Malware Analysis Report

2024-10-19 13:11

Sample ID 240618-h6vj4asgle
Target ba6b043dae1acf029838cfa67a6f4dbb_JaffaCakes118
SHA256 102062aa8ba6f669ecb4dbb3b39d877d8ac0ea9eba658a022e96856474e5374f
Tags
collection credential_access discovery evasion impact persistence
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Mobile Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral12

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral4

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral6

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral13

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral14

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral16

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral7

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral15

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral17

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral5

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral8

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral9

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral10

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral11

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

SHA256

102062aa8ba6f669ecb4dbb3b39d877d8ac0ea9eba658a022e96856474e5374f

Threat Level: Likely malicious

The file ba6b043dae1acf029838cfa67a6f4dbb_JaffaCakes118 was found to be: Likely malicious.

Malicious Activity Summary

collection credential_access discovery evasion impact persistence

Checks if the Android device is rooted.

Requests cell location

Queries information about running processes on the device

Loads dropped Dex/Jar

Checks known Qemu files.

Obtains sensitive information copied to the device clipboard

Checks known Qemu pipes.

Queries information about the current nearby Wi-Fi networks

Queries the phone number (MSISDN for GSM devices)

Makes use of the framework's foreground persistence service

Queries information about the current Wi-Fi connection

Reads information about phone network operator.

Queries information about active data network

Queries the mobile country code (MCC)

Requests dangerous framework permissions

Registers a broadcast receiver at runtime (usually for listening for system events)

Uses Crypto APIs (Might try to encrypt user data)

Checks memory information

Checks CPU information

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-06-18 07:21

Signatures

Requests dangerous framework permissions

Description Indicator Process Target
Required to be able to access the camera device. android.permission.CAMERA N/A N/A
Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE N/A N/A
Allows an application to read from external storage. android.permission.READ_EXTERNAL_STORAGE N/A N/A
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. android.permission.READ_PHONE_STATE N/A N/A
Allows an application to read or write the system settings. android.permission.WRITE_SETTINGS N/A N/A
Allows an app to access approximate location. android.permission.ACCESS_COARSE_LOCATION N/A N/A
Allows an app to access precise location. android.permission.ACCESS_FINE_LOCATION N/A N/A

Analysis: behavioral2

Detonation Overview

Submitted

2024-06-18 07:21

Reported

2024-06-18 07:26

Platform

android-x64-arm64-20240611.1-en

Max time kernel

31s

Max time network

176s

Command Line

com.boosj.boosjapp

Signatures

Checks if the Android device is rooted.

evasion
Description Indicator Process Target
N/A /system/bin/su N/A N/A
N/A /system/xbin/su N/A N/A

Checks known Qemu files.

evasion
Description Indicator Process Target
N/A /sys/qemu_trace N/A N/A
N/A /sys/qemu_trace N/A N/A
N/A /sys/qemu_trace N/A N/A

Checks known Qemu pipes.

evasion
Description Indicator Process Target
N/A /dev/qemu_pipe N/A N/A
N/A /dev/qemu_pipe N/A N/A
N/A /dev/qemu_pipe N/A N/A

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /data/user/0/com.boosj.boosjapp/app_SGLib/libsgmain_312768000000.zip N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/CommonPlugin-4.9.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/FeedPlugin-3.1.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/WelcomePlugin-3.5.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/BannerPlugin-3.3.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/LoopImagePlugin-2.8.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/app_SGLib/libsgmain_312768000000.zip N/A N/A
N/A /data/user/0/com.boosj.boosjapp/app_SGLib/libsgmain_312768000000.zip N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/CommonPlugin-4.9.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/FeedPlugin-3.1.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/WelcomePlugin-3.5.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/BannerPlugin-3.3.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/LoopImagePlugin-2.8.apk N/A N/A

Obtains sensitive information copied to the device clipboard

collection credential_access impact
Description Indicator Process Target
Framework service call android.content.IClipboard.addPrimaryClipChangedListener N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Queries information about the current nearby Wi-Fi networks

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getScanResults N/A N/A
Framework service call android.net.wifi.IWifiManager.getScanResults N/A N/A
Framework service call android.net.wifi.IWifiManager.getScanResults N/A N/A

Queries the phone number (MSISDN for GSM devices)

discovery

Requests cell location

collection discovery evasion
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getCellLocation N/A N/A
Framework service call com.android.internal.telephony.ITelephony.getCellLocation N/A N/A
Framework service call com.android.internal.telephony.ITelephony.getCellLocation N/A N/A

Queries information about active data network

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Queries information about the current Wi-Fi connection

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A

Queries the mobile country code (MCC)

discovery
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone N/A N/A
Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone N/A N/A

Reads information about phone network operator.

discovery

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A
Framework API call javax.crypto.Cipher.doFinal N/A N/A
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Checks CPU information

Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A
File opened for read /proc/cpuinfo N/A N/A
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Processes

com.boosj.boosjapp

com.boosj.boosjapp:channel

com.boosj.boosjapp:channel

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.200.10:443 tcp
GB 142.250.200.10:443 tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 172.217.16.232:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 bcfeedback.taobao.com udp
US 1.1.1.1:53 adashx.m.taobao.com udp
CN 61.170.76.178:80 adashx.m.taobao.com tcp
US 1.1.1.1:53 api.map.baidu.com udp
HK 103.235.46.245:443 api.map.baidu.com tcp
CN 59.82.121.55:443 bcfeedback.taobao.com tcp
US 1.1.1.1:53 afpssp.alimama.com udp
CN 106.11.130.219:80 afpssp.alimama.com tcp
US 1.1.1.1:53 gm.mmstat.com udp
CN 59.82.33.227:80 gm.mmstat.com tcp
US 1.1.1.1:53 log.umsns.com udp
CN 59.82.29.162:443 log.umsns.com tcp
CN 140.205.160.76:443 tcp
CN 59.82.121.55:443 bcfeedback.taobao.com tcp
US 1.1.1.1:53 ynuf.alipay.com udp
US 47.246.136.188:80 ynuf.alipay.com tcp
GB 142.250.187.238:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.179.238:443 android.apis.google.com tcp
CN 61.170.76.178:80 adashx.m.taobao.com tcp
HK 103.235.46.245:443 api.map.baidu.com tcp
CN 61.170.76.178:80 adashx.m.taobao.com tcp
CN 59.82.121.55:443 bcfeedback.taobao.com tcp
CN 61.170.76.178:80 adashx.m.taobao.com tcp
HK 103.235.46.245:443 api.map.baidu.com tcp
CN 106.11.130.219:80 afpssp.alimama.com tcp
CN 140.205.160.76:443 tcp
US 1.1.1.1:53 wb.110.taobao.com udp
CN 59.82.121.163:80 wb.110.taobao.com tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.178.4:443 www.google.com tcp
GB 142.250.179.228:443 tcp
GB 142.250.179.228:443 tcp
GB 142.250.200.2:443 tcp
GB 216.58.201.110:443 tcp

Files

/data/user/0/com.boosj.boosjapp/databases/MessageStore.db-journal

MD5 fb1c54865ee4c83e909fda84a4ddf957
SHA1 2b95e08860fe95b881a6ca346f12bf72d27a6d71
SHA256 e112ca0c8380fe0ae014e4cfd91e852b88f58616ae8eb65a953baa1382eddf8c
SHA512 a36e67fcec7c2f3b91b83984dc2fc7aaa4c6be7907beb936cf0b8dc93026710f88bea05acb33e3ce0a7de2f0f8ddd458530db9861764595cd9a53e2f9364a306

/data/user/0/com.boosj.boosjapp/databases/MessageStore.db

MD5 adf7471b3a5c60c552572bc891e582ea
SHA1 02cdc8e267d29880dd16d653f8133278402bcea1
SHA256 1f3d3dd8219c8f31581e5ccde992456794a96b7e23b786d04815ad5ec25e9453
SHA512 4f944555b6f1e8258d952970a065cfee2ca733cd74b4ac7cd39681aedffc70dc0e304ebef8912fa5a9f00e59d32215d669d45669b715649c95ad7045a48a0f76

/data/user/0/com.boosj.boosjapp/databases/MessageStore.db-journal

MD5 f301c642ef63138457081c1586927d00
SHA1 88a4d449f8abec20bd577c464ef0ad6463983121
SHA256 12e6a804d22728a82ee887158e0e94dee1b005b232f99320e5e5f7a6a231a95e
SHA512 ff67dcd841d5e435f782c978df9a99821f488f0963ebff5b8adb178b6d3f8a558a3fa0c3d0bab02305416293c4011b0466f1ae870f26b2c278f820108a0d1d92

/data/user/0/com.boosj.boosjapp/databases/MessageStore.db-journal

MD5 31604b2f6cb8380a5c29007b1e54cb88
SHA1 3224adb8737d38a57c80f72aa381741ef4026b05
SHA256 c06e512696e4dad30f1fcfaf02b7c1e22ef37b726cc6eb5a387fefca3dbc6d29
SHA512 3d8ba51709c687bc2f72515a7aebd3ac7f8bbe022ec2d624f8a535f5e9d9de70bf373dc8d10b71749a3d25c01fb507e4259954f088fab5226c85ab54933ba7e0

/data/user/0/com.boosj.boosjapp/databases/MsgLogStore.db-journal

MD5 84f1134e6c608eef1f3ba063d511e80e
SHA1 dfcf1519ca88074627ac0f611ebdaaf15a88cffd
SHA256 c8e8e1e2dbf7779121f7052bad53860184ed0a345eeb6f950de64c7e70cabd90
SHA512 4e5661a69f2cc924d58fab44562632a622fbcfafe7bf1ad0cd387646ed3e6ae1fdb286ed01fa682d2dc3b604c306c1514b10768487d0ba19035af153de647196

/data/user/0/com.boosj.boosjapp/databases/MsgLogStore.db

MD5 7c2942f240cddf417fd78620848f9274
SHA1 f4ead60dcabbce7a21a2a2a461015136a4be99bb
SHA256 279a1c8a222aaaac86119bceca2b537ce83eca61b4205db166d88d6b51bb72d2
SHA512 083a98b7ef072dff502f1f560633753aef5d20454fd83db47c6e0af328bd06f311e34eee5fb9d6cb63c46933c257c3714bd9258f08774e014a887ce04df1837c

/data/user/0/com.boosj.boosjapp/databases/MsgLogStore.db-journal

MD5 23f2c044f9d25447aa9bb991774e4024
SHA1 9582723f1261bc2be90ae54f83e55b0a1827f654
SHA256 e589cb762fe0efb0580705ae6d7a9fa9906182df897b63c214fc1f8a1fce7355
SHA512 90a4f20a760d122f8dfd7e746e07890325d759ee32a5db82e93b2310bbe8a63f7c5921aa08c1c72f4aef88233d46dda4b33d8556d15fdcd097a0196c7591240c

/data/user/0/com.boosj.boosjapp/databases/MsgLogStore.db-journal

MD5 d6944a77702f862a6fd11118d636bde4
SHA1 66eca303c0ad11d5936234840be1546cff713277
SHA256 a7d9433f14daedf33f2ca46cdf9d9ca88278acbd7159c7bff9c80168da99d5ed
SHA512 ff75e738d25b1d1f8f55f3f97174aa2b51974c43840c615bb4f7f00f426ca57040772fc99447330d912b784c3ae26ff8011ab0639e8162db6ef9fc31c7c6c5e9

/data/user/0/com.boosj.boosjapp/app_SGLib/libsgmainso-5.1.81.so.tmp

MD5 c85e8919765cc22095d1b8e40601e34d
SHA1 22d48933b9f30a028cf4c9d993f59c767f9e8e35
SHA256 f4ab50b1188cc9913c106f1f661162cb7db90aa288a90fa6bb41c5938b6afa8e
SHA512 6715ed9290b868a5733f6c6001e9de1375a381b5f61552fc0adfd825c72977cbd34a347f7fecad8cbc798af7b5ef59f4a23bbe6fedb714e4dda65a1e5921c08e

/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

MD5 9781ca003f10f8d0c9c1945b63fdca7f
SHA1 4156cf5dc8d71dbab734d25e5e1598b37a5456f4
SHA256 3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793
SHA512 25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

/data/user/0/com.boosj.boosjapp/app_SGLib/libsgmain_312768000000.zip

MD5 522947eaa37b029a247e3973f3be3621
SHA1 31c88e0d7c9b51904c0f598e80245bba41b1c7d9
SHA256 d06601f9eb8d8c991f00426ad30bada9d2bb7886a6de21d78cd0ccb7b7e62156
SHA512 f5eaa9ccf08096bf0df8f004fbfc1b893ae08fed3e6722e0adea1fdea2719a45876314b765134905841f440c27216c897876e3ac6c8903fc44b697854eb02c0c

