Analysis Overview
SHA256
8c50209773553b7096dec94ac6d62caa752b32282ecfea201a9c1cd0f9b1cfe2
Threat Level: Likely malicious
The file ad1890f8dfabdf3fef20df166b1a603a_JaffaCakes118 was found to be: Likely malicious.
Malicious Activity Summary
Checks if the Android device is rooted.
Queries information about the current nearby Wi-Fi networks
Requests cell location
Queries information about running processes on the device
Queries the unique device ID (IMEI, MEID, IMSI)
Queries information about active data network
Queries information about the current Wi-Fi connection
Requests dangerous framework permissions
Reads information about phone network operator.
Listens for changes in the sensor environment (might be used to detect emulation)
Uses Crypto APIs (Might try to encrypt user data)
Registers a broadcast receiver at runtime (usually for listening for system events)
Schedules tasks to execute at a specified time
Checks memory information
Checks CPU information
MITRE ATT&CK
Mobile Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-06-15 06:02
Signatures
Requests dangerous framework permissions
| Description | Indicator | Process | Target |
| Required to be able to access the camera device. | android.permission.CAMERA | N/A | N/A |
| Allows an application to write to external storage. | android.permission.WRITE_EXTERNAL_STORAGE | N/A | N/A |
| Allows an application to read from external storage. | android.permission.READ_EXTERNAL_STORAGE | N/A | N/A |
| Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps. | android.permission.SYSTEM_ALERT_WINDOW | N/A | N/A |
| Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. | android.permission.READ_PHONE_STATE | N/A | N/A |
| Allows an app to access approximate location. | android.permission.ACCESS_COARSE_LOCATION | N/A | N/A |
| Allows an app to access precise location. | android.permission.ACCESS_FINE_LOCATION | N/A | N/A |
| Allows an application to record audio. | android.permission.RECORD_AUDIO | N/A | N/A |
| Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call. | android.permission.CALL_PHONE | N/A | N/A |
| Allows access to the list of accounts in the Accounts Service. | android.permission.GET_ACCOUNTS | N/A | N/A |
| Allows an application to read or write the system settings. | android.permission.WRITE_SETTINGS | N/A | N/A |
| Allows an application to send SMS messages. | android.permission.SEND_SMS | N/A | N/A |
| Allows an application to read the user's contacts data. | android.permission.READ_CONTACTS | N/A | N/A |
| Allows an application to request installing packages. | android.permission.REQUEST_INSTALL_PACKAGES | N/A | N/A |
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-15 06:01
Reported
2024-06-15 06:05
Platform
android-x86-arm-20240611.1-en
Max time kernel
178s
Max time network
190s
Command Line
Signatures
Checks if the Android device is rooted.
| Description | Indicator | Process | Target |
| N/A | /system/app/Superuser.apk | N/A | N/A |
Queries information about running processes on the device
| Description | Indicator | Process | Target |
| Framework service call | android.app.IActivityManager.getRunningAppProcesses | N/A | N/A |
| Framework service call | android.app.IActivityManager.getRunningAppProcesses | N/A | N/A |
| Framework service call | android.app.IActivityManager.getRunningAppProcesses | N/A | N/A |
| Framework service call | android.app.IActivityManager.getRunningAppProcesses | N/A | N/A |
| Framework service call | android.app.IActivityManager.getRunningAppProcesses | N/A | N/A |
Requests cell location
| Description | Indicator | Process | Target |
| Framework service call | com.android.internal.telephony.ITelephony.getCellLocation | N/A | N/A |
Queries information about active data network
| Description | Indicator | Process | Target |
| Framework service call | android.net.IConnectivityManager.getActiveNetworkInfo | N/A | N/A |
| Framework service call | android.net.IConnectivityManager.getActiveNetworkInfo | N/A | N/A |
| Framework service call | android.net.IConnectivityManager.getActiveNetworkInfo | N/A | N/A |
| Framework service call | android.net.IConnectivityManager.getActiveNetworkInfo | N/A | N/A |
| Framework service call | android.net.IConnectivityManager.getActiveNetworkInfo | N/A | N/A |
Queries information about the current Wi-Fi connection
| Description | Indicator | Process | Target |
| Framework service call | android.net.wifi.IWifiManager.getConnectionInfo | N/A | N/A |
Reads information about phone network operator.
Listens for changes in the sensor environment (might be used to detect emulation)
| Description | Indicator | Process | Target |
| Framework API call | android.hardware.SensorManager.registerListener | N/A | N/A |
| Framework API call | android.hardware.SensorManager.registerListener | N/A | N/A |
| Framework API call | android.hardware.SensorManager.registerListener | N/A | N/A |
| Framework API call | android.hardware.SensorManager.registerListener | N/A | N/A |
| Framework API call | android.hardware.SensorManager.registerListener | N/A | N/A |
Registers a broadcast receiver at runtime (usually for listening for system events)
| Description | Indicator | Process | Target |
| Framework service call | android.app.IActivityManager.registerReceiver | N/A | N/A |
| Framework service call | android.app.IActivityManager.registerReceiver | N/A | N/A |
| Framework service call | android.app.IActivityManager.registerReceiver | N/A | N/A |
| Framework service call | android.app.IActivityManager.registerReceiver | N/A | N/A |
| Framework service call | android.app.IActivityManager.registerReceiver | N/A | N/A |
Schedules tasks to execute at a specified time
| Description | Indicator | Process | Target |
