74fd433c14f83a98f0c1f44fbcf99d173f1d8f51fa782f8d4e366fd51a3d7298

Analysis

max time kernel
171s
max time network
189s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
24-05-2024 18:32

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

6f73a38d29ee18f837dc2000fd8baff4_JaffaCakes118.apk
Size

6.7MB
MD5

6f73a38d29ee18f837dc2000fd8baff4
SHA1

5df7f7b11beb3a950951a6c53746a002615c27af
SHA256

74fd433c14f83a98f0c1f44fbcf99d173f1d8f51fa782f8d4e366fd51a3d7298
SHA512

c2d907b5644d305102791f474b95d7aa36c7fb6b1563670c81486dcdaa406690fb4beeea6108e2070228174aa29a4d8a92836934ed75f9ff463622e8c33f3557
SSDEEP

196608:W9BZESfl0u+kLJlE5HSSQu0bC5GMCTz7TZSo:0Z4kLJlErI6eT3r

Score

8^/10

banker collection discovery evasion execution impact persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 1 IoCs
evasion

T1426

Processes:

com.qihoo.daemon

ioc process

/sbin/su com.qihoo.daemon
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

T1418.001

ioc	process
/sbin/su	com.qihoo.daemon

Requests cell location 1 TTPs 2 IoCs

Uses Android APIs to to get current cell information.

collection discovery

T1430

Processes:

com.qihoo.appstore

description	ioc	process
Framework service call	com.android.internal.telephony.ITelephony.getAllCellInfo	com.qihoo.appstore
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.qihoo.appstore

Checks CPU information 2 TTPs 3 IoCs

Checks CPU information which indicate if the system is an emulator.

evasion discovery

T1633.001

T1426

Processes:

com.qihoo.appstorecom.qihoo.daemoncom.qihoo.appstore

description	ioc	process
File opened for read	/proc/cpuinfo	com.qihoo.appstore
File opened for read	/proc/cpuinfo	com.qihoo.daemon
File opened for read	/proc/cpuinfo	com.qihoo.appstore

Checks known Qemu files. 1 TTPs 3 IoCs
Checks for known Qemu files that exist on Android virtual device images.
evasion

T1633.001

Processes:

com.qihoo.daemon

ioc process

/system/lib/libc_malloc_debug_qemu.so com.qihoo.daemon
/sys/qemu_trace com.qihoo.daemon
/system/bin/qemu-props com.qihoo.daemon
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
evasion discovery

T1633.001

T1426

Processes:

com.qihoo.appstore

description ioc process

File opened for read /proc/meminfo com.qihoo.appstore
Loads dropped Dex/Jar 1 TTPs 1 IoCs
Runs executable file dropped to the device during analysis.
evasion

T1407

Processes:

com.qihoo.appstore

ioc pid process

/data/user/0/com.qihoo.appstore/files/sllak/core/finalcore.jar 4653 com.qihoo.appstore
Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs
Application may abuse the framework's foreground service to continue running in the foreground.
evasion persistence

T1541

Processes:

com.qihoo.daemon

description ioc process

Framework service call android.app.IActivityManager.setServiceForeground com.qihoo.daemon

ioc	process
/system/lib/libc_malloc_debug_qemu.so	com.qihoo.daemon
/sys/qemu_trace	com.qihoo.daemon
/system/bin/qemu-props	com.qihoo.daemon

description	ioc	process
File opened for read	/proc/meminfo	com.qihoo.appstore

ioc	pid	process
/data/user/0/com.qihoo.appstore/files/sllak/core/finalcore.jar	4653	com.qihoo.appstore

description	ioc	process
Framework service call	android.app.IActivityManager.setServiceForeground	com.qihoo.daemon

Queries information about running processes on the device 1 TTPs 3 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

T1424

Processes:

com.qihoo.appstorecom.qihoo.daemoncom.qihoo.appstore

description	ioc	process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.qihoo.appstore
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.qihoo.daemon
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.qihoo.appstore

