Malware Analysis Report

2025-05-28 18:46

Sample ID 241103-c9ys2aslb1
Target 894493184431f9a355877dc69fd8ef9e_JaffaCakes118
SHA256 f8e790bf43c3c6ef1a9dbab33c7f89294dd36e01e1ab4ef4866f876c1f25dc89
Tags
banker collection discovery evasion execution impact persistence
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Mobile Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral5

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral4

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

SHA256

f8e790bf43c3c6ef1a9dbab33c7f89294dd36e01e1ab4ef4866f876c1f25dc89

Threat Level: Likely malicious

The file 894493184431f9a355877dc69fd8ef9e_JaffaCakes118 was found to be: Likely malicious.

Malicious Activity Summary

banker collection discovery evasion execution impact persistence

Checks if the Android device is rooted.

Queries information about the current nearby Wi-Fi networks

Queries information about running processes on the device

Loads dropped Dex/Jar

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

Requests cell location

Checks known Qemu files.

Queries account information for other applications stored on the device

Requests cell location

Queries information about active data network

Makes use of the framework's foreground persistence service

Requests dangerous framework permissions

Declares services with permission to bind to the system

Queries information about the current Wi-Fi connection

Acquires the wake lock

Reads information about phone network operator.

Queries the unique device ID (IMEI, MEID, IMSI)

Schedules tasks to execute at a specified time

Registers a broadcast receiver at runtime (usually for listening for system events)

Uses Crypto APIs (Might try to encrypt user data)

Checks CPU information

Checks memory information

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-11-03 02:47

Signatures

Declares services with permission to bind to the system

Description Indicator Process Target
Required by accessibility services to bind with the system. Allows apps to access accessibility features. android.permission.BIND_ACCESSIBILITY_SERVICE N/A N/A
Required by notification listener services to bind with the system. Allows apps to listen to and interact with notifications on the device. android.permission.BIND_NOTIFICATION_LISTENER_SERVICE N/A N/A
Required by VPN services to bind with the system. Allows apps to provision VPN services. android.permission.BIND_VPN_SERVICE N/A N/A

Requests dangerous framework permissions

Description Indicator Process Target
Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE N/A N/A
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. android.permission.READ_PHONE_STATE N/A N/A
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps. android.permission.SYSTEM_ALERT_WINDOW N/A N/A
Required to be able to access the camera device. android.permission.CAMERA N/A N/A
Allows an app to access precise location. android.permission.ACCESS_FINE_LOCATION N/A N/A
Allows an application to read the user's call log. android.permission.READ_CALL_LOG N/A N/A
Allows an application to write and read the user's call log data. android.permission.WRITE_CALL_LOG N/A N/A
Allows an application to read the user's contacts data. android.permission.READ_CONTACTS N/A N/A
Allows an application to write the user's contacts data. android.permission.WRITE_CONTACTS N/A N/A
Allows an application to read SMS messages. android.permission.READ_SMS N/A N/A
Allows an application to read or write the system settings. android.permission.WRITE_SETTINGS N/A N/A
Allows an application to receive SMS messages. android.permission.RECEIVE_SMS N/A N/A
Allows an application to send SMS messages. android.permission.SEND_SMS N/A N/A
Allows an app to access approximate location. android.permission.ACCESS_COARSE_LOCATION N/A N/A
Allows an application to record audio. android.permission.RECORD_AUDIO N/A N/A
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call. android.permission.CALL_PHONE N/A N/A
Allows access to the list of accounts in the Accounts Service. android.permission.GET_ACCOUNTS N/A N/A
Allows an application to collect component usage statistics. android.permission.PACKAGE_USAGE_STATS N/A N/A
Allows an application to read the user's calendar data. android.permission.READ_CALENDAR N/A N/A
Allows an application to write the user's calendar data. android.permission.WRITE_CALENDAR N/A N/A
Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether. android.permission.PROCESS_OUTGOING_CALLS N/A N/A
Allows an application to read from external storage. android.permission.READ_EXTERNAL_STORAGE N/A N/A
Allows an application to read from external storage. android.permission.READ_EXTERNAL_STORAGE N/A N/A
Allows an application to read from external storage. android.permission.READ_EXTERNAL_STORAGE N/A N/A

Analysis: behavioral5

Detonation Overview

Submitted

2024-11-03 02:47

Reported

2024-11-03 02:49

Platform

android-x64-arm64-20240624-en

Max time network

134s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
GB 142.250.187.238:443 tcp
GB 142.250.187.238:443 tcp
GB 142.250.187.238:443 tcp
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.200.46:443 android.apis.google.com tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.178.8:443 ssl.google-analytics.com tcp
GB 142.250.200.36:443 tcp
GB 142.250.200.36:443 tcp

Files

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-11-03 02:47

Reported

2024-11-03 02:49

Platform

android-x86-arm-20240624-en

Max time kernel

148s

Max time network

152s

Command Line

com.qihoo.appstore

Signatures

Checks if the Android device is rooted.

evasion
Description Indicator Process Target
N/A /sbin/su N/A N/A
N/A /sbin/su N/A N/A

Checks known Qemu files.

evasion
Description Indicator Process Target
N/A /system/lib/libc_malloc_debug_qemu.so N/A N/A
N/A /sys/qemu_trace N/A N/A
N/A /system/bin/qemu-props N/A N/A
N/A /system/lib/libc_malloc_debug_qemu.so N/A N/A
N/A /sys/qemu_trace N/A N/A
N/A /system/bin/qemu-props N/A N/A

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /data/user/0/com.qihoo.appstore/files/sllak/opt/4262/finalcore.jar N/A N/A

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

banker discovery

Queries account information for other applications stored on the device

collection
Description Indicator Process Target
Framework service call android.accounts.IAccountManager.getAccountsAsUser N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Queries information about the current nearby Wi-Fi networks

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getScanResults N/A N/A

Requests cell location

collection discovery
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getAllCellInfo N/A N/A
Framework service call com.android.internal.telephony.ITelephony.getCellLocation N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Makes use of the framework's foreground persistence service

evasion persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.setServiceForeground N/A N/A

Queries information about active data network

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Queries information about the current Wi-Fi connection

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A

Reads information about phone network operator.

discovery

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A
Framework service call android.app.IActivityManager.registerReceiver N/A N/A
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Schedules tasks to execute at a specified time

execution persistence
Description Indicator Process Target
Framework service call android.app.job.IJobScheduler.schedule N/A N/A

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Checks CPU information

Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Processes

com.qihoo.appstore

com.qihoo.daemon

/system/bin/sh /system/bin/pm list packages

cmd package list packages

/system/bin/sh

com.qihoo.appstore:critical

app_process32 / com.qihoo.appstore.rootcommand.persistent.CoreDaemon --nice-name=com.qihoo.appstore_CoreDaemon --daemon

