8KB

MD5
90e1131ee04fffd0290948bb80632d45

SHA1
a7bd0a3fe5bc8a97631846061e91755a42ade5c3

SHA256
65768d172889c08d22b112aba5a3316371cabf207e2563ea4e37f595fb2584c3

SHA512
4ace246e755b4d783ce2a82f58edc5bf513ca0e0e64cef35f9624b9c709738e9b20707c1d9afa49ee55e5a9cdbb38806b19c7c1e46c6e473bb8c22eeee17bbfd

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db-wal
Filesize
8KB

MD5
2fcd521724a3a1af55f314f0faf51078

SHA1
39d72a220694c93b269cc4cc0b5374d5a5500b40

SHA256
12363a0ad290a5ed6c1ddeff0a0a100c60ea9941fd42f503a8dfa76484fe5f72

SHA512
b417a3ffce562abab993e86d5cfb6c3dc19301e4c45b8bd1b3a7a60a9aad714818d56b2ab8e79e5b84a732aba6c3d3125ca3dc62fd11d1263dbc8fba29623405

Download Submit
/data/data/com.xgbuy.xg/databases/Reyun.db-wal
Filesize
24KB

MD5
2fcde346ac9a4003374930e774e1bccf

SHA1
9b6085c4c0374730397714abcfff3aef275af9c0

SHA256
b888eb333ee43957f64494ba7ca103536a994470d23d7d1ef23fd4ea20b4f086

SHA512
53aa42962c8c985d066cb0438a2e6a33fd0b438b5d509e8a381b92b11adc81409e4ac4d271709d8ea185ac26ce8e84f9eb4042808eb8ba067d6cb72f63cfbde5

Download Submit
/data/data/com.xgbuy.xg/databases/ThrowalbeLog.db-journal
Filesize
512B

MD5
f829ab9e7a51938318a3267117b28d21

SHA1
bf1cc8b1629be01d899be5761f404a546bdb9eae

SHA256
ccfbb521c3feb6bc8be63ce3f56c8ab1899edd7dc4063df342e3781602d93fee

SHA512
39681a14d29fa80c992d4ad920512f152d6cc36c982098048acd3e8412b2ab28454c64b35d1e278210105c4c0b685f5c1070a65e19f1b4789d5152e4adb48658

Download Submit
/data/data/com.xgbuy.xg/databases/ThrowalbeLog.db-wal
Filesize
112KB

MD5
7ad16808704327c28bfd0c0c273b8efb

SHA1
95b72e986b969dce2e35d443d16646c58ae1b99c

SHA256
d75ee2b01d0e54a9b4efe1dc08b3bdd394b434d2def17f4283c5f87e8a9f9349

SHA512
9a6a4b12074e0a0101a625dd732493cc55cd627d145364affe55bfa52e4a2e851afb03faf076e829d61c0fbb9c179513d0a24577492fcfbbec6b23499b9198ca

Download Submit
/data/data/com.xgbuy.xg/databases/cc/cc.db
Filesize
36KB

MD5
5d7ea1a23af19b4340cc8d90f28297d5

SHA1
4cfe95b23a9e98378d69c4290af81b51fbe76aea

SHA256
474c4a54534ed96beacad7cc9a805a3f53ec9c0522fc7bcc59771cf500a6a0da

SHA512
33071f4c92da0a3df01c4a61dd165df7c7e0f4f37753cafe02d19fc876a5e7fcbb01c069c804e140ab8bfa0644a55f50fd1373646d1c439f817baa5ffbd47f7b

Download Submit
/data/data/com.xgbuy.xg/databases/cc/cc.db
Filesize
36KB

MD5
ce6135aa1b1fe4f2c2db2a546d2a5558

SHA1
79b59582154017aadab783dc266fcb158c252940

SHA256
7b45f576c08c7f78220168cca4a0e33198b13e9bdc8b1da406ddb6887412000c

SHA512
2839075fe374c8567c839ae35ce2d33ec72fdaebf170aa7d224b555e5b0e74d4a43f2f67d17ed806dae841da883e9620d788ea052d06152678afa927307c7ce4