| Framework service call | android.app.job.IJobScheduler.schedule | N/A | N/A |
Uses Crypto APIs (Might try to encrypt user data)
| Description | Indicator | Process | Target |
| Framework API call | javax.crypto.Cipher.doFinal | N/A | N/A |
| Framework API call | javax.crypto.Cipher.doFinal | N/A | N/A |
| Framework API call | javax.crypto.Cipher.doFinal | N/A | N/A |
| Framework API call | javax.crypto.Cipher.doFinal | N/A | N/A |
| Framework API call | javax.crypto.Cipher.doFinal | N/A | N/A |
Checks CPU information
| Description | Indicator | Process | Target |
| File opened for read | /proc/cpuinfo | N/A | N/A |
Processes
com.smilingmobile.seekliving
com.smilingmobile.seekliving:core
getprop ro.product.cpu.abi
com.smilingmobile.seekliving:channel
com.smilingmobile.seekliving:channel
com.smilingmobile.seekliving:channel
Network
| Country | Destination | Domain | Proto |
| GB | 142.250.180.14:443 | tcp | |
| N/A | 224.0.0.251:5353 | udp | |
| CN | 203.107.1.97:443 | tcp | |
| US | 1.1.1.1:53 | log.umsns.com | udp |
| CN | 59.82.60.44:443 | log.umsns.com | tcp |
| US | 1.1.1.1:53 | lbs.netease.im | udp |
| IE | 54.73.57.121:443 | lbs.netease.im | tcp |
| US | 1.1.1.1:53 | adash.man.aliyuncs.com | udp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 203.107.1.97:443 | tcp | |
| US | 1.1.1.1:53 | umengacs.m.taobao.com | udp |
| CN | 123.183.232.17:443 | umengacs.m.taobao.com | tcp |
| US | 1.1.1.1:53 | wannos.127.net | udp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| IE | 54.73.57.121:443 | lbs.netease.im | tcp |
| US | 1.1.1.1:53 | log.tbs.qq.com | udp |
| HK | 129.226.106.211:80 | log.tbs.qq.com | tcp |
| GB | 142.250.187.206:443 | tcp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| CN | 203.107.1.97:443 | tcp | |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 203.107.1.100:443 | tcp | |
| US | 1.1.1.1:53 | umengjmacs.m.taobao.com | udp |
| US | 1.1.1.1:53 | umengjmacs.m.taobao.com | udp |
| CN | 123.183.232.33:80 | umengjmacs.m.taobao.com | tcp |
| US | 1.1.1.1:53 | amdcopen.m.taobao.com | udp |
| CN | 203.119.217.116:80 | amdcopen.m.taobao.com | tcp |
| CN | 203.119.217.116:80 | amdcopen.m.taobao.com | tcp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 203.107.1.100:443 | tcp | |
| US | 1.1.1.1:53 | httpdns-sc.aliyuncs.com | udp |
| CN | 203.107.1.97:443 | httpdns-sc.aliyuncs.com | tcp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 203.119.217.116:80 | amdcopen.m.taobao.com | tcp |
| CN | 203.119.217.116:80 | amdcopen.m.taobao.com | tcp |
| CN | 203.107.1.97:443 | httpdns-sc.aliyuncs.com | tcp |
| CN | 203.107.1.100:443 | httpdns-sc.aliyuncs.com | tcp |
| US | 1.1.1.1:53 | adash.man.aliyuncs.com | udp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 203.107.1.100:443 | httpdns-sc.aliyuncs.com | tcp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 106.11.61.137:80 | tcp | |
| CN | 106.11.61.137:80 | tcp | |
| US | 1.1.1.1:53 | umengjmacs.m.taobao.com | udp |
| CN | 110.253.189.144:443 | umengjmacs.m.taobao.com | tcp |
| CN | 203.107.1.97:443 | httpdns-sc.aliyuncs.com | tcp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 203.107.1.100:443 | httpdns-sc.aliyuncs.com | tcp |
| CN | 110.253.189.144:443 | umengjmacs.m.taobao.com | tcp |
| CN | 203.119.217.116:80 | amdcopen.m.taobao.com | tcp |
| CN | 203.119.217.116:80 | amdcopen.m.taobao.com | tcp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 203.107.1.97:443 | httpdns-sc.aliyuncs.com | tcp |
| CN | 203.119.217.116:80 | amdcopen.m.taobao.com | tcp |
| CN | 203.119.217.116:80 | amdcopen.m.taobao.com | tcp |
| CN | 203.107.1.100:443 | httpdns-sc.aliyuncs.com | tcp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 203.107.1.97:443 | httpdns-sc.aliyuncs.com | tcp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| US | 1.1.1.1:53 | umengjmacs.m.taobao.com | udp |
| CN | 110.253.189.144:80 | umengjmacs.m.taobao.com | tcp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 203.119.217.116:80 | amdcopen.m.taobao.com | tcp |
| CN | 203.119.217.116:80 | amdcopen.m.taobao.com | tcp |
| CN | 203.107.1.100:443 | httpdns-sc.aliyuncs.com | tcp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| US | 1.1.1.1:53 | amdcopen.m.taobao.com | udp |
| CN | 203.119.217.116:80 | amdcopen.m.taobao.com | tcp |
| CN | 203.107.1.97:443 | httpdns-sc.aliyuncs.com | tcp |
| CN | 203.119.217.116:80 | amdcopen.m.taobao.com | tcp |
| CN | 203.107.1.100:443 | httpdns-sc.aliyuncs.com | tcp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
Files
/data/data/com.smilingmobile.seekliving/databases/MessageStore.db-journal
| MD5 | 99223e7f19cbdbce39219a3ade2eb20b |
| SHA1 | 86d8e16b4a4cfcacc60f871a19312963bf445168 |
| SHA256 | f5f222415d2caeb0f49574dc4d915d08ecd1645788dd198d4fc4e2fe4c4c9135 |
| SHA512 | a74dc144843cd2bb8b01882607c75854a014e4de8b1c21c7bb4dbf29a1456c0494b9a147298c80dd383473fb6c4f71788abd8d1779898528c4d44e650853ede7 |
/data/data/com.smilingmobile.seekliving/databases/MessageStore.db
| MD5 | f1485162e89e7d7f71960c359eb2b9f1 |
| SHA1 | fdd1aa12c36624f9993028fcd75fbec7f41796d6 |
| SHA256 | 2118882cd04cd45a269b6c5b66c9d7a132eddb73725c829686d3d1c71729862d |
| SHA512 | 2b96abe9988c911ff02b4a999a96971f435d48deae0149eee95bc06291b4dcd75bb0b572dfc8b132f9a0560edc697b64d30f5253daec76f1e19719d0fa039a4c |
/data/data/com.smilingmobile.seekliving/databases/MessageStore.db-shm
| MD5 | cf845a781c107ec1346e849c9dd1b7e8 |
| SHA1 | b44ccc7f7d519352422e59ee8b0bdbac881768a7 |
| SHA256 | 18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7 |
| SHA512 | 4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612 |
/data/data/com.smilingmobile.seekliving/databases/MessageStore.db-wal
| MD5 | de5bf6b025f195379c8de1fae5a411a6 |
| SHA1 | 299acca4491b386b1b3201b99b642a355f8c172e |
| SHA256 | 01c0ae4cb219af5607d7f6af482f718d80164744f2e37b543d3cbb90980ecb8e |
