9931de2d577ed1cb239f8d12c22016dd3884de1c5f3c9c74acf3d6195e57c622

Analysis

max time kernel
179s
max time network
184s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
23-05-2024 02:00

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

69605fc1b20557dbff811105a44f3527_JaffaCakes118.apk
Size

10.6MB
MD5

69605fc1b20557dbff811105a44f3527
SHA1

d9e5573f539ba5f1aec13293b7ab688670a03074
SHA256

9931de2d577ed1cb239f8d12c22016dd3884de1c5f3c9c74acf3d6195e57c622
SHA512

222aa7ec7a6bfd198d2ec09e524f8af1910786a2d05a96912860ce6f63fca5105c725fac1f6b508736950952bf07b1ffa74920257cb5e0bcf569a055e409afe7
SSDEEP

196608:DSJ6XVOzAg7btuWle7cPTtYRvQygjKydd++zMVBCGwz:DpFO8g3zlwatwvfgjKyf+gcBl2

Score

8^/10

discovery evasion execution impact persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 2 IoCs
evasion

T1426

Processes:

com.shopapp:corecom.shopapp:channel

ioc process

/system/app/Superuser.apk com.shopapp:core
/system/app/Superuser.apk com.shopapp:channel

ioc	process
/system/app/Superuser.apk	com.shopapp:core
/system/app/Superuser.apk	com.shopapp:channel

Checks memory information 2 TTPs 3 IoCs

Checks memory information which indicate if the system is an emulator.

evasion discovery

T1633.001

T1426

Processes:

com.shopappcom.shopapp:corecom.shopapp:channel

description	ioc	process
File opened for read	/proc/meminfo	com.shopapp
File opened for read	/proc/meminfo	com.shopapp:core
File opened for read	/proc/meminfo	com.shopapp:channel

Loads dropped Dex/Jar 1 TTPs 11 IoCs

Runs executable file dropped to the device during analysis.

evasion

T1407

Processes:

com.shopapp/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/data/com.shopapp/mix.dex --output-vdex-fd=49 --oat-fd=58 --oat-location=/data/data/com.shopapp/oat/x86/mix.odex --compiler-filter=quicken --class-loader-context=&com.shopapp:corecom.shopapp:channelcom.shopapp:corecom.shopapp:channel

ioc	pid	process
/data/data/com.shopapp/mix.dex	4252	com.shopapp
/data/data/com.shopapp/mix.dex	4364	/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/data/com.shopapp/mix.dex --output-vdex-fd=49 --oat-fd=58 --oat-location=/data/data/com.shopapp/oat/x86/mix.odex --compiler-filter=quicken --class-loader-context=&
/data/data/com.shopapp/mix.dex	4252	com.shopapp
/data/data/com.shopapp/mix.dex	4612	com.shopapp:core
/data/data/com.shopapp/mix.dex	4612	com.shopapp:core
/data/data/com.shopapp/mix.dex	5104	com.shopapp:channel
/data/data/com.shopapp/mix.dex	5104	com.shopapp:channel
/data/data/com.shopapp/mix.dex	5243	com.shopapp:core
/data/data/com.shopapp/mix.dex	5243	com.shopapp:core
/data/data/com.shopapp/mix.dex	5404	com.shopapp:channel
/data/data/com.shopapp/mix.dex	5404	com.shopapp:channel

Queries information about running processes on the device 1 TTPs 5 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

T1424

Processes:

com.shopappcom.shopapp:corecom.shopapp:channelcom.shopapp:corecom.shopapp:channel

description	ioc	process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.shopapp
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.shopapp:core
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.shopapp:channel
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.shopapp:core
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.shopapp:channel

Queries information about the current Wi-Fi connection 1 TTPs 5 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

T1421

Processes:

com.shopappcom.shopapp:corecom.shopapp:channelcom.shopapp:corecom.shopapp:channel

