Malware Analysis Report

2025-08-10 13:10

Sample ID 241016-e7ecqaxbmj
Target 4b6a78e4a1f19d9574305de4efb7fdc0_JaffaCakes118
SHA256 f6b7a5bd7150c1515bda3807036c6d4ca7838e1ad58d71624b85c53ff1a3cb3b
Tags
banker collection discovery evasion execution impact persistence
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Mobile Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral5

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral4

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

SHA256

f6b7a5bd7150c1515bda3807036c6d4ca7838e1ad58d71624b85c53ff1a3cb3b

Threat Level: Likely malicious

The file 4b6a78e4a1f19d9574305de4efb7fdc0_JaffaCakes118 was found to be: Likely malicious.

Malicious Activity Summary

banker collection discovery evasion execution impact persistence

Checks if the Android device is rooted.

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

Queries account information for other applications stored on the device

Queries information about the current nearby Wi-Fi networks

Loads dropped Dex/Jar

Queries information about running processes on the device

Requests cell location

Checks known Qemu files.

Reads information about phone network operator.

Acquires the wake lock

Queries information about the current Wi-Fi connection

Queries the unique device ID (IMEI, MEID, IMSI)

Requests dangerous framework permissions

Declares services with permission to bind to the system

Queries information about active data network

Makes use of the framework's foreground persistence service

Registers a broadcast receiver at runtime (usually for listening for system events)

Schedules tasks to execute at a specified time

Uses Crypto APIs (Might try to encrypt user data)

Checks memory information

Checks CPU information

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-10-16 04:34

Signatures

Declares services with permission to bind to the system

Description Indicator Process Target
Required by accessibility services to bind with the system. Allows apps to access accessibility features. android.permission.BIND_ACCESSIBILITY_SERVICE N/A N/A
Required by notification listener services to bind with the system. Allows apps to listen to and interact with notifications on the device. android.permission.BIND_NOTIFICATION_LISTENER_SERVICE N/A N/A
Required by VPN services to bind with the system. Allows apps to provision VPN services. android.permission.BIND_VPN_SERVICE N/A N/A
Required by input method services to bind with the system. Allows apps to provide custom input methods (keyboards). android.permission.BIND_INPUT_METHOD N/A N/A

Requests dangerous framework permissions

Description Indicator Process Target
Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE N/A N/A
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. android.permission.READ_PHONE_STATE N/A N/A
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps. android.permission.SYSTEM_ALERT_WINDOW N/A N/A
Required to be able to access the camera device. android.permission.CAMERA N/A N/A
Allows an app to access precise location. android.permission.ACCESS_FINE_LOCATION N/A N/A
Allows an application to read the user's call log. android.permission.READ_CALL_LOG N/A N/A
Allows an application to write and read the user's call log data. android.permission.WRITE_CALL_LOG N/A N/A
Allows an application to read the user's contacts data. android.permission.READ_CONTACTS N/A N/A
Allows an application to write the user's contacts data. android.permission.WRITE_CONTACTS N/A N/A
Allows an application to read SMS messages. android.permission.READ_SMS N/A N/A
Allows an application to read or write the system settings. android.permission.WRITE_SETTINGS N/A N/A
Allows an application to receive SMS messages. android.permission.RECEIVE_SMS N/A N/A
Allows an application to send SMS messages. android.permission.SEND_SMS N/A N/A
Allows an app to access approximate location. android.permission.ACCESS_COARSE_LOCATION N/A N/A
Allows an application to record audio. android.permission.RECORD_AUDIO N/A N/A
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call. android.permission.CALL_PHONE N/A N/A
Allows access to the list of accounts in the Accounts Service. android.permission.GET_ACCOUNTS N/A N/A
Allows an application to collect component usage statistics. android.permission.PACKAGE_USAGE_STATS N/A N/A
Allows an application to read the user's calendar data. android.permission.READ_CALENDAR N/A N/A
Allows an application to write the user's calendar data. android.permission.WRITE_CALENDAR N/A N/A
Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether. android.permission.PROCESS_OUTGOING_CALLS N/A N/A
Allows an application to read from external storage. android.permission.READ_EXTERNAL_STORAGE N/A N/A
Allows an application to read from external storage. android.permission.READ_EXTERNAL_STORAGE N/A N/A
Allows an application to read from external storage. android.permission.READ_EXTERNAL_STORAGE N/A N/A

Analysis: behavioral5

Detonation Overview

Submitted

2024-10-16 04:34

Reported

2024-10-16 04:37

Platform

android-x64-arm64-20240624-en

Max time network

155s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.187.196:443 tcp
GB 142.250.179.238:443 tcp
GB 142.250.179.238:443 tcp
US 1.1.1.1:53 www.google.com udp
GB 172.217.16.228:443 www.google.com tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.180.8:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 www.google.com udp
GB 142.250.187.196:443 www.google.com tcp
US 1.1.1.1:53 accounts.google.com udp
BE 66.102.1.84:443 accounts.google.com tcp
US 1.1.1.1:53 www.youtube.com udp
GB 172.217.169.14:443 www.youtube.com udp
GB 172.217.169.14:443 www.youtube.com tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 172.217.16.227:443 tcp
GB 142.250.180.2:443 tcp
US 1.1.1.1:53 accounts.google.com udp
GB 173.194.76.84:443 accounts.google.com tcp
GB 216.58.204.78:443 android.apis.google.com tcp
GB 216.58.204.78:443 android.apis.google.com tcp
GB 216.58.204.78:443 android.apis.google.com tcp
GB 216.58.204.78:443 android.apis.google.com tcp
GB 172.217.169.14:443 www.youtube.com udp
GB 172.217.169.14:443 www.youtube.com tcp
US 1.1.1.1:53 www.google.com udp
GB 172.217.169.68:443 www.google.com udp
GB 172.217.169.68:443 www.google.com tcp
GB 172.217.169.68:443 www.google.com tcp
US 1.1.1.1:53 mdh-pa.googleapis.com udp
GB 216.58.213.10:443 mdh-pa.googleapis.com tcp
GB 142.250.179.238:443 www.youtube.com tcp
US 1.1.1.1:53 update.googleapis.com udp
GB 142.250.200.35:443 update.googleapis.com tcp

Files

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-10-16 04:34

Reported

2024-10-16 04:37

Platform

android-x86-arm-20240624-en

Max time kernel

142s

Max time network

151s

Command Line

com.qihoo.appstore

Signatures

Checks if the Android device is rooted.

evasion
Description Indicator Process Target
N/A /sbin/su N/A N/A
N/A /sbin/su N/A N/A

Checks known Qemu files.

evasion
Description Indicator Process Target
N/A /system/bin/qemu-props N/A N/A
N/A /system/lib/libc_malloc_debug_qemu.so N/A N/A
N/A /sys/qemu_trace N/A N/A
N/A /system/bin/qemu-props N/A N/A
N/A /system/lib/libc_malloc_debug_qemu.so N/A N/A
N/A /sys/qemu_trace N/A N/A

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /data/user/0/com.qihoo.appstore/files/sllak/opt/4249/finalcore.jar N/A N/A

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

banker discovery

Queries account information for other applications stored on the device

collection
Description Indicator Process Target
Framework service call android.accounts.IAccountManager.getAccountsAsUser N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Queries information about the current nearby Wi-Fi networks

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getScanResults N/A N/A

Requests cell location

collection discovery evasion
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getCellLocation N/A N/A
Framework service call com.android.internal.telephony.ITelephony.getAllCellInfo N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Makes use of the framework's foreground persistence service

evasion persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.setServiceForeground N/A N/A

Queries information about active data network

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Queries information about the current Wi-Fi connection

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A

Reads information about phone network operator.

discovery

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A
Framework service call android.app.IActivityManager.registerReceiver N/A N/A
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Schedules tasks to execute at a specified time

execution persistence
Description Indicator Process Target
Framework service call android.app.job.IJobScheduler.schedule N/A N/A