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
discovery

T1421

Processes:

com.qihoo.appstore

description ioc process

Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.qihoo.appstore
Queries information about the current nearby Wi-Fi networks 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
discovery

T1421

Processes:

com.qihoo.appstore

description ioc process

Framework service call android.net.wifi.IWifiManager.getScanResults com.qihoo.appstore

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.qihoo.appstore

description	ioc	process
Framework service call	android.net.wifi.IWifiManager.getScanResults	com.qihoo.appstore

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 4 IoCs

persistence

T1624.001

Processes:

com.qihoo.appstore:criticalcom.qihoo.appstorecom.qihoo.appstorecom.qihoo.daemon

description	ioc	process
Framework service call	android.app.IActivityManager.registerReceiver	com.qihoo.appstore:critical
Framework service call	android.app.IActivityManager.registerReceiver	com.qihoo.appstore
Framework service call	android.app.IActivityManager.registerReceiver	com.qihoo.appstore
Framework service call	android.app.IActivityManager.registerReceiver	com.qihoo.daemon

Acquires the wake lock 1 IoCs

Processes:

com.qihoo.daemon

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock com.qihoo.daemon

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.qihoo.daemon

Checks if the internet connection is available 1 TTPs 3 IoCs

discovery

T1421

Processes:

com.qihoo.appstorecom.qihoo.daemoncom.qihoo.appstore

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.qihoo.appstore
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.qihoo.daemon
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.qihoo.appstore

Reads information about phone network operator. 1 TTPs
discovery

T1422
Schedules tasks to execute at a specified time 1 TTPs 1 IoCs
Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.
execution persistence

T1603

Processes:

com.qihoo.daemon

description ioc process

Framework service call android.app.job.IJobScheduler.schedule com.qihoo.daemon

description	ioc	process
Framework service call	android.app.job.IJobScheduler.schedule	com.qihoo.daemon

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 3 IoCs

impact

T1471

Processes:

com.qihoo.appstorecom.qihoo.daemoncom.qihoo.appstore

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.qihoo.appstore
Framework API call	javax.crypto.Cipher.doFinal	com.qihoo.daemon
Framework API call	javax.crypto.Cipher.doFinal	com.qihoo.appstore

com.qihoo.appstore
1⤵
- Checks CPU information
- Queries information about running processes on the device
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4348

com.qihoo.daemon
1⤵
- Checks if the Android device is rooted.
- Checks CPU information
- Checks known Qemu files.
- Makes use of the framework's foreground persistence service
- Queries information about running processes on the device
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Acquires the wake lock
- Checks if the internet connection is available
- Schedules tasks to execute at a specified time
- Uses Crypto APIs (Might try to encrypt user data)
PID:4378

/system/bin/sh
2⤵
PID:4519

/system/bin/sh /system/bin/pm list packages
2⤵
PID:4589

cmd package list packages
3⤵
PID:4616

com.qihoo.appstore:critical
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4537

app_process32 / com.qihoo.appstore.rootcommand.persistent.CoreDaemon --nice-name=com.qihoo.appstore_CoreDaemon --daemon
1⤵
PID:4566

com.qihoo.appstore
1⤵
- Requests cell location
- Checks CPU information
- Checks memory information
- Loads dropped Dex/Jar
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Queries information about the current nearby Wi-Fi networks
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4653

/system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
2⤵
PID:5005

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.qihoo.appstore/databases/_ire
Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.qihoo.appstore/databases/_ire-journal
Filesize
512B

MD5
a5e3fbf88110cdbd6efca2fa0e73c73e

SHA1
e901d0b17dfbf1a7db444f3885cca8ff5a504ba6

SHA256
8812ea82f7cab8908f77803831a01b28fbea2029af41b503ea4dc97af8adab23

SHA512
4bbcbbdb3dfaf3029c38b5bc6480507d44ceae90b21eea89d3337f595de9695275c18a91c847b96df56e38a2326a0a0d000fb0352ce30f116e7fff5f4278b3a4