/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

MD5 67045175c709096a316375cec3b55f60
SHA1 b1fd1ed1c653c0b58ad44ca98a756cc352e989f6
SHA256 2ecd91c29acd8a49b1dafa8cf48dc90595a4ee8923ae8428d533e073d9f86963
SHA512 f30491c21ec9e3ea42228d806f7af988ae11a2d3e006729a543b2c62a77fdb51a1f3d4da9d4ff76cfe3d67318abefa1a8e00611774ebedfdf7c60f7e66131832

/storage/emulated/0/.DataStorage/ContextData.xml

MD5 442f6d52da1a29a4c7654bbe611fa122
SHA1 e8d59416cc78fc0f4ae700a1d44ab5b5a303c8c1
SHA256 6c390cd25ffde669f7c0feb6d3b5bdf96b35be501c9be7dc0bedfb2da2499c55
SHA512 e9c35bebee0b6193bfa81ee16f87a31b44269232806b9e4c5cb635b4d4c9b5ff1741f2994ab11600f4d88397f4281182b8f56cd17f09040d336934b215e7530b

/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

MD5 d27ff47d9f60ef5204181148bd81407d
SHA1 b20eb9659d0961792407c28aa902a39b99bc9ab2
SHA256 577ea051b200c47a64ae4144d8685aa342b93c30f2a79007b6228fe581d97284
SHA512 22e73f54a3c1149405aca17ab2f73d170824784ed304420e9c0a01bbdc8cba17746febc9f2392034638a53909bb9ef793cff6c766a08cc5c27bbf8e4b771f6f5

/data/user/0/com.boosj.boosjapp/databases/ut.db-journal

MD5 ef918ccb1fad503ca9e616eae650eb0e
SHA1 9507e47a61c6d5376b8ecf3a28428100562840b4
SHA256 967f3458e68f594ef3b8038ac9c45e1eb78abbd818684d86f36f8c67633c9f64
SHA512 439aad7b6017e1a5a25703fe2a551f44d4211bfa72b2648b0840cc0dd4e103e0bbbd026d94cc917e7a91709ce9728966721f8a3d06a45e2497e94722eaaf640b

/data/user/0/com.boosj.boosjapp/databases/ut.db

MD5 75694e403dbc728c85b85d55d972d357
SHA1 346ce6fb424f486cc32f7f46649649470cd57225
SHA256 ad9862b2cfa8b250817df299b073d617bba35aa05292f7f0c6cadcefd47cfaf9
SHA512 591d814f3bdba7180588ec333b554f946a977374df798bf69a352b4f1f0b43a412b5998622a059cfb3ad94eefb56d6ae62c6fe7dfefcb9ec5d47b98971bac6ad

/data/user/0/com.boosj.boosjapp/databases/ut.db-journal

MD5 c2e4768b24e47c22296f354e9b319300
SHA1 83a2e8fad9f103c72a1d9f6d4aef2ab13b7e9cd7
SHA256 b7bf665359b32216522d4d9d94e9e49ad6643eaf9645fc8a96ec4e16d91ddbf9
SHA512 8858b4867eb918ee51b9cd8c2f5618d4350f2d5f299d7b46d01cd3623a9c25b4df2bd1a74845ca62d57247754825be9d60379167ef19a5b71d2d8b3092e28f37

/data/user/0/com.boosj.boosjapp/databases/ut.db-journal

MD5 262b6029bef878e64a4cbc31bc0683d5
SHA1 914334668c5ee51c346300184eaaa5cac97bea51
SHA256 82da46d20f102e42473414c3838b6e6ff3236d98ea487dc64a0b995f73babf2f
SHA512 e4d46b1b33bbdc42a821e4c0b815eb92d9e6eddba7195ed6bd9f1b407e0acac479acf2fb04061869ce6d7d9693c2534b78f941f2d8225dcdadf93ce177d2a323

/data/user/0/com.boosj.boosjapp/files/libcuid.so

MD5 a30542b08e2145226dbfc2568af8a1d5
SHA1 d74a0da2702c89cabb0e4f1b5a80139f165fd017
SHA256 74d93720f0ff8ed93ea3d6635734df8302408fd1b6460c59bb6ad2347af3cc32
SHA512 af417beae5d4b6f57117687038013ae3db442f7d2436dd48c06cd6a26a71b12cd811b447cbf09f22bc14b4144ad52706dbe6d281ca1bfb96144805031e5f3f56

/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/BannerPlugin-3.3.apk

MD5 f6a43f7fffde6f950229be1866fb5846
SHA1 480e8712800dcd3d6a18a1b51dcc132ae57e8b0b
SHA256 e4943fc13b55fcd074fe757828bf707f5ce63e07332319a7d267c0170c10a472
SHA512 7359217aff2178535e4fb88546afe75933d1c491b5a537d80abee8222c3c8b7e38e9571a8fa77f297f773bb4239022e3e5f91be97293e6aa244624861237d2ce

/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/CommonPlugin-4.9.apk

MD5 c8a29ee2f97f0b23b5a7a8a761a1127a
SHA1 7b373c9f903589658caf9bb1cd2dc256c1b53fa8
SHA256 24a4b05d51d51c3ff5aa038f588f08b02dff644b32088ad08fa3491227390871
SHA512 bb3fe5412e86c551ea56a8e4ba0f8956e8154c3fe3eec3175c0e6278bfa4afa9d4096bb9bc2a47d9bde4eb1e5f9254044aef727c64ae0ed162e77c91c9b433af

/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/FeedPlugin-3.1.apk

MD5 9a4d092d98b2251fa4ad755c3127dbbc
SHA1 c7d648c1b00196d60aac4c516cc6ee64f0742d54
SHA256 126d68551f25ed2bad5e3634134fb3d193605da3037ec57489c3750dae869bc5
SHA512 95e6fda13be9a0a27760675b0da0227eedf60bac2d661456789cbd5f4e604b08623145306060262e398977c3aa5be7bb20ba7f765e77477e332700b6c4b7679d

/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/LoopImagePlugin-2.8.apk

MD5 cba94726655188bd7135f9b969d429a6
SHA1 79cae31baf627f57d3a3e3a54c9fd80d0e20d3e4
SHA256 b1e2ad86b6eed3fe868807485b89ceaeeaefe9492eeded127b68cbfe23b446aa
SHA512 c7a1e0f3a1b7841adc5237f23197f70021ada9213366a4fcda3c7585fac16afbc6af42d73e1a799a29d4a09a26e60939bdb1cadfe8b4fd3a476adc43b6e97d0b

/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/WelcomePlugin-3.5.apk

MD5 0e49c1d3529c097889057689f832efc6
SHA1 41a841ac36613fe194e672c5c41c63868d49a04f
SHA256 f941368285f17053a917594393fe6961b0a688b187a13681b635f652d0eaa740
SHA512 3e28c8d015a575e3f99051af410156d421c87e2d0040af2aa4f6db14a917004b166883f859009e5bf520a583341c5fdcc84e58ca86543e459279080a14b42235

/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/CommonPlugin-4.9.apk

MD5 6e72f2a3a4fbdb44cfd8453a27b21a80
SHA1 9098aae5b597823f2fdb8010bd8157b54e91be19
SHA256 9e3a1b473805c7d0efdf5b1c83932f5f11c02bea82f0df4dd1485334de69bbde
SHA512 91f00c33aa076bba18ae1c964bf462f19a98c2f4681e1ef9c2f77edb3988bfea5a31c84a670f6726f508130b66afff6e4f19a20eb2f12ccb9875e49d2336647b

/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/FeedPlugin-3.1.apk

MD5 9b3e57093d6be2f9ed42764975abc0ec
SHA1 2ec7a07dfebbd11cf41225d67530bb04df4418f2
SHA256 76da28a51ffd5729cb377fe415d8a9d6b423413adbd4fe6906e64cdfedfd1386
SHA512 0b423f1084dc272070cf56b6e9c5a61829ac513c3ea29b01ee24ab41f9a4fb8387c7b325ffd5c583f322fd8bea0e813b7546affb5d6e6649ce539a69ef3c05a1

/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/WelcomePlugin-3.5.apk

MD5 421bb0e31e3698c8ecaa037ca0bfff1b
SHA1 013b29a25185821970c1df09c17317f7ac88cdb9
SHA256 ce560fb3ad7f4be563e4d0bce505c0591fc39acaccca3e74fb693f280f59b330
SHA512 0666c1cf78485b008ee2b5431984e0461e760b18804cafd0f0fd1a9dfd5f37bfbe3a41857d8e533ff5614ffcc7725a8e4dbd9083e8870409e61f38803c3f5d8d

/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/BannerPlugin-3.3.apk

MD5 5acaff6f33f64df3c5b00e3949c72706
SHA1 615f663b23bd7fadcf9832367b851a0a55e90f50
SHA256 36f9d9d9acbf12bfaa00afc7d51083254c38245c22cc106d4f8b7102ff1af8e4
SHA512 ba24acfce9cd4ae884c96eb2552b2962b89e9030f0b048313502a3c4c2108153db075e169d1c8277c8ca9ede6d5fbdfbaf2ade94a36d14ef7d1db69bf256d4e0

/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/LoopImagePlugin-2.8.apk

MD5 e2bdce8e50320cd3923894667b372034
SHA1 033dd624d148c43296ce57577c0ab603d1db9aa9
SHA256 6956d576ecf93d893ba3a7d7f5ea0c8f45c8701902715c65ab7f277a672196b9
SHA512 73b18489a01b90b5001e39adacb44c11258b0ccf436969b3c89c71bd5baecd5005be8e1abfea52b9fc6d62ebddb1b9ecf37f2c6078c9f6b4fe9044fa5d011295

/data/user/0/com.boosj.boosjapp/databases/eric.db-journal

MD5 f0f955b266d1a777aafae9c3dc7ddfd5
SHA1 5ec4793116bec4cb13e0ca31f7055219b8f5b27f
SHA256 929f9d7a115826e21df65c55f494d2062518018c7719bf9d783300ce29b0b053
SHA512 2ab002f081cd4bd38647c00576bb57697d67c1c6e5ffbf0acffd97802feba5240624da725141975d692727c8a294ff2e86c928b0cde0c325a3caf1e5d43142ef

/data/user/0/com.boosj.boosjapp/databases/eric.db

MD5 e53541217dd243ad2f8e7ea28d12a974
SHA1 71e055a36792421d2a43c86ff85b575b108d9468
SHA256 134659645a2c06dca7bf5a7edc0a50fd74287f5f4dcf7f6edcc3401850c898aa
SHA512 b037f8e33e5c5badbefc519bffaca801b191c54e6a228597fe7a0aa262b15a2de8b7ce423c06d74e9308306a4a8cb8fceb8d310fbdb4500c73b8f514259d00e5

/data/user/0/com.boosj.boosjapp/databases/eric.db-journal

MD5 22f27c2f0a8547c38318e1905c9377b0
SHA1 c12582751e64c14d27d408d5ebf82f49915c6fc0
SHA256 79c67c3a37c57dd1984cf31608f75df6a0cab2b21b3e7f65d3fd0c19a012d889
SHA512 780dbd9ac31ad63fe278765114bc0fcdd07f95994c49fb77afdcf60824db454f9f2f550f4db17f12769aa83d36d5f68e60c9042471bf8c9f1b9f882162b26b98

/data/user/0/com.boosj.boosjapp/databases/eric.db-journal

MD5 b8f1cc1c37432da7f96f6b0975ddb5c8
SHA1 2be3e387dcfdd9f7d8c0427e629d1c4aadcb4814
SHA256 aafdb46d8c9661cf1b51b04fee094ed70bf2a2281c0640bc992ba6de50ebd71d
SHA512 f2f47b5f95903076087e10e5241b37a14d4159ef0e9fc8bcc0c3a97a75ad0658514e3ecc7baf288ebefb77b53900b0ac1209c4ead0f521f3e0f7bc74b3f2ec28

/data/user/0/com.boosj.boosjapp/databases/accs.db-journal

MD5 9e65d06f62e91a3d297d8d82c7a98b54
SHA1 3860d06f0bf7eebc63a0beca0726ee889bba9d37
SHA256 3696dac06eac39433e793cee3043c86fe5dcb149337f8d3f979ba1b45b6b1eb0
SHA512 3dc9f284cda39052faecb65a7b862c91c17b92e83b1a5d4726f9ad0990528ccbacd3ec39b731612b7ce1931e00090fdd15074cb1d88c6ce8bfff208d912ba73f