cat /proc/version

/system/bin/sh /system/bin/pm list packages

cmd package list packages

/system/bin/ping -i 0.5 -s 56 -w 10 -c 10 221.130.199.88

/system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq

/system/bin/ping -i 0.5 -s 56 -w 10 -c 10 221.130.199.88

/system/bin/ping -i 0.5 -s 56 -w 10 -c 10 221.130.199.88

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 openbox.mobilem.360.cn udp
CN 180.163.251.81:80 openbox.mobilem.360.cn tcp
US 1.1.1.1:53 show-m.mediav.com udp
US 1.1.1.1:53 sdk.look.360.cn udp
CN 180.163.251.81:80 openbox.mobilem.360.cn tcp
CN 101.198.192.67:80 sdk.look.360.cn tcp
CN 101.198.192.67:80 sdk.look.360.cn tcp
CN 180.163.247.134:443 show-m.mediav.com tcp
US 1.1.1.1:53 m.irs01.com udp
US 1.1.1.1:53 p.s.360.cn udp
US 1.1.1.1:53 www.google.com udp
GB 142.250.187.196:80 www.google.com tcp
DE 47.254.148.188:80 p.s.360.cn tcp
US 1.1.1.1:53 update.api.sj.360.cn udp
US 1.1.1.1:53 sdk.mediav.com udp
CN 180.163.251.81:80 update.api.sj.360.cn tcp
US 1.1.1.1:53 s.360.cn udp
CN 180.163.247.134:443 sdk.mediav.com tcp
CN 180.163.247.134:443 sdk.mediav.com tcp
CN 180.163.251.81:80 update.api.sj.360.cn tcp
CN 171.8.167.89:80 s.360.cn tcp
US 1.1.1.1:53 api.kuaidi.360.cn udp
DE 47.254.148.188:80 p.s.360.cn tcp
CN 101.198.1.205:80 api.kuaidi.360.cn tcp
US 1.1.1.1:53 sdk.s.360.cn udp
US 104.192.108.23:80 sdk.s.360.cn tcp
CN 180.163.251.81:80 update.api.sj.360.cn tcp
DE 47.254.148.188:80 p.s.360.cn tcp
GB 142.250.200.46:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.206:443 android.apis.google.com tcp
CN 180.163.251.81:80 update.api.sj.360.cn tcp
CN 125.88.193.234:80 tcp
CN 125.88.193.234:80 tcp
DE 47.254.148.188:80 p.s.360.cn tcp
US 1.1.1.1:53 recommend.api.sj.360.cn udp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
DE 47.254.148.188:80 p.s.360.cn tcp
DE 47.254.148.188:80 p.s.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
GB 142.250.187.196:80 www.google.com tcp
CN 221.130.199.88:80 tcp
CN 218.30.118.222:80 tcp
CN 180.163.247.134:443 sdk.mediav.com tcp
CN 180.163.247.134:443 sdk.mediav.com tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
US 1.1.1.1:53 track.mediav.com udp
CN 180.163.247.134:443 track.mediav.com tcp
CN 125.88.193.234:80 tcp
CN 218.30.118.222:80 tcp
CN 221.130.199.88:7 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 221.130.199.88:7 tcp
CN 125.88.193.234:80 tcp
CN 101.198.1.205:80 api.kuaidi.360.cn tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 180.163.247.134:443 track.mediav.com tcp
CN 180.163.247.134:443 track.mediav.com tcp
CN 221.130.199.88:7 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 221.130.199.88:80 tcp
CN 221.130.199.88:7 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
US 1.1.1.1:53 profile.sj.360.cn udp
CN 101.198.1.205:80 profile.sj.360.cn tcp
CN 221.130.199.88:7 tcp
CN 218.30.118.222:80 tcp
CN 221.130.199.88:7 tcp
CN 180.163.247.134:443 track.mediav.com tcp
CN 221.130.199.88:80 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 125.88.193.234:80 tcp
CN 101.198.1.205:80 profile.sj.360.cn tcp
CN 221.130.199.88:7 tcp
CN 123.125.82.206:80 tcp
CN 101.198.1.205:80 profile.sj.360.cn tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 180.163.247.134:443 track.mediav.com tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 125.88.193.234:80 tcp
CN 221.130.199.88:80 tcp
CN 221.130.199.88:7 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:80 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 221.130.199.88:80 tcp
CN 218.30.118.222:80 tcp
CN 101.198.1.205:80 profile.sj.360.cn tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
US 1.1.1.1:53 md.openapi.360.cn udp
CN 221.130.199.88:7 tcp
US 104.192.110.216:80 md.openapi.360.cn tcp
CN 125.88.193.234:80 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:80 tcp
CN 180.163.251.230:80 s.360.cn tcp

Files

/data/data/com.qihoo.appstore/files/sllak/opt/4262/finalcore.jar

MD5 cea342c26e9e97e4c97351dc9ece64e8
SHA1 ba100462cbaaeca3a91e1183f9aac2a3d462031c
SHA256 1d84e9c67f7d940d907f35c7e5fd658382698dafd71aa68368298de852512a39
SHA512 5c36c3f01440ab07f98aa4ebf6b438622fa8ea592fedca36c9de0000be6096e46f59b992ea2c80c41933524a8788bd3fb24e5dd8014d95a94bed407a989eba0f

/data/data/com.qihoo.appstore/databases/filelist.db-journal

MD5 095c2424e35e36465ab4ad9893e8be45
SHA1 39fd5237eb71c258deed8c9d84aea43bb75efb24
SHA256 bda2a4141220a95acc76f9efda041df8b29ff64435e607a92691ca56f40c3cf3
SHA512 d68869e6654bd7150a9fcb5fec1247cf4ada4847e25427288ebb55cc5e13e852eefe5e23e905d9f6c91895105626ec63316d06ec4d9e75861235ac9fa0c03eeb

/data/data/com.qihoo.appstore/databases/filelist.db

MD5 198ffc98ebc6ddd0f546688ef94623be
SHA1 20ed5f841fbb99fc6db81b8971369dac3084ca0a
SHA256 9fe3dfa8339e98aaf19ca82a96178ec2aaec3007f2d9b8c9718b6b8c549352f4
SHA512 82847afe31672c81b9375ac2e180e547f42cfba1ca3251f81fdc4c472bfdbe9b6ea692bbc5b598038cca76bf193fd4afbddb7034829910f2d6bf8ca01e331ac5

/data/data/com.qihoo.appstore/databases/filelist.db-shm

MD5 bb7df04e1b0a2570657527a7e108ae23
SHA1 5188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256 c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

/data/data/com.qihoo.appstore/files/sllak/opt/4262/finalcore.jar.tmp

MD5 d9ac6c16a3f6f73ccd5dbcf892ad53d0
SHA1 cdfd073fe28676f5d33830fbeec11388fdb7b6c0
SHA256 08fd311fe10d63723f28e7a15d61dac778840a137c90cb54d7e8efdff5d388e5
SHA512 f08e6ed1a0e8653115634a2874e6abdb908a8f4210e3aa37557a201be41141822f56f1816937ccf59bd53c5f3dfe237cdb72e640fb023a5c0f48221ce607f3c1

/data/data/com.qihoo.appstore/databases/filelist.db-wal

MD5 5265289a445278e320b42037ba633b3d
SHA1 e69d5e51ae2ae5aa816add3b2ec848c63265d539
SHA256 e706e2a50a3752f2a57309e194243be8a37fd900040326ec447d146407be5348
SHA512 bce11947cc48905afc1c66c8aade62a120a395bd9e1f1521448da56db4bd242b1f921e8722daeed9db0da0e3d3b2dd7acf2ebd524d2c0f55a42dcac482a581ae

/data/user/0/com.qihoo.appstore/files/sllak/opt/4262/finalcore.jar

MD5 b667ca71e42bbeb899566c8834ed085e
SHA1 053a3f889e326efdfa0d3ae7e5b2655f0b7376d2
SHA256 536678202267f95d80480f15065e784d7ec609922a0963d935e9c5a4b0f62bef
SHA512 52255d3d7066d01bd47a9da788f86c707af14e7666a918737fa5ffb4bb003e97b28dd84a7cead3439ee39e10b568c97e80174a80bf776c7dd58335b06656f8f2

/data/data/com.qihoo.appstore/databases/download5.db-journal

MD5 6a52dbf21a2ccc98958c6e79c4a2dcef
SHA1 941088b321a72ecb63c47b81d610f3a9afaa52b7
SHA256 9b6658894f56732a85b108287088222e07aae5056d17646f44258aa252aa8156
SHA512 ea4cd70c186c74ee667a7c18da81a3aa5e1a5a82ef55394eebd877e8c0e198e08b4aa9b6154fa6831a32fb6b55a6fdc48b52ae3a2bba40a1959cee5809920d4a

/data/data/com.qihoo.appstore/databases/download5.db

MD5 62a1374274c013b82de36d2bab5aa142
SHA1 1dbcdf6348a087d10205bcce79982ffa897ef9bf
SHA256 cd33b72b4b59f5fbf7d993e019bfd0d690330dd48380aaebd113d1eebf8b178b
SHA512 54fc63625164368fbea2ed10c206a134c94c9a27efcaa324576362bb8baeaef6dd50fa84dfafb2605cc3554fdf7f65040eb4a107fa9a25f0ab03fa2568ccae9e

/data/data/com.qihoo.appstore/databases/download5.db-shm

MD5 e6c5b607ff5597a13bf657cf7ce4e324
SHA1 4b67d524762478c3a07b4a6edf82bcfac204546f
SHA256 90266c3e350dcf3afb304a4bdee2a0b8b1566c6648491c3063b9dd2e2e60048d
SHA512 0af51b04581a53be763381a8de45465a151711c3bb7500245c9117ab056dd17d30e6a8189cc11669c26d8f187f039ec4a8cbc1a8137ade85fabdd923a971e6ca

/data/data/com.qihoo.appstore/databases/download5.db-wal

MD5 b8e83980beb9c64676a0db860d13580b
SHA1 a36718954a4c2dc2da08fd6823848b3657e7c5f7
SHA256 9660de3b0833a2d74d422f3fda0844058e322831a98ba3b877e7f5c7c91520ea
SHA512 0e95a78c7ca7f6b281f7935ffd3cad9f0889ea4ba55e782a23526a1067ce1898e679b8f2a9b593c7d5eb3d75ccffb3729c995d481ae1f9b1fb99cdc545e8c6ce

/data/data/com.qihoo.appstore/databases/new_downloads.db-journal

MD5 519c648cc3d9f9d8f54fc613b5e02738
SHA1 5e192ecfc5b07ddfc0ebc64806ff6e45b7333dfa
SHA256 32cc0d38518191bc0f175a0eac04f592781b1752858a6aa76dd36272e390980b
SHA512 fa5943ef08528e5999fa069ee58243b9526cbf610bb799e9d0cc081b17e1d2cd1ddea88ead87b7f4c578701e2d55d76188393c1cf7f0f7ffb3a37ac80dda1b26