Download Submit
/data/data/com.xgbuy.xg/databases/cc/cc.db-journal
Filesize
512B

MD5
2f245e7b6035687aa0d83cb499d1dd49

SHA1
4765ba595bca3705e610d7405ac8fd030c9c129c

SHA256
807647f82479d315c097774c312aab98421d47e4faf44c9714b8173871e7e851

SHA512
695c03c52fe821dbc67d61aa4212daadde94688ab3ed100968f68ac26c4d04e103adebbd952570224c5bc4d99087dc9a6261f4f5ebe64fed31dce7a86c61c167

Download Submit
/data/data/com.xgbuy.xg/databases/cc/cc.db-wal
Filesize
48KB

MD5
7c471b624656b615e999aff62565a2d8

SHA1
5da1d1368a0abc1688c9bd962f79d531284d526b

SHA256
5c9338cdd3d7b6bfedeb162e69f85741304fc9404e2275b78a77d659f2383b6a

SHA512
0bc58213dec2111117b96ebffdc6495ebc6647ca5bdc7c773cac3c2e7031e8dd234308193a62ec272fda210e3649996c8ca89e22a4605083b999bb61e0e5aaa5

Download Submit
/data/data/com.xgbuy.xg/databases/cc/cc.db-wal
Filesize
16KB

MD5
7810224feefb20dfff943e876159d897

SHA1
e58145436d5c776179e0737c04d5cd0dec3f91df

SHA256
b4e0510dd83c6201137e6e8165e1ecaca3112b12e64a305685618cb36c9c43af

SHA512
ebeee0c12ac1a83800ff4f43ad94b872c079a0b269222f63def3a1e6a61a8c23e28b9ab0a2e85bff690b0e08780badb9ba311985f28df5b581f9d3033ab31ff5

Download Submit
/data/data/com.xgbuy.xg/databases/je_1000_ISME9754_guest21989810653379098245449294259258358172-journal
Filesize
512B

MD5
f7031f0f890979a7be3b413fbab65919

SHA1
abb1b7f3b10b22d596d331b51ab174d95f34cf3e

SHA256
95a800d8cde2f3f2d16bfa1a8e715243ae374897f0ae88cba36c86933d0b23b5

SHA512
684c0e731f0400fcb7999a7fd11ddfa3c583a997bc6aad1a0d9bf3f97d3c0355326a6072062f717b28c2a6bac10e7c09c543997841335bc7aea25e71e01f42ae

Download Submit
/data/data/com.xgbuy.xg/databases/je_1000_ISME9754_guest21989810653379098245449294259258358172-wal
Filesize
48KB

MD5
2a4e043cd90bc1ac86d54f1099482ced

SHA1
da316e3eca9ceda375591a612e13727cae25e1ee

SHA256
cb6e11fb391f6603cc7bca48da2bc33b133d2ad1715fccd9c7f4791ee2f3fd6a

SHA512
0a7f49b41b7c106098c6f44d20e78a1a57f8bb3a65291e27555521893205851db75f956a1c4eb706a0290f869513df229c0524d42f6152c1b8b64e7d222a6f25

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db
Filesize
32KB

MD5
b63e176bc90776d8250ac08508ed1ed8

SHA1
a53c8b0777dfab6a0de9f97db4aeb9de9ef30b78

SHA256
b9b89b54cbd2ca15328146a512c6297e9717985cbd806f3a329ddd4d3bf7018a

SHA512
848c3a9ccd9d9cd562e12288229bc443025d805a59171984fb8d26fda83051817b40e17df52ebca88f5691ebe42daa9cc74d88e721a4da75798b10a881e47037