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Checks CPU information

Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Processes

com.qihoo.appstore

com.qihoo.daemon

/system/bin/sh

com.qihoo.appstore:critical

app_process32 / com.qihoo.appstore.rootcommand.persistent.CoreDaemon --nice-name=com.qihoo.appstore_CoreDaemon --daemon

cat /proc/version

ps

/system/bin/sh /system/bin/pm list packages

cmd package list packages

/system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq

/system/bin/ping -i 0.5 -s 56 -w 10 -c 10 221.130.199.88

/system/bin/ping -i 0.5 -s 56 -w 10 -c 10 221.130.199.88

/system/bin/ping -i 0.5 -s 56 -w 10 -c 10 221.130.199.88

/system/bin/ping -i 0.5 -s 56 -w 10 -c 10 221.130.199.88

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 openbox.mobilem.360.cn udp
US 1.1.1.1:53 show-m.mediav.com udp
CN 180.163.251.81:80 openbox.mobilem.360.cn tcp
US 1.1.1.1:53 sdk.look.360.cn udp
CN 180.163.247.134:443 show-m.mediav.com tcp
CN 180.163.251.81:80 openbox.mobilem.360.cn tcp
CN 101.198.192.67:80 sdk.look.360.cn tcp
CN 101.198.192.67:80 sdk.look.360.cn tcp
US 1.1.1.1:53 m.irs01.com udp
US 1.1.1.1:53 p.s.360.cn udp
US 1.1.1.1:53 www.google.com udp
DE 47.254.149.104:80 p.s.360.cn tcp
GB 142.250.187.196:80 www.google.com tcp
US 1.1.1.1:53 sdk.mediav.com udp
CN 180.163.247.134:443 sdk.mediav.com tcp
CN 180.163.247.134:443 sdk.mediav.com tcp
US 1.1.1.1:53 update.api.sj.360.cn udp
CN 180.163.251.81:80 update.api.sj.360.cn tcp
US 1.1.1.1:53 s.360.cn udp
CN 180.163.251.230:80 s.360.cn tcp
US 1.1.1.1:53 api.kuaidi.360.cn udp
DE 47.254.149.104:80 p.s.360.cn tcp
US 1.1.1.1:53 sdk.s.360.cn udp
CN 101.198.1.205:80 api.kuaidi.360.cn tcp
CN 180.163.251.81:80 update.api.sj.360.cn tcp
US 104.192.108.192:80 sdk.s.360.cn tcp
DE 47.254.149.104:80 p.s.360.cn tcp
GB 216.58.204.78:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 172.217.16.238:443 android.apis.google.com tcp
CN 180.163.251.81:80 update.api.sj.360.cn tcp
CN 218.30.118.222:80 tcp
CN 221.130.199.88:80 tcp
DE 47.254.149.104:80 p.s.360.cn tcp
US 1.1.1.1:53 recommend.api.sj.360.cn udp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
DE 47.254.149.104:80 p.s.360.cn tcp
DE 47.254.149.104:80 p.s.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
GB 142.250.187.196:80 www.google.com tcp
CN 123.125.82.206:80 tcp
GB 172.217.16.238:443 android.apis.google.com tcp
CN 180.163.247.134:443 sdk.mediav.com tcp
CN 180.163.247.134:443 sdk.mediav.com tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
US 1.1.1.1:53 track.mediav.com udp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 180.163.247.134:443 track.mediav.com tcp
CN 218.30.118.222:80 tcp
CN 218.30.118.222:80 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 101.198.1.205:80 api.kuaidi.360.cn tcp
CN 125.88.193.234:80 tcp
CN 180.163.247.134:443 track.mediav.com tcp
CN 180.163.247.134:443 track.mediav.com tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 125.88.193.234:80 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 221.130.199.88:80 tcp
CN 180.163.247.134:443 track.mediav.com tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
US 1.1.1.1:53 profile.sj.360.cn udp
CN 101.198.1.205:80 profile.sj.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 125.88.193.234:80 tcp
CN 218.30.118.222:80 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 101.198.1.205:80 profile.sj.360.cn tcp
CN 218.30.118.222:80 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 180.163.247.134:443 track.mediav.com tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:80 tcp
CN 101.198.1.205:80 profile.sj.360.cn tcp
CN 125.88.193.234:80 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:80 tcp
CN 125.88.193.234:80 tcp
CN 221.130.199.88:7 tcp
CN 101.198.1.205:80 profile.sj.360.cn tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
US 1.1.1.1:53 md.openapi.360.cn udp
US 104.192.110.235:80 md.openapi.360.cn tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:80 tcp
CN 221.130.199.88:80 tcp
CN 125.88.193.234:80 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 101.198.2.147:80 s.360.cn tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:80 tcp

Files

/data/data/com.qihoo.appstore/files/sllak/opt/4249/finalcore.jar

MD5 9337f51c14ebc6ee20b2a7f0a3344590
SHA1 a97f7f0a6575efecbcf3f5f057bb4460b45dc68e
SHA256 27a243826d949cccdf47cbd2335933cc051421a66b80e817afc5afd23542cbf0
SHA512 87dca0bbb3c1268db5979577010e4e085a405c277368a26fab6eb7bcc742bd533c9644512a4b091e129c9c79d04db8c66f71af0d8a495ad5b2ba658a9709b5b4

/data/data/com.qihoo.appstore/files/sllak/opt/4249/finalcore.jar.tmp

MD5 e02ae93acbca76a070fbf50c4cd40e65
SHA1 8fe1b44dce4c12c888c85d9222924d62b6568a38
SHA256 117bb0686e8c1d20dc9fb689e3be52de819a48753ec84893f339e92473933b76
SHA512 4f4bfb868b6832d2bbf27a41b8362ef2256c473b9e3f7a4663eec48956d567b4bf8089391b12ab289b892a49253903d808ab13413b03a5604632dcbdfcd9f3de

/data/data/com.qihoo.appstore/databases/filelist.db-journal

MD5 d96a90abac090c53b735b4670f9dd618
SHA1 f01d54a321ee2f8f96e173667e95fa038803764e
SHA256 2c9ad3157665db9177e970980152ee7a0e0721e47aa47685a46c51a43334246a
SHA512 52c942b161e1c637829dfd9fe8917687976ee1684d9d3ef638b381e7eaaefcecf9eeaa3fe7a5b236d3edefbaaf227954cb6ce5cd65df19a070c151e77f9c9a7f

/data/data/com.qihoo.appstore/databases/filelist.db

MD5 1556706b742f7407fc006c9386037833
SHA1 9a061ee2ae89623814abaa1b38353580b39f7711
SHA256 f7e27542d3306220a8f53249e66f7462fc9d9c572dbcd6efdcfd9da58718fc33
SHA512 4defafb23331a496ca93d70a4aaab994df81911321a2ac7fc6fef687a0f3873b65cb243031da613535d6fa48a1b021a96b4e1987b4be14e3dd22ae7cac216042

/data/data/com.qihoo.appstore/databases/filelist.db-shm

MD5 126dd15965aa92e4c49415b9171ea73c
SHA1 3b71fc0a4238c5f472763d307ccc3a9272e6d6c0
SHA256 8724c020717cf80b5fbfde43e69d14d53e83d964909883ec8949615285c1f4b0
SHA512 b028ace608a978c90e7741899e54428946fee8d12ec3739ee03056dfd7e543fd4773045d42564806ae44dfc333d645e57601283f716095f0b3933776bffa3b77

/data/data/com.qihoo.appstore/databases/filelist.db-wal

MD5 22f133f6370f7b0e385da816333166d3
SHA1 45a67d35897d060cc0c985a1b36303f56743ebbf
SHA256 057082f00e78ef29104b09a01368a7a88bda24bf8c1784e97fde2c72e6d07944
SHA512 3356c16bf6c710be75b64d9356874d7cc03e3d1c3bd2032c709a8cac340eb6c1d25823167ada0a586ecc1d7715539f78116ca91d21e654630210ef5ef2455750

/data/user/0/com.qihoo.appstore/files/sllak/opt/4249/finalcore.jar

MD5 b667ca71e42bbeb899566c8834ed085e
SHA1 053a3f889e326efdfa0d3ae7e5b2655f0b7376d2
SHA256 536678202267f95d80480f15065e784d7ec609922a0963d935e9c5a4b0f62bef
SHA512 52255d3d7066d01bd47a9da788f86c707af14e7666a918737fa5ffb4bb003e97b28dd84a7cead3439ee39e10b568c97e80174a80bf776c7dd58335b06656f8f2