/data/data/com.qihoo.appstore/databases/new_downloads.db

MD5 3fe30614d7e0d11db870b4624f6c50e0
SHA1 053ff0fc621ab40f2afeddb3e7b4a73ee41ec533
SHA256 67c532f0324228dd33b445cd399c1426e3a0e0cdc7b9358c66b402c5d40a838d
SHA512 c7c09e97a408e88aacaf8099ad4d1fa604d58113393500a384eb3c2eb7c3c105af41314934b86eca2f088045cbab5a20d768bbb295448dc1ae6cb6c3f59821ae

/storage/emulated/0/.sfp/.sfp

MD5 4b9ed02fe50f9ff458f659b099c562a6
SHA1 33d22fdac1d51ba145981528df6582e3e3ef5809
SHA256 df9151d713d02af019b80bdf38ceeda964eda6204f9ede199ca8c61026df4816
SHA512 1cac5f33df6a35a26155d0fce8a6355d99f764817a9ae389a3dd09e4176057496a54f6ec60c07a86f18c7dab7a5b0767a5af8fcd8e50e5eca8b74a704b710eb5

/data/data/com.qihoo.appstore/databases/new_downloads.db-wal

MD5 f81e32962203e5cae6c6b2095d1c53ff
SHA1 c20e5fd76a83458de4b242c314b5121dc4bb16bc
SHA256 250b3c548492ff8903bdb14a4a3498efbb5b6aaba948f338274b56f547e00dce
SHA512 9ec05161dc6dc63a2d7123902826c2c344cfea99a7493922bc21618e1a58dec98f5ae0cdcd08a319ca3dd09ba2d3a026b75d641eb0e9abf141ac0ca27e97c53f

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db-journal

MD5 1e41cfcd4030f877d7f9a0bb2988f9ce
SHA1 b82c4b66ce1dd9fa51e6a84bd2b05b3e7e5aa15a
SHA256 14be97d95854f8656117f62fbae941a6f8893407053752fee77b18f00c1e313b
SHA512 82685982ef8f59f96d769510dfc11796e13dcdb1cf02776a602a61d3e35012774d71cb42d82aea580df64c12c5f34ee3067c0fbbf31a02a8d4763ec640c004bd

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db-wal

MD5 d434baa1f60294afe36a8b341288a584
SHA1 48a1303b230b9785f055af18871fed5f18de34db
SHA256 ab4e92e8f2843c6c580df72ed839637f9e016594809b62412adf29a1f6b93cde
SHA512 1bf950fbb94bad6572a9bab7b472a668abe3806e41af15e859eb2b76f0514e8682b73bbf48c70a43b24220ad0fd0c65d7652f6c340e0b6a5cb8194dbfb4d5cc9

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db-wal

MD5 3a58f60568b5a8da99ff3b58a0f8d53a
SHA1 3c8c96d3cb1952144b878cb883d1c8bef7452328
SHA256 779f7324b064f3fb420c15217dfc844da00af81444b6578e55d594a9e33a4c87
SHA512 3816464d328eb788eb2e09bf3f528b75df7464d51b9ab718feed27a457071e1b34e13f80a72efb04c7734842e533fa502baca594f08ac5e0113e0ad44889d1fb

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db

MD5 60e4cf217e77c56efd3707b603797c5b
SHA1 816247b4883d3adb30c4db39fda16d2288e27de0
SHA256 8e2b8343f703045fb8596dee1888f65fc66b64d10304a4a49fd4ad1f63bd67ea
SHA512 22a8cd2974663e8caa220177e7bc64aaf35735dc8abc3870a7e47ea86b02d8b06b041000e5505039b3116290aee67e9645ad2d9c26218749f5b5b2e332712af2

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db-wal

MD5 52e3fa8e3827e22bb00ec135bf90aa8b
SHA1 20a1700d67b605dcd9a83f97ca8b18c72845f85c
SHA256 cdf47cb12ce5f9f0b1c77d2dd7805129e09fd8898e1b5f32bfc614441b3f608e
SHA512 87b2175daf148a928a8af553cd7c9f32c9f1ca2e18a6b29d05fccc3a2ec23aee8f19eaee69d5367edd270b17fe66d1fd395a39cd5fbe482598c465371e229221

/data/data/com.qihoo.appstore/databases/_ire-journal

MD5 7d9d15101a52c0b65cc4fd7f20cfd37b
SHA1 78598a562ae617ebab0a7ccb02c7a6b90a84d947
SHA256 e1f845fb8da896a31237ea9976b335e66ca82ef6d1de0f38d96eadcfd39504c8
SHA512 291dcb936e3f1085181976e9fcd54af8fb297348cb5f0b795aa9644584ad3aefded783f3b4017fdb109b95880e360479db24a9d50a6430fb268d2d83089070d8

/data/data/com.qihoo.appstore/databases/_ire

MD5 f2b4b0190b9f384ca885f0c8c9b14700
SHA1 934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA256 0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512 ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

/data/data/com.qihoo.appstore/databases/_ire-wal

MD5 10e7172ed57a4d0055145b3103accf3f
SHA1 7b5370003c7fb9a91cf39bfba98b2b9fe0ae74f9
SHA256 f181055c1c9cb7d688eedf7b5d032a06fd931dbbc4540ccac2ba99da4bdfe972
SHA512 3e3906e1c29a63d80def5f6d2ca922af79545b5f83a7013416a5e74afa1e3705e2053c969d5c41f91b5b5d6dd0efcc1d2279802c05ed75121b41e3a5e27c57fd

/data/data/com.qihoo.appstore/databases/update_history.db-journal

MD5 d402f0fb9746d1c0f1bfdf4f4b0efe60
SHA1 63096180135fb1f52da71f3fbacfe9770ccb33da
SHA256 6db992af2c9cf9f516ee263f1dbf0b2b4f446a97582cfc817e61663bd02a6700
SHA512 a2de1b27e18412d27634d9c9ab8791fcf585b080aa7b5b193ad687fc20e2ecfc0bbe92fab4f0794b6e513e078f1904da81e9cb21a0f1b3422641a45c2b3505cd

/data/data/com.qihoo.appstore/databases/update_history.db

MD5 e0ddc29dccfd6312689ea105cf0434a8
SHA1 59191210f5a80bc047f8155ea92544f4095c38c5
SHA256 3079b5c02af6b7ddced940086bf7095b1205bf0f396b87da0d5c5f6d8b5b6143
SHA512 d5ec8a2bd21928c07ada4ab4df8e72b6905872533d01afe4eb243ef06674e630a9834a03dc5fc2f8d487c3cee8aa3b3117e73379ae64e6f4dcf3f8dd0145fdb5

/data/data/com.qihoo.appstore/databases/update_history.db-wal

MD5 894d516412eed4de293d7cfdcde42db5
SHA1 bf8fb621337065980fe0a687ba3a62ee6c5ae670
SHA256 80134a0ab32acca70dec55701bebdbba21404078f7d66c635b6940d391b9649a
SHA512 8f335d6a66cdc7e4fabfdb5eadb491ceae3475dd955ef460301fa723d25639af86e1396a1561e862ea96ba478f98e3b9ed605f268426b97e912195a53a4d140c

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 36cfc2062edd30e730a4469ce47d380d
SHA1 c86c19c2cac20d96f037f540296490b8e84006f7
SHA256 89c42f158487ed594f2158ca49ecdd1364c284d14b3fd37a67b4e1ba85da9de6
SHA512 c50991acfa91bfc8cc1f1de5924b35bd6a0d29424cc40af4f270fa4c15e6a8b2f1a7a02b71d7f496e77ad8757c6934f2c8c64edb4a506932ea370a2dd814d19a

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 57a9c19aa29bede21729ee3f2871406c
SHA1 094e3f24ebf3d45b957ccff4f37eeb8a2ad9c3eb
SHA256 a0bb4308f0e67bb80f779d0b52d21915cbb5e80ba6aa55c4006eb330204bcf26
SHA512 5a7e7525efcecf99df556fb946afc2f5b55c3075390054c1cabaa4199ffeed2323b3c98dfde490e075a2eec77afa7d584ebac822539431429d70c05998904481

/data/data/com.qihoo.appstore/files/360/sdk/persistence/report/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 3ae62010d3c39ab11a5ff90c406c8de8
SHA1 4669762567f7577b552ff29d6b3b255dc6e7547f
SHA256 f3fdb47c985b466d23c64000a6788ff2bcf61eadd655171fbc594d6890cabcec
SHA512 37eb25b0134bb6b6b4237ca60c1a67414baeb8f303c0a603b778abe1f24b8a5de3e1efd54a53cdb69ce13e6df586679000d048e1e4c0415bc18e020f564f47d6