/data/user/0/com.boosj.boosjapp/databases/accs.db

MD5 064201502ce25754236b3b5c12e24c65
SHA1 e2c89961dcf8306440bc99f7b058ef4680eacf0d
SHA256 b4ef8a71919ac4b6ef9a895a991b527f5c3316fd6204eb815366c9614dc71f00
SHA512 3f5af9d3e7fbca1c0a3f9ad5a8d8d8e1d3b3e3c79cfda89b6baef007aeafb4ec5738626fca1f682b73b0305a94a4e2bf17c0bdd4fc7fbacb80ed02c7affa44a1

/data/user/0/com.boosj.boosjapp/databases/accs.db-journal

MD5 6f7683cb40f61099e3647e6b27ea61b8
SHA1 5fcabb5fa001550632b0a947cadb1c8a2aef8471
SHA256 78841b6ab156250684c1b97ec9a6d3968e811186ac8b7d0c48eef2d9f1ef8ab1
SHA512 c499c5d7d543f074cabb8a8b8e07011cf22fd61b34cb9b70efc8e06d5495c9ec9cc3b96ac2b4cf5a28e7ea2f97db53d5471ba7fe0d2fc3ef8004546d94df69e2

/data/user/0/com.boosj.boosjapp/databases/accs.db-journal

MD5 9df2e7e25ea4d337fe90b1385f3d0f96
SHA1 96909abf8d6999d6722319f1d800bbb9c20714f8
SHA256 5719581977440089febfebccf0033342317201e67169085e85017b88a764d222
SHA512 f9f5dd3400f134ae405830972165f34c390fe1b8efeeb3899f0ef65b2fcf095db0a663983cf67b8abbe55308336532bc3a8ed14d6a7a37c158f422cda4842e49

/data/user/0/com.boosj.boosjapp/databases/ut.db-journal

MD5 7cd17ff19d638b3b6f2bc392f12f4763
SHA1 f4bf5e41320d05a792bb193adb534399137f5e6c
SHA256 4805c812c877f7d320a772fc59da6c306b239d8645da3180849f0bf42e3228e5
SHA512 8754e3e40fce17208c0472b630ed24e32a713058a58c710fb7f24d96512b8c45b5afe568261e99390f076194af3549ec24d87f2df25574be4845c0345486535c

/data/user/0/com.boosj.boosjapp/databases/ut.db

MD5 d4074306726a29fce470112308c21138
SHA1 2cb6ae7d1896447683e03236c3c8fba3864ea9d3
SHA256 479d2f8e9785b3f5febd2004049a2af9e573de627515b486026a57d742ac067b
SHA512 b67465f0ce179f36d8cccd97b43086215e02c68dff19d8846dd0e136d10e655c4fc76bbe83c31c6a817b98ce3f9defcd2dc9b20b33e742b9110a1dd8000fe0e8

/data/user/0/com.boosj.boosjapp/files/SGMANAGER_DATA2.tmp

MD5 0899aa05b9d8a59e8d1027476b536d2d
SHA1 25a22757375484e5cb0bbec77753c7aac2f9c736
SHA256 0570ba037e75ccb90dcf22df752c08ef57c0d0a140dedc80d17c0b9ef872c554
SHA512 11ca565da39743a1acc2ad177097bb0cd1a1ddaef350cfaab2ed78639689564e30511eac83acd6ab48ea339017fbb669fb83e7dc8140c711a1103c94dd53f237

/data/user/0/com.boosj.boosjapp/files/SGMANAGER_DATA2.tmp

MD5 cf5ff2d59747c5e4fdd61b6ccb8f732d
SHA1 8f40083c560ba62856820e20335274a008302e10
SHA256 f6e198375799555b7ebcc7128a0d864c29fb11577ddc748e5babbcff4eb18309
SHA512 d67a10de5a31d83c14a3e9068696ef239b499b97cf6078fae8abefe7da97a49ef1e2251bf5d7734c6bc8066a0817689152fa4052a97c7f435f8526abbd884b53

/data/user/0/com.boosj.boosjapp/files/SGMANAGER_DATA2.tmp

MD5 19519197c0dd60db62c7c2425ec8dc6a
SHA1 9b368c0d84828f9d3be7dbef4b12d730f718bf34
SHA256 1df6ff9c8527e9c95be5bea1070da5e458c8e2e5dddaa7b581953b44caed9259
SHA512 6822ed694a36676e76225aa7f060963dfb5e91837cfb9aea8f828a5451cc19b679dc94d4f1a6b07be0b1028638061f1648ce121e80dddfb7324da0d79c21261f

/data/user/0/com.boosj.boosjapp/files/SGMANAGER_DATA2.tmp

MD5 e5351687cf055d4e100979607adfb85e
SHA1 940279561cd2ff75572cd56096aad32300b57dc6
SHA256 1b93b72c0e9f8c9d27823c73dd396f7928dbba6f37f7e51d33b45d9960a7c84b
SHA512 db318c29ad33de9aba0d298b9bfeef724868e2d1b46679e139060ed0ffb714f07879cd7e1e6edb1e9bb842a3b9d86c263503932e56bce917b93082256c9d0daf

/storage/emulated/0/Android/data/com.boosj.boosjapp/files/tnetlogs/inapp_20240618.log (deleted)

MD5 e3b9524ede6079c6369932a5d4dcaec5
SHA1 6f14f579d6f6ae465b9853b10ee63081207c3e9f
SHA256 ff32e2ade80b5d1e1d592fb58f0aa9cb0e6a57aa6588730b6139e80a88a2d6c6
SHA512 7915fcdaa46b529fa5c42fff8b9516d1da49894d3cb66bec1fd9b1b490cbcdef8bee7b01934145a4efb75136846782902d4ff053058678b628d5e719e99bb47f

/data/user/0/com.boosj.boosjapp/files/SGMANAGER_DATA2.tmp

MD5 9dc85497a0a3720c2368a1b95f4fb768
SHA1 85d58a89c7b1ee9b75dfa17cb09d3b54542f83cd
SHA256 1a57df900d32bc3824a1a3e9383456c7f1a5c104fe9853956153b2d077b4c350
SHA512 b15412918f0b702d6b9a65c72a1664cf094152c9c2cd0a7ac06c419a03c9ca99fcc6994062c5048b3ff02ad8367baa766302244a43ce839285b1ee90b49c6065

/data/user/0/com.boosj.boosjapp/files/SGMANAGER_DATA2.tmp

MD5 9361c6b7e6ff9ec95866e6e577c20bdc
SHA1 9b69cbe5648fcd3d4f80dfebf77046110da736bf
SHA256 8d65a16ad5a44f335ae9dfdcfb98e97839a66ec6d9b1e289bb2172a10c07ad47
SHA512 3d9a0be39f750d3c4255d14c5275c057117cf6d4ac4dae356a92672a493ed8b18fb8d6affa179ea8d3012ac377482921e3c181fd30527eb2ad0d120180522e13

/data/user/0/com.boosj.boosjapp/files/SGMANAGER_DATA2.tmp

MD5 d86da784099df24c91608fe356b69e6c
SHA1 785d2dc99ef9a6b7cfba3ecb4a0d6df3b74e6e51
SHA256 9440bdb475ad04d50b3f296c282709525421ae012cf6f09ce6b596bce19c26dc
SHA512 85527f05cb3781bd23c2c9abd418000e230262e45c532521dce133e06349c4527dfd31bf49368a5dd846d6fab16747da0f008c17483b286d535b96aed3c5841c

/storage/emulated/0/.com.taobao.dp/dd7893586a493dc3

MD5 cabb0b35b6059d55cb9cef02404efa88
SHA1 506daf5d63bbb0c46635cd3fa49e9a9c0418b52f
SHA256 e8dee953917c0d0c3dda2df99acd2b0ab29d1b6cd303fad841768bbed1b0f1bc
SHA512 52984d339718fba90aedb3d9aab1154c6721d0e3a5a1af2e752288895caf914027599ffe8f65dbcf9bc068fff15c71ac75731d725d6d528d31f07d2f4b74d318

/data/user/0/com.boosj.boosjapp/databases/ut.db-journal

MD5 f270937fb5785db43119184064b9fe0d
SHA1 8b1e8df3306f5504e7ec959f80d305e480758d68
SHA256 8270541729d856537a56db2e09b2cab2cc60d4998c0167b7466e19f29f85bd94
SHA512 e76d98cdcd5d14bd7dc3ff9453908f0dfdc34d6d17bdd84c03bb48d0cbd0c55d0d2b0d9199d063949427b401d035df1f042e5a6df765700897e9bf8077e89b62

/data/user/0/com.boosj.boosjapp/databases/ut.db

MD5 cfa3001daf901c7d1d90ad59ed13361a
SHA1 92a1aef08c47cdd67d61cdd48e3c21ee99920cd3
SHA256 50c43e10da74a31690ad1385257ae6b299708e022e5f689d2f1353d7902d247d
SHA512 1ab80f1c4c82771249330a8eee21b08b888fa61e584e8fd716f2e66571b4998bce7b5fa5e1b060dac2809c0553a5179187344beee9507c131d22997614a457ff

/data/user/0/com.boosj.boosjapp/files/SGMANAGER_DATA2.tmp

MD5 46ccd9115779e72be31e069b2cb7af48
SHA1 0cfbd2b878e678a142d172134ff1b8b0f448ca2a
SHA256 ca0a865ba765290040618d8dd451e92e38ae4bb9fa63b7a706ae1f03aea93127
SHA512 62945724ea630689dc1d825f2c7e5529b2331efef479a760d8be3b95627009ba2d3cf9b8e2f29c5b8abbab05a58c209c1890b0c6a57ea1f792f8705a5fd2fc03

/data/user/0/com.boosj.boosjapp/files/21c22f492aba3de8.lock

MD5 374af08af3bc92199701d0ec488e19b0
SHA1 0928da1ca012496d98c74e3546f7b88c3df2ba58
SHA256 3b86e9452e02681e4ed2497c12bb8f3c7a8c1645eb2c82db87ee41b3663c8758
SHA512 199524fd03573995b7517ff98274f883fff0645ef421ef3288fcb1c3fcaa97c671a99bc169f578159781f20a6dbd3b809f3b22e305dcd0e14568bcfc68213a0b

/data/user/0/com.boosj.boosjapp/files/0a231bd8575dcf72.txt

MD5 4de8bd5533ee215d916242dcad9adf1e
SHA1 b50d9d4136098ca3212c81876ddb187ec7ad5673
SHA256 5e3b9cb25afbbe835a16cb84a4cf4c6e8576f75120514c2c0a8d08adb378b8c0
SHA512 4d9e444da75804f6e63477d417480efaa4009c055e7cb996008d5a9f3e2d9289f75d94b48832cbf3b4c73f6129ace2b8bce3878098626e640d860aa6519c1635

/data/user/0/com.boosj.boosjapp/files/SGMANAGER_DATA2.tmp

MD5 09c85d1d0e47736c7a13631f651a015a
SHA1 5ce6207e2899b2ad93680eb95a9b6f03d844adf6
SHA256 0d15b07deb794f62605d106b70f299452522ebb32f851d938ee16d0722cc9f3e
SHA512 f6717c46e5c5f36b301285d2a5d09ad56db087935a4f9813f17f91f7d1bc1297794061a6731ef2a9dbf308da4ad804eaa3158125904116adb59e58fa2f53abb9

/data/user/0/com.boosj.boosjapp/files/SGMANAGER_DATA2.tmp

MD5 cf78b325ba4283569280634e08694209
SHA1 61b909c97d3e53364e3403138eb665b8e158a56e
SHA256 43f272b3f1935eac4c5e56feaace3ef0019fedd174baf5f09f50c389e58d0868
SHA512 a274bbb488d3c5ed2b10e4355e971065bed234707e47dccb75cb4f5ffdcde342dab59f4ed46208c7fead4f86955cf87ba607e4ec86d132913dec42eba3518879

/data/user/0/com.boosj.boosjapp/databases/ut.db-journal

MD5 65bc14d49ca1872d64925629d2c991fc
SHA1 a1058a058fe23eb23ba74fec9040978cef2b4333
SHA256 195408503d58a72f1a2d0d0481fb199501c43bff8fcd5604241286ce0ffa3c92
SHA512 19d933ad350a0af2993f7cc9630b649c79a8f5ab8fdc4e0a9dc40dfcf66046a010f152493834125f1cd0e5a06196c219d66d2decef33467e407bb9bcfd0ff881