/data/data/com.qihoo.appstore/databases/download5.db-journal

MD5 fc5b418ce473cc4e25688b0897c5d0ea
SHA1 ce4493052c85c52f0eb921493ec1f18c0e935781
SHA256 8475961147c5f93fb8dd3ea70ae9351296063b70ab6bc0c499d7001e7241966b
SHA512 e32596727f91cdbcea1404e5743b35a394a5e22d3c5928dbe09a7c5193877a49ca0b0fe8218c57ab667f1f3da19f807c4538ad18ab33de11a06238fb896bd687

/data/data/com.qihoo.appstore/databases/download5.db

MD5 2985c31027eda5c9650a1cf6cdc1f831
SHA1 e0a56e5e0158b8cc6f0563ff6ca3a85f23269d41
SHA256 b4addcbce28e6cd6e5ae8d9cfac4ab920c9a585609f019661742c074491d7b06
SHA512 7cb24afe5eee002f5ca2161aab23f9e5f0737d6b0be792d7d7bf7b5520cbb26f2a29b032de051511d025a74e19d0729633eaef060d73f218efea4b41b06d5849

/data/data/com.qihoo.appstore/databases/download5.db-shm

MD5 bb7df04e1b0a2570657527a7e108ae23
SHA1 5188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256 c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

/data/data/com.qihoo.appstore/databases/download5.db-wal

MD5 5b0e1bb48ed03f800580e6de4e2278ed
SHA1 ae039bfc96aae62f2504bbf75509ee41eead6d9a
SHA256 060450e70377d8d6234b1e15d19302e3df6b38b5fdedf65ed759c0fbc9356d99
SHA512 31a913c4413dea1ed8bc1990df35c00e07a360496d98046e9d5aedacc1513bfb972186e55bfc3b0ac498641ee2ca30146a35e8a74402c3aae8ebf629e7a1da30

/storage/emulated/0/.sfp/.sfp

MD5 e5e2041081938e0bc75db68ba0b7fe5f
SHA1 d531207092f14c11c4c5d40c7fb781798219084f
SHA256 ac93ee79d751c9d0f20e7a64c1787d93938d944cb7554603a4b82d93515e7296
SHA512 d83c9e559dd8773730c2e44a120664e05b48edf80162681c49e405eafabf809a4bea1682ae4f08d02242f5507843f9931eca84dfaedab8a16f9a6c46de15bdf2

/data/data/com.qihoo.appstore/databases/new_downloads.db-journal

MD5 dcce70d1bb38c930319cfc6b1f80e333
SHA1 076c75d1d48e4562238ecfcf89d176a97b49870f
SHA256 4a088ee227b56afaea1da00f3ab14c097fd46cf651ead820e96f0db50acf7ca7
SHA512 e9397bc530923f9b2659cd86b0fd3ce22f921549728d8bcd50abfa90fa6539c003eca426e30ea04dde1fde788aeb229cf35844743da2e7c359dda781afa4788b

/data/data/com.qihoo.appstore/databases/new_downloads.db

MD5 3fe30614d7e0d11db870b4624f6c50e0
SHA1 053ff0fc621ab40f2afeddb3e7b4a73ee41ec533
SHA256 67c532f0324228dd33b445cd399c1426e3a0e0cdc7b9358c66b402c5d40a838d
SHA512 c7c09e97a408e88aacaf8099ad4d1fa604d58113393500a384eb3c2eb7c3c105af41314934b86eca2f088045cbab5a20d768bbb295448dc1ae6cb6c3f59821ae

/data/data/com.qihoo.appstore/databases/new_downloads.db-wal

MD5 68a5e912c934501e55c3901d66d44afa
SHA1 5dae7379048a6a65b6a59c6cc90ee689bf8a3dfb
SHA256 a3bbe35eb145ce6f06554671b46cc795cf41b267e672202c2fda1c085b150836
SHA512 42b571048db8044166e60220ca91439ad2d2c73ca409a03f90b9017ac8a42f555d67cef5bc89fb9fc7251b9e1330de9ebd16390ceeb8290d21673284f8652243

/data/data/com.qihoo.appstore/databases/_ire-journal

MD5 7e3fa7ae07ef438d36f0696c1daf3c05
SHA1 82a211b505e983372d16a568a353f7a75fb58fc5
SHA256 d9705f1609613ad33c8226a13e9365fe894ea2e90bde46df333a7ae553a8e0a9
SHA512 c17de75fde63a03bec96ee38beaa48bf3f882765d629db70898d5292fcdba9db53ccf437e220cd60844380e6cf68a57a0329bc5d61ccc24672ee88dd2e60afaf

/data/data/com.qihoo.appstore/databases/_ire

MD5 f2b4b0190b9f384ca885f0c8c9b14700
SHA1 934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA256 0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512 ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

/data/data/com.qihoo.appstore/databases/_ire-wal

MD5 297ae6f11f0acd0b211b5b880d326cd7
SHA1 534f0762a06c413539f52e01e419cdad79584ad2
SHA256 6b9950f66c0915db0813ae35c6e5e0a8a407fd69d32c51dda4ab62963f955844
SHA512 8e1bd4cdb51a8f7d08fc551dc06527f4e4a51cb7ae678452b6ae117473b94d4ddf76deb2bb72a7a1558dc7334e26448198af1b7cc3c2702e5843cc056af85dc9

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 ab14a9052beca3cd55ced0cac2a035a9
SHA1 0cc7b9ce2f8cf140979cc58242a401041cbf2de2
SHA256 e307c1698ce32af93c485c8fcf113801c153e92cc63b4a7e8375d82cefe00cbb
SHA512 f5d774a40e9f577b28224ddfccdc2b1d315e0a5a7c0f42832ef24ccdb488b3363ab1137267c31a9a49828f097f15fc39aa0f3410535650fd28f676bc540b8bed

/data/data/com.qihoo.appstore/files/360/sdk/persistence/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 c81e728d9d4c2f636f067f89cc14862c
SHA1 da4b9237bacccdf19c0760cab7aec4a8359010b0
SHA256 d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35
SHA512 40b244112641dd78dd4f93b6c9190dd46e0099194d5a44257b7efad6ef9ff4683da1eda0244448cb343aa688f5d3efd7314dafe580ac0bcbf115aeca9e8dc114

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 6c0b139cc3b2c428fc49ffba0ebe2db9
SHA1 3f90ead96799f84cb73c2d9c93890c0dc1173e76
SHA256 46f0b4d732e09fd2d8120279ca5d49e9f628b7538b456fbd2690f11dc8727424
SHA512 5108088ba44c4ce373850f7de61b662af460d9cd3cd5b73d1bea520476f88bdf9e287eb92ad282fef984d3b68ef67575d1b3581d0c2616e5c77173aa6509f302

/data/data/com.qihoo.appstore/files/360/sdk/persistence/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 eccbc87e4b5ce2fe28308fd9f2a7baf3
SHA1 77de68daecd823babbb58edb1c8e14d7106e83bb
SHA256 4e07408562bedb8b60ce05c1decfe3ad16b72230967de01f640b7e4729b49fce
SHA512 3bafbf08882a2d10133093a1b8433f50563b93c14acd05b79028eb1d12799027241450980651994501423a66c276ae26c43b739bc65c4e16b10c3af6c202aebb

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 c62e0a16cc12d31cb4c084304b0084a5
SHA1 fdd88724b257c2333acdbb2b4851b2e42f9ce18c
SHA256 d2bf2c819ebd2b3f5f4caaa9fbd293dddebb4819d2c25120695cc1ef053e27a0
SHA512 727f1e6e9fd39ae7b93bd3ee11830f0b16a44353bab2c33d51e45f85bc3ed5bca9f5f6e5b672edbafaead3e1b8db3e9a3b6cccd81154e00ab6e0adc28fdeb073

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 caddf118ebeb9547467713d2f5428a7d
SHA1 d81ca6845644b1ae1b8a61ebb9a1100e5b9a33ef
SHA256 762a3ab7ed9bbbf1619b53fca45d8d58be90035706f24de0ac552890618e30ee
SHA512 c29a9e767c9c8f65af228167739ece166bba78af30d86a2020ee6a38212565adcb2b22c4f449e49e54d0a9476809587ecc0eba3f219db427a1d7398e82ae6f1a

/data/data/com.qihoo.appstore/files/360/sdk/persistence/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 a87ff679a2f3e71d9181a67b7542122c
SHA1 1b6453892473a467d07372d45eb05abc2031647a
SHA256 4b227777d4dd1fc61c6f884f48641d02b4d121d3fd328cb08b5531fcacdabf8a
SHA512 a321d8b405e3ef2604959847b36d171eebebc4a8941dc70a4784935a4fca5d5813de84dfa049f06549aa61b20848c1633ce81b675286ea8fb53db240d831c568