| SHA512 | 85ac7e4e93c79f12754c67637ff21ce7d1ca8b0472c731275a43ffff2fb3033040ed7651d7aedeceac6980fa40e3303846ffbcb2090d4ad6c6f47516a24d681f |
/data/data/com.smilingmobile.seekliving/databases/MsgLogStore.db-journal
| MD5 | 974057c0c545319fc635d9e37846bec5 |
| SHA1 | 504eecd58843f40dae164e3053fd9d0fb1b7ef22 |
| SHA256 | 2b78d5a540fb6c85f958ea840398206e7bf523c5c6de858af0c97b7598888210 |
| SHA512 | cedda924262bc3e91619616f99c6dd01688dc9ee56a9b867c324023ba04934f2046d68db227ec08be83ed027cfc557adabc855d17db478ce2008e85941153960 |
/data/data/com.smilingmobile.seekliving/databases/MsgLogStore.db
| MD5 | f2b4b0190b9f384ca885f0c8c9b14700 |
| SHA1 | 934ff2646757b5b6e7f20f6a0aa76c7f995d9361 |
| SHA256 | 0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514 |
| SHA512 | ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1 |
/data/data/com.smilingmobile.seekliving/databases/MsgLogStore.db-shm
| MD5 | aa201d926bdeeb15a713f03003406ce5 |
| SHA1 | 1a113664582c9d34b19f7d14224c79e2ff609636 |
| SHA256 | 97460c563aeb8dc77a22729c9988780fbbce58ac7c68069b5dc00009dd34fd82 |
| SHA512 | ed8e09900164ba5734a0407f1958196cec7d74d4a0670ae83e4ae87f8e744749057d9a2315e4cc5b3ca190b1bfc2da93173ca7750b501cfaafa67bb1b393bae9 |
/data/data/com.smilingmobile.seekliving/databases/MsgLogStore.db-wal
| MD5 | 340e34fd70a8852577e4eb9c0a91f5d3 |
| SHA1 | be59ecfb62f8f0d4d2893bb01652c4da47a6fd03 |
| SHA256 | 41af21080bd87b085e0ea904b8c01823ef74eaab2305800ca0db987e0b0bf999 |
| SHA512 | 9b904828b05005869192ffa3e67322772575a3b14c3a166ceca9798f3761b1c0bfe5d4740a4da43018dd8a7bfde7ce45f8760ea922ca6c4b8c374de4a6f8fc95 |
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
| MD5 | 221bcca912f7e385bb14e4c284c8c9a6 |
| SHA1 | 1e1aad65f08c7717b43653c55c1c62edec1efb8e |
| SHA256 | edbce38f3c423f4ef067a6f8e25b95802bf7354ca2f4bbed6246d80ce97ac81e |
| SHA512 | 64234d4d4f44be5be07edaca722cd45a84bf0579e3b106060209378140ba214fc68689a1e713e80b924f06abfd72b938fa492f08c07abd404fa180e887928ce6 |
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
| MD5 | fae093a2bdc35f2e52c75603b7f48986 |
| SHA1 | eaf2c98bedc70a8c4a0699fb8785446f9e5b0abe |
| SHA256 | 1539d5da41c025e5a2918e8f7dab5f0670ec31f051347268a2a3471edc874656 |
| SHA512 | 545b04c28add8e42f69be7254af42cba8e5bea337471ccf7712b166bde7f024523f23ec385dbb67be840d9fdccc741c8a5aa26994c943fe024adabff276925e1 |
/storage/emulated/0/.DataStorage/ContextData.xml
| MD5 | 629f5701b04d714222262f6e6fffca98 |
| SHA1 | 698e9a4705be5c8d44c87a79358ceea73ba3ccb4 |
| SHA256 | 2de088b8ad2f60bcc7cf7e4dd101bbf9ba44ce4f3f649b07cacde1c65fac27c1 |
| SHA512 | a16d9e34dc3f49088442a92aa1093a00b65c688df25e83d04858131d496e97c86ddb144cc6bad2f540339d73dbd8b765a76c5ab09318d09f15d3cf6500728668 |
/storage/emulated/0/.DataStorage/ContextData.xml
| MD5 | 58a8cdba8f230c835bfb08deb5817105 |
| SHA1 | e2bb2bb9e26ed9f0057b60d9974cf2191b053f72 |
| SHA256 | d71db8d18dd978bb8b8abc2511a6944feb5a7a2c1a5935d6fcb1eb3a8e0a4365 |
| SHA512 | 6d7152a525a9a41b305947c92dc993b5d75fe838c56f908eb52ff4f771a4c31923a285e2dbff7be2b5ebac493e7b53d77acc72e8896b3fa16b9d6ca2289d0617 |
/storage/emulated/0/Android/data/com.smilingmobile.seekliving/cache/uil-images/journal.tmp
| MD5 | 34d7b11df0908b64ca79dba2c8866acc |
| SHA1 | 9e12ff88896094e34366d25594b4963cb093a5aa |
| SHA256 | 9697b8bc25a527210f83f264a60a38e1769f4873267ae791ab9b1ce6c4688cae |
| SHA512 | 584880e5af118493a63fb40badb959997e7a638f65b028e792bc41cc2b14d9125e8f6565417da44fb6d48bb9faf19cee4fa008016f37e72a2f4cad516e29b750 |
/data/data/com.smilingmobile.seekliving/databases/accs.db-journal
| MD5 | 2d899ddaea5f6b00a97bec17dd1aa211 |
| SHA1 | 8e810056a51aa38d17face6fa57461cfa005691c |
| SHA256 | 75fd87dc12c9c6f9450a4131d1da7a27e3dce5de1513ade2ddd34a4f3fe022eb |
| SHA512 | a1fb5ef0ec19e640b7861e6e01eb5917a6bfa5f14223fd189e5b103f21d54c714aa4f33936ea8252ec5e19beffea902e0bcc84b94db848c20bae225c24f66075 |
/data/data/com.smilingmobile.seekliving/databases/accs.db
| MD5 | 486e2bac2b3e9e1cb411d2838a4854bd |
| SHA1 | 81dd0a7537f4af319b830ae834908986be85da8b |
| SHA256 | 5644a250fa6cef16c2c802b98275656a5fc39dcf89bcc22193742d85c7313f57 |
| SHA512 | c146789563dae163e373489b3df53f22efebd32b69643992969241eb5ad5eec668de67e7cd2aaf5c3a8af57b0842115d00183825734f57643d3fdb09835fe681 |
/data/data/com.smilingmobile.seekliving/databases/accs.db-shm
| MD5 | 2172314f95d76a0469428111a8b6d68d |
| SHA1 | ae751d3172fc55ca393c6ee48041b32acc1193c8 |
| SHA256 | 3d8821c9634ec2fbf4b2ec431cb7dd19c2299549679aeb7e6d992c76d16d8f9d |
| SHA512 | 3f4022984049ef071d981f6903ec6dd309012ce81ab49010d8d2b67c98b294d69a0fbbda44b8b09ef183628450f8c812e8f201456c3f8ad7f1bdae6018598773 |
/data/data/com.smilingmobile.seekliving/databases/accs.db-wal
| MD5 | 308363025e6c5a99448eb31c5b6612e5 |
| SHA1 | b3f291277f826967e25e5a66eea8e8c9b6f84998 |
| SHA256 | 456980ee76538ddff252524fa06e8c6da3189686459501e6f2d9a8966ec39ef6 |
| SHA512 | 3316e06fa91b6331183731bc94625cd246686d3877ff77b9378a72a4d088a51e41232fe6db468a78307a3103cdffa4014f21b75c2ba312262266e6719ba967de |
/storage/emulated/0/Android/data/com.smilingmobile.seekliving/cache/nim/log/nim_sdk.log
| MD5 | 6e04d986b97d2bc869f9cfb472a23145 |
| SHA1 | 98c6856215bd172135ceedf8cf606485b1709a95 |
| SHA256 | ab2b2893c40505f136967929f45dc4add8e7dedc960748d15e97215bc56c8640 |
| SHA512 | 9577f6970e0cf2dd09299aa34e10518ccd267fceea4d0fccf5df08a3a662b935101043a1f5d0cba5dc80190132209a6a66cd97f33c859f353a536d41ee8e5bb7 |
/storage/emulated/0/Android/data/com.smilingmobile.seekliving/cache/nim/log/nim_sdk.log
| MD5 | 7acf7502312acf4db1766f7e64f1cad7 |
| SHA1 | 332a1fb0f979836567890a56ca65c6efaf01f6e5 |
| SHA256 | 4ee3424fdf71e8c5c8c6e39b8cc39b559e8cd786bd3d2df0adf2e2b0bc930a4c |
| SHA512 | 41817fd45f4126493d4fdcbe9b757237d3854b1f68be053c8b3878e567bcff0b84c0328f37ca0322788adaf57d5f9af1ce9e0819d4cbbb95552e9288aebe2e75 |