/data/user/0/com.boosj.boosjapp/databases/ut.db

MD5 f7386e7faff4c67fbdc4e5b6e3207985
SHA1 ef8bc35cfe20da512b0890d208634e6226c82a8d
SHA256 749c21af719c269a4712f9ae0d69c82065abbac1124fb1abbbbbc2f6d51fa8e8
SHA512 e26d89bc64836533b88473dc0f14b199a3bdab7c27711a854c782ba6a73bb802104ba7b6a7e379b26548055b62c22980617cbf72637e1b9a07b4d60917dfe362

Analysis: behavioral12

Detonation Overview

Submitted

2024-06-18 07:21

Reported

2024-06-18 07:25

Platform

android-x86-arm-20240611.1-en

Max time network

149s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 216.58.212.238:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 216.58.204.78:443 android.apis.google.com tcp

Files

N/A

Analysis: behavioral4

Detonation Overview

Submitted

2024-06-18 07:21

Reported

2024-06-18 07:24

Platform

android-x64-20240611.1-en

Max time network

135s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 172.217.169.8:443 ssl.google-analytics.com tcp
GB 142.250.179.234:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 172.217.16.238:443 android.apis.google.com tcp
GB 142.250.200.46:443 tcp
GB 142.250.179.226:443 tcp
GB 142.250.179.228:443 tcp
GB 142.250.179.228:443 tcp
GB 142.250.200.46:443 tcp

Files

N/A

Analysis: behavioral6

Detonation Overview

Submitted

2024-06-18 07:21

Reported

2024-06-18 07:24

Platform

android-x86-arm-20240611.1-en

Max time network

148s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 216.58.204.78:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.238:443 android.apis.google.com tcp

Files

N/A

Analysis: behavioral13

Detonation Overview

Submitted

2024-06-18 07:21

Reported

2024-06-18 07:24

Platform

android-x64-20240611.1-en

Max time network

155s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.200.8:443 ssl.google-analytics.com tcp
GB 172.217.16.234:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.206:443 android.apis.google.com tcp
GB 142.250.179.228:443 tcp
GB 142.250.179.228:443 tcp
GB 216.58.204.78:443 tcp
GB 142.250.178.14:443 tcp
GB 142.250.187.226:443 tcp

Files

N/A

Analysis: behavioral14

Detonation Overview

Submitted

2024-06-18 07:21

Reported

2024-06-18 07:25

Platform

android-x64-arm64-20240611.1-en

Max time network

159s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
GB 142.250.187.206:443 tcp
GB 142.250.187.206:443 tcp
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 216.58.212.196:443 tcp
GB 216.58.212.196:443 tcp
BE 108.177.15.188:5228 tcp
GB 216.58.201.110:443 tcp
GB 216.58.213.2:443 tcp
GB 142.250.179.227:443 tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.179.228:443 www.google.com tcp
US 1.1.1.1:53 www.youtube.com udp
GB 142.250.200.46:443 www.youtube.com tcp
GB 142.250.200.46:443 www.youtube.com tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.206:443 android.apis.google.com tcp
US 1.1.1.1:53 accounts.google.com udp
BE 64.233.167.84:443 accounts.google.com tcp
GB 142.250.200.46:443 www.youtube.com tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.180.4:443 www.google.com tcp
US 1.1.1.1:53 mdh-pa.googleapis.com udp
GB 216.58.204.74:443 mdh-pa.googleapis.com tcp
US 1.1.1.1:53 update.googleapis.com udp
GB 142.250.187.195:443 update.googleapis.com tcp

Files

N/A

Analysis: behavioral16

Detonation Overview

Submitted

2024-06-18 07:21

Reported

2024-06-18 07:26

Platform

android-x64-20240611.1-en

Max time network

138s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 172.217.16.232:443 ssl.google-analytics.com tcp
GB 172.217.16.234:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 216.58.212.206:443 android.apis.google.com tcp
GB 142.250.178.4:443 tcp
GB 142.250.178.4:443 tcp
GB 172.217.169.46:443 tcp
GB 172.217.16.226:443 tcp
GB 142.250.178.14:443 tcp

Files

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-18 07:21

Reported

2024-06-18 07:26

Platform

android-x86-arm-20240611.1-en

Max time kernel

179s

Max time network

187s

Command Line

com.boosj.boosjapp

Signatures

Checks if the Android device is rooted.

evasion
Description Indicator Process Target
N/A /system/bin/su N/A N/A
N/A /system/xbin/su N/A N/A
N/A /system/bin/su N/A N/A
N/A /system/xbin/su N/A N/A

Checks known Qemu files.

evasion
Description Indicator Process Target
N/A /sys/qemu_trace N/A N/A
N/A /sys/qemu_trace N/A N/A

Checks known Qemu pipes.

evasion
Description Indicator Process Target
N/A /dev/qemu_pipe N/A N/A
N/A /dev/qemu_pipe N/A N/A

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /data/user/0/com.boosj.boosjapp/app_SGLib/libsgmain_312768000000.zip N/A N/A
N/A /data/user/0/com.boosj.boosjapp/app_SGLib/libsgmain_312768000000.zip N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/CommonPlugin-4.9.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/CommonPlugin-4.9.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/LoopImagePlugin-2.8.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/LoopImagePlugin-2.8.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/BannerPlugin-3.3.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/BannerPlugin-3.3.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/FeedPlugin-3.1.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/FeedPlugin-3.1.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/WelcomePlugin-3.5.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/WelcomePlugin-3.5.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/app_SGLib/libsgmain_312768000000.zip N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/CommonPlugin-4.9.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/LoopImagePlugin-2.8.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/BannerPlugin-3.3.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/FeedPlugin-3.1.apk N/A N/A
N/A /data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/WelcomePlugin-3.5.apk N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Queries information about the current nearby Wi-Fi networks

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getScanResults N/A N/A
Framework service call android.net.wifi.IWifiManager.getScanResults N/A N/A

Queries the phone number (MSISDN for GSM devices)

discovery

Requests cell location

collection discovery evasion
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getCellLocation N/A N/A
Framework service call com.android.internal.telephony.ITelephony.getCellLocation N/A N/A

Makes use of the framework's foreground persistence service

evasion persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.setServiceForeground N/A N/A

Queries information about active data network

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Queries information about the current Wi-Fi connection

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A

Queries the mobile country code (MCC)

discovery
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone N/A N/A
Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone N/A N/A

Reads information about phone network operator.

discovery

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Checks CPU information

Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A
File opened for read /proc/meminfo N/A N/A

Processes

com.boosj.boosjapp

/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.boosj.boosjapp/app_SGLib/libsgmain_312768000000.zip --output-vdex-fd=57 --oat-fd=61 --oat-location=/data/user/0/com.boosj.boosjapp/app_SGLib/oat/x86/libsgmain_312768000000.odex --compiler-filter=quicken --class-loader-context=&

/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/CommonPlugin-4.9.apk --output-vdex-fd=74 --oat-fd=75 --oat-location=/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/oat/x86/CommonPlugin-4.9.odex --compiler-filter=quicken --class-loader-context=&

/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/LoopImagePlugin-2.8.apk --output-vdex-fd=66 --oat-fd=71 --oat-location=/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/oat/x86/LoopImagePlugin-2.8.odex --compiler-filter=quicken --class-loader-context=&

/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/BannerPlugin-3.3.apk --output-vdex-fd=71 --oat-fd=72 --oat-location=/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/oat/x86/BannerPlugin-3.3.odex --compiler-filter=quicken --class-loader-context=&

/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/FeedPlugin-3.1.apk --output-vdex-fd=72 --oat-fd=74 --oat-location=/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/oat/x86/FeedPlugin-3.1.odex --compiler-filter=quicken --class-loader-context=&

/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/WelcomePlugin-3.5.apk --output-vdex-fd=74 --oat-fd=75 --oat-location=/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/oat/x86/WelcomePlugin-3.5.odex --compiler-filter=quicken --class-loader-context=&

cat /sys/class/net/wlan0/address

cat /sys/class/net/wlan0/address

cat /sys/class/net/wlan0/address

cat /sys/class/net/wlan0/address

com.boosj.boosjapp:channel

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 api.map.baidu.com udp
HK 103.235.46.245:443 api.map.baidu.com tcp
US 1.1.1.1:53 bcfeedback.taobao.com udp
US 1.1.1.1:53 adashx.m.taobao.com udp
CN 61.170.76.178:80 adashx.m.taobao.com tcp
US 1.1.1.1:53 log.umsns.com udp
CN 59.82.60.44:443 log.umsns.com tcp
CN 59.82.122.165:443 bcfeedback.taobao.com tcp
US 1.1.1.1:53 afpssp.alimama.com udp
CN 59.82.122.165:443 bcfeedback.taobao.com tcp
CN 59.82.31.142:80 afpssp.alimama.com tcp
GB 216.58.212.238:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.238:443 android.apis.google.com tcp
US 1.1.1.1:53 gm.mmstat.com udp
CN 59.82.33.225:80 gm.mmstat.com tcp
CN 140.205.160.76:443 tcp
US 1.1.1.1:53 ynuf.alipay.com udp
US 47.246.136.190:80 ynuf.alipay.com tcp
US 1.1.1.1:53 app-conf.boosj.com udp
CN 122.226.180.5:80 app-conf.boosj.com tcp
US 1.1.1.1:53 adashbc.m.taobao.com udp
CN 59.82.39.255:80 adashbc.m.taobao.com tcp
CN 115.227.7.204:80 app-conf.boosj.com tcp
CN 61.170.76.178:80 adashx.m.taobao.com tcp
CN 59.82.122.165:443 bcfeedback.taobao.com tcp
HK 103.235.46.245:443 api.map.baidu.com tcp
CN 61.170.76.178:80 adashx.m.taobao.com tcp
CN 59.82.31.142:80 afpssp.alimama.com tcp
CN 59.82.60.44:443 log.umsns.com tcp
CN 59.82.33.225:80 gm.mmstat.com tcp
CN 59.82.122.165:443 bcfeedback.taobao.com tcp
US 1.1.1.1:53 wb.110.taobao.com udp
US 47.246.136.190:80 ynuf.alipay.com tcp
CN 59.82.39.255:80 adashbc.m.taobao.com tcp
CN 59.82.122.140:80 wb.110.taobao.com tcp
CN 140.205.160.76:443 tcp
CN 59.82.29.163:443 log.umsns.com tcp
CN 106.11.12.92:80 tcp
US 1.1.1.1:53 adashx.m.taobao.com udp
CN 61.170.78.160:80 adashx.m.taobao.com tcp
CN 61.170.78.160:80 adashx.m.taobao.com tcp
CN 140.205.160.76:443 tcp
CN 106.11.12.92:443 tcp
CN 59.82.29.163:443 log.umsns.com tcp
CN 59.82.39.255:80 adashbc.m.taobao.com tcp
US 1.1.1.1:53 adashx.m.taobao.com udp
CN 61.170.76.178:80 adashx.m.taobao.com tcp
CN 61.170.76.178:80 adashx.m.taobao.com tcp
CN 59.82.29.248:443 log.umsns.com tcp
CN 140.205.160.76:443 tcp
US 1.1.1.1:53 amdc.m.taobao.com udp
HK 47.246.103.9:80 amdc.m.taobao.com tcp
CN 59.82.39.255:80 adashbc.m.taobao.com tcp
HK 47.246.103.9:80 amdc.m.taobao.com tcp
US 1.1.1.1:53 adashx.m.taobao.com udp
CN 101.226.27.166:80 adashx.m.taobao.com tcp
CN 101.226.27.166:80 adashx.m.taobao.com tcp
CN 59.82.29.248:443 log.umsns.com tcp
CN 59.82.39.255:80 adashbc.m.taobao.com tcp
CN 140.205.160.76:443 tcp
CN 61.170.76.178:80 adashx.m.taobao.com tcp
CN 59.82.29.249:443 log.umsns.com tcp
CN 61.170.76.178:80 adashx.m.taobao.com tcp
CN 61.170.78.160:80 adashx.m.taobao.com tcp
CN 61.170.78.160:80 adashx.m.taobao.com tcp
CN 59.82.39.255:80 adashbc.m.taobao.com tcp
CN 140.205.160.76:443 tcp
CN 59.82.29.249:443 log.umsns.com tcp
US 1.1.1.1:53 adashx.m.taobao.com udp
CN 61.170.76.178:80 adashx.m.taobao.com tcp
CN 59.82.31.154:443 log.umsns.com tcp
CN 61.170.76.178:80 adashx.m.taobao.com tcp
CN 140.205.160.76:443 tcp
CN 59.82.39.255:80 adashbc.m.taobao.com tcp
CN 61.170.76.178:80 adashx.m.taobao.com tcp
CN 61.170.76.178:80 adashx.m.taobao.com tcp
CN 59.82.31.154:443 log.umsns.com tcp
CN 59.82.39.255:80 adashbc.m.taobao.com tcp
CN 140.205.160.76:443 tcp
CN 59.82.31.160:443 log.umsns.com tcp
CN 59.82.39.255:80 adashbc.m.taobao.com tcp
CN 61.170.76.178:80 adashx.m.taobao.com tcp
CN 61.170.76.178:80 adashx.m.taobao.com tcp
CN 140.205.160.76:443 tcp
CN 59.82.31.160:443 log.umsns.com tcp