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.shopapp
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.shopapp:core
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.shopapp:channel
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.shopapp:core
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.shopapp:channel

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 6 IoCs

persistence

T1624.001

Processes:

com.shopappcom.shopapp:corecom.shopapp:corecom.shopapp:channelcom.shopapp:corecom.shopapp:channel

description	ioc	process
Framework service call	android.app.IActivityManager.registerReceiver	com.shopapp
Framework service call	android.app.IActivityManager.registerReceiver	com.shopapp:core
Framework service call	android.app.IActivityManager.registerReceiver	com.shopapp:core
Framework service call	android.app.IActivityManager.registerReceiver	com.shopapp:channel
Framework service call	android.app.IActivityManager.registerReceiver	com.shopapp:core
Framework service call	android.app.IActivityManager.registerReceiver	com.shopapp:channel

Checks if the internet connection is available 1 TTPs 5 IoCs

discovery

T1421

Processes:

com.shopapp:channelcom.shopappcom.shopapp:corecom.shopapp:channelcom.shopapp:core

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.shopapp:channel
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.shopapp
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.shopapp:core
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.shopapp:channel
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.shopapp:core

Reads information about phone network operator. 1 TTPs
discovery

T1422
Schedules tasks to execute at a specified time 1 TTPs 1 IoCs
Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.
execution persistence

T1603

Processes:

com.shopapp:channel

description ioc process

Framework service call android.app.job.IJobScheduler.schedule com.shopapp:channel
Checks the presence of a debugger
evasion

description	ioc	process
Framework service call	android.app.job.IJobScheduler.schedule	com.shopapp:channel

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 5 IoCs

impact

T1471

Processes:

com.shopappcom.shopapp:corecom.shopapp:channelcom.shopapp:corecom.shopapp:channel

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.shopapp
Framework API call	javax.crypto.Cipher.doFinal	com.shopapp:core
Framework API call	javax.crypto.Cipher.doFinal	com.shopapp:channel
Framework API call	javax.crypto.Cipher.doFinal	com.shopapp:core
Framework API call	javax.crypto.Cipher.doFinal	com.shopapp:channel

com.shopapp
1⤵
- Checks memory information
- Loads dropped Dex/Jar
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4252

sh -c getprop ro.yunos.version
2⤵
PID:4336

getprop ro.yunos.version
2⤵
PID:4336

/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/data/com.shopapp/mix.dex --output-vdex-fd=49 --oat-fd=58 --oat-location=/data/data/com.shopapp/oat/x86/mix.odex --compiler-filter=quicken --class-loader-context=&
2⤵
- Loads dropped Dex/Jar
PID:4364

com.shopapp:core
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4438

com.shopapp:core
1⤵
- Checks if the Android device is rooted.
- Checks memory information
- Loads dropped Dex/Jar
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4612

