Technical information
- Android.Triada.2018
- Android.Triada.373.origin
- UDP(DNS) 8####.8.4.4:53
- TCP(HTTP/1.1) s####.e.qq.com:80
- TCP(HTTP/1.1) www.libii####.com:80
- TCP(HTTP/1.1) a####.u####.com.####.com:80
- TCP(HTTP/1.1) s####.l####.cn:80
- TCP(HTTP/1.1) qzones####.mid.td####.com:80
- TCP(HTTP/1.1) luna-im####.qq.com.####.com:80
- TCP(HTTP/1.1) sum.l####.cn:80
- TCP(HTTP/1.1) mi.g####.qq.com:80
- TCP(TLS/1.0) 1####.217.16.138:443
- TCP(TLS/1.0) and####.google####.com:443
- TCP(TLS/1.0) a2.chartb####.com:443
- TCP(TLS/1.0) l####.chartb####.com:443
- TCP(TLS/1.2) 1####.250.185.163:443
- a####.u####.com
- a2.chartb####.com
- and####.google####.com
- imgc####.qq.com
- l####.chartb####.com
- mi.g####.qq.com
- qzones####.g####.cn
- s####.e.qq.com
- s####.l####.cn
- sum.l####.cn
- t2.chartb####.com
- www.libii####.com
- a2.chartb####.com:443/apps/icons/5ab1d4e23c41030f11f03c2b.114.png
- a2.chartb####.com:443/apps/icons/5f742f6bf63f1a08255d139d.114.png
- a2.chartb####.com:443/apps/icons/5f8eab2e403c3408683ba006.114.png
- a2.chartb####.com:443/base_templates/html/playable-core-v2-CBCloseButton...
- a2.chartb####.com:443/base_templates/html/static-etna-e4bf514d28.html
- a2.chartb####.com:443/base_templates/html/video-v3_01-ad549ad595.html
- a2.chartb####.com:443/creatives/5ab1d4e23c41030f11f03c2b/4c6d0ea524e7da6...
- a2.chartb####.com:443/creatives/5f742f6bf63f1a08255d139d/dc04146efc432e3...
- a2.chartb####.com:443/creatives/5f8eab2e403c3408683ba006/ec97c5a407f08db...
- a2.chartb####.com:443/static-assets/interstitials-v2/close-buttons/webvi...
- a2.chartb####.com:443/static-assets/interstitials-v2/frames/3-4/768x1024...
- luna-im####.qq.com.####.com/qzone/biz/gdt/mod/android/AndroidAllInOne/pr...
- mi.g####.qq.com/gdt_mview.fcg?fc=####&datatype=####&posh=####&count=####...
- qzones####.mid.td####.com/favicon.ico
- qzones####.mid.td####.com/qzone/biz/gdt/mob/sdk/v2/android01/banner.appc...
- qzones####.mid.td####.com/qzone/biz/gdt/mob/sdk/v2/android01/banner.html
- qzones####.mid.td####.com/qzone/biz/gdt/mob/sdk/v2/android01/images/ad_l...
- qzones####.mid.td####.com/qzone/biz/gdt/mob/sdk/v2/android01/images/bann...
- qzones####.mid.td####.com/qzone/biz/gdt/mob/sdk/v2/android01/images/clos...
- qzones####.mid.td####.com/qzone/biz/gdt/mob/sdk/v2/android01/images/down...
- qzones####.mid.td####.com/qzone/biz/gdt/mob/sdk/v2/android01/images/gdt_...
- qzones####.mid.td####.com/qzone/biz/gdt/mob/sdk/v2/android01/images/icon...
- qzones####.mid.td####.com/qzone/biz/gdt/mob/sdk/v2/android01/images/inte...
- qzones####.mid.td####.com/qzone/biz/gdt/mob/sdk/v2/android01/images/popu...
- qzones####.mid.td####.com/qzone/biz/gdt/mob/sdk/v2/android01/images/scor...
- qzones####.mid.td####.com/qzone/biz/gdt/mob/sdk/v2/android01/images/sdk_...
- qzones####.mid.td####.com/qzone/biz/gdt/mob/sdk/v2/android01/images/tc-g...
- qzones####.mid.td####.com/qzone/biz/gdt/mob/sdk/v2/android01/images/tsa_...
- qzones####.mid.td####.com/qzone/biz/gdt/mob/sdk/v2/android01/interstitia...
- qzones####.mid.td####.com/qzone/biz/gdt/mob/sdk/v2/android01/js-release/...