Files

/data/data/com.boosj.boosjapp/databases/MessageStore.db-journal

MD5 a19dcecbedf0135dc041c3d28da3f67f
SHA1 29b0ad0d99652c46565825c8c45a5477c2696b6a
SHA256 ab6dadc0110cce32c9e3f1acaf18b4be50623d9684447ade3f3b35becf820045
SHA512 aa4cd11e8f25f12492d6c8914a8e681f825d24adb9d536f072a276a0af515eadeff5de671c71df5b28d34ae32eed38315a67819d05f6099956bfa5b6ce81e2df

/data/data/com.boosj.boosjapp/databases/MessageStore.db

MD5 f2b4b0190b9f384ca885f0c8c9b14700
SHA1 934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA256 0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512 ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

/data/data/com.boosj.boosjapp/databases/MessageStore.db-shm

MD5 1729ed0e811efee491b9b7c369728a99
SHA1 44e06395e3f4c4543b6cb70733a98554c5202972
SHA256 274f4931d8311ed5ce3adef6a17b65e90384df61706f2555e8681bc9a6ab4309
SHA512 b393a91ec5309817640b2b449930123f9aa94719c7145bb75a3ebe7a969d15a147eb8652573fc8fcfd11323abf4cc32de9b12875e73e212d7bab76ed160ae55d

/data/data/com.boosj.boosjapp/databases/MessageStore.db-wal

MD5 44eb5ac1ef9c682a34fd4a4a8eef2a65
SHA1 7cac485909fd97a502b03dc08806e9d057e8fc2f
SHA256 eae239a31eb1d3e6d42a74579268c39fc151caa1fce7cd53024d7ad0ce940503
SHA512 b99df64f75b2bd4dc2828e424ce2d4def19b51871f8268912d0d7d2204f5dc63e37ea2b930690223fa276056009f3120b000aba93d0b25641069c8876dcc6e4a

/data/data/com.boosj.boosjapp/databases/MsgLogStore.db-journal

MD5 1ad7e53d2434eebb4d0fa7f69c790a66
SHA1 94c4f84bb4cb74aea3de897cecedd1f05292f39a
SHA256 80b7e4f95b0a5beca6cafe37bd5e7a21c703f7cd42f7f8768e25c3a7765944fa
SHA512 f54054e7a6c09ff6279495a521a5fcdf71e9c928ac069cffd9e439d41eebdf6e2d6f871dc725e51fac24888712d3143c673f3236b622b02b91b2c1a11b788333

/data/data/com.boosj.boosjapp/databases/MsgLogStore.db

MD5 244a37e30e952b5aa7721a7db3eebe25
SHA1 bc55bb5d0780a19402697be7695f70f2be9155e6
SHA256 eb09afe9b2a6b92a541f2ab626a07134d4adf8649f0dc2267f91b5dded211690
SHA512 1b504d142dea3be489b1ccdefd1375d25766416b74aa8ba0b78e54fcf364e01abb6bba9cd1926bc065d3cf1596bb32e907fe3d0f4ac7ab017e3990e81f0841e9

/data/data/com.boosj.boosjapp/databases/MsgLogStore.db-shm

MD5 bb7df04e1b0a2570657527a7e108ae23
SHA1 5188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256 c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

/data/data/com.boosj.boosjapp/databases/MsgLogStore.db-wal

MD5 ed07e6677a1ad32881a8737f6df12c99
SHA1 a92f9044f31fd272778b9ed80b5ae69792fa0595
SHA256 1706c9637d9751d04ddb972cf50824d474661f7d45ff85515d373e25879309a2
SHA512 5a0d5022dda3cf3b5d7131b988a14ee10248bda1150f637ccdb399ca878a15c3af8068bc5b16ac87bd220db6edbaf4f115131fb3349e3a8907017628d97d611b

/storage/emulated/0/baidu/.cuid

MD5 b78b6f75fbbf2b57f0f556c610f45487
SHA1 45c2bb3d8f1b4ba0f85a1702977067865f8d5816
SHA256 ec1b496c30c166a1d07b04bd204a7d115c70f2e614bc0deb483ee9a6e835ad1d
SHA512 adb9f8a97fd0e6a540b5c904ed6d0d19df18f9a246a764d7a8e1e6a8ce32af7c92ada1e8d04bdb0dce89f21c89e8aea944fa18197e2375bb54932c240ef02ed2

/data/data/com.boosj.boosjapp/app_SGLib/libsgmainso-5.1.81.so.tmp

MD5 c85e8919765cc22095d1b8e40601e34d
SHA1 22d48933b9f30a028cf4c9d993f59c767f9e8e35
SHA256 f4ab50b1188cc9913c106f1f661162cb7db90aa288a90fa6bb41c5938b6afa8e
SHA512 6715ed9290b868a5733f6c6001e9de1375a381b5f61552fc0adfd825c72977cbd34a347f7fecad8cbc798af7b5ef59f4a23bbe6fedb714e4dda65a1e5921c08e

/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

MD5 9781ca003f10f8d0c9c1945b63fdca7f
SHA1 4156cf5dc8d71dbab734d25e5e1598b37a5456f4
SHA256 3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793
SHA512 25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

MD5 08ab348c67c727ee6295934bb9db8e46
SHA1 848b96c7484beb4a2df4b7ceea595f0ae090d35b
SHA256 d67d6bf6d96eea3fbd955b5ac50ca5f1da3211c1f41b1b201c7af7817a8c5680
SHA512 31c50670afbe3b365e8bfe83d052f0590e2a5e2dff7adf619c21dbd6ced64f1c34d68f73ff1217e7595572d6c3c5097789e120cc8b13975ccf86d4848ee907cd

/storage/emulated/0/.DataStorage/ContextData.xml

MD5 f7c3fe5a38590152d7defbd48773cabd
SHA1 144818fa63245d09b8a609f78ef8f24e488c361f
SHA256 94234eea61dbba16798f7e0631c90ba17bf63d6f5025f0186bac675afba0e2a3
SHA512 80643beaee1f60091e107f1d5ebb8d0dee7e1038e1b9856df425bbe2c95d2379c66efe328db7a2c6bbc9d08d787619732626fbef5450e973f563a81d22e2cc5a

/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

MD5 5319b01e4f84eb44560a82e6d2e6d927
SHA1 cfb8cf94770835224a6dbd6f7809f485e27e5a84
SHA256 8a2d0bc535cf8be0a11f6743f0da7baa7e171201569d3985e4a7cc14f9349fe2
SHA512 0caea13f8edd4101c09329e0a102b20eb2421784248d68aec8119adf274c8331ad144e870ede4db5aba771403216abe1679b72e922ee1c0a1a55b615f4067c5b

/data/data/com.boosj.boosjapp/databases/ut.db-journal

MD5 4bdeca1426565690786b0ceed53532a8
SHA1 a510d4eb635c31cde2f2437d7639cbacd2694e6d
SHA256 a9f805216fd5dbf34ef9b83681c7f917a9e1b30edc5baca3d474617fdd0939f7
SHA512 f70323496fdbbd0f12dd9b46eb72b5bdadd212b805f5d9ca471f9cb6a325f5f33a177a23207a62f495ce2fb6e26dbda65c43c8fb7176fc44ef4d7a822f178478

/data/data/com.boosj.boosjapp/databases/ut.db

MD5 38616785cca0600a03205f84fe330b4b
SHA1 6ac41a6bdcae297d56dac5fdde70be5faccf0832
SHA256 b05c698d5827005da5e04b4fbdcac53cfc83405247353f8e9e145969a820a4e8
SHA512 7ff2901c032607f5fa1f24a48056ae85fe8d67b6c5649233fdad7b66950d359b2fb933344bf1e2fe6255a00c593de7bcf959d201fe8b6ad214249bb31f855a08

/data/data/com.boosj.boosjapp/files/libcuid.so

MD5 e912b83392f9da37db9a8393fa6a6345
SHA1 9f56e1760e1d6306a1ea680242d53418d3664d24
SHA256 e5f1eaec2f95392f423e945458c8715d14ddc3737d896c2ddafe467dbd075121
SHA512 1c3aa5303c03212a25b2b665820ca2a8017b6b283da921489f4a6a9a8627d44973db2c1ca9ee8d5c868b9360545db8f10e9e18e36207d16b3c28447d6d0c3ec2

/data/data/com.boosj.boosjapp/databases/ut.db-wal

MD5 fef9dc82bbd310127027aa44c866bfd5
SHA1 4c99dbd8ed08bf906e8e292473347834caa95306
SHA256 bbbf6ca3145771c3d4414e47401678ac920b908726835bf29b066dc4f61c5272
SHA512 8d72beed58eee776714f1977b66c9c67a1bf4697627f933ae80a3ec31738b2dfe1fe19de29c98a27e2e40f8d5f4fbbfa4ee938f4ebee3e7511a187a108e6b082

/data/data/com.boosj.boosjapp/files/mmplugins/plugins/BannerPlugin-3.3.apk

MD5 6e98d0f748fef73f73d4c33cbec90a85
SHA1 133c10709d7d698627678fc80200df00bb92401f
SHA256 3157c0d97cd4eea26b5d7571b6e86234569b8727aa75bb81a4e8ef1042f75bf2
SHA512 dc03643cd5c0a037b7ec67d07e162a46c2a81cab6d23630b57c84ef13832126c3ff3e9af90ec1aa92c6a36fd583ab3ad19476c2cc3f7825b4edda046ab1ff9a0

/data/data/com.boosj.boosjapp/files/mmplugins/plugins/CommonPlugin-4.9.apk

MD5 c8a29ee2f97f0b23b5a7a8a761a1127a
SHA1 7b373c9f903589658caf9bb1cd2dc256c1b53fa8
SHA256 24a4b05d51d51c3ff5aa038f588f08b02dff644b32088ad08fa3491227390871
SHA512 bb3fe5412e86c551ea56a8e4ba0f8956e8154c3fe3eec3175c0e6278bfa4afa9d4096bb9bc2a47d9bde4eb1e5f9254044aef727c64ae0ed162e77c91c9b433af

/data/data/com.boosj.boosjapp/files/mmplugins/plugins/FeedPlugin-3.1.apk

MD5 31fb4ea4b7b1c4e305b19b204ed56416
SHA1 5e1b803a606f22747c70db967bbe08fce8d30097
SHA256 033de5b281fea7494034304685a30fa5ac8b0fec1e9c93191c44817ffd3c25d7
SHA512 c9cf6eb88db19025e9d1c832c9326f9ceccdc2b262b15096261edb9abd43d49ce752c563026f691c79ea656007997850959b8e96cc5a1a22a1112fdbdeb490f5

/data/data/com.boosj.boosjapp/files/mmplugins/plugins/LoopImagePlugin-2.8.apk

MD5 cba94726655188bd7135f9b969d429a6
SHA1 79cae31baf627f57d3a3e3a54c9fd80d0e20d3e4
SHA256 b1e2ad86b6eed3fe868807485b89ceaeeaefe9492eeded127b68cbfe23b446aa
SHA512 c7a1e0f3a1b7841adc5237f23197f70021ada9213366a4fcda3c7585fac16afbc6af42d73e1a799a29d4a09a26e60939bdb1cadfe8b4fd3a476adc43b6e97d0b

/data/data/com.boosj.boosjapp/files/mmplugins/plugins/WelcomePlugin-3.5.apk

MD5 0e49c1d3529c097889057689f832efc6
SHA1 41a841ac36613fe194e672c5c41c63868d49a04f
SHA256 f941368285f17053a917594393fe6961b0a688b187a13681b635f652d0eaa740
SHA512 3e28c8d015a575e3f99051af410156d421c87e2d0040af2aa4f6db14a917004b166883f859009e5bf520a583341c5fdcc84e58ca86543e459279080a14b42235

/data/user/0/com.boosj.boosjapp/app_SGLib/libsgmain_312768000000.zip

MD5 522947eaa37b029a247e3973f3be3621
SHA1 31c88e0d7c9b51904c0f598e80245bba41b1c7d9
SHA256 d06601f9eb8d8c991f00426ad30bada9d2bb7886a6de21d78cd0ccb7b7e62156
SHA512 f5eaa9ccf08096bf0df8f004fbfc1b893ae08fed3e6722e0adea1fdea2719a45876314b765134905841f440c27216c897876e3ac6c8903fc44b697854eb02c0c