/storage/emulated/0/Android/data/com.smilingmobile.seekliving/cache/nim/log/nim_sdk.log
| MD5 | ba447416f841c2a3f6dfb465db4d325f |
| SHA1 | 84026ab7a31a0b637f99b0d0cf012dd1ccd69be0 |
| SHA256 | d432d3d0e6d7592e8dfdd2d2d92c826f07005df04c8fa87411b3afca7d8fd4df |
| SHA512 | a10a54aacf8db65368ccc221ab997b0bab4cfabd8b11fe7c45459acc5f7197735a63aa6839e0ba2f99836eff241d085bf2558ea789262ae1ca1c080dbd4e0b4e |
/storage/emulated/0/Android/data/com.smilingmobile.seekliving/cache/nim/log/nim_sdk.log
| MD5 | ca6cb567ec714e4f55bb65b1ded703df |
| SHA1 | e33e50dc59c6790e15a04a99ffdd90466c2578ec |
| SHA256 | 197721051b57dd20f5a6793222ffa64a8702b8dd3fa3ff902a5a31939b87367e |
| SHA512 | a4cdea8832f3a940c481dd7ade3889fb30ac546cabc11e876d713080dccf93b63ac58d4d19be2e43643c955b977d753eb90f7f9e20114e817839e303b462d628 |
/storage/emulated/0/Android/data/com.smilingmobile.seekliving/cache/nim/log/nim_sdk.log
| MD5 | 66579b0435d8f3ec691a0a62bd0a7d18 |
| SHA1 | 01016c8e996ac84c307cdd67adb3abbb9d874333 |
| SHA256 | 5d59b8b2081c071ba91319043bf6efe86b6551e95cef6525313708204b8e0b94 |
| SHA512 | 7625584e4048428f08413fa7acf8a7397e5748ffa59fc5b6e794775e7bf744df815baf5f8ab335a6ae9c26cd5d84479c79119cce08e2b9a0a4ee28141af27b0c |
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
| MD5 | 4dea9b1658d82375673a4166e5166fbe |
| SHA1 | 66a5dbf5eb03552e393c389a564d06342b63edfc |
| SHA256 | b6b61a79f526ed28bafe2a8de4baf652c58bbbfc52ff2506dfe6880a88ad92a1 |
| SHA512 | 7f15505651913848c4ae37c0736a45b4610456e40566d71995e9b325e5dc1956bc29e631d7652c2b78e7fee41b680bca52b89a0641b42424da6cf8b853d02e3e |
/storage/emulated/0/Android/data/com.smilingmobile.seekliving/cache/nim/log/nim_sdk.log
| MD5 | 859e02675e4ebefef6070559f5cc92d9 |
| SHA1 | c2b4b2a1b00ac55407f67ebbb10eea9bf6418595 |
| SHA256 | 9d6d8678026c16255553bd9e0cd694fbf83e650c81ffb32bad21d3099ffec355 |
| SHA512 | b03c0c48dd18706e5c0c1bef12585140b21d1fdaa74376e2e1f79a88bd79c12c70f759ed6c3997cb267bd30c8980b82acc69e3de9d2c2681cd0657a45313e5fe |
/storage/emulated/0/com.smilingmobile.seekliving/log/demo_20240615.log
| MD5 | 1bdea594e115b11a545872a68061ab5b |
| SHA1 | 0ae305d4aba9b4c8e2fc159aa66f10521e4f31be |
| SHA256 | c6686ca92caa2eb11d6a95cc5305c721bb63863559ea8a333f821d4a63618e0c |
| SHA512 | 7efbe97f61bd816d430481dec09410ada3e672aa935d802f2525cf49b903978036dc60ab0de318143d2026b364429c2b1e361115927e50ce71fdf954102be086 |
/storage/emulated/0/com.smilingmobile.seekliving/log/demo_20240615.log
| MD5 | bea3be64393f37aca73644af4858ed29 |
| SHA1 | e3f6f974c7e35f61510157a81341986b5bff3081 |
| SHA256 | 8ab869b18f2bde6ce4cd72ea3bfacc78df5444dc6b4b54d49d810101889f4f23 |
| SHA512 | 8b75be96843858320c6daa14c514b4ac7f41f40a38c9214334b6f3d1ea151e66467ceec4196fab9f353676e2c81e108e5c720366903acf5032c1647114849f6e |
/data/data/com.smilingmobile.seekliving/app_tbs/core_private/download_upload
| MD5 | 326fdf1aa6627737ff150a7fc1af295c |
| SHA1 | d986db4e5dccd3bf4a07e9a4a8d5d6f7e5ba1150 |
| SHA256 | f53df2cfa840b247cd75820081d5ed571ce01bc860bc3099eb1fa7ef306f9571 |
| SHA512 | 86e2a258e761c092fbbe40712773da8132ef58500f1bb783a94e20a84821304e1d38c29d470bd46b46d9ecfe17e0569e12f8a2e035781a16fae1273742d8e5ba |
/storage/emulated/0/Android/data/com.smilingmobile.seekliving/cache/nim/log/nim_sdk.log
| MD5 | e82111dd2317a2e4a28b69ec4e7dea5c |
| SHA1 | 574aa32663259cfa3aebb267b969cdd2742fef0f |
| SHA256 | 6972f1d6be06614815e2fc8b69e1d49cd877d86be5ff89c833067aa19682890f |
| SHA512 | 7a1bf7e23dc1adb0884a019f4ab34c844f7995a3057eeb53e42b3890674ab6e21827b24669691eb436040fdbf3ead60330956199217dd3d61626c407b511b954 |
/storage/emulated/0/Android/data/com.smilingmobile.seekliving/cache/nim/log/nim_sdk.log
| MD5 | d8001224f373b21dc6ab9ce87e27041f |
| SHA1 | c42b2ec0bfab26242f4cacf9c5e25944d52a8749 |
| SHA256 | 8b0b2f42130a42d3d934a7272ff82617f9126b7e81b86b4d48c34c435570b161 |
| SHA512 | e9fedcea2c95d4fa746f09264361bf7fc03f75a3f0112b39c80e7c6abad1182b10d61ad6ae60de72167b701539948675b5194117c6b440aee014c916634c69a7 |
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-15 06:01
Reported
2024-06-15 06:05
Platform
android-x64-arm64-20240611.1-en
Max time kernel
159s
Max time network
187s
Command Line
Signatures
Checks if the Android device is rooted.
| Description | Indicator | Process | Target |
| N/A | /system/app/Superuser.apk | N/A | N/A |
Queries information about running processes on the device
| Description | Indicator | Process | Target |
| Framework service call | android.app.IActivityManager.getRunningAppProcesses | N/A | N/A |
| Framework service call | android.app.IActivityManager.getRunningAppProcesses | N/A | N/A |
| Framework service call | android.app.IActivityManager.getRunningAppProcesses | N/A | N/A |
Queries information about the current nearby Wi-Fi networks
| Description | Indicator | Process | Target |
| Framework service call | android.net.wifi.IWifiManager.getScanResults | N/A | N/A |
Requests cell location
| Description | Indicator | Process | Target |
| Framework service call | com.android.internal.telephony.ITelephony.getCellLocation | N/A | N/A |
Queries information about active data network
| Description | Indicator | Process | Target |
| Framework service call | android.net.IConnectivityManager.getActiveNetworkInfo | N/A | N/A |
| Framework service call | android.net.IConnectivityManager.getActiveNetworkInfo | N/A | N/A |
| Framework service call | android.net.IConnectivityManager.getActiveNetworkInfo | N/A | N/A |
Queries information about the current Wi-Fi connection
| Description | Indicator | Process | Target |
| Framework service call | android.net.wifi.IWifiManager.getConnectionInfo | N/A | N/A |
Queries the unique device ID (IMEI, MEID, IMSI)
Reads information about phone network operator.