/data/data/com.qihoo.appstore/files/360/sdk/persistence/backup/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 68b329da9893e34099c7d8ad5cb9c940
SHA1 adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
SHA256 01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
SHA512 be688838ca8686e5c90689bf2ab585cef1137c999b48c70b92f67a5c34dc15697b5d11c982ed6d71be1e1e7f7b4e0733884aa97c3f7a339a8ed03577cf74be09

/data/data/com.qihoo.appstore/databases/account.db-journal

MD5 2adf8fa6685c48c4031973116a696cb1
SHA1 00c62c799332921bc5230e9563161a6799f73f7f
SHA256 e08ea80999742b40340c3c29adc25527b74fac069fa9e1b78df90b9f7e516386
SHA512 e7b1ddd50e61c362e24cdb9aadef0abfdcb60e1166c852e7a8577011f59f20c5165f4fb3a72f24cca179242d3ad06b83cdd228f85706dc2f5677b978af48b01b

/data/data/com.qihoo.appstore/databases/account.db

MD5 924e8d876830616bfc401ee5a5e64225
SHA1 1caaa4b15e0e9bdb7bb540c37f5518ceadf80214
SHA256 6a912b040955c84b13cd3b7224673d8cf96746689840d2b3bbe6d5dbdb8c63b9
SHA512 974f9e4d4bd724308a2a066bb8ccdd8355c69c327dc034f8a742d0cdb012e5f4d8544aae43ad8a2ede8e3d41c942262de3dd1c13399677447882fb394b168c1a

/data/data/com.qihoo.appstore/databases/account.db-wal

MD5 c70a5f1e810a62ecfa2bfcbcd459f7b1
SHA1 7bb3ee56de307dcdde008d2d16b954f83e4664f2
SHA256 a7b7d91976b8fcbeb9ab4ca7500938449f58e0f26fc63dcae3acceee5eb1e9b2
SHA512 9c4f948c6d1f39307fb8cac8152db6919f7c0e567e76d59a0992b0d65d30b0fc566feb2264e7d1fc41c052f60abf26877c90544f222435b3703f53ded901b34c

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 3d0c6dcc9a1117c928a6ad855192336e
SHA1 b1e5324c0a2c1f9a9d79d1788ca471e6b6141cea
SHA256 4ed6a5fe1a9299a3e347e29d11722d3ab2a3be67b291b70442d3415a6b719e98
SHA512 3d6c343f117f44cc9f65277e923f7a33e13f8cece2eec2f03820617feef2587f81bab0883fa5b56cbc2ab5715b3c782ca3da5cbc52bfe6f743e07368bb5be0bf

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db-journal

MD5 e5c3797f67b939545beda8bc3300fdc2
SHA1 17d2fe6e43bd4d9370f3c181c9b50f68640aac52
SHA256 274937dd18054c07234cbf24f5c4e5f8e937f17af08b3d3e9eb3e7be660bfca5
SHA512 cd20d255dd6fff15abd8ce23b75b151ca01856f34ba4d90db5b6632bd7ecec3dbe724548e8f7a318fa9a21b52573691f5f9d1ef3b05dc04a61cf23a8eccba9cd

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db

MD5 2304dd698be3705c85ca097304ce7de2
SHA1 325882522ae26bc42927f6e46c489b93799aaab1
SHA256 740e5bd0953670bcc14c80bc032c828420f9460dd3ae0f165774c5ec71584e3a
SHA512 eaab8bda28fd30544fb9d413695cbfe42d3f2f184a77e6c73ec5fbad3621127a01b27f1a5675439a5314d2640ebbdf118f58bc90ae864a2923055ef9f10a31bf

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db-wal

MD5 82e12731c759e2120742a477785fb217
SHA1 a67f97cf8fa8ef6cdddf128a0ad9048f8e44355b
SHA256 6c091281d9f7fd4c4735b695e0db0ef9f2c5de84f46c60d90d9804376f8dfcc6
SHA512 a025baab0e506a627b05f6f9aeb0fd653212f2fed9d2f7927a0a237c03ab8ca5051f0300de0208ab2f03fb3d7559cf0e6db67a5653b7a54277ec646e8d0c458f

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db-wal

MD5 a5a57f25423cf81a7193651a5eccac33
SHA1 d93ad11ae413297daf2343a7d94c61dc7df27c94
SHA256 749848422adc5e604b0636c88a9b5283568c36985f7173dafb07b7883847abca
SHA512 ee6d1f807a68501a30e52c28277d437a1832848054454412e25a7bacf20da3b12a4f0e3afdffa8a1fd9ba22b8268d36193bac6dfcfc64be883301c6ac28cc5cd

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db

MD5 04183d28d08d24a5b03704e8a44f1e0e
SHA1 3710a7d4f4a50e9a8a14d1cd312291d99fadf7ff
SHA256 cbcd94a175e1689d50dc1d42f20d9238dc71ff218539f8eab55da964e5190695
SHA512 817f91475b63f1e8feb1a11cf55f0409b6728bfe8db1b6fc6db63a7dbb091a144c607b2f339993d79b0a7ab338d02c9612af63296624a1ba1f6de03b96fc245d

/data/data/com.qihoo.appstore/files/sllak/opt/4249/oat/finalcore.jar.cur.prof

MD5 e4ba2658c8047570b8507bfff38deb38
SHA1 685020dd79c548af8c9be057c1f247986ade24ee
SHA256 cca74ccc54d06daaf97fee6132f2f07e517084d70ce3dc03e55649168ff83750
SHA512 fe072e901cfe3e6c364c26eae429ee8eea681990075cde662a71d27f3f2198b5f185b0aed287b56c185bad37da9d2da003ace7e9c3d24cbeef26136ebf7ca5a1

/data/data/com.qihoo.appstore/files/sllak/logcache/log1729053295186

MD5 b95c90e6157e4ef8381d1a0970f2aa9d
SHA1 2025df27b168293a5d9f38889330a4fbce087285
SHA256 82eedf7a06ba5539430fe512079641c80f27b477e7ae4fbebd8b36d2e6600ece
SHA512 312a725be13d0c1879000e018c76a017c49b5d4a8ada41e6d8d7d03516fac1f81c9faeaf0149aeeaa81e26bb243e2300c73708c12a50da9dc809049ebbed967d

/data/data/com.qihoo.appstore/files/sllak/logcache/log1729053295141

MD5 a7092ed2fe44acc3f9bf87d88f41d7b7
SHA1 8ef5851ece16ab247e5b9d1f7241358a93e43025
SHA256 897ca28df4415c50b8c37872ff99e59058d7b5793eeaaa3473d720d74af03eab
SHA512 1afacb105cb3155da88c90b9869ea245529b2e883d2ac016c5c1790dc32d44614f59e84247f5f677f67999fc84e62b4e108033ecc0d0e83f3d65ea6e6ecd769d

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 6e428ab2da68a419ddfd13ac372705b8
SHA1 a520f06ba5d363e0e25648c02940040e64ac35d6
SHA256 84d4c99164f26531234b2d74eceb6178da241269d491e41ed522c05e147e6c57
SHA512 223527f8633bc6f950a37c7282f736754183fd2019a61c5cddb10331a37d227ae05d3439ccf911ecd594a91afff08367ec4fb10a8734c66b7cb02b5356ca07ec

Analysis: behavioral2

Detonation Overview

Submitted

2024-10-16 04:34

Reported

2024-10-16 04:37

Platform

android-x64-20240624-en

Max time kernel

129s

Max time network

160s

Command Line

com.qihoo.appstore

Signatures

Checks if the Android device is rooted.

evasion
Description Indicator Process Target
N/A /sbin/su N/A N/A
N/A /sbin/su N/A N/A

Checks known Qemu files.

evasion
Description Indicator Process Target
N/A /sys/qemu_trace N/A N/A
N/A /system/bin/qemu-props N/A N/A
N/A /system/lib/libc_malloc_debug_qemu.so N/A N/A
N/A /sys/qemu_trace N/A N/A
N/A /system/bin/qemu-props N/A N/A
N/A /system/lib/libc_malloc_debug_qemu.so N/A N/A

