Technical information
- Android.Backdoor.627.origin
- UDP(DNS) <Google DNS>
- TCP(HTTP/1.1) a####.u####.com:80
- TCP(HTTP/1.1) oth.eve.mdt.####.com:8080
- TCP(HTTP/1.1) oth.str.mdt.####.com:8080
- TCP(HTTP/1.1) oth.up####.mdt.####.com:8080
- a####.u####.com
- aaa.abcdse####.com
- bbb.abcdse####.com
- oth.eve.mdt.####.com
- oth.str.mdt.####.com
- oth.up####.mdt.####.com
- a####.u####.com/app_logs
- oth.eve.mdt.####.com:8080/analytics/upload?rid=####&sid=####
- oth.str.mdt.####.com:8080/analytics/upload
- oth.str.mdt.####.com:8080/analytics/upload?sid=####
- oth.up####.mdt.####.com:8080/beacon/vercheck
- /data/data/####/.imprint
- /data/data/####/1.jar
- /data/data/####/110791628.dex
- /data/data/####/110791664.jar
- /data/data/####/110791682.jar
- /data/data/####/9.jar
- /data/data/####/DENGTA_META.xml
- /data/data/####/beacon_cover.xml
- /data/data/####/beacon_cover_check.lock
- /data/data/####/beacon_cover_load.lock
- /data/data/####/beacon_db-journal
- /data/data/####/beacon_sig_1.lock
- /data/data/####/cc.db
- /data/data/####/cc.db-journal
- /data/data/####/exchangeIdentity.json
- /data/data/####/exid.dat
- /data/data/####/monitor.so
- /data/data/####/ua.db
- /data/data/####/ua.db-journal
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/data/####/web1.jar
- /data/data/####/web2242.temp
- /data/data/####/web2278.temp
- /data/data/####/web2296.temp
- /data/media/####/4e1566f0798fb3d6f350720cacd74446_1.4e
- /data/media/####/cfg.xml
- /data/media/####/meta.dat
- /data/media/####/webadlist.xml
- /data/media/####/webinfo.xml
- monitor
- AES-CBC-PKCS5Padding
- AES-CBC-PKCS7Padding
- DES-ECB-NoPadding
- RSA-ECB-PKCS1Padding
- AES-CBC-PKCS5Padding
- DES-ECB-NoPadding