/system/bin/sh -c getprop ro.board.platform
2⤵
PID:4640

sh -c getprop ro.yunos.version
2⤵
PID:4673

getprop ro.board.platform
2⤵
PID:4640

getprop ro.yunos.version
2⤵
PID:4673

/system/bin/sh -c getprop ro.build.version.emui
2⤵
PID:4738

getprop ro.build.version.emui
2⤵
PID:4738

/system/bin/sh -c getprop ro.lenovo.series
2⤵
PID:4764

getprop ro.lenovo.series
2⤵
PID:4764

/system/bin/sh -c getprop ro.build.nubia.rom.name
2⤵
PID:4789

getprop ro.build.nubia.rom.name
2⤵
PID:4789

/system/bin/sh -c getprop ro.meizu.product.model
2⤵
PID:4815

getprop ro.meizu.product.model
2⤵
PID:4815

/system/bin/sh -c getprop ro.build.version.opporom
2⤵
PID:4839

getprop ro.build.version.opporom
2⤵
PID:4839

/system/bin/sh -c getprop ro.vivo.os.build.display.id
2⤵
PID:4869

getprop ro.vivo.os.build.display.id
2⤵
PID:4869

/system/bin/sh -c getprop ro.aa.romver
2⤵
PID:4917

getprop ro.aa.romver
2⤵
PID:4917

/system/bin/sh -c getprop ro.lewa.version
2⤵
PID:4947

getprop ro.lewa.version
2⤵
PID:4947

/system/bin/sh -c getprop ro.gn.gnromvernumber
2⤵
PID:4971

getprop ro.gn.gnromvernumber
2⤵
PID:4971

/system/bin/sh -c getprop ro.build.tyd.kbstyle_version
2⤵
PID:4996

getprop ro.build.tyd.kbstyle_version
2⤵
PID:4996

/system/bin/sh -c getprop ro.build.fingerprint
2⤵
PID:5020

getprop ro.build.fingerprint
2⤵
PID:5020

/system/bin/sh -c getprop ro.build.rom.id
2⤵
PID:5044

getprop ro.build.rom.id
2⤵
PID:5044

com.shopapp:channel
1⤵
- Loads dropped Dex/Jar
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:5104

sh -c getprop ro.yunos.version
2⤵
PID:5168

getprop ro.yunos.version
2⤵
PID:5168

com.shopapp:core
1⤵
- Loads dropped Dex/Jar
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:5243

/system/bin/sh -c getprop ro.miui.ui.version.name
2⤵
PID:5283

sh -c getprop ro.yunos.version
2⤵
PID:5302

getprop ro.miui.ui.version.name
2⤵
PID:5283

getprop ro.yunos.version
2⤵
PID:5302

/system/bin/sh -c getprop ro.build.version.emui
2⤵
PID:5334

getprop ro.build.version.emui
2⤵
PID:5334

com.shopapp:channel
1⤵
- Checks if the Android device is rooted.
- Checks memory information
- Loads dropped Dex/Jar
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Schedules tasks to execute at a specified time
- Uses Crypto APIs (Might try to encrypt user data)
PID:5404

/system/bin/sh -c getprop ro.board.platform
2⤵
PID:5433

getprop ro.board.platform
2⤵
PID:5433

sh -c getprop ro.yunos.version
2⤵
PID:5467

getprop ro.yunos.version
2⤵
PID:5467

/system/bin/sh -c getprop ro.build.version.emui
2⤵
PID:5521

getprop ro.build.version.emui
2⤵
PID:5521

/system/bin/sh -c getprop ro.lenovo.series
2⤵
PID:5546

getprop ro.lenovo.series
2⤵
PID:5546

/system/bin/sh -c getprop ro.build.nubia.rom.name
2⤵
PID:5571

getprop ro.build.nubia.rom.name
2⤵
PID:5571

/system/bin/sh -c getprop ro.meizu.product.model
2⤵
PID:5596

getprop ro.meizu.product.model
2⤵
PID:5596

/system/bin/sh -c getprop ro.build.version.opporom
2⤵
PID:5622

getprop ro.build.version.opporom
2⤵
PID:5622

/system/bin/sh -c getprop ro.vivo.os.build.display.id
2⤵
PID:5646

getprop ro.vivo.os.build.display.id
2⤵
PID:5646

/system/bin/sh -c getprop ro.aa.romver
2⤵
PID:5671

getprop ro.aa.romver
2⤵
PID:5671

/system/bin/sh -c getprop ro.lewa.version
2⤵
PID:5697

getprop ro.lewa.version
2⤵
PID:5697

/system/bin/sh -c getprop ro.gn.gnromvernumber
2⤵
PID:5722

getprop ro.gn.gnromvernumber
2⤵
PID:5722

/system/bin/sh -c getprop ro.build.tyd.kbstyle_version
2⤵
PID:5748

getprop ro.build.tyd.kbstyle_version
2⤵
PID:5748

/system/bin/sh -c getprop ro.build.fingerprint
2⤵
PID:5773

getprop ro.build.fingerprint
2⤵
PID:5773

/system/bin/sh -c getprop ro.build.rom.id
2⤵
PID:5797

getprop ro.build.rom.id
2⤵
PID:5797

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.shopapp/databases/bugly_db_legu
Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.shopapp/databases/bugly_db_legu-journal
Filesize
269KB