- qzones####.mid.td####.com/qzone/biz/gdt/mob/sdk/v2/android01/js/lib/requ...
- www.libii####.com/MoreGame/get.jsp?devicetype=####&appid=####&udid=####&...
- a####.u####.com.####.com/app_logs
- l####.chartb####.com:443/api/config
- l####.chartb####.com:443/api/install
- l####.chartb####.com:443/webview/v2/interstitial/get
- l####.chartb####.com:443/webview/v2/prefetch
- s####.e.qq.com/activate
- s####.e.qq.com/getad
- s####.e.qq.com/launch
- s####.e.qq.com/msg
- s####.l####.cn/service/aaa/info/
- s####.l####.cn/service/bbb/info/
- s####.l####.cn/service/ccc/info/
- sum.l####.cn/user/active
- sum.l####.cn/user/install
- /data/data/####/.appInfo
- /data/data/####/.imprint
- /data/data/####/013888a1cda32b90_0
- /data/data/####/08b99d499107ba17_0
- /data/data/####/0ae129c33e7a30bd_0
- /data/data/####/0d3086d7cda635d4_0
- /data/data/####/17e0d22976941fd1_0
- /data/data/####/2000c1f70ea9c2df_0
- /data/data/####/2000c1f70ea9c2df_1
- /data/data/####/2000c1f70ea9c2df_1 (deleted)
- /data/data/####/23469ac906fcc612_0
- /data/data/####/25a95142bbdd5396_0
- /data/data/####/267fe59a590098c1_0
- /data/data/####/267fe59a590098c1_0 (deleted)
- /data/data/####/2687cdb408524ecb_0
- /data/data/####/2752b3e00e3c8c51_0
- /data/data/####/2752b3e00e3c8c51_0 (deleted)
- /data/data/####/284afd4434e4d520_0
- /data/data/####/297ecea5cebb5dfe_0
- /data/data/####/2a0afd649b00527b_0
- /data/data/####/2db2affc53f66e00_0
- /data/data/####/2eacd7e8e58631e1_0
- /data/data/####/35a18ea889502737_0
- /data/data/####/3c0d559df4886a72_0
- /data/data/####/3c0d559df4886a72_1
- /data/data/####/3ef2ebed6c12e1f6_0
- /data/data/####/432b69cba7ff5e20_0
- /data/data/####/45c2f2fcb9072b47_0
- /data/data/####/46f3ecd4175c8067_0
- /data/data/####/482023d322245224_0
- /data/data/####/482023d322245224_1
- /data/data/####/4c16b5624587ab84_0
- /data/data/####/4cb013792b196a35_0
- /data/data/####/54305e76391b1fdd_0
- /data/data/####/59432aa3edf692c9_0
- /data/data/####/653e56b4b6556a9e_0
- /data/data/####/65d5238a588aeb44_0
- /data/data/####/67a473248953641b_0
- /data/data/####/6be40666f1ed995b_0
- /data/data/####/6buazXaAWVU44ltN
- /data/data/####/6c038e3570d6abf1_0
- /data/data/####/6f8ac775dbbd7415_0
- /data/data/####/6fc459ba53cb570a_0
- /data/data/####/7b2061193b65af95_0
- /data/data/####/7b4fd8111178d5b1_0
- /data/data/####/83efbe48d0097388_0
- /data/data/####/90832f01ef5c3bca_0
- /data/data/####/91baa182c7a11977_0
- /data/data/####/99e03bdba10e2350_0
- /data/data/####/9bf9d9770de9cfc0_0
- /data/data/####/Cocos2dxPrefsFile.xml
- /data/data/####/Cookies-journal
- /data/data/####/Databases.db-journal
- /data/data/####/GDTSDK.db
- /data/data/####/GDTSDK.db-journal
- /data/data/####/Index-journal
- /data/data/####/LpOy6hjVuC2C_UwtwnjBcg==.new
- /data/data/####/QuotaManager-journal
- /data/data/####/WebViewChromiumPrefs.xml
- /data/data/####/_nohttp_cookies_db.db
- /data/data/####/_nohttp_cookies_db.db-journal
- /data/data/####/afe1e5264eea33bc_0
- /data/data/####/b2280c4e349a5f4e_0
- /data/data/####/b3bd0d67f800d222_0
- /data/data/####/b6c28cea6ed9dfc1_0
- /data/data/####/ba23d8ecda68de77_0
- /data/data/####/c149fab41d6aac79_0