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db
Filesize
16KB

MD5
0f0e2e86b97dbb7965998af73ce37d71

SHA1
7e113351948c69ddb24431be057ae7918d5e3fb7

SHA256
c439aca03487681a93b24d5a4daaa1e5fff348a65e19bcaf51d1646cd91c1bb5

SHA512
1cec506ba11587a9764f64a169cc3b63e39ac8b96389cf620a687bfc0dbec88e9b6504f94663908053c300e21fe0799a0f5719f279680b14eb1bc135737d054c

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db
Filesize
16KB

MD5
04f19baa9a4fa7bc32340fdb9d04fff4

SHA1
9feb990047ae2f9382c85efcf0a9c7d25f66091b

SHA256
2cbfc68dc55d27b71d9797342c1500d3beefa2ded1c52870aafba705277a9149

SHA512
b5c274a085ae23a43c1015af358abf08cbafa558cf680b0a4d70a7f8ba2f80333ff3025ec957742ecb7bdbaac2a1a0f67a77aed01dccb4a4625bcb8669d190e4

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db
Filesize
32KB

MD5
d604a3bf1f8d992cc320ea5b1f7609bd

SHA1
247f88df0b55c7d523ea5398637711a0e4a483a4

SHA256
329940b4d46326d58e73c842dd099704061d0ef7338777bf31ad895f29013c17

SHA512
67e28f6713cb5c238a9664df128f01a89a2efb7c8c9330c1e45bc0d40ebab81fa20df5166743d84d81dc0386a89ff0329f022281c098339baa2e851ff0a1e1ab

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db
Filesize
16KB

MD5
83581a8153bdb13bf95433d59dead624

SHA1
7ccf6529fd967ee6f9da0d2cbea13ef3ab4605cd

SHA256
1beefb3ba1a211af9d9dc8f0f4242097ff421f65cb308b08f6ddb79b78bb3abe

SHA512
1fc7f3d29f14eec40ddce1163c984b5f92aab265b8101cb4abffcde699afb669f183fa925bb10edd466eaf51df8b78f5de9c267045f91067e44c039840eee783

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db
Filesize
16KB

MD5
9c908403713731d84798b9f9319dcb93

SHA1
f79eed4c5c83a9ebef98d7d77e744173b6d8d700

SHA256
605194126e929216bed40770b9bed2d90180f9fce520bb103b94da3b126ac6bf

SHA512
a26dcbe338d1a880a58da35aaa96c7af6f0667f7b5967e091c98b1a802e5c067efc052c873c2a33a3cbaf9af9b0cdb0105a1564c46fce86bee11478b13571cd8

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db-journal
Filesize
512B

MD5
f3b22b089d0a9c6024d51b7c99676f8b

SHA1
e7dbe5eb86f9677d6323372e5dbc08cf47bfb30e

SHA256
0b3d6bd958e2c4ef11203bed9a4bd64b85fb17d45c0036821e16a041c4531ceb

SHA512
7ce909e72e5a4641924845f63736d32b58762358210745643eeacc5647bdc127d0e9e7d6456a64421958629d4d775e163e3ecfe2ce99999db4b124ba2535a9f0

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db-wal
Filesize
56KB

MD5
00bb10f2643ec2b8d9d7e9e988c7dcd9

SHA1
659d41b272a6517a30fa8005e1a04888d10b3a4c

SHA256
c15f094bce66859a462e6ff6fb3a4fabf14def7519871a8b270926be6f33708a

SHA512
e59a936963517f054feb3a98c016b0f5d62ade055c34d93d7cf83db746c103893fee658be76eb8a0e3688847a092faf8d53a8622422ada7622ec4a4d93b85dc9

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db-wal
Filesize
4KB

MD5
cb8e9bbd0aae49eaaea4202c40d6b833

SHA1
a717a43a58b199a111384de3d7f5429358fff73d

SHA256
7ba030893bff169a7fa5b4e26dd1ecf43cc26731ab77a7e6c6cf730c0cc35204

SHA512
6b9a1dbb3d8bbec755f007eaf08c3237f4f15afa510c676598868f6c8f67b16064a46faa10edfa9b5d76f5fc09d1bac758bd7f26b27017bff7e5abffba51f39a