MD5
3465935dfeb61bcd7b9254c868072d8f

SHA1
56b9458c5525f14390140a9d2e85e36807611d64

SHA256
2923343da58a87591b509273cd02025a401c1f0b43aaccf9f1e4d8eea59719ad

SHA512
b2cd0a9c769464bcaa000379f424a38288252efe8449e3b9491624a89e69e682d3f0d66e0923e3a134152fc266ef9c51d8228fec0fcd0036274389a8563e7474

Download Submit
/data/data/com.shopapp/databases/bugly_db_legu-shm
Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.shopapp/databases/bugly_db_legu-wal
Filesize
92KB

MD5
07e2f6b0a270c53948e2ac95797f5e55

SHA1
bfe04ea5a50ae60481adec218d99b9def9ba162f

SHA256
fb4ad4476f9f68eb469eb619feb4d21f579f28484997c1ef55214406290d02a4

SHA512
019c42dc9cd6bfa808624c69e2824fa11850adaa05647cf2b49437554b4b0d5ae0db3acabdd855cb1b6cd11cd36877faea01fad63c84f7c1434bcaa5ea8e3b15

Download Submit
/data/data/com.shopapp/databases/message_accs_db
Filesize
36KB

MD5
486e2bac2b3e9e1cb411d2838a4854bd

SHA1
81dd0a7537f4af319b830ae834908986be85da8b

SHA256
5644a250fa6cef16c2c802b98275656a5fc39dcf89bcc22193742d85c7313f57

SHA512
c146789563dae163e373489b3df53f22efebd32b69643992969241eb5ad5eec668de67e7cd2aaf5c3a8af57b0842115d00183825734f57643d3fdb09835fe681

Download Submit
/data/data/com.shopapp/databases/message_accs_db-journal
Filesize
512B

MD5
da294aeca1a2b609760f1fff53cdc5c0

SHA1
4d21bb89000b3cd92795610e410afadb945dfd85

SHA256
a69b32b9a669e019a7bb8eed4c04ad0e5df001405afb5a7ae94a8b74b3effc32

SHA512
c21e65226af0c0ce09111c5bfc315c49d751ae6cb932a48b6bf5ec43d2ed0d9a5ea08f4eb8dc303cb048172d0332d9b535c11042be77efd83c5e4d2884b07c2f

Download Submit
/data/data/com.shopapp/databases/message_accs_db-wal
Filesize
48KB

MD5
2370668ba6aaddca2424e9850ccc7a43

SHA1
1c50d4aedadb509e469cda1a94357a4c43a5af24

SHA256
d98fa4416a806bb2776273206f8fbb887c6a7f3caf819f953eb7252cbd318bc3

SHA512
abcd103c1c96b0d3fc8e2b78db812ba8178ca9f0a22dce39d7e67a61b5588f5fa6a0d5369a9c8fc1ad14acf168377973b8fe805bbc1396ec4508a337300fe034

Download Submit
/data/data/com.shopapp/databases/ut.db
Filesize
20KB

MD5
a0bb4514951d748f65db355878e1f867

SHA1
703abc47e44ae3007c41567e3f1db0f808789bf9

SHA256
1f91b9f06939993e775ef9cde9926eaeb75fda19e55eb1f5ec3a0de18ae82dcf

SHA512
9ae7ad7f34deb145b922a54c940d4142833a2fe628b5aac74f569eb0bb4b37268ed0796ad1005c7ece8d71192cc8c5c270936dc9a4e573ada53e5ea4c4a8e643