/data/user/0/com.boosj.boosjapp/app_SGLib/libsgmain_312768000000.zip

MD5 0c2f2989749ff3910446998637c28286
SHA1 054aba5cdeb4e66a4473b0a81680bc50f6a0cfc3
SHA256 f3c52a07c3cb0a749aa880b5819ce43a5b76065396037f5f50c4577ae522d49d
SHA512 72acb607e89f7dd62c21e9449ceba58c8917afcf4dc32c789f515d6a866e6549b2fd53e90cffbdfb7a62d577534bd9eec052d1ec9a912321f9bf25e7f719a70f

/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/CommonPlugin-4.9.apk

MD5 6e72f2a3a4fbdb44cfd8453a27b21a80
SHA1 9098aae5b597823f2fdb8010bd8157b54e91be19
SHA256 9e3a1b473805c7d0efdf5b1c83932f5f11c02bea82f0df4dd1485334de69bbde
SHA512 91f00c33aa076bba18ae1c964bf462f19a98c2f4681e1ef9c2f77edb3988bfea5a31c84a670f6726f508130b66afff6e4f19a20eb2f12ccb9875e49d2336647b

/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/CommonPlugin-4.9.apk

MD5 876c12c275a5f6a2935585319c7edbb5
SHA1 7497878970fcdce66c8752315ffd2edd679e73fa
SHA256 3e2bfce42db1f772a328cb4eca031c2d2babbc618f5561998af3b9252d5a85a8
SHA512 21615f9280e36a0703c3348454ae87f1b51a8ebc7bd9c12b5f67303a5cdfe1ee65cfa60d984bfc60e446d9753e0712bb6c6250dfd45cc8b7a58e4889efba146f

/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/LoopImagePlugin-2.8.apk

MD5 e2bdce8e50320cd3923894667b372034
SHA1 033dd624d148c43296ce57577c0ab603d1db9aa9
SHA256 6956d576ecf93d893ba3a7d7f5ea0c8f45c8701902715c65ab7f277a672196b9
SHA512 73b18489a01b90b5001e39adacb44c11258b0ccf436969b3c89c71bd5baecd5005be8e1abfea52b9fc6d62ebddb1b9ecf37f2c6078c9f6b4fe9044fa5d011295

/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/LoopImagePlugin-2.8.apk

MD5 0ef9cfdc11ad939c376f32c18d2e9908
SHA1 5a806751b5bd1e03c84c69a9aba9fd58c56f3b28
SHA256 afbbb1261672e0b6bffb6e523297c15d9c22d56670e926f926f10740241cf7ed
SHA512 810c7f8aee4e246bc37a806ff06bf86ab1b6ddebb4a4ff88b87890aef22a4e7c7d8b893f5d607d43de10d54f8facc361c6fd8a7f7ee32bec50ec8e6af1f0a18a

/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/BannerPlugin-3.3.apk

MD5 5acaff6f33f64df3c5b00e3949c72706
SHA1 615f663b23bd7fadcf9832367b851a0a55e90f50
SHA256 36f9d9d9acbf12bfaa00afc7d51083254c38245c22cc106d4f8b7102ff1af8e4
SHA512 ba24acfce9cd4ae884c96eb2552b2962b89e9030f0b048313502a3c4c2108153db075e169d1c8277c8ca9ede6d5fbdfbaf2ade94a36d14ef7d1db69bf256d4e0

/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/BannerPlugin-3.3.apk

MD5 84d6e4606f384f115282afb042fe8e08
SHA1 5364e0a78640bdf7a8fdf67d44b6ecb7e763e773
SHA256 3db4b0a27e652a47902be1fd29405e9ce262afeca1fe2d5fcf0fa71613e156c5
SHA512 f5624699398e11f5b3fc4f23f3edab99561bf2b79d2121925c779e6e47127ee90385990a018577621560463fb7362f602ba463e3153c37adf6355a90590d9022

/data/data/com.boosj.boosjapp/databases/ut.db-wal

MD5 52f2505f2ff4e2c80e07255bc8747bb2
SHA1 83c206e797fe6db1d3a378c391750c87b2e6b840
SHA256 b21dfd7cb995dcc9fab19c60cdb4e165501327f3aed5e92468fdb6a758ef3d45
SHA512 3a45606d02a78b982090bfa18e14ef6c9bdb0d367233b7892bc344f8066dd71c2ac46d07ec71bb478a0e45af82eb88fa6932478b6ec9c737be94761caa2a98cb

/data/data/com.boosj.boosjapp/databases/ut.db

MD5 2ecd0c804f00c1c14c129fa80f1acf9d
SHA1 85d9eb3fb06084ee85f0b65851e56e0ae4b509b6
SHA256 50ac87143939d4cc2c37b814d5e7c2dd973812fe8c5eb9c1d52cb0d8f447cd50
SHA512 3b7bbeb06c8f29e6b76a72523e181fa0d7e1b58d9c9088fa7f7eaba34ddcd37946ec60545846f8a6d489fd11b4ee483b8bb3662cb044d6310a94f2b8cc46a128

/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/FeedPlugin-3.1.apk

MD5 9b3e57093d6be2f9ed42764975abc0ec
SHA1 2ec7a07dfebbd11cf41225d67530bb04df4418f2
SHA256 76da28a51ffd5729cb377fe415d8a9d6b423413adbd4fe6906e64cdfedfd1386
SHA512 0b423f1084dc272070cf56b6e9c5a61829ac513c3ea29b01ee24ab41f9a4fb8387c7b325ffd5c583f322fd8bea0e813b7546affb5d6e6649ce539a69ef3c05a1

/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/FeedPlugin-3.1.apk

MD5 08310c215f1e2bf4a9044116d57c7225
SHA1 03f003eb05bb257680ad995dec01871ebb75b174
SHA256 35c7dcbab430252b3aa414b7b5331e4d0225916bb99bbcd7e4eb4f4c1ce9e5af
SHA512 5921376b25962ce64970c6394234cc2071cd5cfd9c968fd52e6e80adf8b1a128b1e73fb968615c688153c7b84ae9d35f6be4d496ed5f2b8b5120319e0fbf224e

/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/WelcomePlugin-3.5.apk

MD5 421bb0e31e3698c8ecaa037ca0bfff1b
SHA1 013b29a25185821970c1df09c17317f7ac88cdb9
SHA256 ce560fb3ad7f4be563e4d0bce505c0591fc39acaccca3e74fb693f280f59b330
SHA512 0666c1cf78485b008ee2b5431984e0461e760b18804cafd0f0fd1a9dfd5f37bfbe3a41857d8e533ff5614ffcc7725a8e4dbd9083e8870409e61f38803c3f5d8d

/data/user/0/com.boosj.boosjapp/files/mmplugins/plugins/WelcomePlugin-3.5.apk

MD5 faff2592fb26cf90cad29ecb642e4a00
SHA1 488378ee4a643d360ac88e81281008f51031fc59
SHA256 7650c182e2b4e006a8d72d1ebf88e87052b6d1f24993a00a72a6658e5789fea1
SHA512 c897c45d7d17696aa4b83adc4f56af9a85d9555bbc9730735ee720048e6b58c2e22627076272b0e361249854c146a8b96250b176b94c81d96a793c23377aa08b

/data/data/com.boosj.boosjapp/files/SGMANAGER_DATA2.tmp

MD5 f58f13d0fc991322df1eec4c68481464
SHA1 fac54fd6dfb4fa6e0b0f548eb024573dca8cd259
SHA256 1d3ba112a38305e67ffb1aa4a0e0e70b3a22809904675efecec0c949d0b76396
SHA512 e1ef5bbe84095b5ed02d1d9b23bc7e034b67715b3535473553a2d797b86ddbb81028e0cd5ccc457be1828893413eb368e04f29b7c3a2878f933a025153cca535

/data/data/com.boosj.boosjapp/files/SGMANAGER_DATA2.tmp

MD5 e226bf9446849dc009baa24a537ac74c
SHA1 b6b4de6d0febe5a29c94656ddbf85823f20d6204
SHA256 f4748057d8d507d1ff277a03fdef8184f0e215e4be2de5315b48c647fb0d8a19
SHA512 0acf633e9b926ee1c43ba5f11357a9f31524a62e7487fe95b70feee27740197a4cf725c3a0aaeadb2fdc441ce4af69e0800ae23bb7a64c7525e7044ed49c6541

/data/data/com.boosj.boosjapp/files/SGMANAGER_DATA2.tmp

MD5 6a8863dd4be7802445180fb86132a879
SHA1 318b6be6ca08b4edd3c0e949f0c4ee34b1b1b768
SHA256 003384a9be52ac8b293ce45c557533b3e72efebf1165f128bc9dcaee5b414e08
SHA512 21c52dbe0c216efc38950433e9601102dbb0abfc1bcf844e24da21e047cface75f0fabacb07bc38042bd46638611dbd6b7cc7a41e25c824725ec8112f0094780

/data/data/com.boosj.boosjapp/files/SGMANAGER_DATA2.tmp

MD5 0438489e26550304ace8e365664531ae
SHA1 cb4e150d8a2f36dcffb61bf28f01f2c6313f30e4
SHA256 a179e2d846f440a85be5d1837704df7092888784914b38b61067568308ec76bb
SHA512 6e0782109933287e1fc72b2da6db675e4ec1b0d3cd17e95e2769fe362b4a880664d2159c5521f7b15d7287cf2671d8e73a93b570d16888cc4280a90c38072dd4

/data/data/com.boosj.boosjapp/files/SGMANAGER_DATA2.tmp

MD5 60c124bd7929a3611512c8da9dd12057
SHA1 a74bc93cdfd9ea7a05e1b73aa7de65e84d099ecf
SHA256 88521b33820729b8e7c7fc10a5a33d80992e43068e9d21f193514d38d7ab845d
SHA512 1e6646539dfaf5c6193d8f920672343f3fe2a85b58a4d3c641f98363d7c547f2294f13129a11776b2851b6b27d85457b1678d88786e1df4a8bf23a704006b7b5

/data/data/com.boosj.boosjapp/files/SGMANAGER_DATA2.tmp

MD5 e3db27fa586b8c6af9cdd489b940b379
SHA1 d978b1a3b7b0a323b949d5a87a431f1f935ac1e6
SHA256 af0ffb5363257baefe757ad2a9eea1fbba447e522a08c56e67f9faa548c724d9
SHA512 501cf06588c17a54ca2edcf17f051ffb869541eadb6b5b6f9cfc6cf168484c62eceb73c01f0a3a1b64a0c9d7d1d519f813e412c4c0cf0ceec9cf7769216288f3

/data/data/com.boosj.boosjapp/databases/eric.db-journal

MD5 d436d63c8183f67aa628c5a853c1ce21
SHA1 1014923b0b60257a798faa68e64e16fac0e6e5b3
SHA256 4496afe460aaea63c48e66d69a0072f3e8ee84841da64d30d270d700cf3d6f4d
SHA512 30dc1ca6cd48cdd40ebb1fad3fc5176406b3d82eed7bcf7092a095573fa301c8641872c20d03b2a3d04ae7a36875f83e38b1c5be45a61dd0d8a3f84914906faa

/data/data/com.boosj.boosjapp/databases/eric.db

MD5 0d43a40ececc156638b249123b86a1c0
SHA1 2cabf1b3484804df0d2dbec5c71d162d7bf0504b
SHA256 17e64d3597f717786213442ed14d4bd0f88d9dd9993cb83b1a80ec4c72eeea70
SHA512 2b3c95678db0a228a4f2f5144e7398aba570e9bd81af3a664b00843a02dd360992e2c1a081d86c1feaa055f3311e52e428645ed7284218a73ff0a2a898bcbe01

/data/data/com.boosj.boosjapp/databases/eric.db-wal

MD5 c7da3c600c6b6102da18b8643e0010f7
SHA1 25b6a7dc816330cfbd173bc50f2a9334b22182d8
SHA256 b221a9a9af89c96101df97fbcbbb2fbba94c77ce74e2a3db847a61518e9d8198
SHA512 60d8f0869785ab39170f15094901c4d0719e5510749a47bab7a845f9a270bcbb594e4de5030be247618ab1a1a0eaf97c92e7a75f7001b4afb34cd8ca7fb76ba6