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db-wal
Filesize
4KB

MD5
6c1156eb3b34df4dc0cd895bc04b7ca4

SHA1
9621785bc078b5cad99e8a8ce6272af28125da33

SHA256
4567b0711e13936a7799edaf803a5fc36e9b5c86b7190fbcd119c5ff06f37cc4

SHA512
6d8e50efe7d3708f16a85d77d6c0250f29423bc58a951e4a6d17f4b4fff4ba87303ef97fcdc2889d3077d1ca11104f54244f79e6149b8dbbc6cfb7c84b6d41de

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db-wal
Filesize
8KB

MD5
2014eae6796ebf90d327bc747cdcdffc

SHA1
1afdcd61504c8a79a9a1e7f75cf14b6f783d21c1

SHA256
c75075db3286999040df0dbfbb5edbb4bb361fc92d3f9a2c06bf33cd7b093a7a

SHA512
db87456ce3b7cfab6f909e8a99c3cb281f21489553b6ea1faf952ffac6e64c18c63ea5014e00c55247c1b7c67a62f17b100780bb8ef684355fa280c01c8d0e90

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db-wal
Filesize
4KB

MD5
f060d2aa92de65b43e1dbeee786cf03e

SHA1
b1cdad2c6abcc65e79e1e2691ed5f692ff2a2db3

SHA256
6beedb3d92aa1dad8175678a46a3854ef3fe1414cd8e9f7352c9ba01c3f0d83b

SHA512
906e3b1d167601d1f6323c83f361082e99c9ff0192cdc83078271e4d4935719633484068882d24f98e414ab3c452cd1e4e164edd55fc66c4c917b29595ff34e6

Download Submit
/data/data/com.xgbuy.xg/databases/ua.db-wal
Filesize
4KB

MD5
e2f0739e535007b3a6f9459ff0502253

SHA1
df3a4861c78bb093e182b2fb284774d464964e06

SHA256
b1324b42cc1a62b7ae8aeb9178117a990cb836754332298bf495acfcf799417a

SHA512
1b96a5a7f819cde9053b289013ef87b11fcdff67b9bf56d3eecbf4c4ca7b2ac30b9ac2679de34684a826000df7501555e4867d108192fd5e5e5e7a3177cce5f9

Download Submit
/data/data/com.xgbuy.xg/databases/xinggou
Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.xgbuy.xg/databases/xinggou-journal
Filesize
512B

MD5
6e399484b1c2fd5339fd8dc05b81d23a

SHA1
0282884e79be88146716f51e858852c2e76a42ab

SHA256
a44e7c8b0f2273075fd78914553bd7caa2dfbb6c857731c37395d09a28f50eb7

SHA512
386c61755dc30da8e523bb6c9c1055bf3e5c77531ab7854a715b44817a4da2d03efb39d3aa854c11a8ccd72e37abe05932dfc0ce645c2f814270b4954eb3ac05

Download Submit
/data/data/com.xgbuy.xg/databases/xinggou-shm
Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.xgbuy.xg/databases/xinggou-wal
Filesize
60KB

MD5
f4078007f08a661fc0833f657a91b35b

SHA1
140637b21f38194e4b66ca47743b4849493db7fe

SHA256
8c9b374928bbde038087ccfff6003b933821c5b7fb07972222854ffd62a649a4

SHA512
a2797c44ad2841d3fa027dc9701f6cc321ec6e60f55c58ac5aca977fa16a11b31f195a9d1115e2efe6d20f3a4ecd8085863277239fd5cabf1dbbb67b5b7d8188