/data/data/com.qihoo.appstore/files/360/sdk/persistence/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 eccbc87e4b5ce2fe28308fd9f2a7baf3
SHA1 77de68daecd823babbb58edb1c8e14d7106e83bb
SHA256 4e07408562bedb8b60ce05c1decfe3ad16b72230967de01f640b7e4729b49fce
SHA512 3bafbf08882a2d10133093a1b8433f50563b93c14acd05b79028eb1d12799027241450980651994501423a66c276ae26c43b739bc65c4e16b10c3af6c202aebb

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 1a5862eeaa9b99b2c7208afee78c5251
SHA1 dc260135f0639de8cb698851233ef90960b27080
SHA256 c61d1495d5e71d2ba77184fde919fa41ec03cd001e07ce1b01f5bb761e961efb
SHA512 b9f2d4444193e29273d34472a7779b7817e843c00225fc8e516c08a2764362e8294210ccb14bbc3e0a8a351dfb4d89faf717436f2459940cfde1cd575db2b9a3

/data/data/com.qihoo.appstore/localApkInfo.json

MD5 bba30467c1bc7ef8566af0671b700263
SHA1 0d9979c25c437a676dbee21d3e05111f53213bff
SHA256 8ebb2291ee1265400a9798813f8e09eb53f9e28155b1407eb6d875cc68662528
SHA512 61b353b0965b098725a377cf34c489118f9ec8a9d688fa222225560814b99c399dd040fedf129581de7cdec8c961f0925fc432348f2d7f36533e22117f2697b6

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 cbd791a09018906dcffde801e5ef75bc
SHA1 b92f97020b910d498fec167d5954f7faf6e2a282
SHA256 934cad59cde868a6a1d8a93626faacd3c3a624db62cb45b37439c34f6495f46a
SHA512 7ca1e4ba595e85be0f2baed766051fd0dc6d8f68b1fda15f08fc6bbc5aa262da37e9a4d4c5f1c67c40f5b7e505befd14a554dec3bc3575e0bff3aeb59c2c66f1

/data/data/com.qihoo.appstore/files/360/sdk/persistence/backup/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 db2e1fcbd7c2e2db40f38cbc1c51cd17
SHA1 cdb6f2622867ba3b06afb3c6c68fc1813a47c63d
SHA256 fed8b3e4acaf2cef76a82e655dfcb15900d63fc15736bca7734d7cb0f149cac4
SHA512 d05a35c018a8ad07732336c577a791cde8e082aba76c9f18ced44d016feeb66effea5bf369ca21c59bf442846f51a62bf5a63a3b3dc026837b01e2c2b7a4f5dc

/data/data/com.qihoo.appstore/databases/account.db-journal

MD5 a51a94647f3c3fe27cdcaba89fd6dd24
SHA1 9126eaec3a5764f25c37c746c30eb6e9e05b4463
SHA256 d21e9643e44bbbe05735d6d7d5f4cfeba6c5cac5d2e9a823ff6fe25d14e27285
SHA512 55040d6bcdd7ac42c9a5c3fc3b2f9bfe509de1f2e7b3f4733f4b25d80de6634b976067194e79a25562ccef74d71d4e89c0376ab522a4f8a3fdd88e98ed2d08d8

/data/data/com.qihoo.appstore/databases/account.db

MD5 924e8d876830616bfc401ee5a5e64225
SHA1 1caaa4b15e0e9bdb7bb540c37f5518ceadf80214
SHA256 6a912b040955c84b13cd3b7224673d8cf96746689840d2b3bbe6d5dbdb8c63b9
SHA512 974f9e4d4bd724308a2a066bb8ccdd8355c69c327dc034f8a742d0cdb012e5f4d8544aae43ad8a2ede8e3d41c942262de3dd1c13399677447882fb394b168c1a

/data/data/com.qihoo.appstore/databases/account.db-wal

MD5 ebfcb2840cf5eb0e79220938b7d673bc
SHA1 5caf0d4e64814e1f67cdf93f3adb1d51585c0ed2
SHA256 564a1e30c86e6abd468e2b851f9f2ef2b08ffce135e572b6e23875d6536befa8
SHA512 dbc00026c02a7324b27cfd6cb2bc5108bb6b2075fcf2ece5bd1ee9c4c841a7efe3550a20c1b66627408cad5e90b2e78c781688dfcceb4497771986872e7597d0

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 fbff1422339edc2555314a18f505d83b
SHA1 f328ca6018c1ac322aa9a0a55a32a48c08b80bb8
SHA256 56d1497eb5d97e979a9369a55c94384052864178e60e797ef84e3a337056a25e
SHA512 7c4655fd83e3112d60f5babc6e3e6a76af9b2da62b2ff9a35fc94993a285c2b0df9815af8d704ae3de638e0636586efedefb5c3b4ced22c8f07c6071de7d71fa

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db-journal

MD5 ee7dc8b74db4550146d887b6173e40d0
SHA1 0b6e4b2c345fcfb7af4f165ecc97bf5c18026164
SHA256 9425af4a0155e701d15cbf3f9813681fbb4e53291d48430a046a24b16b5d6899
SHA512 6a04938909770f59966c97993fd7cf581fb4d19706d06bda8b6873201323aa1f7dbff4bb796af15638669445f346ad1cadc471f12994dd4a4cae877f5b11efcf

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db

MD5 2304dd698be3705c85ca097304ce7de2
SHA1 325882522ae26bc42927f6e46c489b93799aaab1
SHA256 740e5bd0953670bcc14c80bc032c828420f9460dd3ae0f165774c5ec71584e3a
SHA512 eaab8bda28fd30544fb9d413695cbfe42d3f2f184a77e6c73ec5fbad3621127a01b27f1a5675439a5314d2640ebbdf118f58bc90ae864a2923055ef9f10a31bf

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db-wal

MD5 7e3977da5d9744082d652d6884407ca6
SHA1 ca4c9a35039362559a14a1ed9434b42996419e25
SHA256 1dc40b0da5e25c563cdaf37accb0a20b3995b24e461c164111f5a6c1c8b91a76
SHA512 211eb1d4e79289f0c62031a9aa63bf10fc2cea620044dca5317bd8ab6530475cf3314cd7e45ac1a576af48684674412ff3fdfda35c038162b237bdc9503ba9e8

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db-wal

MD5 945ea4184253c98ae2d4d8b7241d6e0f
SHA1 39a66484a2c85192a5af5235df3c7e5752fb8b2b
SHA256 83e969ee7f0eeac80d88b6745c7cb0157172fee2fcef2afb6c9c2e823ddf2f30
SHA512 3245e9434652dc4111379a609b17ad82b46d2990e3b063bbcf904ac74d3a7403db0d6fb4ab4a779755bd90296e2b51ef5ddb090743b4c79f9988f6361db82737

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db

MD5 04183d28d08d24a5b03704e8a44f1e0e
SHA1 3710a7d4f4a50e9a8a14d1cd312291d99fadf7ff
SHA256 cbcd94a175e1689d50dc1d42f20d9238dc71ff218539f8eab55da964e5190695
SHA512 817f91475b63f1e8feb1a11cf55f0409b6728bfe8db1b6fc6db63a7dbb091a144c607b2f339993d79b0a7ab338d02c9612af63296624a1ba1f6de03b96fc245d

/data/data/com.qihoo.appstore/files/sllak/opt/4262/oat/finalcore.jar.cur.prof

MD5 bba60a2e85bf08c8409da051664f75bc
SHA1 99b474734e97975a5689051f43a12eebbd13bd55
SHA256 e745b9dd07b3c04bd5c10a75d668e29eb3045729b58ce269ae7606b2fa09eb85
SHA512 1cc63edd2d3f062014950847aa51d75b642ca2170e614957550db329ca09b1166eaf27b7a19445b7f5fb33bd9e31c1dc45804e88aae2e3e9e9e52ce46b5749c3

/data/data/com.qihoo.appstore/files/sllak/logcache/log1730602052238

MD5 dff46253cb7ce1c1564cc7a2eaec864f
SHA1 4c4b87134320769834cef06488a9ca296ac448f3
SHA256 0a087b1d287bc05bf282f5dc1766c8c82b495d280e6bb31bbaf37bcea57c8541
SHA512 a7804f18f5ba5e751190541df4acbd0896105021d1e2551086d2a260dd75302b0b1af40fb2deccf3736a684a36a6b48e70c6f0dc9a69cd6fe40f2eee4b490346

/data/data/com.qihoo.appstore/files/sllak/logcache/log1730602052170

MD5 fb864f31604b1da392657100391e65c6
SHA1 afd76b0aacf3dd0350a6de7efe32d15e519b747e
SHA256 bb082397d0267d16fa079217016b7858880dd8d10d776da5f6854dd4d1db72de
SHA512 037b55e68bab86992ee0a9cf2d001487e2b123771c62475b6bf7b27449c5307d4ebb80e3ed561d9a6fc93217dbec80d8be68b14447b2cf14c3fddb6743d8f7de