Download Submit
/data/data/com.qihoo.appstore/databases/_ire-wal
Filesize
20KB

MD5
4a38f90fbddc441da9906e074ccdd3aa

SHA1
ca643196d767b721c6ad6223afb1f301630adf9d

SHA256
955f043912d65ea63578d3afbaf3e72af0c7b618b572096ca2b427f254c50ec0

SHA512
c521bec3027b072908f9b4111bb99b7f57fcd16a6c11bf26778543c75576d819670475784493dda3b16553846f32fbe6d75c42945b9a7931da4ffb7f621dd68f

Download Submit
/data/data/com.qihoo.appstore/databases/download5.db-wal
Filesize
32KB

MD5
38ebce18c0011c58ff646373df131948

SHA1
823d21a3692b6d394502b86839a3dc4abb17d2a7

SHA256
dfe0989cfc3c4f20bcb3991aa32e7f64f6c0c5b061baf0334f33a2743c86350e

SHA512
8c8923111484fd9f516ef50034b5a5e5ef39dcd88365ccbfb78f2f2dcf0d304b522a55b21c11391338494382aa08da8d554e0169691f47713458d7c7e6d1e9c1

Download Submit
/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db
Filesize
20KB

MD5
60e4cf217e77c56efd3707b603797c5b

SHA1
816247b4883d3adb30c4db39fda16d2288e27de0

SHA256
8e2b8343f703045fb8596dee1888f65fc66b64d10304a4a49fd4ad1f63bd67ea

SHA512
22a8cd2974663e8caa220177e7bc64aaf35735dc8abc3870a7e47ea86b02d8b06b041000e5505039b3116290aee67e9645ad2d9c26218749f5b5b2e332712af2

Download Submit
/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db
Filesize
12KB

MD5
1ca7d3c9a9ed6af93055fdfa8eda0309

SHA1
1319831e384e546c9a50967fb9befab2ac12ce09

SHA256
690afaec2a271ba73d987db1d738902167f71b4d63933b77e66f75f7fabbc98b

SHA512
c450173e288f31158ef9236bc641353844cfab44769fb1e0170b14362b7468f62d9bc96f86c1ee9d8b1fd7a378508173b7b750264b1b845cd7277fd9c605613a

Download Submit
/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db-journal
Filesize
512B

MD5
2e1fb5caafbd22b91c9b6f9159e9a57d

SHA1
71f653894591d284a4f16ce41382b4d52eef9730

SHA256
39c818fa1b43c61de9739104f7aee9b908b73d617fbf9666fd54532b6c3b6ce6

SHA512
bb1f82b3a6e3a327cb27e986143d986ca0362366bd1debc2818a6f3eca8b0735a892dce2e085df11a7a66bbf0c4a856c305017461212da6fc7091eecf620e852

Download Submit
/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db-shm
Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db-wal
Filesize
16KB

MD5
a75f768f6905dda0d1d119d8b65a8c97

SHA1
1abdd0f34e035388c5dafcc619ef4dfe57a40766

SHA256
5a2ba334041033807adf1a3c9b9747c59363e96bd14c93abad07bb0a6e2e738f

SHA512
3db6baeed87f517c485dbf963fdb4010975887611bb9413908f72a40b9068892f41c8924d30e2643caf6e3bd5e8c266ab95f0552c85647c6e483d23c684975cd

Download Submit
/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db-wal
Filesize
20KB

MD5
633c702fce432d1a3337f8cc25a1b978

SHA1
f6884a08fa082b6b570583ae200959e48112414a

SHA256
16616d109a63134ac07a5d7cfb340cb2979fca4b94787cffdfc0780b02810764

SHA512
b28e7ca39ec92f78d006d5bfcc7d6fe0080bcff8615ac00b1838cb74a2c0bd1c75aab1bdbbf6ad3d431e5f7366da81959d7a85db9625cce360096eda8e4f79fe