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /data/user/0/com.qihoo.appstore/files/sllak/opt/4973/finalcore.jar N/A N/A

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

banker discovery

Queries account information for other applications stored on the device

collection
Description Indicator Process Target
Framework service call android.accounts.IAccountManager.getAccountsAsUser N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Queries information about the current nearby Wi-Fi networks

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getScanResults N/A N/A

Requests cell location

collection discovery evasion
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getCellLocation N/A N/A
Framework service call com.android.internal.telephony.ITelephony.getAllCellInfo N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Makes use of the framework's foreground persistence service

evasion persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.setServiceForeground N/A N/A

Queries information about active data network

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Queries information about the current Wi-Fi connection

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A

Queries the unique device ID (IMEI, MEID, IMSI)

discovery

Reads information about phone network operator.

discovery

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A
Framework service call android.app.IActivityManager.registerReceiver N/A N/A
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Schedules tasks to execute at a specified time

execution persistence
Description Indicator Process Target
Framework service call android.app.job.IJobScheduler.schedule N/A N/A

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Checks CPU information

Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Processes

com.qihoo.appstore

com.qihoo.daemon

com.qihoo.appstore:critical

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.187.232:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 show-m.mediav.com udp
US 1.1.1.1:53 sdk.look.360.cn udp
US 1.1.1.1:53 openbox.mobilem.360.cn udp
CN 180.163.247.134:443 show-m.mediav.com tcp
CN 101.198.192.67:80 sdk.look.360.cn tcp
CN 101.198.192.67:80 sdk.look.360.cn tcp
CN 180.163.251.81:80 openbox.mobilem.360.cn tcp
CN 180.163.251.81:80 openbox.mobilem.360.cn tcp
US 1.1.1.1:53 m.irs01.com udp
US 1.1.1.1:53 p.s.360.cn udp
US 1.1.1.1:53 sdk.mediav.com udp
CN 106.63.24.127:80 p.s.360.cn tcp
CN 180.163.247.134:443 sdk.mediav.com tcp
CN 180.163.247.134:443 sdk.mediav.com tcp
US 1.1.1.1:53 www.google.com udp
GB 172.217.16.228:80 www.google.com tcp
US 1.1.1.1:53 update.api.sj.360.cn udp
CN 180.163.251.81:80 update.api.sj.360.cn tcp
US 1.1.1.1:53 s.360.cn udp
CN 101.198.2.147:80 s.360.cn tcp
US 1.1.1.1:53 api.kuaidi.360.cn udp
CN 180.163.251.81:80 update.api.sj.360.cn tcp
CN 101.198.1.205:80 api.kuaidi.360.cn tcp
US 1.1.1.1:53 sdk.s.360.cn udp
US 104.192.108.192:80 sdk.s.360.cn tcp
CN 106.63.24.127:80 p.s.360.cn tcp
CN 180.163.251.81:80 update.api.sj.360.cn tcp
GB 142.250.179.238:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 172.217.16.238:443 android.apis.google.com tcp
CN 180.163.249.138:80 p.s.360.cn tcp
CN 221.130.199.88:80 tcp
CN 218.30.118.222:80 tcp
CN 106.63.24.127:80 p.s.360.cn tcp
US 1.1.1.1:53 recommend.api.sj.360.cn udp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
US 1.1.1.1:53 profile.sj.360.cn udp
CN 101.198.1.205:80 profile.sj.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
GB 172.217.16.228:80 www.google.com tcp
CN 125.88.193.234:80 tcp
CN 125.88.193.234:80 tcp
CN 171.8.167.68:80 p.s.360.cn tcp
CN 180.163.247.134:443 sdk.mediav.com tcp
CN 180.163.247.134:443 sdk.mediav.com tcp
CN 180.163.249.138:80 p.s.360.cn tcp
US 1.1.1.1:53 track.mediav.com udp
CN 180.163.247.134:443 track.mediav.com tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 125.88.193.234:80 tcp
CN 171.8.167.69:80 p.s.360.cn tcp
CN 101.198.1.205:80 profile.sj.360.cn tcp
GB 142.250.179.228:443 tcp
GB 142.250.179.228:443 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 101.198.1.205:80 profile.sj.360.cn tcp
CN 123.125.82.206:80 tcp
GB 172.217.16.228:443 www.google.com tcp
CN 171.8.167.68:80 p.s.360.cn tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 180.163.247.134:443 track.mediav.com tcp
CN 180.163.247.134:443 track.mediav.com tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 221.130.199.88:80 tcp
CN 171.8.167.69:80 p.s.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 221.130.199.88:7 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:80 tcp
CN 180.163.247.134:443 track.mediav.com tcp
CN 221.130.199.88:7 tcp
CN 180.163.249.138:80 p.s.360.cn tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:80 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 125.88.193.234:80 tcp
CN 221.130.199.88:80 tcp
CN 101.198.1.205:80 profile.sj.360.cn tcp
CN 218.30.118.222:80 tcp
CN 180.163.247.134:443 track.mediav.com tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:80 tcp
CN 125.88.193.234:80 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 221.130.199.88:7 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 221.130.199.88:80 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 125.88.193.234:80 tcp
CN 125.88.193.234:80 tcp
CN 101.198.1.205:80 profile.sj.360.cn tcp
CN 171.8.167.68:80 p.s.360.cn tcp
US 1.1.1.1:53 md.openapi.360.cn udp
US 104.192.110.216:80 md.openapi.360.cn tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:80 tcp
CN 221.130.199.88:7 tcp
CN 218.30.118.222:80 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:80 tcp
CN 171.13.14.66:80 s.360.cn tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 171.8.167.69:80 p.s.360.cn tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp

Files

/data/data/com.qihoo.appstore/files/sllak/opt/4973/finalcore.jar

MD5 c22d021bc98d97607bfd32956b5ad151
SHA1 06c937da4d6b6fcee1b7b37262350c7653771b8f
SHA256 4e988b4d9bae530786b4ae34bce5d43453fa172da0cb71594b9faf1f8c82640e
SHA512 00a3fb4955aeef39a03cce41cda9b129042fda1123ae4b1d2d702dccb06a4aaf412f5b78a9673a2ec5ab7fb53f8e50b64052ff9c274316adfa6b77f639ee9e3c

/data/data/com.qihoo.appstore/files/sllak/opt/4973/finalcore.jar.tmp

MD5 c14c8a2f5d3a7c47eb2ca8c1b6e69adb
SHA1 4e57b3c0f34427aba8a5be40c2e9b627172a89c8
SHA256 7d7ada76ea057847b5c47ed0f16a6d0e52cdbebbbdb08c1a9519acf70a1a4107
SHA512 2be420b849c0fa84d3c594ab6bc85255eb54915e05aac5fd3d711e8dc93f484c5a2add2c662a858d4c2ce316a716c9e930122e9cb1047be7482c495242d766e4

/data/data/com.qihoo.appstore/databases/filelist.db-journal

MD5 87be628290a8eb8c9ea7951e7438ad00
SHA1 58ef106a72257436d070c811947b46270df82e0d
SHA256 88d93659d755a7f55025bf133bf4bb5aae381a755cb835a27de27a2aa8b14e2c
SHA512 d1bd1bdf658b10f4a909c6d9e9139ee278ddf52d39ff6ab2b2054eb2ffd8b3c972f65877d9b9e041357fdff3976b16e068af9eccc9ae9df1f8a3ed174011f2cb

/data/data/com.qihoo.appstore/databases/filelist.db

MD5 ee95bade9edf0399cf2477ac8e96d00c
SHA1 30ba859dcab73b134124d3a33facc1d66d28b172
SHA256 c06f78f9bebb11def742bbab2c0746fd24e863da44f888107e5c9104b5e54315
SHA512 4c55f6c699ece767d78e77b0b4e008bacf549e0db31b76e631de64aeac23028ce8141cf6eef1747a8b8d1bb88887057a4fc64135b6eeb32d9d03a6c8a1fa3559

/data/data/com.qihoo.appstore/databases/filelist.db-journal

MD5 676c443ba4ae4b128a4c6deefcbe333c
SHA1 d0e5b88ce56d20510dadfe8cf2aab6acc01510c8
SHA256 453834c126955675d7ecf767c0bb776fa64cb4ef532096347e7e9cd0fd225e00
SHA512 ebfbe16406b69efc0888c2844ba4b44461dc432b3c814eacc29d7e9b02d1b5f570e5aabef9914ce170b0d64d09515ffbb7c9506a9991a078a87b281d013782fd