Listens for changes in the sensor environment (might be used to detect emulation)
| Description | Indicator | Process | Target |
| Framework API call | android.hardware.SensorManager.registerListener | N/A | N/A |
| Framework API call | android.hardware.SensorManager.registerListener | N/A | N/A |
| Framework API call | android.hardware.SensorManager.registerListener | N/A | N/A |
Schedules tasks to execute at a specified time
| Description | Indicator | Process | Target |
| Framework service call | android.app.job.IJobScheduler.schedule | N/A | N/A |
Uses Crypto APIs (Might try to encrypt user data)
| Description | Indicator | Process | Target |
| Framework API call | javax.crypto.Cipher.doFinal | N/A | N/A |
| Framework API call | javax.crypto.Cipher.doFinal | N/A | N/A |
| Framework API call | javax.crypto.Cipher.doFinal | N/A | N/A |
Checks CPU information
| Description | Indicator | Process | Target |
| File opened for read | /proc/cpuinfo | N/A | N/A |
Checks memory information
| Description | Indicator | Process | Target |
| File opened for read | /proc/meminfo | N/A | N/A |
| File opened for read | /proc/meminfo | N/A | N/A |
| File opened for read | /proc/meminfo | N/A | N/A |
Processes
com.smilingmobile.seekliving
com.smilingmobile.seekliving:core
com.smilingmobile.seekliving:channel
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| US | 1.1.1.1:53 | ssl.google-analytics.com | udp |
| GB | 172.217.16.232:443 | ssl.google-analytics.com | tcp |
| CN | 203.107.1.97:443 | tcp | |
| US | 1.1.1.1:53 | log.umsns.com | udp |
| CN | 59.82.29.162:443 | log.umsns.com | tcp |
| US | 1.1.1.1:53 | lbs.netease.im | udp |
| IE | 54.73.57.121:443 | lbs.netease.im | tcp |
| CN | 203.107.1.97:443 | tcp | |
| US | 1.1.1.1:53 | adash.man.aliyuncs.com | udp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| US | 1.1.1.1:53 | umengacs.m.taobao.com | udp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 36.143.252.67:443 | umengacs.m.taobao.com | tcp |
| US | 1.1.1.1:53 | wannos.127.net | udp |
| HK | 103.129.255.21:443 | wannos.127.net | tcp |
| US | 1.1.1.1:53 | amdcopen.m.taobao.com | udp |
| CN | 203.119.217.116:80 | amdcopen.m.taobao.com | tcp |
| GB | 172.217.16.238:443 | tcp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.206:443 | android.apis.google.com | tcp |
| IE | 54.73.57.121:443 | lbs.netease.im | tcp |
| US | 1.1.1.1:53 | log.tbs.qq.com | udp |
| HK | 129.226.107.80:80 | log.tbs.qq.com | tcp |
| CN | 203.119.217.116:80 | amdcopen.m.taobao.com | tcp |
| US | 1.1.1.1:53 | plbslog.umeng.com | udp |
| CN | 36.156.202.68:443 | plbslog.umeng.com | tcp |
| HK | 129.226.107.80:80 | log.tbs.qq.com | tcp |
| US | 1.1.1.1:53 | api.gongxueyun.com | udp |
| CN | 118.190.120.71:443 | api.gongxueyun.com | tcp |
| CN | 203.107.1.97:443 | tcp | |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 203.107.1.100:443 | tcp | |
| US | 1.1.1.1:53 | umengjmacs.m.taobao.com | udp |
| US | 1.1.1.1:53 | umengjmacs.m.taobao.com | udp |
| CN | 123.183.232.80:443 | umengjmacs.m.taobao.com | tcp |
| US | 1.1.1.1:53 | amdcopen.m.taobao.com | udp |
| CN | 203.119.217.116:80 | amdcopen.m.taobao.com | tcp |
| CN | 203.119.217.116:80 | amdcopen.m.taobao.com | tcp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 203.107.1.100:443 | tcp | |
| GB | 216.58.201.100:443 | tcp | |
| GB | 216.58.201.100:443 | tcp | |
| US | 1.1.1.1:53 | httpdns-sc.aliyuncs.com | udp |
| CN | 203.107.1.100:443 | httpdns-sc.aliyuncs.com | tcp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 203.119.217.116:80 | amdcopen.m.taobao.com | tcp |
| CN | 203.119.217.116:80 | amdcopen.m.taobao.com | tcp |
| CN | 203.107.1.100:443 | httpdns-sc.aliyuncs.com | tcp |
| CN | 203.107.1.97:443 | httpdns-sc.aliyuncs.com | tcp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 203.107.1.97:443 | httpdns-sc.aliyuncs.com | tcp |
| US | 1.1.1.1:53 | adash.man.aliyuncs.com | udp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 106.11.61.135:80 | tcp | |
| CN | 106.11.61.135:80 | tcp | |
| US | 1.1.1.1:53 | umengjmacs.m.taobao.com | udp |
| CN | 123.183.232.80:443 | umengjmacs.m.taobao.com | tcp |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 216.58.204.68:443 | www.google.com | tcp |
| US | 1.1.1.1:53 | adash.man.aliyuncs.com | udp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 123.183.232.80:80 | umengjmacs.m.taobao.com | tcp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 59.82.40.77:80 | adash.man.aliyuncs.com | tcp |
| CN | 123.183.232.80:80 | umengjmacs.m.taobao.com | tcp |
| CN | 203.119.217.116:80 | amdcopen.m.taobao.com | tcp |
| CN | 203.119.217.116:80 | amdcopen.m.taobao.com | tcp |
| GB | 216.58.204.68:443 | www.google.com | tcp |
Files
/data/user/0/com.smilingmobile.seekliving/databases/MessageStore.db-journal
| MD5 | 9c99b34b218c780295a4104aa5272b75 |
| SHA1 | 98878719519e3a7801b2aa5c5e62e37217dc9e6c |
| SHA256 | 2efd6e7e58de209ae18f8c6dce2fc02358db2f46ff8a335b8777c0699934bd58 |
| SHA512 | adc7d29c41eec2afc05ed4aff6558477529fc79ae455beedd389aeb9361447ca135a8db9f0fe73f2fd2fe22580de82c7708c6ba842c12715f6fd44fac658b20d |
/data/user/0/com.smilingmobile.seekliving/databases/MessageStore.db
| MD5 | a63bdf2f9c21898617207dc9a81f0e38 |
| SHA1 | 998a1d11e325759327521e9d9101fd854e655b14 |
| SHA256 | fe36148cb6f9a7d19ba7af64c18a4b81a565ce0516bb019043ee2502b38cb04a |
| SHA512 | 3e578fa7a265ea91c953286e17c20014bcd35ab6affaa7f8870005b7caa7c7116bc76aeaa06bfab74a6d495538da24703a0ae9cfd1de0018f08f02f351daf8a1 |
/data/user/0/com.smilingmobile.seekliving/databases/MessageStore.db-journal
| MD5 | 78620a88e0956f916980a51d4d1596a0 |