Download Submit
/data/data/com.xgbuy.xg/files/.imprint
Filesize
1012B

MD5
190fe79e67a5bc84066a25487def2b06

SHA1
f217e9a27801883d844c57d9fd6762d8346876a9

SHA256
605faa0b7eeb11363c0e1c5941ea5070a574c5dde19983fc558f21ea67e63cbc

SHA512
81c62f51e40e47acbb4447c626662905449c81b0d5f5991ac7be3e121c22277916cc480c5e5b9082f14b1cf4dc0d61d9deda536c396425f1d01e91deba4381d3

Download Submit
/data/data/com.xgbuy.xg/files/.jglogs/.jg.ac
Filesize
40B

MD5
3911ad10a2d9a4f7ef7a09639a1b8cf3

SHA1
d8d5dae863fe04bef8d987202e25e065efce1e1f

SHA256
0ae3380b0712c9bcbb362bcdf7b72504b9e495fe2987cfc20aec121977dba19d

SHA512
d58dc5e805e0e2d11a79c725285dbb3f75d351d456c87ce79439af68c3a6c2506f5814bc16f09fbf16462c93f5c781437a5bbadc4d48977782899ce9d741dec8

Download Submit
/data/data/com.xgbuy.xg/files/.jglogs/.jg.ac
Filesize
40B

MD5
81024874f926b0c0c9e613997c9370b1

SHA1
a7b4c37570f3e5aa7bd575d0dbcc71ff9079a95c

SHA256
da5ea38fae9a292777936eae50a76aae4d2a589550448aa6970383e44aabe7d6

SHA512
8ae3ca2a1a4ea6c514fffeb911f4c42ff173433a7fd82980193d883196e748e458e83ee42051ccbabfa7f49792dabbf1eb8a72fea3db16c2f157e7ada4182830

Download Submit
/data/data/com.xgbuy.xg/files/.jglogs/.jg.di
Filesize
340B

MD5
4b448e189252d44d3cb9feb14235fdff

SHA1
e2b438bcc2137fdf3a8833005cead481a6688cc7

SHA256
148030328145dcf36fe6ff833fd8673257dbf9e2ac70f564e0a07eb43f680e1a

SHA512
aa1f06e13652f0d41646c45ace2811df39b0b172e1616809f08dafdf5fda037b6953adc7ebb568aadb1768d38ee146cb7b4cf7dc232f6b0bb14a0bd67f998635

Download Submit
/data/data/com.xgbuy.xg/files/.jglogs/.jg.di
Filesize
340B

MD5
af732ae240677b8016802445d4d75643

SHA1
d36db5b18218407f22d118bf9ca6500bc0d17bbd

SHA256
5ffd8f1c76eef91cde81b2d9e862b115bf93cb9753c734db0b6ab0ff4222acba

SHA512
d51efaa600a3fccf1f388c1b13b198826f5506579ea4220754c8e29187a48e66e92b83d9a09b1f7da1fce8c01189262f2b7861b84891c34628733817ec296890

Download Submit
/data/data/com.xgbuy.xg/files/.jglogs/.jg.ic
Filesize
40B

MD5
1bd86b90e1b355f123e5ce8c93c3de53

SHA1
bee5683d6124650c8be0b3740ad66e771f29b178

SHA256
3ba28c4fe20d74ea96f6ced27333f04a01e03c50092717eed1b6e30152a8d152

SHA512
6ba3d7ac2b9da3bb2f7ca50488782bfb9f12a38bf17debc4f2853a161551a932885bedaedace0ecd3da9777e1cddbb407ca2360c13512b1b804bd6242e767abe

Download Submit
/data/data/com.xgbuy.xg/files/.jglogs/.jg.ri
Filesize
314B

MD5
079c601c12a19cc407182a75397cc645

SHA1
c69649270b9db0c0d53b20170e79d4069b1fb138

SHA256
3e2ad122cfdde00c13c2caa27d30f1635f75b27411b3401bf5e2543b5f3ce840

SHA512
4e577a1d6623fa6177775ceb1dd59ac5f981e516090408796741632397293d767c8816467d64562f6526d11602f6f0bc2c29816637a8314821529ab83864ade1