/data/user/0/com.qihoo.appstore/files/sllak/opt/4973/finalcore.jar

MD5 b667ca71e42bbeb899566c8834ed085e
SHA1 053a3f889e326efdfa0d3ae7e5b2655f0b7376d2
SHA256 536678202267f95d80480f15065e784d7ec609922a0963d935e9c5a4b0f62bef
SHA512 52255d3d7066d01bd47a9da788f86c707af14e7666a918737fa5ffb4bb003e97b28dd84a7cead3439ee39e10b568c97e80174a80bf776c7dd58335b06656f8f2

/data/data/com.qihoo.appstore/databases/filelist.db-journal

MD5 9c0e612e537282d97b061a5bd53f0be8
SHA1 36a6249bad93bdd32dc657fe536bf9fd207ec325
SHA256 db9069431db75ac89f1dae8c2692e14363c295852c02d590c232b91912d3d37d
SHA512 91b67ff95536e5a654e8a1a9d12d6567c218827dfb7d279301e6495969bd0d60c06bc28bfc916b991c3deecf507fc3539ef78aa798f94aa21a68c8c589871866

/storage/emulated/0/.sfp/.sfp

MD5 e2f5ce9356838276edd8d8d390faac76
SHA1 cac34628b00eac48a5b0c653ba01fc4a3f1b6bc4
SHA256 587a27818cacfc69a103def6ca24d64ca016fd7c8a6960dd78a4ac2898071fc0
SHA512 407137174b66f460da0a1ed627c2fa5fd183d40cb76075f16d923db34b78985338a37905e431a9c47649ae4ab78912f565d5551d23c024fc0978ae641aad9ede

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db-journal

MD5 0ff10eab98b9401fb648ea368c1b3447
SHA1 caf5fdd961b69c8dbf90e8270d3ce196a230cca6
SHA256 2b73d15f341da270588db62a93c9a49b812c089c7606d503218f4ce95e5b9787
SHA512 fa1adfecdb82a3ac227aaf28c707255d3893f0dcf7bf2ac333df8992b460a51f220655143bd2e944d7c892f50ff785504a88f32e87eafad936c5b7158fad7cb8

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db

MD5 ea628e04765adaf4238a5dcdff4bbd51
SHA1 a801947619ea8c368efe9c006a324dc6339ac60b
SHA256 885e337c2156e4dbf2176a9677ade50418740532d222ccae5ad4aa371b54c6a4
SHA512 c0287b0e7b690a7231a37d1745c49f3d861b22aa65dd769ba6a8b5ab9da55443f749957781ee05a405019c39e1be45d37a971b821bffd62a1d5620bc39119abe

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db-journal

MD5 d638057fd69835b22296b4b9aaf68107
SHA1 624bde6f75253b223c8553f5970b61db2596916a
SHA256 e505f378c44815deee627160437c370c07f80a6f8371bf3238a2d5dc8c815098
SHA512 ee1dc046d9a2e562d73a8da1fe1202664f65852abb317b70bf4bb8a23d3bc526c7acaaa85e6af93d2e9f9bdad6ab240741f3f2a188c1eab9e9368f36fe22e955

/data/data/com.qihoo.appstore/databases/download5.db-journal

MD5 63b817f85353673a00e76b3948ddc650
SHA1 ecaac4a23cf15482f155dd33e0751b6c4956408d
SHA256 d8a4342a419f27a669138677569f690a907f39bb0552f8fd0a9ffd2937304075
SHA512 7d9b04be3b6489c24c1445d8e806cbd821ad33676e85ceec91650ba12d1f70a54b503ed942bb5929d9d436d3427f6a6a6527109a9bbb2d0a93ef8dc82677dece

/data/data/com.qihoo.appstore/databases/download5.db

MD5 fc8157c20aff4c65d310c8b1495a6c09
SHA1 527adb90ff40b74b6b0268a5018d8af7faf53c8e
SHA256 d3ac468ba80900c4780701925d0a9b119be2317ba08a41b5c7084965195d56ca
SHA512 d962ea97226a5f9937a55dc46fb1f3ba4fb0782dc9a34ac362000d7e2abb4d9c2cbc7bde310708a4462bb5e8af7ee0d6a4b87c0410804a71d0848537ea6b9fd4

/data/data/com.qihoo.appstore/databases/download5.db-journal

MD5 82f3f8d94e0ba26c12607f73a45f48fe
SHA1 0d45accd5e3c6d01e6eff3624b5c07c71852ce3f
SHA256 84063a7173f5c4f9d47402c10d4335f4fe5f18167cce87d075230ee4d3d236ed
SHA512 68f6e3b64fcb41a6f270937dc99b3aae30786e0c43dacd844c9e421fbb8b85f5b0ed77a26439367cafdee25b485a03f687b20ad24aec4388b6bc597e81797ebc

/data/data/com.qihoo.appstore/databases/download5.db-journal

MD5 fed2be195047eabeb0a5f198b13ec783
SHA1 0131a734f12369fb3e83845b20ecd3052fd72471
SHA256 46b399c38c5ff8f9cfe37650a8d652cedd9962047231c318b44571b5c15fd2bf
SHA512 0cf8c5c78e30581b67917a14d7ef1622d371a3e2c46ffa5421dc6db9669f6cecc21265d9308571a86997813d803f11d3c1de3be638ef9afad92d434b551c8dfb

/data/data/com.qihoo.appstore/databases/new_downloads.db-journal

MD5 0253ef23111e27240df9b36d3d61bcc2
SHA1 380ba48869bf2d04c3a1373a4f903d1345f85bb7
SHA256 52f81bcbd4887f2062afc0071eb267c2dd0b902e43dd8bf45a29e61e19a1d0c2
SHA512 2650ef70b3f3f3a4183b0d10ac503435e775849248e7a5b2379664a2f5accec74257f9292a02d96163fd22e0ba1462639d13f4a56897add7e5ff2621d13b96f0

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db-journal

MD5 98f0a5c31a7fd0d2ea433f927d820610
SHA1 1c4c58db591911776d459f45da359aa1ed369571
SHA256 d7bd55913d85750e8c92e3843ef32816ad7c30e3aeabf5f954f2aee800005a67
SHA512 2f2466d05557ea16898e99d9063e95bfafc3d81a872fb8b10c65d60d3819c76a8f510bc1c30c2f1cf2e850e0ebd0354206a90b6a3fbd56913194dcb9747a1e37

/data/data/com.qihoo.appstore/databases/new_downloads.db-journal

MD5 761401fc44a14f78880bbc21889d1917
SHA1 a392fc3a176f6133a41c680607d5bb8786985f48
SHA256 5321e6302e47b6d6f2376dba0789acbe258dd313bec16703de4bb48911021a8f
SHA512 f3785fabd7c98c9e1388e23aa0c7816eb968041c5e9ca610e12399481ae42c60f623b55d07736600a176d0b9778cdd51c946f9a45d0e5e75e85fbf12e0e3d1de

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db

MD5 932058c83d1f903c515b112590a35051
SHA1 ee90cb29f0554168077f60ae66d458a22218824a
SHA256 ec21c5db01d91ef738a7d990bcd11337bae4b475d9127eb5675657c68e881676
SHA512 940b6557f623b18787bd549a84f5483da73a46429d5949f74bc7f13d0dc74dc620a40ae5489508f85463c256de5f71751c72e3852c6a722a7ade4b98ee2b072a

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db-journal

MD5 172b4f3ec1c8ea5202354c0ca480ca1f
SHA1 b1ffd029e949391445631025ee9734a7579e9e03
SHA256 43d9fcb6ffbc379043767214a414ed982575868c7012da3b0f1e936945734ebf
SHA512 2a5f6fbbdf62762ad4ee54c65b94905cd1fe7654ff8143e701ec0a5285bf9c1db1b2da81e262429b69618dd7838c0c40d739690b7f0c2a4f55433eafea2f8aea

