Analysis Date2015-02-10 17:42:37
MD58d42df798d6637cff8fd1bb279750d6e
SHA1cd20bf1e197ccb65d189029ada70cffd5f3199bb

Static Details:

File typeZip archive data, at least v2.0 to extract
AV360 Safeno_virus
AVAd-AwareAndroid.Exploit.GingerBreak.D:Android.Exploit.RATC.D:Android.Exploit.RATC.M
AVAlwil (avast)no_virus
AVArcabit (arcavir)Android.Exploit.RATC.M:Android.Exploit.GingerBreak.D:Linux.CornelGEN.858:Android.Exploit.RATC.D
AVAuthentiumELF/Trojan.SWMH-18:AndroidOS/DroidRooter.G
AVAvira (antivir)no_virus
AVBullGuardAndroid.Exploit.GingerBreak.D:Android.Exploit.RATC.D:Android.Exploit.RATC.M
AVCA (E-Trust Ino)no_virus
AVCAT (quickheal)no_virus
AVClamAVAndr.Exploit.Gingerbreak-1
AVDr. WebAndroid.DreamExploid.26:Tool.Rooter.13.origin:Android.DreamExploid.25:Android.DreamExploid.28:Android.DreamExploid.27
AVEmsisoftAndroid.Exploit.GingerBreak.D:Android.Exploit.RATC.D:Android.Exploit.RATC.M
AVEset (nod32)Android/Exploit.Lotoor.BR:Android/Exploit.Lotoor.BQ:Android/Exploit.Lotoor.ED:Android/Exploit.Lotoor.CC
AVFortinetAndroid/GingerBreak.X!exploit
AVFrisk (f-prot)no_virus
AVF-SecureHack-Tool:Android/DroidRooter.B
AVGrisoft (avg)no_virus
AVIkarusExploit.Linux.Lotoor:HackTool.AndroidOS.DroidRooter:Trojan.AndroidOS.Exploit
AVK7no_virus
AVKasperskyExploit.Linux.Lotoor.aw
AVMalwareBytesno_virus
AVMcafeeLinux/Exploit-Lotoor
AVMicrosoft Security EssentialsExploit:AndroidOS/CVE-2011-1823
AVMicroWorld (escan)Android.Exploit.GingerBreak.D[ZP]
AVRisingno_virus
AVSophosAndr/DroidRt-B
AVSymantecno_virus
AVTrend MicroAndroid.C92EDF12
AVVirusBlokAda (vba32)no_virus

Runtime Details:

Network Details:


Raw Pcap

Strings
es{f
;'''??
0(<}cP
0DZ#!_
.:-0k"K
0l6G-K
0>n((W
@0Q%%n
0WRRRqq
1#-4R+D
`.`1`9`
1ctLY:JV~
1HxiTD
1J9!F60a
'#1m%f
"`1ws7sG1w7Gq
1y^p||DQ
233033
2/5MkY
2Y@2qN
3C9kT@
3F}1_y
3Wvwww
%&'()*456789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz
45J;\f
4'M$J	
4	tXJg}
4UIrhz~
4VA[`w
4X:`cK
+{4y$U
&'()*56789:CDEFGHIJSTUVWXYZcdefghijstuvwxyz
}(5Fq!Y%
5hirtF
5rzN^^~YYEQ~
}67Ir$
67v@)f
6c_k]	?
6;iqun
6Z$S3R
721,=(
;)7-5-""bvy
77*yI}
7"(?J<
7_'}K8
7P!o"Co,
7sM<Or
7su7x)I
	7t4v7
7zC)^]4
|888h^~
88-kdXV
`8D)ES
"||8m$
8?+>^t2Q
8Y^yoZac
$94Ts(
9i#;OyF
9&lxa#[
9n+?$]
9":rqw
a%2*8w
a2[GH"
aA>=^';-
A~~Att
ahfYC)
AndroidManifest.xml
AndroidManifest.xmlPK
anfS>\n
As.nP?
assets/flash.jpg
assets/flash.jpgPK
aYS.h2'l
>az ,Crnt
b9n*'P}
bG~+TtD
bI!-A%
bIDATH
&bj7	o
blN,n+.
bLW$Q`$
BM`2G1
B-=mr\
BppVsx
<BuKPw
B'	y1$Q
C&2s@	
C5c^hn,
C7$H? 
<&c^a'
C;KHg:
classes.dex
classes.dexPK
c_N{Wf;
Cq&;	d
C/+u^\J
 Cwu.p}*
[D.@?)
Da[*l	
DB0+0%
"}D===D
DDU$(T
DgYQw#
 DKKX&e
D{LG9' 
`[Dp`+
._ds}L
dvH:=05y
dvU 	Q
e7Fu(X=
[E;b5@
EBm>uQ
ec+2)g
edB37%
;em:?*
E	#@?O
ewO1FK)
Ey!`>`
$eYAQ6dy
F^1!gH
f4LAQ=M5M
fa5`fd
fCfkSF
f<=;I&
fJ7gGoqi
\FKAYVdi
FL}Kr~
@],]g\
G0&eyy
+g3<R/
G9fX]+
gDv?_a
:|gFN<
GG#0mt
gingerbreak
giZK^v
	gK~Nb
	*GL/!&
Gneq?R
gotroot
GUdx-w
G:yo"r[
GZzzZz:H
!{}h4N
}h5Q*Xx
hd23"4,
`hg"%-
}HO?sb-QEY[f
h.oxyv
,HU%<A
i52Y&S
I,7_>h
i888doo
-IDATh
~IDAT	k
'	#I>E
---iii
installroot
ipMCZN
iU}CUw4
IwU#w2
*i%z_%et
*J+).+
J2:(<zb
jgqn|Z
J,!>N.
.jngibd8z
"*JQ"hG
jV:liY*
K|5D/"
K9r,Cm
k`a`ddi`hllb
_-KBsS
keazeE
keVK<I
KJVbf.
[kko2d8
klj`nh
,+-KNIv
:Kpw:Op,]$x
kuW]e5
#.KWY<
~ kx0E
l[\^BY
$l$\Ex
`LLtbR"
!>~lNNvaaQzz
	Lq<PP
]'L[{S
{#m1?5
M?44]D#A4
~M6MkNXmu
MA|uGgx`
m		de1
META-INF/CERT.RSA3hb[
META-INF/CERT.RSAPK
META-INF/CERT.SF
META-INF/CERT.SFPK
META-INF/MANIFEST.MF
;:m:$g
MIW*2fC
@m}pKs+
mT<{I'
mUNYXc
$&MZ.2
N$;  ^[b
ngf|k5*
@N 'K 
n&k_5^8
n'Kytb
nL&7?"
^NN=e6
n;r_}D
'+=nsc
NXm9O[!Y
nZ[X\H
^&O0%F
|O0lF*
O0!w`w7
@O,AOt
OBQ7|b
oF]{?Bg
?oHFYN
OhgQIR{$"
oknoonk
O~Ob@0
oqnn;	N
Oq%pGX
,P 74Jw
pdYJQd
>PeEcps
"Pe`VY
P+IEU!
pn"jolm/Ud
P~\PO1
*P)q"a
PQoB	-
pzzZ\\
q5f9?C
Qc4z.H>+,^
qeg	Ip
	QP **
@_)q-t
QUO~KeI=8^
-"r^22
r3MnT^
res/drawable/bn_help.xml
res/drawable/bn_help.xmlPK
res/drawable/btn_null.xmlm
res/drawable/btn_null.xmlPK
res/drawable-mdpi/btn_null1.png
res/drawable-mdpi/btn_null1.pngPK
res/drawable-mdpi/btn_null2.png
res/drawable-mdpi/btn_null2.pngPK
res/drawable-mdpi/ibtnmenubg2.png
res/drawable-mdpi/ibtnmenubg2.pngPK
res/drawable-mdpi/ibtnmenubg.png
res/drawable-mdpi/ibtnmenubg.pngPK
res/drawable-mdpi/icon.png
res/drawable-mdpi/icon.pngPK
res/drawable-mdpi/root.png
res/drawable-mdpi/root.pngPK
res/layout/download_notification.xml
res/layout/download_notification.xmlPK
res/layout/main.xml
res/layout/main.xmlPK
resources.arsc
resources.arscPK
res/raw/gingerbreak
res/raw/gingerbreakPK
res/raw/gotroot
res/raw/gotrootPK
res/raw/installroot
res/raw/installrootPK
res/raw/rageagainstthecage
res/raw/rageagainstthecagePK
res/raw/su
res/raw/suPK
reX,Z~
RG;d}{$
{RgTQZa
Rn6vGj
RrdJ)+
R-`,vT
r"~	W	
Ry?ItPy
RZVkTb
s6_pr|
sBg*[+O
sDaDUW
/\sG9*
{SiAy~E
s:M_Uwj
s]q6dl
	S-QZl\q5.
st r)Ej
\s{)XX
t7zpXQi/0
#t:E"Z
T~[g|UGr
*&_TLLOO
`(T`o1o
@%Tu@%RX
  TWW'&%
"U7bXF
!UiQ: /
ukiCai
!u) {>Ls
u!Nzlo
U!RTcP
U&Z3/R
V5U^RwQ{
vAh }4
V}fv&wv
Vg71* 
"Vhk,m
V_M*+B
vphvo_
V/s	n:
w%09"f
*w25]A
w2k	.)3
waYb^xVF5
<w(G;ki]
|*WJ2B
Wjh"p4d
wni'k@?
;wnQQQxxxgg'
[]w{[q)\
?WUK(4
Wvlmi;
www.meitu.com
{wzE&1
	x0G)1
xbl^f^
xbMJAs
Xfh	K%
xmxmtw
XOY58gX_
|:X>P>
+Xs@1B
X,ss/bm
Xt)&rf
`Xu#V]
XWv-TwL
X_>$z]
y6PH?y
yeA%OZ
Y=g5_`
yGB#,){ 'c
yt-chsFi
yU:qVE
yZGltV
z5I	2+
Z5x2vT
Z9!k|&D
zM\jWd
zvsx3g7
^[]Z]>&X
ZYYEY~yyA