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 cb47b544a3e27e4b080a0ee42dd27927
SHA1 729aa5f46a195d0a647733f01fb3a185e4143f85
SHA256 f14ac70d6733e207c463c29190117b63915b13bb1ef515411fcf0790dcbd6c87
SHA512 24158464826c018ac7bce5a2d4f1dfb3aa3e31a8a845524a50f2aa1cc0bb1d768d5a85994cee3c80ac81e420ba7fa002379d9d317143614719f2b326fa5cff5c

Analysis: behavioral2

Detonation Overview

Submitted

2024-11-03 02:47

Reported

2024-11-03 02:49

Platform

android-x64-20240624-en

Max time kernel

149s

Max time network

160s

Command Line

com.qihoo.appstore

Signatures

Checks if the Android device is rooted.

evasion
Description Indicator Process Target
N/A /sbin/su N/A N/A
N/A /sbin/su N/A N/A

Checks known Qemu files.

evasion
Description Indicator Process Target
N/A /system/lib/libc_malloc_debug_qemu.so N/A N/A
N/A /sys/qemu_trace N/A N/A
N/A /system/bin/qemu-props N/A N/A
N/A /system/lib/libc_malloc_debug_qemu.so N/A N/A
N/A /sys/qemu_trace N/A N/A
N/A /system/bin/qemu-props N/A N/A

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /data/user/0/com.qihoo.appstore/files/sllak/opt/4963/finalcore.jar N/A N/A

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

banker discovery

Queries account information for other applications stored on the device

collection
Description Indicator Process Target
Framework service call android.accounts.IAccountManager.getAccountsAsUser N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Queries information about the current nearby Wi-Fi networks

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getScanResults N/A N/A

Requests cell location

collection discovery evasion
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getCellLocation N/A N/A
Framework service call com.android.internal.telephony.ITelephony.getAllCellInfo N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Makes use of the framework's foreground persistence service

evasion persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.setServiceForeground N/A N/A

Queries information about active data network

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Queries information about the current Wi-Fi connection

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A

Queries the unique device ID (IMEI, MEID, IMSI)

discovery

Reads information about phone network operator.

discovery

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A
Framework service call android.app.IActivityManager.registerReceiver N/A N/A
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Schedules tasks to execute at a specified time

execution persistence
Description Indicator Process Target
Framework service call android.app.job.IJobScheduler.schedule N/A N/A

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Checks CPU information

Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Processes

com.qihoo.appstore

com.qihoo.daemon

com.qihoo.appstore:critical

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.200.8:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 show-m.mediav.com udp
US 1.1.1.1:53 sdk.look.360.cn udp
CN 180.163.247.134:443 show-m.mediav.com tcp
US 1.1.1.1:53 openbox.mobilem.360.cn udp
CN 101.198.192.67:80 sdk.look.360.cn tcp
CN 101.198.192.67:80 sdk.look.360.cn tcp
CN 180.163.251.81:80 openbox.mobilem.360.cn tcp
CN 180.163.251.81:80 openbox.mobilem.360.cn tcp
US 1.1.1.1:53 m.irs01.com udp
US 1.1.1.1:53 sdk.mediav.com udp
US 1.1.1.1:53 p.s.360.cn udp
US 1.1.1.1:53 www.google.com udp
GB 216.58.212.196:80 www.google.com tcp
CN 180.163.247.134:443 sdk.mediav.com tcp
CN 180.163.247.134:443 sdk.mediav.com tcp
CN 180.163.251.224:80 p.s.360.cn tcp
US 1.1.1.1:53 update.api.sj.360.cn udp
CN 180.163.251.81:80 update.api.sj.360.cn tcp
CN 180.163.251.81:80 update.api.sj.360.cn tcp
US 1.1.1.1:53 s.360.cn udp
GB 142.250.200.34:443 tcp
GB 216.58.204.78:443 tcp
CN 171.13.14.66:80 s.360.cn tcp
US 1.1.1.1:53 api.kuaidi.360.cn udp
CN 101.198.1.205:80 api.kuaidi.360.cn tcp
US 1.1.1.1:53 sdk.s.360.cn udp
US 104.192.108.22:80 sdk.s.360.cn tcp
CN 180.163.251.81:80 update.api.sj.360.cn tcp
CN 180.163.251.224:80 p.s.360.cn tcp
CN 180.163.251.81:80 update.api.sj.360.cn tcp
CN 180.163.249.138:80 p.s.360.cn tcp
CN 221.130.199.88:80 tcp
CN 125.88.193.234:80 tcp
CN 180.163.251.224:80 p.s.360.cn tcp
US 1.1.1.1:53 recommend.api.sj.360.cn udp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
GB 216.58.212.196:80 www.google.com tcp
CN 125.88.193.234:80 tcp
CN 221.130.199.88:80 tcp
CN 180.163.247.134:443 sdk.mediav.com tcp
CN 180.163.247.134:443 sdk.mediav.com tcp
CN 106.63.24.127:80 p.s.360.cn tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.179.238:443 tcp
GB 172.217.16.238:443 android.apis.google.com tcp
US 1.1.1.1:53 www.youtube.com udp
GB 216.58.204.78:443 www.youtube.com udp
GB 216.58.204.78:443 www.youtube.com tcp
GB 172.217.16.238:443 www.youtube.com tcp
CN 180.163.249.138:80 p.s.360.cn tcp
GB 216.58.212.196:443 www.google.com tcp
US 1.1.1.1:53 track.mediav.com udp
CN 180.163.247.134:443 track.mediav.com tcp
US 216.239.34.223:443 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 218.30.118.222:80 tcp
CN 125.88.193.234:80 tcp
CN 171.8.167.69:80 p.s.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 221.130.199.88:80 tcp
CN 101.198.1.205:80 api.kuaidi.360.cn tcp
CN 106.63.24.127:80 p.s.360.cn tcp
CN 221.130.199.88:7 tcp
GB 142.250.179.228:443 tcp
GB 142.250.179.228:443 tcp
CN 221.130.199.88:7 tcp
CN 180.163.247.134:443 track.mediav.com tcp
CN 180.163.247.134:443 track.mediav.com tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 171.8.167.69:80 p.s.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 218.30.118.222:80 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 221.130.199.88:7 tcp
US 1.1.1.1:53 profile.sj.360.cn udp
CN 101.198.1.205:80 profile.sj.360.cn tcp
CN 221.130.199.88:7 tcp
CN 218.30.118.222:80 tcp
US 1.1.1.1:53 track.mediav.com udp
CN 180.163.247.134:443 track.mediav.com tcp
CN 221.130.199.88:7 tcp
CN 180.163.249.138:80 p.s.360.cn tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:80 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 125.88.193.234:80 tcp
CN 101.198.1.205:80 profile.sj.360.cn tcp
CN 123.125.82.206:80 tcp
CN 101.198.1.205:80 profile.sj.360.cn tcp
CN 180.163.247.134:443 track.mediav.com tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 218.30.118.222:80 tcp
CN 221.130.199.88:80 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 221.130.199.88:7 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:80 tcp
CN 180.163.251.81:80 recommend.api.sj.360.cn tcp
CN 125.88.193.234:80 tcp
CN 125.88.193.234:80 tcp
CN 101.198.1.205:80 profile.sj.360.cn tcp
CN 106.63.24.127:80 p.s.360.cn tcp
CN 221.130.199.88:7 tcp
US 1.1.1.1:53 md.openapi.360.cn udp
US 104.192.110.235:80 md.openapi.360.cn tcp
CN 221.130.199.88:7 tcp
CN 125.88.193.234:80 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:80 tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 171.8.167.89:80 s.360.cn tcp
CN 221.130.199.88:7 tcp
CN 221.130.199.88:7 tcp
CN 171.8.167.69:80 p.s.360.cn tcp
CN 221.130.199.88:7 tcp

Files

/data/data/com.qihoo.appstore/files/sllak/opt/4963/finalcore.jar

MD5 820d8adcc1bf79f29c6753a5cde46c15
SHA1 cbaf2c78556918bcb2c5ae5cbd1758716d448c54
SHA256 2b21be5585fbee181838fc5bf1e471d2d9975f567d00563c1a7aabd1e20a99fe
SHA512 b056abdcbbe036dbc6dd46a201697c0fbd908d0c0f2193f88f2dad88f3a8ed4f1d2887ad1bba45575b82db8b644b242f40ffde785cdd4d779c50fb2ad9fc9f03

/data/data/com.qihoo.appstore/databases/filelist.db-journal

MD5 c536a9900f2eb9ea4c5af53950b2c900
SHA1 d44f3e47f58e42dd9611740e73f5e16dfc1a0f12
SHA256 b0b4764d28f7bc634d05af944a34f56b0556271020a453116488eb56a6370f61
SHA512 1df4df8983864a95af4b24bc235b71af1178566d525ee3b7f753a30c29d3754b01ada4ed2c9ed9e3c61248755fb405ebb411fe66c8dfab3b51552fc77b83825f