Download Submit
/data/data/com.shopapp/databases/ut.db
Filesize
20KB

MD5
dbaaf0f9e56ec03d9865dee771ce9a31

SHA1
bc2ea9111bca5dfeb0014010e629483b0b8a9f93

SHA256
f8170dc5095376d6c2a1cb3a5265ed55b112f4020a8aaa9d6e2fd44a03d9744f

SHA512
71408c4a5a5030a970fb421cd19ea2a16cbade029c69172471a793b449b77637edd2237dbaf4409b996c04e73d7ff9fde7e3395dbca5943c30a59f274e30fb05

Download Submit
/data/data/com.shopapp/databases/ut.db
Filesize
20KB

MD5
c2560432fd3e54584b1ac57fb91fc502

SHA1
732eeb22740fb7bdc720fa60567072f3b481be16

SHA256
9e4625e43215d5a5b7fcfe7cde658c3b884e2e2990bc9c4008b31dd2b0a333cd

SHA512
963c211c1dd6d5b8775b4c16af1aa5c8fd09bb7d24a3aa430cb59e087bab9eeb65ef74e5a5a1361ac1d39adec8b79a59f5606310a23538795daad5f6710692fe

Download Submit
/data/data/com.shopapp/databases/ut.db
Filesize
20KB

MD5
f208c55c2f6e41c752c2a3132c404baa

SHA1
797ee4225b7a152500de180733466a1f019b8109

SHA256
f19763d9930f35692c711907eb1b896313b1240c4f7ae1bdcc053cd1d02a9513

SHA512
6bda047f544aa3184044f5cfceb07c262a7be6c70de9f583afc2eaf9e03400d715882b31b057ff9075dab78dc1c115033e02ec15c975e089933e0c782160d9bd

Download Submit
/data/data/com.shopapp/databases/ut.db
Filesize
28KB

MD5
1ad12345f7180bdbb84e08df49c60841

SHA1
b9970a574d0c636826ccfe173f00cb0e6c47181c

SHA256
fdbba74e2bf78e2841f380d1aa2c1c7363a882c5c849c4030a9dbce7a9cbe737

SHA512
f175ffdf62235a010886eca7e73c5802b9e3f91123cf3d6b66098891ec71d95833a5036ad0e7c900e348ffaec872a8c8cc8d97860d80de1ab2e69a0e59f7a284

Download Submit
/data/data/com.shopapp/databases/ut.db-journal
Filesize
28KB

MD5
a4db88e70d2e8b401b9d050a0541172d

SHA1
680318ee8dc80fc775ce525158f35df8f7bb8d75

SHA256
018c1c1b862954d2330251012b69b6937738888d7d0028c2307a98fc2f711529

SHA512
87190c5a30a5712b51ec374a78ce6a9ec2150b3136d8fdabf3fe8e99d51e976321b31cd76e5e233e161ea27d14cc9af19ed7f8e026d865341c6cc80f72f6d4bb

Download Submit
/data/data/com.shopapp/databases/ut.db-shm
Filesize
32KB

MD5
e7feb7fdd9a0e3df2a73ece831bb277a

SHA1
bf45ccceaa214a3a4257578543acde42c755e231

SHA256
95fb873c64c3c7761b6f3b3badb833fe5ec586c1edde868bd0698db246639a48

SHA512
0b3a819e83c2f932d106ff672a48c4bb60d76e2b9432973aebd3fe63b7d19232a1d111fc425684cd52e4852887857663d41a090d272b54354dfcf1e59effc3e1

Download Submit
/data/data/com.shopapp/databases/ut.db-wal
Filesize
32KB

MD5
dae3417fbff1837f46ca3e20588460db

SHA1
d9ff79592db56465e90183b8ba80b9d39db72c30

SHA256
c62e9c59634bf642d274400e9e7d579b4ea96e2b7fc929f4a5189db762948a4c

SHA512
0133db0ed2d9977e83a39321d70ec29cdf31f387884b588643abebf81f0c8984791520bcfa13c60d7fe4d5c2260e2f4b54c442827f07a1737aa9890124fe20e9