/data/data/com.boosj.boosjapp/databases/accs.db-journal

MD5 427708d7e00cf011b4b1a0afa4309663
SHA1 877814bb80f0f816b25e055f11654d44acf02aec
SHA256 caa76eb9d0c7d043153b62502f5b847cf9de11c93ae843a19ac90741dd7ebf2b
SHA512 8618fdeff066e2f342b584d1f590664715f37ed8f4b1f2bf452772f7102f0b3fbd954a500d1b4d51707fe27d5c2abd0dded4f9e24ff5e893c11aff677a134d7a

/data/data/com.boosj.boosjapp/databases/accs.db-wal

MD5 67f0f9bf09666c7166c7360a9035691c
SHA1 b15cbb8555ed42b57fdf4b47968552d97576385e
SHA256 77029d5989f28f38408c881f354befc8c12dc62824cfca2460fbe9cb312ae2a1
SHA512 d9d09dc3f6a3bf779d526351a7c18bf190acf1a7b6813052db775363af5dc84bf83bd27c20cb39aa74035991d278e30b487e959e2d795af52a03d9a8c9033506

/storage/emulated/0/Android/data/com.boosj.boosjapp/files/tnetlogs/inapp_20240618.log

MD5 ad737723dd1eb868ca35b5502f126470
SHA1 044f1b4b4827e71ee0101f6edb3dafe002ee6016
SHA256 bd057849cf59aaffcb979432080b1944893208c5a51da51f5b11ac01f11feee6
SHA512 a4c4b16a14331a23006784145f90b7ff4e5fb72b41d2415ac02c88998fa10378890690bdd1e81f3a7b74bed010d2c6cc326585010ba099b19911d89d22df8cd3

/storage/emulated/0/.com.taobao.dp/dd7893586a493dc3

MD5 0784b9a26173b7f39e7d690b3ba283a0
SHA1 b2e76cfe12c9d2bbace0434a8673f9b8f036ef5d
SHA256 951cc1b54924bb2c30758e6e07f545f4acb77e29be8b947d1108bb95954652da
SHA512 7733da1710e75680b2a4b675d24ff511d582f9cc299bc72ae05d1712d466a139481d6b34ac57af0d2b1fcbf7d6725bcef154c120417444f1cba44daa9176e266

/data/data/com.boosj.boosjapp/databases/ut.db-wal

MD5 3c6da7ce19176535e00bb5fbfd48571a
SHA1 c2084466043f940e8cb7be5b68e772eddee2a094
SHA256 de9a7cf32dc72edece730937a9747ec4dcb26f63ab07f266329b6dbc2e0c293b
SHA512 535a210f4708df035d153029ffbbf69a294246979acee7433e4c91d7e392a46382e7e5fe200b3ec968c4889eb8d35e1bc6c0e53f9df289e83dfe761a0a2ce525

/data/data/com.boosj.boosjapp/databases/ut.db

MD5 0c2927c1b64b8018f6c9880ed4df6ddf
SHA1 1c479fa10eadf08a346d0202e8cf25b4bb9c7b3a
SHA256 104ee34d9d9e244d22b1c265b3f67e4b793aeb16f156fb5e936ddad945245bfd
SHA512 865d48c6f9dd6575ca1a9d2a94d1a1e901c1d1e9c2a967c430fc9328ab463a70c0ed1b882833e9a1de042353cdb9f0391ca5989d58edd4fd7954937052d8a31b

/data/data/com.boosj.boosjapp/databases/message_accs_db-journal

MD5 f74012644d87d7d34eb035d541bac344
SHA1 a1c3ad9eeb1ae02f211a172b42ffe04268ebec45
SHA256 da17b3ef7341c0aa3781c89b5a22dbdab4ecf4a79bc4cc6dd82dbb88fee0b54f
SHA512 34a44a4162aee7e538f9022ce661bfb18b3d44913ed02dd92ee15f63fe3ba9e9d0034d8c58bb056a780fc8079bd1d7c62cc0f0a2db01e48945c5a444d7fc46af

/data/data/com.boosj.boosjapp/databases/message_accs_db

MD5 486e2bac2b3e9e1cb411d2838a4854bd
SHA1 81dd0a7537f4af319b830ae834908986be85da8b
SHA256 5644a250fa6cef16c2c802b98275656a5fc39dcf89bcc22193742d85c7313f57
SHA512 c146789563dae163e373489b3df53f22efebd32b69643992969241eb5ad5eec668de67e7cd2aaf5c3a8af57b0842115d00183825734f57643d3fdb09835fe681

/data/data/com.boosj.boosjapp/databases/message_accs_db-wal

MD5 e377af911c1211806c5e38e718096c2e
SHA1 7e80753f3ccb3264211ef739cc18ffdca6a123f9
SHA256 fac57e5e3d514e2d13a26916fe6b5eabee466be726b9b5a30e8b0046576066bb
SHA512 f81e1d8b17b5e4b05a5233d6f63fea04748b6d56427fb218b5919e67da627a6e82bfca0d0edd4bfc70930615d4376b19e678cbf3bcf04ac9aa40a2e096a6f1e7

/data/data/com.boosj.boosjapp/files/21c22f492aba3de8.lock

MD5 26ce109804c5050778e382606000bdfb
SHA1 6e1e4c1b9e8106d4769f005d9427c65f92d4e6ea
SHA256 ce2b52896e7c9f2c2477810d25fd5a60d302dea370cccf43a03c13191d42c67d
SHA512 184593c7258ab3a679209b5b19ef612ce952eae284d90bcc996c893d1c563ece6cc31210a14790b0cd9a4da8506138abb74ff91b1acb234c26cc4a14fdf19173

/data/data/com.boosj.boosjapp/files/0a231bd8575dcf72.txt

MD5 f56a21ef8a42e1ef37f9d477df2e806e
SHA1 230c6913ec1baf15a80a304ecdce801773bc594b
SHA256 c9a0c5f4945f75c35d27700a4f0d2e9371d7f48b21cd73d4369e97f1e0da11d4
SHA512 1c6e07fa2a6521bd5c4112a36c87f50dc45ff48376270a842b67b5bf1b7a7ccfb7f684e51205226de2d43d802e66d773549bc3937a78339acce1e396321fe27c

/data/data/com.boosj.boosjapp/databases/ut.db-wal

MD5 2df0fe69b8d0b8cc1692af9470f016a3
SHA1 50eaa314fff1a06d2713e134b2ac5f658e5d4f53
SHA256 1710c63a5d0d988fe51eb0fced890db4c2594a9de9712ea4dc53aadcbfc3c1dc
SHA512 ebc6a0138bbd3effeb4f9575ee6847dd2d403171af224459765a9d3dab5db83c7be3a5b3a961407c976aae84b8d5740c05abaf155f5dd192d6657533d0b433d9

/data/data/com.boosj.boosjapp/databases/ut.db

MD5 d152ec71ac8a7adbd55461801d909dac
SHA1 fd8855a67cabd7cda12130febbfd8b6f95c65c55
SHA256 01a12ae93fd4ff410467b5c0bcf03775726203859be15e358ba4ea97da090384
SHA512 bbaf958ce7fa2842f6b5b218628f20ce556882b103f9198c29e673a1abc8535b8b62ff7e1c3eb823d9ea6287b1877fbb196d207ad42c987d5b8000ddb6848f6b

/storage/emulated/0/.com.taobao.dp/dd7893586a493dc3

MD5 5521288798d99faafb208b6483a93960
SHA1 f087534d1728429dad9f2d32acfc1b74f396ce6b
SHA256 63d586edf477e6431d67e7d36f11b7ffb119f5e7b2541a75e9e3be489c070146
SHA512 06919abdb88c98b4fe786f224a2c68918ce3235214f3cb7ea6e11c3a222731ee55d5b58453f7a1e0efd3ee011315ba0710cac494b7dc571b8dd46b93c09d462b

/data/data/com.boosj.boosjapp/databases/ut.db-wal

MD5 1a6fab890c0f772a7be30ad660b84bb2
SHA1 910069dfb48c7786b7b48706bf9a34f8027b568a
SHA256 b6cfcf4c894f06c57b8cd46b9c37933d946a5e2f4e12239e3591d5acdd14b355
SHA512 f7ec5327067f12437db55c096dbbfd8af48f4b20c7f0d13db590c13903bb1679725aa11e358ee2b755e890034566a942946d0a4e010ea26dc15d529b8cdea276

/data/data/com.boosj.boosjapp/databases/ut.db

MD5 b1b47e4d0ed11f51ff8dc30934e55549
SHA1 494781529ad9c140ed9412420651137121e2409f
SHA256 a65d837ffa188fa86c51f3ad57d2c13c3449d7b838bdc1058351a3971894df2b
SHA512 f272bbdd5a6ad4916e12b31dd75961663c02abc19f66b9ad7899c2d9d04f87be87bd857bcc1a676d2b53423b50c2b059cb98c40f0307ae6e7cc73e47b0733da9

/data/data/com.boosj.boosjapp/databases/ut.db-wal

MD5 0076808f3b251923deb0b5acf9ee7a73
SHA1 c639672c0690ba8526acf8741bced5d8df489342
SHA256 5e4de3cb205d715a8d606d231894f00fb08963871093b19f496fefc4aabe19a9
SHA512 506e31ad029ad7c6b10a62be1e9b8aa1ced659bfefd929510a92ef7090e933100f2e6007258a719725e80577f4d4f1cd5caf9b6f6df7a9f204b08c7fd72c0da7

/data/data/com.boosj.boosjapp/databases/ut.db

MD5 51b386a412ccd431ae9a5676d63f76d0
SHA1 dea54876cfc6ed2bec459fa18f32aedc15271ffe
SHA256 10b4bc51de44530d614591f7f35b305a62a3ec39f4e80711df64f7a70da47eb9
SHA512 d2cde83adf0460c2e1514039b6d2e82ffc1e26249d59b2567ac8fa9c0a471db8fc625567c1b4081546081288d5adb1f83de0f47612bc7f5b5e9d856f4bccd321

/data/data/com.boosj.boosjapp/databases/ut.db-wal

MD5 575468423d8b1dcbb7c1557881f5f0a6
SHA1 83e4b99a961dd37ad406e4be4af23de4b988e28f
SHA256 adf66cac2c0ad57ddc8c4b39d36c2f52e4039d55bfd35a62da1a011b85ef3bef
SHA512 54ac80feb9847d3d7adacc4addd0a718e0a23b75b36fadd57683cb9f7849486b996a0009a0238acdccb79734a508dfc2114c2418efe9986a6f29d4a4b476239a

/data/data/com.boosj.boosjapp/databases/ut.db

MD5 cbaaf6622edc37eb6642fd3b84642411
SHA1 c9d83bb85c7631ac5184c58bbe3f20de8aaf03dd
SHA256 aa768face94dcd972ad215b1fdc67bf4cd7826d11e72d6cb096ac3783b615212
SHA512 617f327c7ca13a2ff45137e2dc0ae8e510c2398fcc70474b75b7b32e7dedc69ad9fff011ef0da775f8a32cb5f54044ca1bd358a2e2a9a778e8c8692f29ecdecf

/storage/emulated/0/Android/data/com.boosj.boosjapp/cache/405e0349004e42ca9f35ea2ca4794ba1

MD5 6437ac0f1ff68b2354ec77b351cd9910
SHA1 125252b6c71165b463de6f2ba3b324f6a7ddc9b0
SHA256 66881659414534bf471ed8de84dbde56165bf2ecb726256474ebe686a898fcb9
SHA512 814f28a5baaa8c1f3fdb8e5feda16d5e11165040ff341d85a5a7e12d0535cee50c0efc9f6def0934f8b1e8cce3e9acdce6d7d12418e65d89bfdff7eb8705e109

/storage/emulated/0/Android/data/com.boosj.boosjapp/cache/99bb63a4220e494c89439542aac1926e

MD5 869e30ea13dc89b7b9875b2e72240981
SHA1 535059acfb73aca31cfc0308241ccd2b9b3d8500
SHA256 90f70cf06b13cce6fa424de1911e3eb7fa1b7ef51822c2a874a201e48575014f
SHA512 e40215cd1f571bc85a0c720804d2f5e92fb66508057417b186250284c76e9fc317591c631315f9bb018a8ba0e55e88d1d5803154505511c1e646f5385c2f0cb2

/data/data/com.boosj.boosjapp/app_SGLib/oat/libsgmain_312768000000.zip.cur.prof

MD5 1cc61f0f488a8745af5d6155dd7d3538
SHA1 b47db2610b096418966f81b0268c2f85ed6d8951
SHA256 397f5347812a76754d9c0adf7fd7a36c53a49b6271f595696790910c85b138c8
SHA512 3f5e8f354e9dff3cade62fdbe2ef69af19655d555bbf888920d16e5e3bd9104e171649b773dfc5054cfd17229bb8bed666e985bf707ce64d5608cad19a3f81d9