Download Submit
/data/data/com.xgbuy.xg/files/.jiagu.lock
Filesize
27B

MD5
b78700d774eaca559daeda2d2c29b47b

SHA1
bff1b965d00a5457a8ef516b732a438a64398be6

SHA256
ff5d21e2df33eeabe226af1c7bae9307ea6b7b3091ec6a666a4c813033d22a50

SHA512
fc29137779570ed814e7a68188ef878b7f9dc134bd2bbb1b2836fc8365898fd37c0258d6443c2b495f0d2e314353a0fbed359967b6498abe1ff375050214c297

Download Submit
/data/data/com.xgbuy.xg/files/.umeng/exchangeIdentity.json
Filesize
162B

MD5
05b2049d7d7f4840eaf23156a2763641

SHA1
8e4e9ba923638f8058ae4750e1f8a506a5449e97

SHA256
92241b2f8f5fc53c173df18935572a0f90cb22ed3a145f44fce293d5f6f8acea

SHA512
5ba7dcc35442d58e418c61c7f39e4f4a31fe67158c0f1e0f704df94acb97e0e35c40cf8ed59624661eb3f74fd57557f87afd5a1a7666dcc047aac07c7c7566d7

Download Submit
/data/data/com.xgbuy.xg/files/Mob/mob_commons_1
Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
/data/data/com.xgbuy.xg/files/Mob/share_sdk_1
Filesize
23B

MD5
8e24e79baab91c4d0604eaa9006a0cb3

SHA1
e427afc94a4b957a7096f73e395a10ea404c076b

SHA256
65ee797326cb9d94a4c8b13fb114a7273d80af9ae547496bf56556c479f75e4d

SHA512
45bde5e1b5da5e54f7f5baf24cf4d9158ccf5813f0babc05677437bfedf1d54c4707090a1c425089e8f9582a85fed80b25c1e1f30ec2051afc6fe68bb8a76bae

Download Submit
/data/data/com.xgbuy.xg/files/Mob/share_sdk_1
Filesize
62B

MD5
58c3649b329f2825aabd00e0aa9a85f6

SHA1
a169d891f2ace385bb246f0dffc44a2ab486ba94

SHA256
3501588b6762c485cf72d817aafa70cc2b86b080d8253d1a502712c5ca346dd3

SHA512
36b98e38e95678a4fe57e9431ebec65a26a1500be485fc7bba748a6e2aad02fb9d80e8270035a054aa0b7e39b160561dd76d884ee08e6fafbb7d89e8f65a87c6

Download Submit
/data/data/com.xgbuy.xg/files/Mob/share_sdk_1
Filesize
86B

MD5
153e855225e729dc29a72a2dac78e313

SHA1
00e5f74195ade4dfeabd5464f2cb7bf7332c3e2f

SHA256
22bf54a95384e4df2d49ccdeaaee45bfe4e6acf2c62c0e5d1c54c93b8b72fce7

SHA512
2f77206a2624fa6d37802916fd45561dab6169e35f7ef622e489aed7e0d1490662f3df0fd448e48a7c719289a6c56f64221523fff518f92e796991c158bae081

Download Submit
/data/data/com.xgbuy.xg/files/exid.dat
Filesize
62B

MD5
423b1a5f557627fb97a0cd6eaabe93ec

SHA1
d520ff9d37976d8cf040329ddc9259954f757d26

SHA256
ac96c11f792f295466da0b961ef4fc38a6108fd3b35917f1d50fbd16a5710537

SHA512
48d14d822fde6ad2313d2d9a16b5c8a1ef198f2948318247545bf47761608a8e4020ef1a06fcad1083510ddb6fd499d1e98cf85603aa01f2486249891f6b2eb7