- /data/data/####/c92cb20280ef5377d06487724a1de0b9.nohttp
- /data/data/####/cbPrefs.xml
- /data/data/####/cb_previous_session_info
- /data/data/####/cc.db
- /data/data/####/cc.db-journal
- /data/data/####/ce2a2172c04b134d_0
- /data/data/####/com.libii.mermaidparty_preferences.xml
- /data/data/####/d0757ff92c7cde0a_0
- /data/data/####/d74b0c2302777cd7_0
- /data/data/####/devCloudSetting.cfg
- /data/data/####/devCloudSetting.sig
- /data/data/####/e0c624b74af195da_0
- /data/data/####/e0d37c7e54672663_0
- /data/data/####/e7f5b1d8e43e5ec1_0
- /data/data/####/exchangeIdentity.json
- /data/data/####/exid.dat
- /data/data/####/f13a76bbf6c7f0b3_0
- /data/data/####/f1cdccba37924bda_0
- /data/data/####/f243c66d66378f78_0
- /data/data/####/f3ab1e1292e135fa_0
- /data/data/####/f76ccbbbd72a0391_0
- /data/data/####/fa813c9ad67834ac_0
- /data/data/####/fb1f328d70d91607_0
- /data/data/####/gdt_plugin.dex
- /data/data/####/gdt_plugin.dex.flock (deleted)
- /data/data/####/gdt_plugin.jar
- /data/data/####/gdt_plugin.jar.sig
- /data/data/####/gdt_plugin.next.sig
- /data/data/####/gdt_plugin.tmp
- /data/data/####/gdt_suid
- /data/data/####/index
- /data/data/####/ipMhfcQtw7Kl1rm7.dex
- /data/data/####/ipMhfcQtw7Kl1rm7.dex.flock (deleted)
- /data/data/####/ipMhfcQtw7Kl1rm7.zip
- /data/data/####/lbpromo_userdatas.xml
- /data/data/####/metrics_guid
- /data/data/####/openudid_prefs.xml
- /data/data/####/pmTOLPAm7E8eIPBdZOB5IA==
- /data/data/####/pmTOLPAm7E8eIPBdZOB5IA==.new
- /data/data/####/proc_auxv
- /data/data/####/rdata_comwdimnvujza.new
- /data/data/####/sdkCloudSetting.cfg
- /data/data/####/sdkCloudSetting.sig
- /data/data/####/temp-index
- /data/data/####/the-real-index
- /data/data/####/tuuibg_f.dex
- /data/data/####/tuuibg_f.dex.flock (deleted)
- /data/data/####/tuuibg_f.zip
- /data/data/####/ua.db
- /data/data/####/ua.db-journal
- /data/data/####/umeng_general_config.xml
- /data/data/####/umeng_it.cache
- /data/data/####/update_lc
- /data/data/####/userdatas.xml
- /data/data/####/wHihNmX3bXBn7TjtyHhZnQ==
- /data/data/####/zkAtwZ90dBhe2-wo4LZvcw==
- /data/media/####/4c6d0ea524e7da640d612eb37d5e96fa0b07d411.jpeg.tmp
- /data/media/####/5ab1d4e23c41030f11f03c2b.114.png.tmp
- /data/media/####/5f742f6bf63f1a08255d139d.114.png
- /data/media/####/5f8eab2e403c3408683ba006.114.png.tmp
- /data/media/####/6188fcd13913ae079fa1b6b0.json
- /data/media/####/6188fcd1fd7a1c07a0997675.json
- /data/media/####/62022a43634635389e2d64ec.json
- /data/media/####/768x1024.png
- /data/media/####/768x1024.png.tmp
- /data/media/####/dc04146efc432e33de638c305609213acf870fde.jpeg
- /data/media/####/dc04146efc432e33de638c305609213acf870fde.jpeg.tmp
- /data/media/####/ec97c5a407f08db745faec49d168b808f02f57ef.jpeg
- /data/media/####/playable-core-v2-CBCloseButton--1136896784.tmp
- /data/media/####/static-etna-366428459
- /data/media/####/static-etna-366428459.tmp
- /data/media/####/video-v3_01-2068878963
- /data/media/####/webview-30x30.png
- /data/media/####/webview-30x30.png.tmp
- /data/misc/####/primary.prof
- AES-CBC-PKCS7Padding
- AES-ECB-PKCS7Padding
- DES
- AES-CBC-PKCS7Padding
- AES-ECB-PKCS7Padding
- RSA-ECB-PKCS1Padding