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db-journal

MD5 06579c837d0f160da328f8f6683d51ac
SHA1 d36ddd1f5eea8737fdb3c6add1d859623bc723d4
SHA256 915525c7870583177bfff641c7968bd2c1e5094aa30b000e7acfe210a5fb3144
SHA512 73fbebd693821d9848c0f9f22f6758118770b00f08da1417255953dd66144ec351cbf69c0461bff3da034a66d2848273ad55f7c5fa557323baa258e3e7f81224

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db

MD5 0685bc716a586d0f6b849b97d0fc2d02
SHA1 fb3ae859d35e4e5c86af4a045c8f7126bbd4e73a
SHA256 c7f6ba4fe586c85516bbefb4e5702ce81e8b5b573f413fc5304f38f2dab69c3f
SHA512 04cf6da457e89dd0061334477ee24b39925fc4bcde182692732cbf9694a81ca89bfefec38ebc56e02555630ffe8f7f0e5033168294d8d6751c6aba914617dd00

/data/data/com.qihoo.appstore/databases/_ire-journal

MD5 9b1325aaa53fb0abfbb727036e22a18a
SHA1 4a274ff7afa16e2c9f335aa76aa9d512f7859402
SHA256 26640b9307607f06541237fe9002996fb845f0c558b48de0a81671c64efbf441
SHA512 34b571100768f1e967ae3a53ae30b2ca3b391c186aad49e3d9ddf0cb4db8e98bd978fde160f4e278fcfb2baa5360caec01634aa587287a4d22fb697ffe213912

/data/data/com.qihoo.appstore/databases/_ire

MD5 6da302a2e5fc0263420684f38a00e3fd
SHA1 9e1c35e91c3b84600dd8ebc10e072ccb91b5895a
SHA256 a9b2f6227429fd83edc4db9e62c5e3f8c45b55598f7b10c3132d6b339283c8d2
SHA512 6e91d3076e4f382a5e4119e6429b90bd4d604c858acb4914e8b67226f4ad0626e29726e09d12965f075ac6aebc49eb22faf0f5c6a286913aad9515887f91fa1b

/data/data/com.qihoo.appstore/databases/_ire-journal

MD5 e06a102eadaebdafc3152da0c55474a8
SHA1 c1c88929b782350c2e09c92ef8b5effa632d3aa9
SHA256 07524fb2a7e3aa6133667e2e74ff9c7dd6ff317e138291af8530c6d597953135
SHA512 e99c5c41985dffb7abd072f61b3fdc1147a8808ee53b034c3fd1c857fb0e14c0f3ec0cb8af7b150fe290aad90d9d143383ceac4d62d124eaa701180f29826eae

/data/data/com.qihoo.appstore/databases/_ire-journal

MD5 74edbbe46b7942fa2aae8cc9dbb93126
SHA1 0fb0764dd554f281d8cc6dcdc30aeb16f1fd407f
SHA256 6355e682ec7cd234ce630d6e6e75e35e4a98fcbf83e1a6b4bd1ea0a8fab29b0a
SHA512 55e7cd9d4d9c4c364a9e2cd0909273b7c2e9374c33580641c216e8fc73890be415528b37196ff954c3d14afd8b53c6b571e53bef7de222a9aa8b3021230fcf4e

/data/data/com.qihoo.appstore/databases/update_history.db-journal

MD5 7f5e8acdf760332b58ae175502dd0e00
SHA1 33d32f58e667e835db317fe94e6a67c4f044f696
SHA256 032b1043c0b956b80c1ef5629e91b240d0cc755a2b83b00296e76dba398fd25c
SHA512 cbd9a98332ba5a825727a4b6e2a43c5f403e428e5d2f332a5d7962818ea82ba15c240959b3e10a3ed97f8ecd9414c6e67dc0513758453c764e822f58253bfbbd

/data/data/com.qihoo.appstore/databases/update_history.db

MD5 63034ee19c8ac183f4be94f0e4350592
SHA1 8bb94ab357099476de70fa34031349c4f82c8f12
SHA256 fc8213a10a4907987570701d47828767ffd9517ac55111519fb6c909b015ec7f
SHA512 14f6fb8b3648f247bb1c675f5e10f0259845c7a6c559d960ad74759634c1bfc92e0f41cc4cbc973cec45395b2269c885f9dac07d926f490f505cf2a89bb93aaa

/data/data/com.qihoo.appstore/databases/update_history.db-journal

MD5 26f282d5ede55e085f33d80afef71f82
SHA1 5c030539f0f7240c42136dee3760d1d9fc5102bf
SHA256 cd2ce4fa8cbf149dc469d7d9b7b6f32987aeb44863710538d80fd0e329aac89e
SHA512 50962a19330eba95308f2681ae359530e22f3b2669accd8ccbfa3be7bc7816ee5945026f042bde39cd004d21f353db35d95d3008bf93f31769a4baa610986032

/data/data/com.qihoo.appstore/databases/update_history.db-journal

MD5 8d1bf35d6a3661f3e5db21601cdc19c2
SHA1 2da512c4eca9f887e49bdd01722458090c68e571
SHA256 78ac8f03fec7a9a2aa5e284e6300974c447fb51f6f6888b20048b424bf845651
SHA512 e6dacce8bbef90f116811eff9a1ed292b632018d82c6bd0e8b18c18eb1b553faa8642cf71b60d32cbceec3c5c2acd86d8457286f5b127775a1b7c1fd1db31baf

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 fd95dc2a1314784337050c10dfd599b6
SHA1 08ef924e7024ab1a88d81e8fae697a37677e12c9
SHA256 75c4e978e386c4539e04f0f418a6bc409e5271f4f8befcb445220536c7125ab7
SHA512 ed76273d13bd7ecf3d61e52d3d99b7c20e0ce4dcaa1fdf155fd529ca5161bbf8bc38fcfd62eec99b1f9d8ba0f0a657c4ce16cb420e09d371b5ed08e991e529c8

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 cb88f64607399cdaaa7b1cea538bdd9b
SHA1 c6c01c93c7f828fcb8abcdf9e2a168a95205031d
SHA256 af4b150f2eb38492e0b4d715488b0b2e3aaec18446b09adf25df051d67766863
SHA512 755e77d6c0c3c731d092e08905828780a28401db01d8a218655c720da8b22a25206c547f7e40cb56dae7776e57140f6116b7a5d6a334357cddb5627155c2e684

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 d1c28c230f7e35493b73ab24d47ba9f0
SHA1 ebc6900467fb3fcf9d87c9fe2bfdcd453aae3e02
SHA256 60ce8102a4b1171f75cbcca02404c263ba49758b989290cc51fb3c02835b6453
SHA512 8f81059a3245ef36021638499c19598889b905d04df4146b2a9ecaebe6b591350e707fa66cb707a9c4934c5bcf3996d39031db1a70f0dab934aeb9a80b3d256c

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 91480fa3c4c40a048e216e8001000910
SHA1 aee91fa38f8e959c6afa02dfe1af29d2866a5827
SHA256 3e00d8b7cb9dd90647d2007924d9bb371cd9ff1fcc812954c7b641a3ed4795bc
SHA512 a4eacb5bf88106d49751d534b3ebfabb8fbe5017a24682b7cad47a218013bc6f20d01578a961c984be1806ae6c4a26d39836bc25b88d1531b133c5e967784ac8

/data/data/com.qihoo.appstore/databases/account.db-journal

MD5 25b71fdcd44cbc767c81150d809dce81
SHA1 035993966a343264e6804d27e61c4c4d3587990b
SHA256 922fc6b1d73c6776aab0b13ac002012720ab77094d31adac6372709fb6d35b68
SHA512 6b35cf3e653cb0431b58f57d3bdc29152c3dbc4afd3c149a2a0928820ecbfc9f32d0983efed1a2aa33865b75e06daed1b59de57afeb38c38550a32d701218146

/data/data/com.qihoo.appstore/databases/account.db

MD5 f630f8cf9174c836248b6d30cbdd5779
SHA1 4db6d82e8e17de9fcdf0ead09e97123cda1ca86f
SHA256 ae606221ff789289e1c69cd9f79ee035d1c587a96d556ad8ac6ee91fe6741041
SHA512 c5045a96a9214932971165424348327e2396c204839749884ab3105c7d185693c6900acc3d52cdc1463633890cb123e21abd7e68d71907c043d37f4b52a7ec5a