Download Submit
/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db-wal
Filesize
4KB

MD5
3d27d621f6be23900a0dccccc7116076

SHA1
22c3ede42dfe722745f4fe8be644bf8223fe5574

SHA256
3155387289dbeeaf44054bbf50cfb4d529e3003182a04a3acae7e7aaa106a271

SHA512
b708e0ccaadbd14026aef22bf50206a283f785eb6f926b8c4fc704d455ea2b6236ddf27f4d5ff1339c05fd66bf7bf2c167d5dfbf3c49cd5f7f72e6ceee48d6cd

Download Submit
/data/data/com.qihoo.appstore/databases/new_downloads.db
Filesize
12KB

MD5
3fe30614d7e0d11db870b4624f6c50e0

SHA1
053ff0fc621ab40f2afeddb3e7b4a73ee41ec533

SHA256
67c532f0324228dd33b445cd399c1426e3a0e0cdc7b9358c66b402c5d40a838d

SHA512
c7c09e97a408e88aacaf8099ad4d1fa604d58113393500a384eb3c2eb7c3c105af41314934b86eca2f088045cbab5a20d768bbb295448dc1ae6cb6c3f59821ae

Download Submit
/data/data/com.qihoo.appstore/databases/new_downloads.db-journal
Filesize
512B

MD5
679c6de9d50b6f074235609028aa1658

SHA1
1df48b49bc9c61083d98370ca89020beb207fb42

SHA256
a072013a1f4cf294d2c1ee137bc6625e2753eeb6a33b1b7e4df2318bd7f7682c

SHA512
ae1666183f6d9ff77ac785aac85c9bfdfc520d0db46228b976be6836d5db2e9afb6dc87ea64749bf3bfc79f167c3bf07f35e2bf67316018b52dbdc370ebf79d3

Download Submit
/data/data/com.qihoo.appstore/databases/new_downloads.db-wal
Filesize
16KB

MD5
5173039946c2eb682a15a01c033d2822

SHA1
13a2438f657d50de116ed014042bb00d4014a081

SHA256
48fe6495c433d45d455a58a5b1eba6aa099bc0a23f8e5bc283635ee1f6f87c56

SHA512
e5f6ed6f6de8057bebb29eaf96897c443da9e4ca682c9d227be55fc8111d336f1c06942a0dc6b619c3fc61da66ba7103d5c2e26ec5b50bdc105cf1c7aab1ea09

Download Submit
/data/data/com.qihoo.appstore/databases/update_history.db
Filesize
20KB

MD5
e0ddc29dccfd6312689ea105cf0434a8

SHA1
59191210f5a80bc047f8155ea92544f4095c38c5

SHA256
3079b5c02af6b7ddced940086bf7095b1205bf0f396b87da0d5c5f6d8b5b6143

SHA512
d5ec8a2bd21928c07ada4ab4df8e72b6905872533d01afe4eb243ef06674e630a9834a03dc5fc2f8d487c3cee8aa3b3117e73379ae64e6f4dcf3f8dd0145fdb5

Download Submit
/data/data/com.qihoo.appstore/databases/update_history.db-journal
Filesize
512B

MD5
f903d225f8828dea3864ae16b801b10d

SHA1
5120dd0a2266d674c8fa720b162a413716770170

SHA256
f361c38660d5b540a671828a5c3e299beae23cc90676e6559faccbf9980d79d1

SHA512
0bbda5cf16d6cbaefa71fb821e1f8745bce6aed95bd36e97c89f970332a8da63ed170398816de20b09f12917486643c0ed56d96a9938ae1527bfbb6a1c98ef04

Download Submit
/data/data/com.qihoo.appstore/databases/update_history.db-wal
Filesize
32KB

MD5
996950485830a5314ffabc5cc0792208

SHA1
48ea2d51e5d7e88ccb9fc3642d3ece436e5878fd

SHA256
0fc9a05f6f7cf7639c04e025f07c1d534392a589b0a1e35ec5c8daa5677f1ae6

SHA512
f31a1e424eaccdd02dee9a350638d833479da659e8f554d13d856be4d9ad24ecee024434327542ba9851d5c22d57482d5ee6661a0b2e4641277ae3eea73184ae