/data/data/com.qihoo.appstore/databases/filelist.db

MD5 3e61d53e77a3fc40799a0bf801e59334
SHA1 4f939a457b8e5636fa0795918f0f18f1a1059a25
SHA256 804deae32c427a6fc3d6cbe2947a20501f5f88c9b05554f8cf56a65e027aaaf0
SHA512 7b77da7bc0434379171784e0036a4db38da2d86cf34dcac1f2ee8556e366fccb2193b439ba3cabb0a6ecc253fb648af62cac223c556b64c6211df3ef81f97e57

/data/data/com.qihoo.appstore/databases/filelist.db-journal

MD5 347b9a75c6c5c1fd4317295492a68206
SHA1 2b73b5f33eb5a2e9cff6eb1d71e346615be46738
SHA256 5017a89ff0cfc6bb46a81cb05a53767713df27c4ffd59833f10caa4c72da32cd
SHA512 732edee2ff08c41ae1ca7f806a2ec9200d5cf28c272ce24f2e94e177f67e0cb28856043cbe43d06c753fd55a24dcfb78e7dfb8811ea923fe4292e8fddcdba415

/data/user/0/com.qihoo.appstore/files/sllak/opt/4963/finalcore.jar

MD5 b667ca71e42bbeb899566c8834ed085e
SHA1 053a3f889e326efdfa0d3ae7e5b2655f0b7376d2
SHA256 536678202267f95d80480f15065e784d7ec609922a0963d935e9c5a4b0f62bef
SHA512 52255d3d7066d01bd47a9da788f86c707af14e7666a918737fa5ffb4bb003e97b28dd84a7cead3439ee39e10b568c97e80174a80bf776c7dd58335b06656f8f2

/data/data/com.qihoo.appstore/databases/filelist.db-journal

MD5 8cb60e40eb3cf1b4d7e6451107318634
SHA1 ab2764e14b66e9f673d47dfa66719b6d657e54fd
SHA256 6ed4a7e9b6b46b8a12daa0829351abc094677c422e328b01bb94d8e0c6bd8be8
SHA512 6d7b33d329f8d3f59a8c16caa73ef6b43d240cdea9d0f584ce062930512094eac0146c034725e7654f580014bcebb08c61a3196364eb7f45ceb0ff93b08a32ca

/storage/emulated/0/.sfp/.sfp

MD5 639ecf2eda10d664e9be893e0eb3d60e
SHA1 74c6109fa846059c240c2c3fd7f3182cec00af06
SHA256 6a0507e8568319c7405b9654958e1e8d11a232747dbfd2f08cc8e71ba65fc75f
SHA512 076bcc4293ad81f0635cd4f4896414f545d55d1264b6d664f91a133bd079815650ae3e9cf42983364819afdf0ae844e9941d58dd244f1223b9a25167a07c8c9f

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db-journal

MD5 73f0b2316c2fd455ac5c6da01ed3f1a8
SHA1 6e4bf6a0a61c826199105c02af51266a25ba8d2c
SHA256 43f48db6797fa150e12527bde6d846409ab0a3474069da600e79b9a041dda1f9
SHA512 a4754c49f6f4a5a4e0abf103bd299fdd1bc8701f4cfe8530693c087d4881c986ec7d44441f7a5a854747a26ad54d912db1962790f143e384ab6fdc253d50ba0d

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db

MD5 ea628e04765adaf4238a5dcdff4bbd51
SHA1 a801947619ea8c368efe9c006a324dc6339ac60b
SHA256 885e337c2156e4dbf2176a9677ade50418740532d222ccae5ad4aa371b54c6a4
SHA512 c0287b0e7b690a7231a37d1745c49f3d861b22aa65dd769ba6a8b5ab9da55443f749957781ee05a405019c39e1be45d37a971b821bffd62a1d5620bc39119abe

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db-journal

MD5 7f54ea81ad105eb42d53601921a432e4
SHA1 6721629802cf7ead5916e07dae40a658b21a0360
SHA256 a30a5e5c2df2c554d25b21b97ceab9aa18ac6df62ce0c1310c9e4d7517b139ed
SHA512 2fd92d3f320fbc65d73652282983312e74e1b5e58aaf5b4f65cadded85d21caca2588ad028f35ef445531d9633fd3350f1397b52c1960b53824d13f401d3ce7b

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db-journal

MD5 f055f57a44de46e14a5c6248222b47d2
SHA1 3d3caea1d92b1883813d8bb27c11c70785adfb90
SHA256 49eb6a9f6f886a6f1d14cb67b1a46875afc354c3e82387f10bfaeff1c98f963f
SHA512 debb467179a51b7958bf301df17668f25d66456cd94e64e35d64f4072d2141f77647cc6878d5d8c1d29328e45e77633b6df1773d644c0812bcc430ee28f7825a

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db

MD5 932058c83d1f903c515b112590a35051
SHA1 ee90cb29f0554168077f60ae66d458a22218824a
SHA256 ec21c5db01d91ef738a7d990bcd11337bae4b475d9127eb5675657c68e881676
SHA512 940b6557f623b18787bd549a84f5483da73a46429d5949f74bc7f13d0dc74dc620a40ae5489508f85463c256de5f71751c72e3852c6a722a7ade4b98ee2b072a

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db-journal

MD5 643ad5369a250e3fb10776f116fcea12
SHA1 3b09548bd0bd5b0dd7883fc31af2eb5bd0bead14
SHA256 eee8160bd64e6405402dbfeb876ca0a23f71fe5e9a0503aade273fd6a38ea9eb
SHA512 21068b4118f03b41dcedb7c49d464f9250e5222ed0adaf2fdd98bbb2c7efc740469a2858b211b4e541265cce93dcc97cdb0edad1762f9704ad2ae149dc8f4462

/data/data/com.qihoo.appstore/databases/download5.db-journal

MD5 670bca957bff3aa5136aae175affa6b0
SHA1 58159b6aa4664dc5c6e7705d610bf05fccf669d2
SHA256 1e6791d900c95692cb801a09580955fc94af2237b23be8218e46a0dc6ace6fe4
SHA512 bf060d3d8ddf54163165904bb5b0e3c058fcf5ed5cb16acd542133dc4a7ad751d2e692a5ecc8428a52abdb816aae65ed53514d3b33dce05c39baa9cd5c20ac48

/data/data/com.qihoo.appstore/databases/download5.db

MD5 fc8157c20aff4c65d310c8b1495a6c09
SHA1 527adb90ff40b74b6b0268a5018d8af7faf53c8e
SHA256 d3ac468ba80900c4780701925d0a9b119be2317ba08a41b5c7084965195d56ca
SHA512 d962ea97226a5f9937a55dc46fb1f3ba4fb0782dc9a34ac362000d7e2abb4d9c2cbc7bde310708a4462bb5e8af7ee0d6a4b87c0410804a71d0848537ea6b9fd4

/data/data/com.qihoo.appstore/databases/download5.db-journal

MD5 2b443240d4b2730e54c4c2f563e169ca
SHA1 c5580ae6b0392f4b61269309eaa04c920f1aeecb
SHA256 f843418e97e6153ca877e76c67d416d90fa9976fbf3ba0095202f2ea335824ab
SHA512 1b1968965e434fadb267cc5dfcda0f3f80f57a6dfa59d75939b44c5d26d699cc27e4de512bd8cfca63f06503e8d11f8b1f3f2fede520bec96b56ae925047dd22

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db-journal

MD5 f6681604f6cc545fb1360a33b4ce6499
SHA1 13286ac8ed65c5eff1661184e0150d0568a03370
SHA256 9ec64e5ba936106d927cba0c44bb9a06ef7a600f79019c5b5c4bce91f81cc1e2
SHA512 e2d7b2bd4c936f07e623980040786ba85680f6a30f3b22f913cdf3b840adcb6cb61aa830c59eebeaca6679bd02798027b891e4f67a23ef6aca0ed7bdd5effaf2

/data/data/com.qihoo.appstore/databases/ignoreupdate_appinfo.db

MD5 0685bc716a586d0f6b849b97d0fc2d02
SHA1 fb3ae859d35e4e5c86af4a045c8f7126bbd4e73a
SHA256 c7f6ba4fe586c85516bbefb4e5702ce81e8b5b573f413fc5304f38f2dab69c3f
SHA512 04cf6da457e89dd0061334477ee24b39925fc4bcde182692732cbf9694a81ca89bfefec38ebc56e02555630ffe8f7f0e5033168294d8d6751c6aba914617dd00

/data/data/com.qihoo.appstore/databases/download5.db-journal

MD5 83402759c4be778f3f3cd4879146d659
SHA1 4ebd332dd776705c4dc6c2d3ea2206ff889a2590
SHA256 5a6f8f47c96c547c0e9663bc3d2f859402016cc27cfe6732611e2a81fb645d84
SHA512 ece032f7c3bc92d3296dc78ccf9998bc627abc5ba1accc78ebbbe2f2f919270e4bc1676a8fd940953d25f2f091de179a918fe27e4ae8b3370d525f2af0041446