Download Submit
/data/data/com.shopapp/databases/ut.db-wal
Filesize
8KB

MD5
ea33b5f6c0d8525b9201ac6ccd0a01d4

SHA1
985e79d22df5cc8bded729fabef384fe01853348

SHA256
eee233f8fc8372bc704b295e27d338808a870f5efafc41062e6e68e55f3e6fd2

SHA512
26550339015410bf91073568900f5ca0ae4e854e73fd1a6529a3bab1eac9cb6f98c0278b33cd46add17d50ecba0890418cdee47693a51cfb2cea22ca8d75869f

Download Submit
/data/data/com.shopapp/databases/ut.db-wal
Filesize
8KB

MD5
35e6a8076f59e625a8b4ae7719458bb3

SHA1
13fd9fb954b7a374c76edd475b1805af6b0e6c88

SHA256
70f8db1c74a75d5372d56d3c933bfe22f052efe863cfdca1431ea30f689453aa

SHA512
0226f8c59975652bc4d822cfabee9629310399808a747f4528a0d8c23ff367c070b47ea0e2a6a496a1279549d7aad4204906dd01f42250cc895d84c2188e1c8d

Download Submit
/data/data/com.shopapp/databases/ut.db-wal
Filesize
8KB

MD5
0d94bca798b06bd2a9ccb58364209baa

SHA1
70ac67aeb7e92d24c65b689ad3dfc8e8127a864b

SHA256
19b2268c20bf13902686e8d708549bf541f71442ee4cc8d2ffe26b761e013961

SHA512
427283c22bb36c07ee4b9902c513c10d3d4bc1dbe1e08a4b0d25a43597351dc262e4469b329a54ecb100b48b0bf57b64cced59e5a889f5e8bc6dbfd50407822d

Download Submit
/data/data/com.shopapp/databases/ut.db-wal
Filesize
8KB

MD5
a8272590cb2fb238601ae71d09d70665

SHA1
0be070ab037f6eb57f051993cdfb3b3d7d325f37

SHA256
c78309604ddac96d63fed9306d118754f86cde998f686763ebb473c8c722d037

SHA512
b61cad24579eedb01f0a125b63a1791e4bd4a65cb444476f0cb55b9cf6c79755521bb883e7b3e84e53c10708716de3d38c33c1481091a8990d361873554d7199

Download Submit
/data/data/com.shopapp/files/com_alibaba_aliyun_crash_defend_sdk_info
Filesize
20KB

MD5
89634b3fdf02e5853af9b4f5fb17caf2

SHA1
b6d1c9dfb4efa77d171ec5baf65d936562075ece

SHA256
e2ceab0f4e9c8058726e95cb10d1250a494cf28c0a4813be04c290d3f6e0d0e3

SHA512
52c14fbc16bb4af43278a35fac472e1188fc01f50f230b8b7e5a1a865022484c02e78e4aca8eb8622a1490750ccafff8a57ff41105fd8177d29f3289376e7d16

Download Submit
/data/data/com.shopapp/files/com_alibaba_aliyun_crash_defend_sdk_info
Filesize
222B

MD5
df21b227deba040cf0b040d0e65e4440

SHA1
a83676d8341a2ecbf72a0081329e0cb17776c1ce

SHA256
5b01d57011d37b1696b648854a857864d6458647e7f80c30ac580deaf6128007

SHA512
9703d6f599af75e19ac4542e4ade16b8fabb637477cdbd671dfda039364e649e41eba967ee5aef0c2a0055e70e5281fd9dab6f164c124b9a96ebda0f27b89a40

