Analysis Overview
SHA256
f298fc6d34f598483b58df9fcd6c75636975b3dbc07fada594506edcc17c2099
Threat Level: Shows suspicious behavior
The file f298fc6d34f598483b58df9fcd6c75636975b3dbc07fada594506edcc17c2099.bin was found to be: Shows suspicious behavior.
Malicious Activity Summary
Obtains sensitive information copied to the device clipboard
Queries the mobile country code (MCC)
Requests dangerous framework permissions
Registers a broadcast receiver at runtime (usually for listening for system events)
Checks CPU information
Checks memory information
MITRE ATT&CK
Mobile Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-11-04 22:10
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-11-04 22:10
Reported
2024-11-04 22:13
Platform
android-x86-arm-20240910-en
Max time kernel
149s
Max time network
151s
Command Line
Signatures
Queries the mobile country code (MCC)
| Description | Indicator | Process | Target |
| Framework service call | com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone | N/A | N/A |
Requests dangerous framework permissions
| Description | Indicator | Process | Target |
| Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. | android.permission.READ_PHONE_STATE | N/A | N/A |
| Allows read access to the device's phone number(s). | android.permission.READ_PHONE_NUMBERS | N/A | N/A |
| Allows an application to receive SMS messages. | android.permission.RECEIVE_SMS | N/A | N/A |
| Allows an application to read image files from external storage. | android.permission.READ_MEDIA_IMAGES | N/A | N/A |
| Allows an application to read image or video files from external storage that a user has selected via the permission prompt photo picker. | android.permission.READ_MEDIA_VISUAL_USER_SELECTED | N/A | N/A |
Registers a broadcast receiver at runtime (usually for listening for system events)
| Description | Indicator | Process | Target |
| Framework service call | android.app.IActivityManager.registerReceiver | N/A | N/A |
Checks CPU information
| Description | Indicator | Process | Target |
| File opened for read | /proc/cpuinfo | N/A | N/A |
Checks memory information
| Description | Indicator | Process | Target |
| File opened for read | /proc/meminfo | N/A | N/A |
Processes
com.okzv.ttxcjp
Network
| Country | Destination | Domain | Proto |
| GB | 142.250.187.206:443 | tcp | |
| GB | 142.250.187.206:443 | tcp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.178.14:443 | android.apis.google.com | tcp |
| GB | 172.217.16.234:443 | tcp | |
| N/A | 224.0.0.251:5353 | udp | |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 173.0.54.27:80 | 173.0.54.27 | tcp |
| US | 1.1.1.1:53 | safebrowsing.googleapis.com | udp |
| US | 173.0.54.28:80 | 173.0.54.28 | tcp |
| GB | 172.217.16.234:443 | safebrowsing.googleapis.com | tcp |
| US | 173.0.54.28:80 | tcp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.206:443 | android.apis.google.com | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | tcp |
Files
/data/data/com.okzv.ttxcjp/files/mmkv/mmkv.default
| MD5 | 620f0b67a91f7f74151bc5be745b7110 |