/data/data/com.qihoo.appstore/databases/new_downloads.db-journal

MD5 2d7314446115b2aab2336cb1023ced3f
SHA1 afe6501a4b56f5542988cb894afcd2420f9dbe00
SHA256 8711c2b68d3bb5677fcda4e8d228ea07dd2a051064658cc58f5f28b605855481
SHA512 7e25521333ab8d9bf5e19851e9e2601c5d3ba080a590da9362828ec65996c79a50efa9be841675ec85c2d2b12505593fce066eba23b500556b535b8f45a96248

/data/data/com.qihoo.appstore/databases/new_downloads.db-journal

MD5 5c732e70e5ac6159fd025639c6f2ec1d
SHA1 3604704615437b376e03dfe932b4ca25045da609
SHA256 4104cc82e171a9a03441ff870bffd15440f4c4b8eecf8c757c193165a5285e0a
SHA512 045363e0ac346bdd641363eddddf2502943a4f3570a5b7f8a25506c65101f4b6f226baa48c3b346205ea3b46a78e9c0464d7dbe6c168a79bde31e514f3a4400c

/data/data/com.qihoo.appstore/databases/_ire-journal

MD5 fb232a61e1404e3fea526905987afa29
SHA1 1070c9107f675b1bac2960c3159bec1290d6cfa6
SHA256 35d6e891de4f041d27e1aada82dea9c257160186b3e2baea4f7531426fd25981
SHA512 266848fc826d24bfda2dec9497877c1923ed112cb799b58f8c2f384dafcd49076794afcdb751499ad513505a77bfff5fb903bd68fccb823421db58223029085a

/data/data/com.qihoo.appstore/databases/_ire

MD5 6da302a2e5fc0263420684f38a00e3fd
SHA1 9e1c35e91c3b84600dd8ebc10e072ccb91b5895a
SHA256 a9b2f6227429fd83edc4db9e62c5e3f8c45b55598f7b10c3132d6b339283c8d2
SHA512 6e91d3076e4f382a5e4119e6429b90bd4d604c858acb4914e8b67226f4ad0626e29726e09d12965f075ac6aebc49eb22faf0f5c6a286913aad9515887f91fa1b

/data/data/com.qihoo.appstore/databases/_ire-journal

MD5 30318222ab0098f22ad7d528f42be3e0
SHA1 1afa948e1329cc3e93d076ecc59afbdd75bc81bc
SHA256 8135e8e0d0ab50751f38faad8b0e87189d32758524de27299519bd20cd79da33
SHA512 3f656b5921ab3598605054d685f1f93722586cbc3345691778f81270ac193cb93a774e3d851455f22415f0a546a47ca6eef0f4797661e98ecf9764f8c55ba9f2

/data/data/com.qihoo.appstore/databases/_ire-journal

MD5 0866427a12d7a67610e342734e963dcc
SHA1 72d9049b71ca5f3b0add70722410fe3bff7e331e
SHA256 84204a97ef51e84cbc10b5c5e9491196b7ced8b08f8c585ddf9fabd84d764355
SHA512 f9d550f96375992389bd73658be57117c45203959824342883d65b55ea73fd5b04e80dc475a9d1f10880e3a2aabf4c09c1a3339388ad227b8d5698db7583f93d

/data/data/com.qihoo.appstore/databases/update_history.db-journal

MD5 eeffa90ac6adab5f792a560e7d4b1100
SHA1 6a99b82d9c1550c63409cc31190b54f810430297
SHA256 1c1b35dbd5c980a12d78aed5a1e72ff2595b4262f9a2b1a6472d62af70476579
SHA512 8c801a3c2aec7ce17e593f3e68df687957f93554e7309229f7e4ffbc61330b5c0c5556c6e1352dfbf8627edc34a0f9cbb6c48f8b33f53c16ee5f8b1f295efbb8

/data/data/com.qihoo.appstore/databases/update_history.db

MD5 63034ee19c8ac183f4be94f0e4350592
SHA1 8bb94ab357099476de70fa34031349c4f82c8f12
SHA256 fc8213a10a4907987570701d47828767ffd9517ac55111519fb6c909b015ec7f
SHA512 14f6fb8b3648f247bb1c675f5e10f0259845c7a6c559d960ad74759634c1bfc92e0f41cc4cbc973cec45395b2269c885f9dac07d926f490f505cf2a89bb93aaa

/data/data/com.qihoo.appstore/databases/update_history.db-journal

MD5 d7a7fb441d76f846678f8c514c961e3f
SHA1 389edb833041807ae3cb8b61f2a8a60e073bc364
SHA256 2f4d3ea224aad4fa740f85748dabf0ce385092273725bf9bf9113b30236a65b5
SHA512 2a2d55933ad1748072fc278fd820b55b1bd4aeb83670f922efa825ff06a5c72461d8f196f6dffcca61bbdbff26c572f3fe726f772e665bcef1b93560935d1760

/data/data/com.qihoo.appstore/databases/update_history.db-journal

MD5 ecc0f932ccb57961510dce83c1e3c2d4
SHA1 ad93db9784efaaa5a9de13988f59ba86770254cc
SHA256 aca91e151a7521c1268d8b29a733e8f0ae2fe71e66827d7fd57d43615ae78a38
SHA512 4a5b102654b3222b7a9a025f5eee4c78dcd1a031fbe19f87721437846e8caa75156e378be0e23b4ddc051e95ef832400c201392caae819c56e33971f6c093ce0

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 39c1603e1068ae83e2f64c1e2b257b66
SHA1 d9ea8de5ec265ff0bcdb42873683271f8c21666e
SHA256 2f060942bf64998b72d70595377f8b44ba25dd907b526f2789d485f7ca3c3c17
SHA512 976602a64ca83aeea5f582c55520925f6c2ffdd6f1309a35af9edddd9db3d3c6d7139bc3cb1eb7c34941b8e218535789dddf9bfb6434b600e35fc0c05dbbafe2

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 07a53fdc9c78354f2c3fb09937b668b9
SHA1 63959491cf5987384d81c6c18b2097caa09cfd3c
SHA256 b1738beb9a8b0106d58119ebb9a4f19e6f7cef2eec064814df5396ea917c5f2e
SHA512 034b381bcd3c5290d49616a078f88c381a9a77728a3e4b0fac25c6967ae811e751cbfabedb505996bdcf2d03824ccdc07679b448b052bd15214c17ab2fdca5bf

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 1c382da8edd7e765eb037a3b91ca24d3
SHA1 1f454ca12360aab9268ee688fbba1fefd93ae69a
SHA256 36a8a6d11423fe3336be22693e06c259a5a5294ba961bd849d5cb62598ed98b8
SHA512 3f94a286e2c448ba9da4e0a6623fe566b0a3e64d3d1e6784d1c56c6245ae4f4b06d5b7c5fe58f139503b0580f7faa13ebfae929d4026828edcc48ce21a8a2b19

/data/data/com.qihoo.appstore/files/360/sdk/persistence/report/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 03b8e8442ec3ef042034f58c3adb66fc
SHA1 8b29bc8af53d609e21fc0ecaaf90f9831446ff65
SHA256 1e500cfc74fceb44f6d9b43667746c286656e4559d5bf285970e39ac1aa6686d
SHA512 1285f196ca1db7450712efc9133110fb3c96dd8837c274b5a21e6a1889f934327290945e903758879c9287561227391736e3b61de49f732a3dc2181f9ef0fb81

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 1f48c054a3beffe2c296bdc21dadccbc
SHA1 213f3d06a83d5d23b327fe906f2aa35bb346b9b4
SHA256 9b55ccda5cf11fe27cac8dd3d3cc1ce8309fbf88c85101346ff2e32989377143
SHA512 c040931f1c3b4f5adf5ce54b322e2343c2cb105ed26eedc775b59a13355079a79cd1c8f439f07b6bc303945aef8178f0001fe95be7ea69477717ad2c81083242

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 d166e2236639ea75d3e42bad17c67902
SHA1 205addecb2a1bd290980d8920c6a8a645764dc0f
SHA256 739ccf2367a436354bd6ff884ff5903de05f5d02d722d43c3f18c2d2b07dc7b5
SHA512 97cda1f634f71358dba4fd65b766104364dfd7ad987dfd97ef699bbd9d8db050e98030cc2c039277b659ed1571fe462cbbeffc642f0404e163463217debc3cf0

/data/data/com.qihoo.appstore/databases/account.db-journal

MD5 5f54712f2501f1bc7fabccffaec8fb13
SHA1 0dc057cdd2b14dc0bc78829772d710dbf42824f8
SHA256 1f0f8e43e6f1816622299b0de7a5a2cab0c07242b1b62172e4c0db082eb8e189
SHA512 1955c54c4a3b06ea371222ae9a558dbe9fd93ff49ca30a9e2b417d939da026e367ffcd911c422522cf2591d080e359aea4ef954a3fe86f55c87cca226bf2249e