| SHA1 | 0a927f67fc2011ab33086959cb3161c82a80cbb3 |
| SHA256 | 6a9a0157d88f63d310ce97385f96a47d2a5b0ce92446f020ccbc2cf1be0944a0 |
| SHA512 | 39fc12a9a23eb0ec85b1404750dc94d9a55513536081a9f7aa16edb4f14146484b63c4211cfdb1696e8502d0e8cb04f0c0809622fd19aab7f1b712e2832693e8 |
/data/user/0/com.smilingmobile.seekliving/databases/MessageStore.db-journal
| MD5 | 5c85fb5d352987d29dc32e6a363cf237 |
| SHA1 | c8e01d0fe6c8c15cdd6fddae6d3508eb174d8ce2 |
| SHA256 | 0f92aa4439894f8a0308d34ab41527d2cb832d6c09af14e2013197505f97866b |
| SHA512 | feeae4f18f7ff58f813a5b876cca96e13a9cf31bcd3740501408d36162be51078cf109195c2cc11e2eb5b4811df446115611b0badbef156bd4cc5db4371ab19d |
/data/user/0/com.smilingmobile.seekliving/databases/MsgLogStore.db-journal
| MD5 | 4719bbaf8571fd66e91de1942eb9b753 |
| SHA1 | 8543a460e62fc299e5d52cefec98168dfddc336a |
| SHA256 | 5e17c776fa472324caa89ca66d858dea0fd78427f8091a9c72f42d9017b61dd6 |
| SHA512 | d44a45299e7e662c6b30a2afa2c6855fa6022d58f1923e38f39c394a3058ab72e2cadfb848a0ee74b187096319fabde0eb3681036dff19f79afa1651f72139c2 |
/data/user/0/com.smilingmobile.seekliving/databases/MsgLogStore.db
| MD5 | 36136685f15adf98a984f0ab62b53573 |
| SHA1 | 1c0cd43a2be0a70f67a53adc14e6f621eb83eb5b |
| SHA256 | 68b75dec39d9395be305301d0d8106f23b461b43c660efcf2beabc4cbe9efcdf |
| SHA512 | 959984b990041a4dafddcfc373a1cc58daf38cc27f80b744e7a8df57e3eec938982630a42b78051a8bdb536ffca6a4c5c750e901ee53f2fbfdbc7d6df85a648b |
/data/user/0/com.smilingmobile.seekliving/databases/MsgLogStore.db-journal
| MD5 | 7e6808abaa085534c8727ce92f0d1a60 |
| SHA1 | e0eea74bb6adeb106429f855a727d458e3e70f89 |
| SHA256 | 0e0f42a6ec3107895ae5a2483366f873f37527ebbe9b7895064bd4c3867f1c92 |
| SHA512 | 9f4daa0339be57e4695ad3b4c56ba14095c8ce806ae1cd9ee4bae7540e6fcdf89ee51309ebd5aebd2326639029cfaa100e202041cede63c58a6652df77487487 |
/data/user/0/com.smilingmobile.seekliving/databases/MsgLogStore.db-journal
| MD5 | 09ca2f3331ec943d62c59dbbde37712a |
| SHA1 | a1053846920c1620699e837b394b4e7bab18bfaa |
| SHA256 | 72f55b545bb8cb837fa8be8ad0562c6a6a0ee8f0e56c31907c8d414f8237bd0d |
| SHA512 | 41c5074aab1efddb1dc3d52e2bf98aac5308f6395fe995f7a93953b42efb4aeb27bbfadcd5bebdfacc0e9177bc168fc172da91c29c9cf9b88d5d7c063ba12bcb |
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
| MD5 | d2095e7c793a6571586be42ef9dfd973 |
| SHA1 | b5f95cec688670256dd4c8995ab9a2a08ddee901 |
| SHA256 | 899d7678d0d1192107fac0d63c8b57aa97cebe1f45932e38c2c9b7c4fe0df727 |
| SHA512 | 9206c77bdc646f190da05a471ca4b67f70e6eb729b06518bdd8060d76cdbe28e17fb51e1b92195e00e2ed9a7a41d1ae9214e655709cb00cf8a5e416719fe7ae3 |
/data/user/0/com.smilingmobile.seekliving/databases/MessageStore.db-journal
| MD5 | f2615c11c9c510530a1ae0a69ed229d3 |
| SHA1 | f21d34a12c560490f3b7568eee599666d4cc7547 |
| SHA256 | 8c31daf2537c701fe6b44e5eaec6cfebabb1c4c233465e5b9ff35e18119cd7ad |
| SHA512 | 4b0ef312e79d0673f95cf1eeb35f061f450cc6116c099c3f8a2d34d6bd782d104c3bdb32f4a23d12384d05c4c4e18aabca9da03d2e476879e0bccd65fe5d005d |
/data/user/0/com.smilingmobile.seekliving/cache/uil-images/journal.tmp
| MD5 | 7c0b5c6d1120bf3635cb815eb5e29f28 |
| SHA1 | cbb58092e164d3d098e750a608f3833f85a06476 |
| SHA256 | f2434b69ad5ddbdeb3796b9e34fa428cf6fc31bf987dee42c12816e3632a128b |
| SHA512 | 151d69445e8311fc78f40b5781e2e1f1d631e879e87a08d1076ac69d7ad5bbb8ee017fa4d5be934f9eaf1cd3a0aea87c40be405c2a601a845820d73705ec7a36 |
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
| MD5 | be3492c9c2e32211fff2e90dbae7cca1 |
| SHA1 | 5dc1f26d34cfbfc335df129e8456017f3c60b879 |
| SHA256 | 8bdda8e5b04a4d994a813d205e25afc882b9d1d2d4237400ea2cc389a424a031 |
| SHA512 | 0017aa3b6a3bcfa798319a170243019e54de42b8cf339100eb96ee1247763258167646a6ce07c76e63c7027a68e4fdecf31165a42a882761de5af1060f3e8e8e |
/storage/emulated/0/Android/data/com.smilingmobile.seekliving/cache/nim/log/nim_sdk.log (deleted)
| MD5 | 6e7d722c6bd4454a5f365fb88031630b |
| SHA1 | 6b5659170fd622fdab01d1ae7226e6cac1661988 |
| SHA256 | 85dca843b773f98751218f7b88e6db46023464353e95cd0825dcf2386343e9d4 |
| SHA512 | 0432683fe6f32464808bdb1eaeca12a570dfdfa7492551318e4711df17f6fa1448a0dc88faadaf7cee5014514a7ef61546d9ec9ace8af9f787727347ce93b1f6 |
/storage/emulated/0/Android/data/com.smilingmobile.seekliving/cache/nim/log/nim_sdk.log
| MD5 | 79f305ecacd3c6e3cb20b073d1acf1ef |
| SHA1 | b571cb298371d2066570ae620c099d02d237679e |
| SHA256 | 07ed275383eae9699d142d2e3a0c746b364feed61052a319de5b2ad750f76ac7 |
| SHA512 | c8a0b041bbc8e22d3484ad03c94a8a9c47557c4802354302cdc844c102a1591e6c8be6edd13884cb56582e597ccfb711238e589fbcce7d2c3e8da1dbd1f1d36f |
/storage/emulated/0/Android/data/com.smilingmobile.seekliving/cache/nim/log/nim_sdk.log
| MD5 | 47c8b8178d6f7c1310197cd7abd88d57 |
| SHA1 | 8c41bdf0652f74bab38d1db759fe05975437a9db |
| SHA256 | 32abe6679642c5687e428c74e27758eef71650c2ec9d80c3a32ad19537e4bc22 |
| SHA512 | 65f2e317ffa36035c4135062edb90427dc53566263b1f3ce4a25aee94d94130b4af89d84f5f9a062f2e7a6e9f06a6d68879721be16aa36208f2fea72e51ce237 |
/storage/emulated/0/Android/data/com.smilingmobile.seekliving/cache/nim/log/nim_sdk.log
| MD5 | a5e8d57fed1739a402996f4bfb020d57 |
| SHA1 | d8133f6ec3f1960b8ff3c7715993b010572e4550 |
| SHA256 | ac3c7aa96f0eb32b668d26e562531e4f8f4c6091466008ff0a38be4d1362a264 |
| SHA512 | 4bf8febe66dd886c9b68983e00daa9a3d4e0fb65034a49d910c6f34422dd52d23ddd3d5c28199ced9a13954780fbe375da68d5e6dd77933741e480b64bc6077a |
/storage/emulated/0/Android/data/com.smilingmobile.seekliving/cache/nim/log/nim_sdk.log
| MD5 | 6353deda09fe4c09c1bbf3109b05fc32 |
| SHA1 | 40d34f2297589d5616e62db8dde8af15abe1641a |
| SHA256 | b99b55bd3c17a887c77df907b31a54797df5ee99f7dd0a7b1eed971f166b70f5 |