/data/data/com.qihoo.appstore/databases/account.db-journal

MD5 82eb464c828dcfed33df724fa326e866
SHA1 a11be604c99db6e38aaff5fc6f61a74c50e2b4b6
SHA256 c39a135417a246f7a169d1eb39bcdc6ca4e65c449005ebf42d2c0fd82f0706ed
SHA512 b761ff366a8a006d719c8e8631105e78d8ff45c5288589d3ed66e81748c5db684ca00a03f9774b4ab0c246ac49fa3e2ff627b4b3d7b738475b92add1e67d85f3

/data/data/com.qihoo.appstore/databases/account.db-journal

MD5 8a35ef2c61149ab1faea4c5b08cc12d9
SHA1 d3ff988f7d689642d9145763584c8934fc13e92a
SHA256 cbb040f47cfb6ea7cba30d2ce2962b6adbfbcb507808270d5fe6c3fbdf57d328
SHA512 aab68bb95f2c008bdaa27f1b598b9b930d95b3539564cfdbec2e4ede5b55c5b50f901ce52bec3fb42a754c2aedac3e977a56b608c64f874d112fef111a6172ec

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 9920d3da1d2fdcd80c6a4c4267b274b5
SHA1 c8be06bd6643df9837a7ff9014400652e22a7ba7
SHA256 c110773560c99663a7cf8e4501f16adcf1d49c52f97174f2a1a11a322d54b005
SHA512 dd1c366cf58d952f4262e79f4d2303be31595f2587b7f54a0a4f178e56350c1b2168ef216c23284f914df912b60557712345aa03a61c52befcab2014853396b4

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db-journal

MD5 fe6c4af23068df49b6b50b1bddc64580
SHA1 4ead9a6895add8425a5633e800ce8f86a77f032a
SHA256 c068404c445c39fd5991c5fb1b91658a1051d4cfc0cb87f213fe4255571c20b8
SHA512 c5ecf010a4bd415bc2ca861304e67599e283e0a754873e35c77928b9894451fc7663ca82b025df4f21e437c5f14e6f3f75ae5f1c649f1606e26f0efcaa6d7437

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db

MD5 073bf578f358397eb0890a40280081ac
SHA1 3ef956e97836079ef32105e6f84b401e7dd4d10c
SHA256 c48a18c175de831a21353fb0bdf0d3e43b83ba7655982152df5cf0100b2bf37b
SHA512 22c8bca8429348bf9c0614ba55e6e8dc865cae42306bda2d05b588d7ab34ceda0071695654efe0a429cdf5a6ee812db8d18ba794a80be2512c5305bcdb314134

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db-journal

MD5 95116efea089dacf57416675b49e66f5
SHA1 89534b6c2c9fd35409ce015aa703e5af1817536f
SHA256 d9576f07b858427067862f9bcdbab3138f2087cf8bf1d2fe6e6c413ae22edc61
SHA512 f16027b2d6a368ee9d3baa47559a8753c2c347b2d6c755f269a03ba0d9b029475dc65cda7b12811c04635a832682f189b74f54f683fef608ff4df9c3fd3ed0d2

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db-journal

MD5 157a879b8f204220e157f1507b0414d7
SHA1 bf02b005ac9925186ca0c64625c93dcaafafe378
SHA256 0e743f3d49a10632c0db69dcf3afe4495d85459d916b295221dbf1fc8d297f5a
SHA512 099d34e6fa2786181039c9915f55a07d3ef5043a4e1283b3b0838e675ef7bdd6978c4ae27795c15b67b4e59204558adac708e5b5065776c29f16f806f2352e51

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db-journal

MD5 550fd8a382734cad68264ef6c9beb809
SHA1 6d783cba989263cf7aefbf7bb892b9caceb42418
SHA256 69401a692034593492ee1bb5be9aaeb424e2ce22b7f8fc5bdfffb92972387136
SHA512 08fff5918944f5fe9e7f5744cafe327d14e781898047c26beae903c86f10c891168e5a75de0a9e8ee35f369aaeb1a1c7b7d45713005ab09b037c1a061581d568

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db

MD5 68a663c3f95568e27a9480c447c29c1b
SHA1 bdbd0c162d679fc3e2f96beec7b3fc21be4cf78b
SHA256 442847f7a12c988f83a674323cd5da163d5ec79152b658abe27baafbf70935c4
SHA512 b3317e0dd3be80101b53bd0eca193f4654baea2c8682e0d880afc248f142c6e34c22f5ecd689e56914954bfbc842cc450fa2efe01f668cc8315250c3b4d706e2

/data/data/com.qihoo.appstore/localApkInfo.json

MD5 939eea1af031e8c632c8896b33613492
SHA1 41d1fabacf328961ce2ccc3d194acb28f85702d8
SHA256 e5107811134a610349539ed641ecd1d73dc51282bc4c642bf18acbc24874b952
SHA512 aff687e9af097e50120a2348ec566198bb41e5bff404e8d859a8a8df37cf0af61d348db85853a250ddccf0e7eedbe200a0950019e818878958b99116ce3d91d7

/data/data/com.qihoo.appstore/files/sllak/opt/4973/oat/finalcore.jar.cur.prof

MD5 d18e2bc03a50877873d4b6ebbef4f4e0
SHA1 255d142b3306e15e8b55ba22cc6bdef324a53418
SHA256 3c9a025a7ab7f81730b1dc6c2923d43a684d690c24d34de9995c72cf4e3a5b3d
SHA512 9eb7868bbd1659c6b93a32f5b64b6bdb61e1bd888ddedd1603320b19dfce9363d577023f1c4a72022b21021c2d5878c9790855b6dda24fa6ca633822e0398d9c

/data/data/com.qihoo.appstore/files/sllak/logcache/log1729053295263

MD5 4946b9f3682d7e6462aafccc61d69a4b
SHA1 5b4b5e3afcfe14cbc7c21537946d8417e111f9fb
SHA256 7d980897c9132e245336c5b2c57ec699514b6c8f669ee432fdaf6fe0ce985531
SHA512 6c25577f3d527f26e4bb577125534889dbc37d261e911fb1ec0af204fd830404d5152a4f6d17261c3e6e16e54455385efb6b0b215a1b27a79f66653829838f45

/data/data/com.qihoo.appstore/files/sllak/logcache/log1729053295192

MD5 9deead0e3705ed0973dc2c761a88720d
SHA1 fa4213d310d317ae9349c2e3d13098b8a6cc758b
SHA256 4c8f6c5e85e61f7f8aef0301b5a7dd8da2f9fb4cae228039bf656f7b0fa147eb
SHA512 25646c140e678745522ea5f72cfd6ef36c5d2de6dbe877e2af65c356570abac327e60edb6be8d666bfca20ec6afca88b8601de97461c6342f8fb68428a7b75f9

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 c46edd04a66c70d4181cf99e51888ce6
SHA1 de9d54b9cd1c0cae03601e443ac762e8ff90c5e8
SHA256 88669ed3bb7c1b01efcc0698aa976d15f2bacd48abab46fb64b5b532b6ec1dd6
SHA512 3f1a218867cbb94e202b4dd68564e7ecd678fb958a6d3b6f7a2653f68d095655bbda22a77142c288326bba232cea15e42a80cb1052fc1068f4e2077c720f16bc

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 86ce47c1117b42e145df5887d661b297
SHA1 d80bf6489a9f694fb1baacba766f5e4274fc130b
SHA256 4baee0130e06b7c5be3176094656a2e01556cbb87616b76c185a366b403b8ff5
SHA512 c3294b5f1cae8a3a5e8100191b780315a076e5a085daef60984bc44eb9ac7e3562cdd04fe1f4b161728b81caca80c4f38725476aace8eadd10c5f83887db48c4

Analysis: behavioral3

Detonation Overview

Submitted

2024-10-16 04:34

Reported

2024-10-16 04:37

Platform

android-x86-arm-20240624-en

Max time network

135s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.187.206:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 172.217.16.238:443 android.apis.google.com tcp

Files

N/A

Analysis: behavioral4

Detonation Overview

Submitted

2024-10-16 04:34

Reported

2024-10-16 04:37

Platform

android-x64-20240624-en

Max time network

148s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 172.217.16.232:443 ssl.google-analytics.com tcp
GB 142.250.200.46:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.200.14:443 android.apis.google.com tcp
GB 142.250.187.228:443 tcp
GB 142.250.187.228:443 tcp
GB 216.58.213.14:443 tcp
GB 142.250.178.2:443 tcp

Files

N/A