/data/data/com.qihoo.appstore/databases/account.db

MD5 f630f8cf9174c836248b6d30cbdd5779
SHA1 4db6d82e8e17de9fcdf0ead09e97123cda1ca86f
SHA256 ae606221ff789289e1c69cd9f79ee035d1c587a96d556ad8ac6ee91fe6741041
SHA512 c5045a96a9214932971165424348327e2396c204839749884ab3105c7d185693c6900acc3d52cdc1463633890cb123e21abd7e68d71907c043d37f4b52a7ec5a

/data/data/com.qihoo.appstore/databases/account.db-journal

MD5 7815f24b74fc0d0f6a056c3073ba8e0c
SHA1 04367d2394daa87d19c58dee1a1eb2df0a18cea1
SHA256 3fd61b3887a8ae133eb3af869427bf64b86994c28dadbeb6b0d896e35721ac49
SHA512 76a5dfeb8b90cab1af57681e825eb3c7c6a85dc63bf86f6f5ac1a2915c3dbf3031a5fa179ea6753efe9df9bccf9c55d43a8040691a14097f81bff488178b387e

/data/data/com.qihoo.appstore/databases/account.db-journal

MD5 addd0a033b67e9c5aa73e62aedf46493
SHA1 bb8dec61364232f4ed097da14a616aca83c668cf
SHA256 ddf9cf15b94f75a2f788c26be97e013dc91b5552c2e47e50f2e4cfff3f41e39e
SHA512 3122e90c05750d138783122ff47b9d51e10e4d611f4d3dcc403785223bf95be61a9c32054e2f973863ce535467e068313bc41d80b6f3d197377fed87fcf28ee7

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 09143daf03dcc7499de50d8cef4825f9
SHA1 76d7671d7c3b1b0521c06489c97e33416076f10f
SHA256 5a04bf399901891a7fe40f071895f67e93d89778ab1478081cd974051a41a391
SHA512 a01a8181611316b8ccdceb92774cc34e2cbe38eb3bab445bf2e7ed3158d4b21b3e6779b6a1d8abae4bcb3e71228be7e513099c071a1e1a6ecb12068eabbdcad8

/data/data/com.qihoo.appstore/localApkInfo.json

MD5 752842671104a5861415d2eb4a60718e
SHA1 ad007edb3f6d598ed97be0ebb1461c3f5dc474ae
SHA256 3c96e430b9c526ac40251bb23eaa16c14324bcf55e950a48d845dab71b81e790
SHA512 d63f081ab711dbea9460bfcd368a0e2a7fa454ada1d394387d7acfbd3f54bd81e195c95e23e164deb21ab0bce2cf2a14dfe3a694e7480294e01d7ca1344589fe

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db-journal

MD5 ab819d27b267a34701b46e09ac1a91f2
SHA1 f00165314b5480f7863d547ff93ea115af89cbf6
SHA256 bd32a071432fbc3d859b9b74f722f499b2a084cdbf3b3cafd08819cc74bc1658
SHA512 2a40b28f20784369b27fb713c5b8ba3c4ce89d0dc558f783730034efef18f0057326e7b933977e7afd17c29d8b10f573a75037fa9a313b892fb7e849daad5de3

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db

MD5 073bf578f358397eb0890a40280081ac
SHA1 3ef956e97836079ef32105e6f84b401e7dd4d10c
SHA256 c48a18c175de831a21353fb0bdf0d3e43b83ba7655982152df5cf0100b2bf37b
SHA512 22c8bca8429348bf9c0614ba55e6e8dc865cae42306bda2d05b588d7ab34ceda0071695654efe0a429cdf5a6ee812db8d18ba794a80be2512c5305bcdb314134

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db-journal

MD5 7b150f762bfc24123c40f202bdb71384
SHA1 1d8cf10b1e13268248b49dab0232309289d08d49
SHA256 ca871ed01bffab46f23c466aebc0bf4bfd650fcac99acd20a78a9cc9b6f3961b
SHA512 77ac6322244a870e035e360f11de7d2224c998e15a30f54b1d54c77dcb51159df795c925149ac4a885b52d146cd395fe3e34e7506a76c719d5a785ea70fa94b3

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db-journal

MD5 0e1ab928233902e8bc173185db7b0509
SHA1 9243b4c08e22fe0527d8b1a84fc935396ce7f83c
SHA256 c1187e3d6058d8102a313eb2bbc40f8215e0c4fa0b8ed3de6b015761a36eb068
SHA512 5af85793b875e6fe5bfc06cd6d42d591c6d88a7974a4007fc131a9d2840b2aec684e1f4fab7648310452796ffa56d0d005aef6c88461de4041dde218cf7a2cb4

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db-journal

MD5 5754cb3f26a5533b84c08a971b6e9685
SHA1 d9fa8e647f4071b5083939c63be0913701cdaeb9
SHA256 231955d950917af6487680ea6fde1400a3af456d39d006b4dce7000d2ead3e6c
SHA512 8b98b5639ca5d0d854a99e0aad0428281046342272e0b93047176b552108aaa614a37b8c70ffb3ec5fdea9bdd3fb0976ddbfe3058e56bc25e2b1844c48ece5e1

/data/data/com.qihoo.appstore/databases/360appstoreInstallHistory.db

MD5 68a663c3f95568e27a9480c447c29c1b
SHA1 bdbd0c162d679fc3e2f96beec7b3fc21be4cf78b
SHA256 442847f7a12c988f83a674323cd5da163d5ec79152b658abe27baafbf70935c4
SHA512 b3317e0dd3be80101b53bd0eca193f4654baea2c8682e0d880afc248f142c6e34c22f5ecd689e56914954bfbc842cc450fa2efe01f668cc8315250c3b4d706e2

/data/data/com.qihoo.appstore/files/sllak/opt/4963/oat/finalcore.jar.cur.prof

MD5 d18e2bc03a50877873d4b6ebbef4f4e0
SHA1 255d142b3306e15e8b55ba22cc6bdef324a53418
SHA256 3c9a025a7ab7f81730b1dc6c2923d43a684d690c24d34de9995c72cf4e3a5b3d
SHA512 9eb7868bbd1659c6b93a32f5b64b6bdb61e1bd888ddedd1603320b19dfce9363d577023f1c4a72022b21021c2d5878c9790855b6dda24fa6ca633822e0398d9c

/data/data/com.qihoo.appstore/files/sllak/logcache/log1730602050567

MD5 42beccabe8a71d797a1f872434f3e885
SHA1 619c2b0953eacb5889dae1211a529bf8300e9e5a
SHA256 fab590fcd6034888193fa041f3f13c2a23351f325f8d8fed854f6293fa663f4e
SHA512 b8fa9ebabf64b735daa8bdc97556cc5b88041ce6e04885a6a06dbc090e9bdddcc6f95a42741352bcbdc1865a05e86388e285eb78134c4cc3c4d11c42154637ac

/data/data/com.qihoo.appstore/files/sllak/logcache/log1730602050623

MD5 25f9754182de3a5b7a001120b102afcf
SHA1 71aafc19bb4aae38048dfd8e926c21a6101ee90c
SHA256 a8fc5b7d400521247080d49eabf73ac6667dd5a205132be76df27aa4b7ca85ba
SHA512 9f918c6343d89c857d427315a411da0803b9ec58c20981e138949d424136f239236478b29da083d4f6a71b3c7a07be10d66a6cb14780cea404992d581b1e47d0

/data/data/com.qihoo.appstore/files/360/sdk/persistence/data/Y29tLnFpaG9vLmFwcHN0b3Jl

MD5 caa64f7df1db972020e2cd52d7f515d9
SHA1 45c4ba3bd6d2078393b5eaead879954ac70b5c5a
SHA256 4fc828ed843166e184b849c171aef34b7f66f9c039c5e0f173e47274d398c0d4
SHA512 ec7f5523f4cc0e918319a73243d5f240073052a0013c769675b411c7bae1a10a5cd511c5b43af06dc99e10a3061a219c69089b65709afb530336119bcf2451c5

Analysis: behavioral3

Detonation Overview

Submitted

2024-11-03 02:47

Reported

2024-11-03 02:49

Platform

android-x86-arm-20240624-en

Max time network

129s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
GB 216.58.201.110:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 216.58.212.238:443 android.apis.google.com tcp

Files

N/A

Analysis: behavioral4

Detonation Overview

Submitted

2024-11-03 02:47

Reported

2024-11-03 02:49

Platform

android-x64-20240624-en

Max time network

136s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 216.58.212.200:443 ssl.google-analytics.com tcp
GB 142.250.187.238:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 216.58.212.206:443 android.apis.google.com tcp
GB 142.250.179.228:443 tcp
GB 142.250.179.228:443 tcp

Files

N/A