| SHA512 | 3d808569bfab5e0b2b4df11b0ef1a1b24c8f19b866dbb3bce5dbd7aa6bef91cd013e1576facdb7f01148fb2d91812f49942c787c12b5747bff04d4f4ab1c97fc |
/storage/emulated/0/Android/data/com.smilingmobile.seekliving/cache/nim/log/nim_sdk.log
| MD5 | 8ba9e5c3cbbd73bb720d7f2b8665c7d8 |
| SHA1 | fe2ea2454537b290110b26d71d6e4f5d59c0bf86 |
| SHA256 | 320a7fdf8ba4c149447f75fccd427df0eafd9008506cdb419e4b9933ae2c53e6 |
| SHA512 | 088400b3d69c753a29a2729de49033e2aeeea2c232d61b4ed8cf612b9b11365b01b2f1fa31f179f321b09de5a65ebaaac811245013fe385c5cd4067a4345b474 |
/data/user/0/com.smilingmobile.seekliving/databases/accs.db-journal
| MD5 | e207bf50f58e80720477318624a59529 |
| SHA1 | d0ef1658ac787b1915e7b744eec4fc869448f4fe |
| SHA256 | e51dbb30fdcd5fae3775c80aa122b10b1cd83dafe9cb2ae5aad6aab97290ade0 |
| SHA512 | 7f0d1d11f9e02f3723a0a6ece01117a70423ab5bbd7f21a221ca9a4f0af82586d8cc2c228ebd92c86893653c3d6d90175d80bf0621034a84b451242f3ab8f582 |
/storage/emulated/0/Android/data/com.smilingmobile.seekliving/cache/nim/log/nim_sdk.log
| MD5 | 0e8fd6dc81b08997f055d9cfff47120b |
| SHA1 | 614fc8e5ce1c884225b56a00f910758b8beed84b |
| SHA256 | a042b484b2f8a8fb7152857d31ad56241bdff03f4ad2a1252c0c0359a397b7b8 |
| SHA512 | 89cd58fb5335751536ebc816ef0107abab4c383a789cdbf8f134898b60a2943c630a0b0481291c87855ca9f3c38ebbaf52b710d1f267a28b825765688e4b41dc |
/data/user/0/com.smilingmobile.seekliving/databases/accs.db
| MD5 | 942f84526234befea0f818004b948b63 |
| SHA1 | 94ca93ea15ad97cd7fe59150668aeacd039f4281 |
| SHA256 | d0acf8d900e9bed2841d2ed73bfbdd6c0385637d12c4974a8e1ac1d73a2a7725 |
| SHA512 | 6be9e07241f6661635dfb98dab494fb01598fa56a0f222208d21baef9a13017294bbf35ec35797774f37a74c9fdb35510c7bdfeec20a5c6fbd5b23909c608bdf |
/data/user/0/com.smilingmobile.seekliving/databases/accs.db-journal
| MD5 | 3f899ebba4ed511a766c6eb2a3d15622 |
| SHA1 | d9012d0143cb14dd61704718bd773a080947c148 |
| SHA256 | 662c19bc8f180da901691a421e31e494cf4de77a26e424631e4d30e6c52d58d3 |
| SHA512 | 583e83cfb0694ee38927c55bfbeeed111318cd16b82e109e0f6e3ed75399fed804fa3d165a9ff2b41ba422a57d619991c69b140ca7c4ad69a01b7480364e0550 |
/storage/emulated/0/.DataStorage/ContextData.xml
| MD5 | 9781ca003f10f8d0c9c1945b63fdca7f |
| SHA1 | 4156cf5dc8d71dbab734d25e5e1598b37a5456f4 |
| SHA256 | 3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793 |
| SHA512 | 25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03 |
/data/user/0/com.smilingmobile.seekliving/databases/accs.db-journal
| MD5 | 6c0e3bea43d8a351610657228eb22498 |
| SHA1 | 4516f01735be9571ad0b7a0d1090b92e168455bb |
| SHA256 | d30e8ca4992a359ce695abb3f8e8891a95abbe57d6f89aa9ef7c24da609583c1 |
| SHA512 | 270ffb99f8a2187857b3632c00d8b7d1ce98a59e8d0ff0c79db88af7025e45ef2e078f77534f3554dc7862f4adcaee45ece1968b3e73bf4ec9ffd5da87ccbe1f |
/storage/emulated/0/com.smilingmobile.seekliving/log/demo_20240615.log
| MD5 | 54ea21aa35da15144f0781b1113df673 |
| SHA1 | 93c5c91ed40f036c6c27cbb3a1a819f5c8974648 |
| SHA256 | d5961e342bd19f99daa10fbce2ce967595643367c650499644e7c76e4f2c96e8 |
| SHA512 | 5e06a6e792372ecb8bf0ca677ced6a9deb254a7eb1dd066361a1535dd2de4f96e6778a4715a68265b8a816d8d4a1e60fcbca9b5e69f28afabc64f6ba1ff8e9c0 |
/storage/emulated/0/.DataStorage/ContextData.xml
| MD5 | b7601bf0f5eb431afba7186b9522af1f |
| SHA1 | ccc9e8afc187f9a1beba1a93dcd9cb470074af60 |
| SHA256 | 7e688872ad8ccc8d75bb842e36411bc2859000d1f91e4001f6275f7a0e39a17a |
| SHA512 | 0cd0968d93d674753fcea39df43af2bfc13abb40653553ae9f03c7572c0090520fc1ca8706dc1959081c49e71efec66db35a5ea70ab4f4c057631bbaad5e961a |
/storage/emulated/0/com.smilingmobile.seekliving/log/demo_20240615.log
| MD5 | e547e714c31be2436ef9bea9b329937e |
| SHA1 | 4f139d3afff33586ba83646fc77154fb8333116c |
| SHA256 | 8a0f5771e17036a83540a011cc6774c810de9a2e9a974ad230998b504e2f7b67 |
| SHA512 | a2f8bf8bd5239cc5d995e9b8228deab45cea4e693ea75dc32f7483efdfd4ccde875d48a5b9650519907bf8e6e21f86209a703a73bb04b471c7d2fd986ae9a399 |
/data/user/0/com.smilingmobile.seekliving/app_tbs/core_private/download_upload
| MD5 | aa99188eaf471b69fbe1fbd776e60257 |
| SHA1 | f09f7b80997ad67f01a1123043b3007c8decd397 |
| SHA256 | 1cf79741d92bbc559f7d290ed0f86a1ada82f960acff953b9b2956e21f776a20 |
| SHA512 | e3e4353ca6affa7558638ff0f98438d660fdc0b19bd60d6ec867efba672ab048cb13bcd02dbd13031d827fb7f0b0f0407dcd1ed8ebc3f8a816cd5c6427c17c0a |
/storage/emulated/0/Android/data/com.smilingmobile.seekliving/files/tbslog/tbslog.txt (deleted)
| MD5 | f36626f43e278094563730b9cb749fb0 |
| SHA1 | cd7ebd770a3876da0a51a1aee3fca52645fb1276 |
| SHA256 | 3185e7274e5610ea7782af90f05070f182d90c99d6df1abcc8b9f31443bd5860 |
| SHA512 | 008d014bffabf695d17a92416e33641f607d0a715713892f0d921da112978b733cef5adf9a82d3672784b75f6b1deb9bd97df7cb2723b59101a872934484b45c |
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
| MD5 | c645eabdccb442d0d86ef16ee37fabae |
| SHA1 | 8ae8dd673ec01b39025db67b5571c0fe5bd2bca8 |
| SHA256 | 86fac9d5c3b2a33a161348ebb3bbec92cdfe29e0c8712bc7337e77a71ebf9e89 |
| SHA512 | 6253d673279de5b36dd55dd70dfa2049cb474f6223467a5d6bc335931eb898b9aa508425f536d0b54b194b1ae829062c147077d186bfefa5a41647d9bfca25bf |
/data/user/0/com.smilingmobile.seekliving/app_tbs/core_private/download_upload
| MD5 | fec142af382eba9692c052237cee3442 |
| SHA1 | 27d3f5aae9a79229832c20c181da32b22a4c356f |
| SHA256 | 547e2f4ccf4c12c2546c8367d89ee61c2a454ee41d083966f3d53271050bd214 |
| SHA512 | 872c0ed67aa27d6baa98a9279e562ae18dcefaa91e46845ef98eb44ead877ae696d673eadae3dfde5106a3df8eb20750dcaad708d175137c809e02cbc7fa7757 |
/storage/emulated/0/.DataStorage/ContextData.xml
| MD5 | 2a0aa817565dc10ee8ce7d98150ef243 |
| SHA1 | cf1fc6930e4a60a235d7c3591ebbd4993310d188 |