Download Submit
/data/data/com.xgbuy.xg/files/jpush_stat_cache.json
Filesize
131B

MD5
1bd8b050b3a3b606def5b39f56cb6528

SHA1
b2ffd56e12c4609b51f77473f5d9d88c23e77a88

SHA256
672d54f4f44239c2ad1d6055a8dbdf97b8c42eb2dc9401f46e8e761e9f1cbc9f

SHA512
7ef9da3321c1ffa173bf75fc2c830be4fadb7f34adffa5abd68200db5dcff894a390669e8775a1c0513bd5bd8a57cd691261d005693b57e182b0b5bac26fbe22

Download Submit
/data/data/com.xgbuy.xg/files/jpush_stat_cache.json
Filesize
188B

MD5
fb0a02a81bbf29b268e5ee4a75714cc2

SHA1
4e523b8dd3cd78304f883d514e82eaaa4c1ff563

SHA256
d653660b2eb2a409499702eef36dc8b4e47882812b0572be76fffa5f83a3599d

SHA512
f87353baf6b1a75268e2a686a3c131d21f1b19c97ff767002e12a6442ebff6c4c1b4bfb937dc3c72bfaa5690464a575a898d35842882ca8993a5d8815f9830f4

Download Submit
/data/data/com.xgbuy.xg/files/sobot_chat_log/sobot_chat_20240523_log.txt
Filesize
201B

MD5
476c22d58c29f894ed047626f6b32fe5

SHA1
82ff0e293f37248c3c9f9eea546c6f426b56f829

SHA256
5aa1d51896b318cc253b6e51c47dc8490f57593b5f84720fafd15262da8c765b

SHA512
0897bef240f8dd14b7a7e16201375522351ea67efacddb8da90bbc1359275dad698866fab237260eeb6e9c9e5fa1f14cd6963c457fb06ae86f22526edd7e8c87

Download Submit
/data/data/com.xgbuy.xg/files/umeng_it.cache
Filesize
413B

MD5
017d113f755269585094c034a11bfe77

SHA1
34e13b74cfce6428be8f929dfdf747ec4b9bca36

SHA256
6947c1075c6779aa333caefed586cea3bc552eed98be2c7aee96cee9332df8a7

SHA512
84ac9bdb01f68a478922def5cd048c160874d33b1a49b2295d872ea9cf68bedc0668bc95071512124b37ae5303be48bf81c93d48069bcba855e05d2f3d029a02

Download Submit
/data/data/com.xgbuy.xg/files/umeng_it.cache
Filesize
210B

MD5
5faada522890318f83ce797f68c45927

SHA1
645d7365b24c6b8c5e9bc19d9f4d0500b9b7d27e

SHA256
a719724ffa40b3ed624fbe9d692d579c8fbd1898060f661cfefeea84ab9ffe67

SHA512
64f12507687585e301969eb8df1abf34fe5f397d7fb14b1ba177d7ccfa1d292b1cec6bdd193d90277777c13081918f0f4ef153c087e964e563496dfca5c55cfe

Download Submit
/data/user/0/com.xgbuy.xg/.jiagu/classes.dex
Filesize
6.5MB

MD5
4fc8e6fdcf2dc4a66af6f6acbe501171

SHA1
137cd8a5ca63a7668a006b21720987b94d6f1d90

SHA256
7bdf511bfceb4118283aa94fab2703aa4b8d331312745bf75097ec288f4af081

SHA512
f43ab271a7bf07ef3e30a54f8a40c05a017247bda225571d27b863979e972f80a0569e18e1445428c8533c9bd2fe0c7c1d9f6a17ea590a41d8ab5a78acfb5b38

Download Submit
/data/user/0/com.xgbuy.xg/.jiagu/classes.dex!classes2.dex
Filesize
6.4MB