/data/data/com.boosj.boosjapp/files/mmplugins/plugins/oat/CommonPlugin-4.9.apk.cur.prof

MD5 91a03601d8b5f158eb4b2def7471b8e1
SHA1 6805865763f2f07bc467369ce22375cb9b57aee9
SHA256 0c3581c146552519f7cc951822a59f5da58f052c8df89246c7451d546d6e5473
SHA512 feb6661b181e0bd3c993dfedd4acd9831604ef1842d4574f742f6be8570eca91b051d08cba799517c5c52ddcc47decc16c7cbbd7266c344d56261a755a434ec7

/data/data/com.boosj.boosjapp/databases/ut.db-wal

MD5 f18f35620e1cd00b905309f00c3ab6c7
SHA1 6144896817a30a022ea43da9b772abe8590188b9
SHA256 ae452e317ed0b814ad5411f4e0348963b8ee5b98521c4c1841b587667efd6c27
SHA512 803fd7548d4aba0c7264c2b22cc2cc5ebdfba11f53cc9ef4aff83b451d9ce26a9e3b61cc0074f066bf124ae5228ee75213d6b7410b1ddf8ea8e3664669935fc8

/data/data/com.boosj.boosjapp/databases/ut.db

MD5 a9d396dd68d8efb29b166ccb8d45acf7
SHA1 b2b856c96b595f8096cd4bd11794ef5cfa5a6c41
SHA256 d88809e2f57cafdfec2021b8462bc72f92c011ffab6c1297754a6094b76f92c8
SHA512 ada927070e8d24b05b3ec855b32703951d5074023081640457be83362d9704a06460c15747db0a92179b9e79137113a1df807b8c54152bcccc0170cd0cea2844

/data/data/com.boosj.boosjapp/databases/ut.db-wal

MD5 06a319c8e37b7cb9ae8cf6d88e063bb6
SHA1 c50ac78b2e05b8e3f022d73807acb9822734addb
SHA256 334504479584c2263101ea1e93ab593acd50235350802bfb40c63174d33cd150
SHA512 5d483f249020a12a30e13bc9203973e19c6a193eea4ebb328c9630538d31023b3e2fb90aa310d102039711205e7829f2e337b194dc27f439c9c474421bd50c8a

/data/data/com.boosj.boosjapp/databases/ut.db

MD5 0400a013f94c4f951c5f682fd8e519e6
SHA1 3bffffdeb152b5b06023f2b39b65e4e82f54d0eb
SHA256 14595b6ede801287aa1a1640232ddfe4057647e9551d540774cea818358bedd0
SHA512 b58c26d658c4f93bdb2987cea21074127698e7f9dce8c204e5fa34604682fe7fd56482e75c601b2d8420c8eb6fa928e2bd14979277ab91a46e3f45acd0b13929

Analysis: behavioral7

Detonation Overview

Submitted

2024-06-18 07:21

Reported

2024-06-18 07:24

Platform

android-x64-20240611.1-en

Max time network

162s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.200.35:443 tcp
GB 216.58.201.100:443 tcp
GB 142.250.180.10:443 tcp
GB 142.250.180.10:443 tcp
GB 216.58.204.78:443 tcp
GB 142.250.180.10:443 tcp
BE 64.233.184.188:5228 tcp
GB 142.250.200.14:443 tcp
GB 172.217.169.66:443 tcp
GB 142.250.200.35:443 tcp
GB 142.250.200.35:443 tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.187.228:443 www.google.com tcp
US 1.1.1.1:53 g.tenor.com udp
GB 216.58.213.10:443 g.tenor.com tcp
US 1.1.1.1:53 android.apis.google.com udp
US 1.1.1.1:53 semanticlocation-pa.googleapis.com udp
GB 216.58.212.238:443 android.apis.google.com tcp
GB 216.58.212.234:443 semanticlocation-pa.googleapis.com tcp
GB 216.58.212.238:443 android.apis.google.com tcp
US 1.1.1.1:53 www.youtube.com udp
GB 142.250.178.14:443 www.youtube.com udp
GB 142.250.178.14:443 www.youtube.com tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.180.4:443 www.google.com tcp
US 1.1.1.1:53 mdh-pa.googleapis.com udp
GB 216.58.212.234:443 mdh-pa.googleapis.com tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.200.40:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 accounts.google.com udp
US 1.1.1.1:53 accounts.google.com udp
BE 66.102.1.84:443 accounts.google.com tcp

Files

N/A

Analysis: behavioral15

Detonation Overview

Submitted

2024-06-18 07:21

Reported

2024-06-18 07:25

Platform

android-x86-arm-20240611.1-en

Max time network

158s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 216.58.201.110:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.238:443 android.apis.google.com tcp
GB 216.58.212.202:443 tcp
GB 216.58.212.202:443 tcp

Files

N/A

Analysis: behavioral17

Detonation Overview

Submitted

2024-06-18 07:21

Reported

2024-06-18 07:26

Platform

android-x64-arm64-20240611.1-en

Max time network

160s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 172.217.16.238:443 tcp
GB 172.217.16.238:443 tcp
GB 172.217.169.68:443 tcp
GB 142.250.187.206:443 tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.178.4:443 www.google.com tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 216.58.212.200:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.206:443 android.apis.google.com tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.179.228:443 www.google.com tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.179.228:443 www.google.com tcp
GB 216.58.204.67:443 tcp
GB 142.250.180.2:443 tcp
US 1.1.1.1:53 www.youtube.com udp
GB 142.250.187.238:443 www.youtube.com tcp
US 1.1.1.1:53 growth-pa.googleapis.com udp
US 1.1.1.1:53 lh3-dz.googleusercontent.com udp
GB 172.217.16.225:443 lh3-dz.googleusercontent.com tcp
US 1.1.1.1:53 lh3.googleusercontent.com udp
GB 142.250.178.1:443 lh3.googleusercontent.com tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.200.46:443 android.apis.google.com tcp
US 1.1.1.1:53 accounts.google.com udp
BE 173.194.76.84:443 accounts.google.com tcp
GB 142.250.187.238:443 www.youtube.com tcp
US 1.1.1.1:53 www.google.com udp
GB 172.217.16.228:443 www.google.com tcp
US 1.1.1.1:53 mdh-pa.googleapis.com udp
GB 142.250.180.10:443 mdh-pa.googleapis.com tcp
US 1.1.1.1:53 update.googleapis.com udp
GB 216.58.212.227:443 update.googleapis.com tcp

Files

N/A

Analysis: behavioral5

Detonation Overview

Submitted

2024-06-18 07:21

Reported

2024-06-18 07:24

Platform

android-x64-arm64-20240611.1-en

Max time network

157s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.187.238:443 tcp
GB 142.250.187.238:443 tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 216.58.201.104:443 ssl.google-analytics.com tcp
GB 142.250.180.4:443 tcp
GB 142.250.180.4:443 tcp
GB 216.58.213.14:443 tcp
BE 108.177.15.188:5228 tcp
GB 142.250.180.3:443 tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.200.36:443 www.google.com tcp
US 1.1.1.1:53 www.youtube.com udp
GB 142.250.200.46:443 www.youtube.com tcp
US 1.1.1.1:53 growth-pa.googleapis.com udp
GB 172.217.16.234:443 growth-pa.googleapis.com tcp
US 1.1.1.1:53 lh3-dz.googleusercontent.com udp
GB 172.217.169.65:443 lh3-dz.googleusercontent.com tcp
US 1.1.1.1:53 lh3.googleusercontent.com udp
GB 172.217.16.225:443 lh3.googleusercontent.com tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.238:443 android.apis.google.com tcp
US 1.1.1.1:53 accounts.google.com udp
BE 173.194.76.84:443 accounts.google.com tcp
GB 142.250.200.46:443 www.youtube.com tcp
US 1.1.1.1:53 www.google.com udp
GB 172.217.16.228:443 www.google.com tcp
US 1.1.1.1:53 mdh-pa.googleapis.com udp
GB 216.58.204.74:443 mdh-pa.googleapis.com tcp

Files

N/A

Analysis: behavioral8

Detonation Overview

Submitted

2024-06-18 07:21

Reported

2024-06-18 07:24

Platform

android-x64-arm64-20240611.1-en

Max time network

190s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 172.217.16.232:443 ssl.google-analytics.com tcp
GB 216.58.204.78:443 tcp
GB 216.58.204.78:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 172.217.16.238:443 android.apis.google.com tcp
GB 142.250.178.4:443 tcp
GB 142.250.178.4:443 tcp
BE 108.177.15.188:5228 tcp
GB 216.58.201.110:443 tcp
GB 216.58.212.194:443 tcp
GB 142.250.200.35:443 tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.200.36:443 www.google.com tcp
US 1.1.1.1:53 www.youtube.com udp
GB 142.250.187.238:443 www.youtube.com tcp
US 1.1.1.1:53 growth-pa.googleapis.com udp
US 1.1.1.1:53 lh3-dz.googleusercontent.com udp
GB 172.217.16.225:443 lh3-dz.googleusercontent.com tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 216.58.212.238:443 android.apis.google.com tcp
US 1.1.1.1:53 lh3.googleusercontent.com udp
GB 142.250.178.1:443 lh3.googleusercontent.com tcp
US 1.1.1.1:53 accounts.google.com udp
BE 64.233.167.84:443 accounts.google.com tcp
US 1.1.1.1:53 mdh-pa.googleapis.com udp
US 1.1.1.1:53 safebrowsing.googleapis.com udp
GB 142.250.178.10:443 safebrowsing.googleapis.com tcp
GB 142.250.187.238:443 www.youtube.com tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.200.36:443 www.google.com tcp
US 1.1.1.1:53 update.googleapis.com udp
GB 172.217.16.227:443 update.googleapis.com tcp

Files

N/A

Analysis: behavioral9

Detonation Overview

Submitted

2024-06-18 07:21

Reported

2024-06-18 07:24

Platform

android-x86-arm-20240611.1-en

Max time network

160s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.187.206:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.206:443 android.apis.google.com tcp

Files

N/A

Analysis: behavioral10

Detonation Overview

Submitted

2024-06-18 07:21

Reported

2024-06-18 07:24

Platform

android-x64-20240611.1-en

Max time network

154s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.200.10:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 216.58.212.238:443 android.apis.google.com tcp
GB 142.250.200.46:443 tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.200.40:443 ssl.google-analytics.com tcp
GB 172.217.169.68:443 tcp
GB 172.217.169.68:443 tcp
GB 216.58.212.238:443 android.apis.google.com tcp
GB 142.250.200.2:443 tcp

Files

N/A

Analysis: behavioral11

Detonation Overview

Submitted

2024-06-18 07:21

Reported

2024-06-18 07:24

Platform

android-x64-arm64-20240611.1-en

Max time network

167s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
GB 142.250.187.206:443 tcp
GB 142.250.187.206:443 tcp
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 172.217.169.8:443 ssl.google-analytics.com tcp
GB 142.250.179.228:443 tcp
GB 142.250.179.228:443 tcp
BE 66.102.1.188:5228 tcp
GB 216.58.201.99:443 tcp
GB 216.58.201.110:443 tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.200.36:443 www.google.com tcp
US 1.1.1.1:53 www.youtube.com udp
GB 172.217.169.46:443 www.youtube.com tcp
US 1.1.1.1:53 growth-pa.googleapis.com udp
GB 172.217.16.234:443 growth-pa.googleapis.com tcp
US 1.1.1.1:53 lh3-dz.googleusercontent.com udp
GB 172.217.16.225:443 lh3-dz.googleusercontent.com tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.238:443 android.apis.google.com tcp
US 1.1.1.1:53 lh3.googleusercontent.com udp
GB 142.250.179.225:443 lh3.googleusercontent.com tcp
US 1.1.1.1:53 accounts.google.com udp
BE 74.125.133.84:443 accounts.google.com tcp
GB 172.217.169.46:443 www.youtube.com tcp
US 1.1.1.1:53 www.google.com udp
GB 172.217.16.228:443 www.google.com tcp
US 1.1.1.1:53 mdh-pa.googleapis.com udp
US 1.1.1.1:53 update.googleapis.com udp
GB 216.58.201.99:443 update.googleapis.com tcp

Files

N/A

Analysis: behavioral3

Detonation Overview

Submitted

2024-06-18 07:21

Reported

2024-06-18 07:24

Platform

android-x86-arm-20240611.1-en

Max time network

145s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
GB 172.217.169.74:443 tcp
N/A 224.0.0.251:5353 udp
GB 142.250.187.238:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.206:443 android.apis.google.com tcp

Files

N/A