Download Submit
/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl
Filesize
500B

MD5
3f7462eb96ae4e5db40b8eb972005176

SHA1
4f76ef10f14ffe7063022d6b8081f2f03fcd5e19

SHA256
3011d57a730424f31e6571f359da0fa7fb5daa88c38007d260f24d78bba77c4d

SHA512
13e89c7ef7930fbd675142a3919956c1a2ab72d911e374dca3b02d3db833d67b2c690140c6680bade05748398a37a6f5786de9fa7e11b11b8b7e70077e36cbb9

Download Submit
/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl
Filesize
532B

MD5
96033a583fbcf5c0e950e95d6955ca6b

SHA1
e7930e2957c1e7c1e9ffa4522b41364261878f9b

SHA256
64b52781d6a98d5c686be6a06e37d241d9628941aada5ff0b9ed28f745e6887b

SHA512
8a6f02b8d9ebef0745061014545afcf22dab0b7a6d00bb900f999027a55be93c3ae46f06c8a356d6795159d474066a092b65c36305055527c6ea2697d1ba3b40

Download Submit
/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl
Filesize
588B

MD5
a74da6a7130a70bf8c652c6c082d3186

SHA1
5c6218a21671ebfe7f39ffbc3ec8ebe8a4a8e0b3

SHA256
d241d6012f7d6153928c364214fdcd7b45727ace4c365f6956f6485315d7dbf4

SHA512
883a3b312f5e5a70d725959f442c44d360de681747cb46dc3903273aecc5a19ab11126f3a88102083039b39d4e2b20f3fcb36290069a8ed745ffb6cc40e438d3

Download Submit
/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl
Filesize
632B

MD5
2f56a915e8a1d3ac1d9621742ca2f1c7

SHA1
49610eb86807e03e34b6d8267c6ed50938dc83ed

SHA256
6982dd5f362aca89d73ebd24eec57a1571b072ecf48e0cad8c5758691c93e11f

SHA512
48d57b097a7cbeab0c71a2b9065e3cedb230ce8ade15ac25dbef196927b5a79b22b0c023127789e3179f77f6a31777d9ec648c996213e79bc35c58abfd4c5645

Download Submit
/data/data/com.qihoo.appstore/files/360/sdk/persistence/report/Y29tLnFpaG9vLmFwcHN0b3Jl
Filesize
624B

MD5
16b620744bbf8cfa46ec94121ddba550

SHA1
7bf12ded658dac9cc121a7efd1e5069fc23a8a9b

SHA256
3866a056f958a546f4692d2d2e538512d92f588b6a158a9608bdc09430fbb2f4

SHA512
8fa666dfecc1b7842e4afaf500fa9111648d65fd2fe5eb35b1059068e11c58f2b2032770a5f23fc171c1b93c7ad88d207abd9b6254573643f37846b484276085

Download Submit
/data/data/com.qihoo.appstore/files/sllak/core/oat/finalcore.jar.cur.prof
Filesize
559B

MD5
2037f76fd25e70ee33440be7c69b464a

SHA1
22bd01a0d612d447e3f03860fab930d456f7214e

SHA256
71c931f187a79df7ae71e972dea0df9d91b393e5460c489085f3e2eb7c4f287b

SHA512
3c946e51fd447d5fba49b6e920e5dad90117ed63673248dc7db622e665ef5778c622ebacdde1b50d54f885ae77ffba2bf47d31bd48025c38c47021084918e127

Download Submit
/data/data/com.qihoo.appstore/files/sllak/logcache/log1716575584149
Filesize
2KB