Download Submit
/data/data/com.shopapp/lib-main/dso_deps
Filesize
32KB

MD5
7ab9544e19bf92db8c18a1533fe43304

SHA1
1cbfe578371f44d7cac85eed50c4fd3b0e6d0dd3

SHA256
185343b884900346c2ca53626dd0edda574f242540c75769c6c4a1755d18f309

SHA512
92057697b9fad2e9e06b09e37e95cc996a621981e48db2512addcce09859bcbb709a1b8fa9104a3050e1d8d8b48c75b350af50d38859dde57a9926dc75337ae9

Download Submit
/data/data/com.shopapp/lib-main/dso_manifest
Filesize
32KB

MD5
27540efb20785517ce5a824c9d318186

SHA1
66ab9f6a03291fd4b0dace20b230a9e612257ed5

SHA256
edad4359f0e097ef7aed145f8de724fd42563d0aac09f6dd0e7606de355b39cb

SHA512
1b8f480f777c8ab12101271765a17462f6e35e89167f97f7f69f75adee1ea5a855b81388dc5e39321822f740b1cfdaa9e6f58616e37912386ac7b1afa25e9af0

Download Submit
/data/data/com.shopapp/lib-main/dso_state
Filesize
20KB

MD5
b0553dbc2c7f6ee0ff27dbbe3ea5e167

SHA1
3d97fb9429a7fdd8d502b74958fb4ae569bf445e

SHA256
e67f39b53ff65cf4b78faee68d5a7a59898892ba0eb558969e4480f7f8ac2614

SHA512
9466d2f57b68c513272b90369f5f4dbe254fe2100299c2a840233b3887b2dd33ccbeea3bd8698f38ad2afb7cc0301ba3a095b7a0a00d19026b0956b8dd048a94

Download Submit
/data/data/com.shopapp/lib-main/libshella-3.0.0.0.so
Filesize
96KB

MD5
5e394408a7acf600d023afe3335cdd3a

SHA1
c4b0d2504a3fbc79dbccfd44160eb91d89a827c3

SHA256
29f5ac7771c941067108d5172284c9aabf6dbf08ec6c9d8aaf71d27f398536ac

SHA512
b584f9c75b672f41ba2313af3a8a1a474f72c28756971bef27337d63a9dcb573330833a12b4ad444bf1e60d8172bf435ddf7be06e053472ab64439128bb9281d

Download Submit
/data/data/com.shopapp/mix.dex
Filesize
292B

MD5
63f77f99bd2c2b772a479923bde11974

SHA1
c7632e7d301e4463fafce85f84e9c3d7da3fdbbe

SHA256
4c76a3af64cdd2f8713ffe2733dea50dbe714d0ca41c17d1847ee5b62a7ca615

SHA512
3aae4a89d1ed51fdd911cb367eb10afe3c2264e4222085891b18a60d5412f85d10bf5c8f3c6642db70abb9aa42732bac5c42c42ee32d587100f53c21b5beb16c

Download Submit
/data/data/com.shopapp/unicorn#cheese#
Filesize
746B

MD5
d37ceccf279e640a8e4c2f7238ec7cd5

SHA1
7f9ae17e6546cf21ef2029614d42303da7ff50d3

SHA256
aeeaab548f3c29d2317b1dd16af8464af71bd07caf21f32aa726c08c342dd707

SHA512
bf703d4a79f91960af7843403a931100dc8e00a200fbd252b99819d5caf72df0d41730e4a1a0a1f959e70e6bf86fd28103bdf781257b95aaa773450fb029dd18

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml
Filesize
213B

MD5
4829561382e8dcb258ff2785489711dc

SHA1
8db04c95b1866fc19048794bb93374653adcddb2

SHA256
d7abe90e320f42ee3560e5f0be062384a85caf5a14c4d17a3e540d635f914243

SHA512
9f4ed60639c4c377b97ee602afc57cd112325bee49e5269eb11a96b590161b645b84c4f92910e577abcbe8f7b858ba0242dddf1549a724746d9acdeb4dab3825