| SHA1 | 1ceaf73df40e531df3bfb26b4fb7cd95fb7bff1d |
| SHA256 | ad7facb2586fc6e966c004d7d1d16b024f5805ff7cb47c7a85dabd8b48892ca7 |
| SHA512 | 2d23913d3759ef01704a86b4bee3ac8a29002313ecc98a7424425a78170f219577822fd77e4ae96313547696ad7d5949b58e12d5063ef2ee063b595740a3a12d |
/storage/emulated/0/Android/data/com.okzv.ttxcjp/files/Download/apk/govFirewall.apk
| MD5 | a5a76b43cb2f415fe85712b8d2ef7c9b |
| SHA1 | 714f29dddbad3a99200e0929fa90fa81c7422243 |
| SHA256 | d7a2ff7d36aeb35f963bad6ff0b4aacf4b705213cf16b2e13282906c9833668a |
| SHA512 | 647a5d152e8b7c1cc1e88c69b3f16f6123a0fcf381c8eef7f09b6621e8701d18cd07c10ed4a9a3f9d2f1a165f4b6209ca619c0a5a9c87c53dda7f3753eaa3cd8 |
/data/misc/profiles/cur/0/com.okzv.ttxcjp/primary.prof
| MD5 | 95f6d2e698892f1c0d4ef6e3524b52ab |
| SHA1 | 985f4016880e4651ecaed620a453c3fd0395397b |
| SHA256 | 57fa3a0367d27ff61360c8c7bf580f4c3340de7da788517a891314fb0ec60c2b |
| SHA512 | 89bda052d20bdca67a1bc2a4940d0c3f5b7f23a8a8c5fce5fef00864da8917c4504cbf94040d61d54bb046d16146e9aa4a7d5a266374fe816314c131577efff4 |
/data/data/com.okzv.ttxcjp/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat
| MD5 | 0b3596a1ef32315c6315fe292de99a8a |
| SHA1 | 659080ddaa6309873a71f94de29a74e4a862d958 |
| SHA256 | 3b8b07bd152027f6e6d5423e97a2ec562609726d10e1f766ace7cbeb62198a33 |
| SHA512 | 602a65742686ad64891573b1ae7ac12edc3e67685c6eefd9e46bd6ef673dccaf65fe111fc2d491e532b38d67d88243dbfd941b6c5532908d8af1b370e4d90739 |
/data/data/com.okzv.ttxcjp/files/profileInstalled
| MD5 | 72dda2bf9f425a663fee79aa110dc2d6 |
| SHA1 | 48a824691d4036dc216c94031f33f4f3550c78bb |
| SHA256 | 412c828b83da733e25e7f65147ee06fd283fe04467a795881ca8b3781ccb7e27 |
| SHA512 | 41b9e2de915485071181bac236f3c24986dfe950802f9341bd7f06b88e229d414abc3337743e5b0861c1cb9fc967ce06d661da168e40e314fd292c48d90fea70 |
/data/misc/profiles/cur/0/com.okzv.ttxcjp/primary.prof
| MD5 | fd5609d1ac3822f61e418588043b34ba |
| SHA1 | c78528252723e414781bb18e8496163392108bd5 |
| SHA256 | 477e59ee30ff437ac51f45c50d46ef2073842d69df72e491b2dbb52a03ab0918 |
| SHA512 | b326be6cd02a7effe7d8f411d2b33c9408201c5c1ed645592119b1012a8ef874c1a71ba51796948fdc169e7795ff902aede2c544a0e39c085abe1add9788373a |
/data/misc/profiles/cur/0/com.okzv.ttxcjp/primary.prof
| MD5 | c657c46b1a1af74c611fb1521c464f16 |
| SHA1 | 2751704171d3fcc9f48d7b505d9c025af06b7b78 |
| SHA256 | 892eef2b2507dafc9fa039918f70ab29e94150145b000e5ad60ba9e027f31055 |
| SHA512 | ada0efea8a4cdab8b7f758380f21f3974d8cedf57a11a68d837417c9c0461db32ccf31f347ffc84d57bca1f17e5035f41698438be3257b206eb21aa2525398b7 |
Analysis: behavioral2
Detonation Overview
Submitted
2024-11-04 22:10
Reported
2024-11-04 22:13
Platform
android-x64-arm64-20240910-en
Max time kernel
149s
Max time network
154s
Command Line
Signatures
Obtains sensitive information copied to the device clipboard
| Description | Indicator | Process | Target |
| Framework service call | android.content.IClipboard.addPrimaryClipChangedListener | N/A | N/A |
Checks CPU information
| Description | Indicator | Process | Target |
| File opened for read | /proc/cpuinfo | N/A | N/A |
Checks memory information