MD5
3f4d409973fd0e70764d6fee7e5452c3

SHA1
541520a9b93e51e17708bf783c9b644aedb386be

SHA256
7d7667cce893c7722b9b282ecb4a6677d595009b43cda8fe2dcb0ff5068af78a

SHA512
9e2093caaf1c15cd626b131d8f3981bd858ca055570a622cf105dbcc9031b7dcc28955baec4f2f11ac57886ac4e02b960e7b988e1e01d73b45de6e29d98f3024

Download Submit
/data/data/com.qihoo.appstore/files/sllak/logcache/log1716575584445
Filesize
596B

MD5
09acfae6850b00db42b552433ac1ebe1

SHA1
b2981dcdd34af5a504209398fe250e791fd1782e

SHA256
977297b6ff2f74690d3e410216e7b497118c78a49b27d7c7a7b6e5ec585a7cd4

SHA512
646e0fc38045b7466926fc77324a04303a259ac7b0d397b278424f682aeb01cdb284e5b3aeb3f0f611fafce9f0ff1c6003950cb0359a8edbc4b796c886bed385

Download Submit
/data/data/com.qihoo.appstore/files/sllak/opt/4348/finalcore.jar
Filesize
77KB

MD5
e5f416ec3b0870789d61aa73d5ca652e

SHA1
93b4a592953586141e06a6b5731917b8a8a82ab0

SHA256
9f1d983ab9c0a12e495898f12ba10aebfe7766afc87c428368f4f092836817cd

SHA512
0d1983b3447649d78237feacca409579a73b3ab157ab2a1e983ec68f4ee097b6e2366c542528100863dbbe746aef9be10bef8f58eebbfc1050aa30d629e51543

Download Submit
/data/data/com.qihoo.appstore/files/sllak/opt/4348/finalcore.jar.tmp
Filesize
77KB

MD5
2c10951e6834d7ad6867d323b4a1d86b

SHA1
edec1950b6820ce7fb504c0b99ddfe1855680a94

SHA256
7ce055939cb6bf693333a142c864c064d831fab239ec367b1bf5df7e7530a1ce

SHA512
90aa7e2e774c28f1470b0cc2f5a63e84d0fdd7474ace4f81265d4d164b08fb0f5ac7f901ff55d103bad0ef0ff5673b0e146e33f280e5d0678fdf10dadcf1203b

Download Submit
/data/data/com.qihoo.appstore/localApkInfo.json
Filesize
57KB

MD5
df05a25bcf5f7702d302b7fc8bee6ac6

SHA1
117cc72aa98af0c55c1b885823d123e149c992cc

SHA256
aa32aca2c522f7081944b901b408147fe8ecd90560e32d47c9314e22ae49eded

SHA512
4ef3bdb008c2848ced991d44194305ff0d1099eea80ff7bc6e6931bb20b6c9bf94bf8740194625fca59b0e6b21571972012f56ba13f8efec978a858c788db779

Download Submit
/data/user/0/com.qihoo.appstore/files/sllak/core/finalcore.jar
Filesize
176KB

MD5
b667ca71e42bbeb899566c8834ed085e

SHA1
053a3f889e326efdfa0d3ae7e5b2655f0b7376d2

SHA256
536678202267f95d80480f15065e784d7ec609922a0963d935e9c5a4b0f62bef

SHA512
52255d3d7066d01bd47a9da788f86c707af14e7666a918737fa5ffb4bb003e97b28dd84a7cead3439ee39e10b568c97e80174a80bf776c7dd58335b06656f8f2

Download Submit
/storage/emulated/0/.sfp/.sfp
Filesize
83B

MD5
f57f7cb992fa03159ba59d3fef0584e8

SHA1
096c1c758619f961a480c191bedfa766af038725

SHA256
da019a0747a1978739c3a89597042aa30fdd5b6fd70c8069a7a032b3ff03509b

SHA512
00c131796cee1f5ddf1287b18796764b2d48a2bbee854a79872ed54e4dbde2875d5767bd2206dfecf924005640d20e95af20f081fcaa5536efd1d088bffeb790

Download Submit