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml
Filesize
24KB

MD5
1484cdb334d0af0dc0134da0a3022ec5

SHA1
e6b41a35ab554fa51ce09fe067d5cf50cc4300b2

SHA256
1acd4b3036e8b255cf852932af4331f3bd2cd2b3acb7d9135c707acb78055986

SHA512
a6ebc69ec9e1228ea19fd27d610d211c019b2d48f136fb525068c18790fec661fa547e137c10643bab8b2f201366c6e9476699c3eee3a3b163601407429f6b19

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml
Filesize
28KB

MD5
cb47a86c641a8d7e391ccded67fbcd9c

SHA1
36181fdcea2de100334a015a6055fd3526e8d98b

SHA256
23414b2e41c30be23f8aa7d7df4f43ba4f6edc44cd756807dfd6cf10d8497872

SHA512
a39dcc37970a569186d2b4583902a09adb30ccf0fad083ae42e5671d85ae63667f7127ca4e0416bf12f688f03a1b2ad030fd95f1376b7ed6034e0467bff24906

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml
Filesize
28KB

MD5
d76cfee644e9fc94d5c7a60922b75ecc

SHA1
b4b3bfdab7bbb638db1331fc0951d5aa56f5c57e

SHA256
144a1bc00b2ba78fb3bd04b35047ce3066771d2109377df5f005f96e4221a02d

SHA512
54e943b681fc901ea1105825700b026aa29983be2c4e9f9be9e5151208d0826dfbaa3c8ec5767f93a31a8f012ec1a22b02239e68c82d5fbd4e99a36b63774b85

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
167B

MD5
ed26e5d0ec98f47f06a41f34c8054c19

SHA1
e2a29eb130b872cd864cdcca680e7a0b03a93613

SHA256
e6725870494cd2fe68edff751504d3d6d5c537f646fd6c0c2c660a950cc9b50d

SHA512
74ccc6fa80a3df88e8100dbf142ce67ae4f3183373289eeb62a2a1e838e63b4d9c9dbd32e549be06398383086aa7689e53aaa1a318532b54dd14f90de496f6c6

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
111B

MD5
1bd30c391167bed1b52e999fb9ab635d

SHA1
e3ef9ad52ef7f53d93a818ac02aa52dc2c8a6e7a

SHA256
51fc4fefb314c610cb909ce5788e022fe362e4dcbd2ced27b1c13ccf250eb989

SHA512
25a68a5ccdc21eb206d5676ca222e23c57592ee9934d7fdfcf42cd0f4d22a43316efc3754ec963d7305f818de55e984b7887d548fc65729cfa04dc1a34d6631b

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
8KB

MD5
584e19666106aefc3dc706d5bfb5e04a

SHA1
a7a076cef13113da1877ea52208da3d72698a729

SHA256
f5d64335bf0e48e951fd99053cf8c7b486dd4df9cb5ba570d6cfb680520ec671

SHA512
b50419f2a5a1feb942b19dec7c58ac7f6fe5e180de32e38206b2c9c65703a372258b5ddb1054caa68b54753440a59916675a6cc4fe70030eb6b6add147cebfeb

Download Submit
/storage/emulated/0/Android/data/com.shopapp/files/com.qiyukf.unicorn/log/tmp_u_20240523
Filesize
64KB

MD5
fcd6bcb56c1689fcef28b57c22475bad

SHA1
1adc95bebe9eea8c112d40cd04ab7a8d75c4f961

SHA256
de2f256064a0af797747c2b97505dc0b9f3df0de4f489eac731c23ae9ca9cc31

SHA512
73e4153936dab198397b74ee9efc26093dda721eaab2f8d92786891153b45b04265a161b169c988edb0db2c53124607b6eaaa816559c5ce54f3dbc9fa6a7a4b2

Download Submit