MD5
b1996ebb3ef14646a886399ce277ea7e

SHA1
5249efa827fcecd4c4fe6f1131eaffe76e6526a6

SHA256
56ef5a71b19f5a59ee5e3d4f449eb39dc1a4a1b70ac9255e6b62228f7e396b99

SHA512
9bfb1e128d3cb8684a699bd2af33d2b4d38aaa6356f16eae07f39b6313d0a0016e5e4d387af5a30c86c8590498ad19f6186e35b94d312b1d273347ecdbcf320d

Download Submit
/data/user/0/com.xgbuy.xg/.jiagu/classes.dex!classes3.dex
Filesize
1.8MB

MD5
d4ef29fb55f5671d76568a79dc72b14e

SHA1
b621e9de7f5cdcf9891a52b55d7b94eac07887a4

SHA256
70d2e68ebdd0242d59e4689404a80dc137235074345d8d95ab8b7de4c9e05db6

SHA512
f3a1c6057b56098388a40420d941ad2d82cfd4f894485c00096db9fef3f5a101b04e431fab0fd4ab6e5b39d8ff6e9219c93f7d6875b76d5773ee8ebb14abbe5c

Download Submit
/storage/emulated/0/360/.deviceId
Filesize
48B

MD5
1d8d16c4e3b19ebf18988530d9b9a757

SHA1
bc94c1cce05cd848a53271ecb9c5311e27ffebf5

SHA256
abd87140da8de3d0aa39a24a8d52bfe7b2eb28f7a3d505f205471c7e8f4964d7

SHA512
4562d1eedbc5c2dd7f25cd1c70343053fd451026403585182b142a64f17016c1bd0bf6ad51667b439b220e425640e55fbbda08517e7106376cdc220a4555da82

Download Submit
/storage/emulated/0/360/.iddata
Filesize
32B

MD5
5bf85148841d8383d6d7b986208f4e57

SHA1
3ae0cec3700200310342e6fe027dbf002e8dbb87

SHA256
5c84aa5fca03441f84293fdc45f10fe0873daebdee032eb82ffee4ce4bf8654c

SHA512
900486ef249d3e04f5cc092b1203a3a447a80ac84a870cd749fa428e850e13e2290d00262f99ebfc5be55cbd771c9b18eb0e4133cc668b6086fe525ceb1c96fc

Download Submit
/storage/emulated/0/Mob/.slw
Filesize
66B

MD5
19402718bfb1c685a726b4e1d846ad98

SHA1
02a7e30044a67085f2f1da24e16e4ecfede65b72

SHA256
079f790e6a1934a94542559f53a89a824aafd3173d956b6019291955aeeb33d0

SHA512
25254318c22cfd301c8bcd479f45797d502b6ab5f14265dadfa3d87b4dd1942a629d3cbc2f0b600cf73b4fe910e3773432f56a0a7b4343e280e20c5a6af0320b

Download Submit
/storage/emulated/0/Mob/comm/.di
Filesize
57B

MD5
70a42cba408700f9a6c01c7941a8829e

SHA1
eab01cc2c0671538795fb0b1146017dc099d0984

SHA256
499576707ce2623293166979e59c832be5b8636c64ad39aa63ebcf961910c35f

SHA512
8900d4dc8eed0430babbacb72942401bd22ef7fe5430cad90d3ce0c2c53010220d666aa0e2eb1026f3ec81d574c7fa12585b49222a5f15b01637f6ba134fe70c

Download Submit
/storage/emulated/0/data/.push_deviceid
Filesize
32B

MD5
8d139c645bea6dd67be856be52880ca2

SHA1
7216ae2ee4106dbb23a18ff327a212ec5fd04c86

SHA256
f8c0c83b24e41f80422a4b6baf890bb01ccac6d92d5757feeda9f0e413ac4bda

SHA512
3133a3d951613982807b45ca07f64a85f3351d8c610faeb0e08caffdbb06eab8a3f366928492493378fdddfd2b51aadd0bd25f5d711821fbeb3e7a60fe0a4a15

Download Submit