| Description | Indicator | Process | Target |
| File opened for read | /proc/meminfo | N/A | N/A |
Processes
com.okzv.ttxcjp
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| US | 1.1.1.1:53 | www.youtube.com | udp |
| GB | 172.217.16.238:443 | www.youtube.com | udp |
| GB | 172.217.16.238:443 | www.youtube.com | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 173.0.54.27:80 | tcp | |
| US | 173.0.54.27:80 | 173.0.54.27 | tcp |
| US | 173.0.54.28:80 | 173.0.54.28 | tcp |
| US | 173.0.54.28:80 | tcp | |
| US | 1.1.1.1:53 | ssl.google-analytics.com | udp |
| GB | 142.250.180.8:443 | ssl.google-analytics.com | tcp |
| GB | 142.250.187.206:443 | www.youtube.com | tcp |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 172.217.169.14:443 | android.apis.google.com | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.239.32.223:443 | tcp | |
| GB | 172.217.16.238:443 | www.youtube.com | tcp |
| GB | 142.250.187.225:443 | tcp | |
| US | 216.239.32.223:443 | tcp | |
| GB | 142.250.178.1:443 | tcp | |
| US | 216.239.32.223:443 | tcp | |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
| US | 216.244.76.235:80 | 216.244.76.235 | tcp |
Files
/data/data/com.okzv.ttxcjp/files/mmkv/mmkv.default
| MD5 | 620f0b67a91f7f74151bc5be745b7110 |
| SHA1 | 1ceaf73df40e531df3bfb26b4fb7cd95fb7bff1d |
| SHA256 | ad7facb2586fc6e966c004d7d1d16b024f5805ff7cb47c7a85dabd8b48892ca7 |
| SHA512 | 2d23913d3759ef01704a86b4bee3ac8a29002313ecc98a7424425a78170f219577822fd77e4ae96313547696ad7d5949b58e12d5063ef2ee063b595740a3a12d |
/storage/emulated/0/Android/data/com.okzv.ttxcjp/files/Download/apk/govFirewall.apk (deleted)
| MD5 | a5a76b43cb2f415fe85712b8d2ef7c9b |
| SHA1 | 714f29dddbad3a99200e0929fa90fa81c7422243 |
| SHA256 | d7a2ff7d36aeb35f963bad6ff0b4aacf4b705213cf16b2e13282906c9833668a |
| SHA512 | 647a5d152e8b7c1cc1e88c69b3f16f6123a0fcf381c8eef7f09b6621e8701d18cd07c10ed4a9a3f9d2f1a165f4b6209ca619c0a5a9c87c53dda7f3753eaa3cd8 |
/data/misc/profiles/cur/0/com.okzv.ttxcjp/primary.prof
| MD5 | 95f6d2e698892f1c0d4ef6e3524b52ab |
| SHA1 | 985f4016880e4651ecaed620a453c3fd0395397b |
| SHA256 | 57fa3a0367d27ff61360c8c7bf580f4c3340de7da788517a891314fb0ec60c2b |
| SHA512 | 89bda052d20bdca67a1bc2a4940d0c3f5b7f23a8a8c5fce5fef00864da8917c4504cbf94040d61d54bb046d16146e9aa4a7d5a266374fe816314c131577efff4 |
/data/data/com.okzv.ttxcjp/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat
| MD5 | a945c10de3b5213d89889011b8677cb0 |
| SHA1 | cc45eb3c467fa9674903f51b3831b13fe22e1466 |
| SHA256 | fead1c38440341b27fece3cacda0e36ae662b19583fcc84302815b4d887e0873 |
| SHA512 | ff9eea331f801ea1380e14b041d5645df96290d9de928e7add0dcd3e2761621a47d792f25ea9e8974180b8dc189bcfe2525b970623d328076ab2a1e943c40849 |
/data/misc/profiles/cur/0/com.okzv.ttxcjp/primary.prof
| MD5 | 5dfe39f1d2133957d8811bec949c7ec4 |
| SHA1 | be74a131240436d22b283bb5fb0b100b4febe182 |
| SHA256 | 39c303d94abbb5ec42b2f7dc2cdae46a8fb46954cf3b53a243c430f133734ba0 |
| SHA512 | 09d24c59498b2aee714f6fba99ef1cb38a33bcb1d1613a4a40a5a3c8983a094eb28a4d120921734cf2d5de08ee567e8deb591cf9f61a70ca4eb0b992f50bf856 |