| SHA256 | 8f87214413061b920d7cacf7b0f9ff442ecf04a7ec0dde2b157369a2ca8a176d |
| SHA512 | 0c1ec79622642a922bb7ab5ddba417fa87773d7aa877592928ba8d01e5bded1c2a11dd6c96b55dea14e8ef66e5de5f7a087525df63e48994f137561b985233f8 |
/storage/emulated/0/Android/data/com.smilingmobile.seekliving/files/nrtc_config/official_config (deleted)
| MD5 | 59a351e8e08c959ea11e6b72da0aff4b |
| SHA1 | 2ea2f0b2b2b5803efd7e6234c41663f8f789c336 |
| SHA256 | 2492048d24775cd89bc504d69fe5048b496ec61602ff00964a780629887da49b |
| SHA512 | 92e2ecad1522ad06589f8d4a3fd6aabecf5957034551e694f0ea79c57e1100469784b198f2f0783ac6af631c6f66a379bacdecba9a13826e735889aae4ee4f1b |
/data/user/0/com.smilingmobile.seekliving/app_tbs/core_private/download_upload
| MD5 | 58fce461f00f73fe0222a54ebeae3890 |
| SHA1 | 5aa8095310fec74c3363ee1b95e8010c6e26f0e1 |
| SHA256 | 87d97f5c5f4ac30919d9886bcae17cb6a6dfdded50228150130a1c9e2df7cfa7 |
| SHA512 | 1eb3c9616b37e368040f82b1bc51da55582637abb7409fc72a8ec0f82bdf2c76cc41a075e07449034fedea3e994e06be2842e8bf963a0e1622c5017741c9a14d |
/data/user/0/com.smilingmobile.seekliving/databases/moguding.db-journal
| MD5 | e75edf08f09295c801ebd22befeab5ec |
| SHA1 | 4a129b6f3c04bbc583b66fa5da1ba3ba68b44646 |
| SHA256 | 83aab0af661639878e6bf2a2a4a5da7bed46304738f7f449c181640364cc6c95 |
| SHA512 | 90a8225ddc76f03dcd9996a824a08f9e9ca1649f71ff40209a9b84ca1ac0126466efd892e2d01636a34df3037c1e96f0300d0ad968b6ab30800a973819e71315 |
/data/user/0/com.smilingmobile.seekliving/databases/moguding.db
| MD5 | 171aedf968e17a2744d2585715606cb9 |
| SHA1 | bbeddeb3b89fcf809619c35b4a318a80e7d5b029 |
| SHA256 | d2ab452d9360848f46af866b870b5c6fc98230b09c72b89cb1a4b2778586678e |
| SHA512 | 78a0f517ee3d21c153dda6dbfec4187ebaee9d520d7b1b63f358bcb125d08aea53f26943907a56fdeba40161d9fc7e4fd63f9ae3154dd2ad887ba0162738285b |
/data/user/0/com.smilingmobile.seekliving/databases/moguding.db-journal
| MD5 | 0696a50f95d19a59d7c192557cd5014f |
| SHA1 | dc88da07f99fd2b2eb1af626060b1f4b23f78c0f |
| SHA256 | a3585ecc417b78f54a2422f84bef02a6a856835dbfb123ebc31c013c0e975512 |
| SHA512 | f7a5566d93183e9c66f6a264209a7749ec14099e33268332923bbaed5e54bcba03ae72017690bc038122226713181f44c60c85f848548d007a8f0d0c1139d913 |
/data/user/0/com.smilingmobile.seekliving/databases/moguding.db-journal
| MD5 | f6bd056559b6f856f393d1d857b65279 |
| SHA1 | 9bee380ba338973822767e985f085c39ff9f81fd |
| SHA256 | d8f064ced5ba77f03bb7821b9e20e7172b84f848edf33c46abe2495c08b57593 |
| SHA512 | f0160617bf1642f285f92dc6b586119155b428557f4330c9e4687d53d971afeb93e55f32fa33f4cae2ddb7f9f5fe97b0f3ac23668162fd50a20023fd372be5e3 |
/data/user/0/com.smilingmobile.seekliving/databases/moguding.db
| MD5 | b9e10ce4641ac1eb042b25c43bc3d8f3 |
| SHA1 | 85c15efa83a28a083b900375dd8d8f90b307f22c |
| SHA256 | fb2d2d7f4ccb2251604003206df006b69f41705f0b265ddec061ac6beb30dd95 |
| SHA512 | ae8944f77dc535d10cde4970cd9966500686c4aecd3411d9eaa5d8d5d548e36a9e6be7225f30fadcf0d2d893fe976966ead7ea391bd89e2bcbbc55feeffa7ccc |
/data/user/0/com.smilingmobile.seekliving/databases/moguding.db-shm
| MD5 | cf845a781c107ec1346e849c9dd1b7e8 |
| SHA1 | b44ccc7f7d519352422e59ee8b0bdbac881768a7 |
| SHA256 | 18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7 |
| SHA512 | 4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612 |
/data/user/0/com.smilingmobile.seekliving/databases/moguding.db-wal
| MD5 | 74ceca11544f66fd95995077b1e6b8eb |
| SHA1 | 86186ca3909bae4a57d5ae01eb4de55f5cdb0cc5 |
| SHA256 | c72d180ced99c77d9cab8b48ea3a4b551349b5c779903400db3ed15282dca3d7 |
| SHA512 | 7a0c159c837625af5f2f43ae5a54df06f67d5d5680b5826d905d7f63dbe011840685c46a2a410334fa5a41471d3e880f3c4f51b79e110437c80267a8348cc9ac |
/storage/emulated/0/Android/data/com.smilingmobile.seekliving/cache/nim/log/nim_sdk.log
| MD5 | 1de21d4285133b31ba140d228423cfb3 |
| SHA1 | ea1664523c7d5eb213235185fde95fcacd1dbb90 |
| SHA256 | 69a004d93495de35a54278ff98ec0fa13e43ba2dfeec7b18d3bf8d119e2531d7 |
| SHA512 | 7ff9c4693cca9a2400d9921b16fd2951f14caf7800443fdb467637f228717a5cb3f5a36a8b5e28cd7847186ad235ff2cc544b88c98693ad54318d3dfa1d7bb40 |
/storage/emulated/0/Android/data/com.smilingmobile.seekliving/cache/nim/log/nim_sdk.log
| MD5 | a3a3e801c67cc45487488970e32a82b7 |
| SHA1 | 7a96ba72a28adecdc5f2d7a5ee439cae301e6a59 |
| SHA256 | adddda9c6ae7a97e3bbb9cfc987b62bde808bbf838947c0a570382a7d02a03b5 |
| SHA512 | 56f779fed4abe10ada5fc28eb4885565438881c711fcf07ed0fb21e13e76f041d7366960ce0ec1ed3170d309a422c562f0e1f56de825ae9fd26f3cd50cbc8f48 |
/data/user/0/com.smilingmobile.seekliving/files/umeng_it.cache
| MD5 | 3557864aac8424613282d32ac0ff0fa0 |
| SHA1 | 4d3c65c14d3709bb932e6ccdc24b8112d6edef61 |
| SHA256 | 3a894e449bba2060bc4548d0b9ae5a591fc90193b9813955840cd6ed11d4b3cd |
| SHA512 | 06604b22c2caed91f7eb727e561e7151b884e824dc9f7e37c2b08bdf26d7096bbca50f2163bab2675d0e7603d837701e8c9be053c90fedc1ea7ed59985e8493b |
/data/user/0/com.smilingmobile.seekliving/files/stateless/dW1weF9pbnRlcm5hbA== /dW1weF9pbnRlcm5hbF8xNzE4NDMxMzUwODAx
| MD5 | f952a83c0e73ed6252cce882babe0cde |
| SHA1 | d2b7de0c4ba63808bb4989af93ce5f4a20fcd928 |
| SHA256 | 434fa468accdef0c10e5c23e06adaffdccf976c432735186f3dbc8d03733c641 |
| SHA512 | 1bacc6ccae0bda3dd343fc4993e8777e87d05121ea7d1a6c89399a4581058a61aeb047db54d14430a06cd4e5bb0acea46d7c8a20d9bf2626657dbc28a05f26d4 |
/data/user/0/com.smilingmobile.seekliving/app_tbs/core_private/download_upload
| MD5 | bd7f4c8e392f98f5663a7635aeda3d9b |
| SHA1 | b8ba97048a33605196e3c89dee7f002b03d23b1e |
| SHA256 | cf4ed8767649c8ecdd9b0aa88581e1a025ed5bb5881c95b7f9783468f491a31e |
| SHA512 | 44cb4532afa7f8f3deba37327aedc4d60f25a57706a75dec3e5e9d09718f3d45fd4abaa57ea89a6eda55e77d8d91de5a4f9e29ebcada098fbb650da7ac621700 |