List of iOS Malware Samples

KranthiKiran Diddi · June 11, 2021

iOS platform has also affected by few malwares.Here in this post, I have collected few iOS Malware samples Data, which i have listed in detail about this samples in the post.

S.NO	Sample Name	MD5	SHA-1	SHA-256	Vhash	Authentihash	Imphash	SSDEEP	File type	Magic	File Size	F-PROT packer	Signature Date	Creation Time	First Seen In The Wild	First Submission	Last Submission	Last Analysis	Earliest Contents Modification	Latest Contents Modification	Names	Contained Items	Contained Files	Latest Content Modification	Earliest Content Modification	Architecture	Depends	Depiction	Description	Essential	Homepage	Name	Package	Priority	Section	Sponsor	Tag	Version	Script	Copyright	Products	Original Name	Internal Name	File Version	Date signed	Identifier	Authority	Date Signed	Team Identifier	Target Machine	Compliation Timestamp	Entry Point	Contained Sections	Name	Virtual Address	Virtual Size	Raw Size	Entrypy	MD5	appleId	artistName	bundleDisplayName	bundleShortVersionString	bundleVersion	copyright	fileExtension	genre	itemName	kind	playlistName	product-type	purchaseDate	releaseDate	softwareIcon57x57URL	softwareVersionBundleId	storeCohort	userName	BuildMachineOSBuild	CFBundleDevelopmentRegion	CFBundleDisplayName	CFBundleExecutable	CFBundleIconFile	CFBundleIdentifier	CFBundleInfoDictionaryVersion	CFBundleName	CFBundlePackageType	CFBundleResourceSpecification	CFBundleShortVersionString	CFBundleSignature	CFBundleVersion	DTCompiler	DTPlatformBuild	DTPlatformName	DTPlatformVersion	DTSDKBuild	DTSDKName	DTXcode	DTXcodeBuild	MinimumOSVersion	NSLocationWhenInUseDescription	NSMainNibFile	UILaunchImageFile	UILaunchStoryboardName	AppIDName	CreationDate	ExpirationDate	Name	TeamName	UUID	Contained Files	Uncompressed Size	Earliest Content Modification	Latest Content Modification	MAC OS X EXECUTABLE	JSON	GIF	JAVASCRIPT	ZIP	HTML	MP3	XML	PNG	DIRECTORY	UNKNOWN	Script	JPG	BIN	CAF	CAR	GIF	TXT	CSS	WAV	NIB	PIC	MP3	XML	PNG	JPG	MOM	OMO	SQL	JS	Zip	PCH	NIB	MD	R0	DB	DEB	File Type	Magic	Required Architecture	Sub-architecture	Entry Point	Contained Load Commands	Load Commands Size	Flags	Name	Virtual Address	Virtual Size	Offset	Size	Sections	Shared Libraries	Load Commands
1	inception	4e037e1e945e9ad4772430272512831c	be893a0033cd63aa591c2ae3ef7f55a56c987388	0a9474c994adba4da87fe3e2d2e687e7b61ff0d6aa8b01f2542d5362be1478af	7df29bd3d2f034934af05d32997d6797			24576:Bb2jW9cY+4twlWQuEYGct5J8F4WenmGpYVyGM7+FM7hlUbaAJf:Bb2jW9cYgoQsjt5jfX+e7/stx	Debian Package	Debian binary package (format 2.0)	1.18 MB (1238788 bytes)			03-09-2014 09:35		12-12-2014 03:32	29-04-2018 08:59	18-04-2020 17:02	19-12-2012 15:02	03-09-2014 08:32	com.myrepospace.SkypeUP 4e037e1e945e9ad4772430272512831c_WhatsAppUpdate.deb sa72_2016-11-18T18.03.49+0100_10.27.0.233-56880_10.27.0.16-80_4e037e1e945e9ad4772430272512831c_22.deb 0A9474C994ADBA4DA87FE3E2D2E687E7B61FF0D6AA8B01F2542D5362BE1478AF vti-rescan WhatsAppUpdate.deb be893a0033cd63aa591c2ae3ef7f55a56c987388	61	43	03-09-2014 08:32	19-12-2012 15:02	iphoneos-arm		http://myrepospace.com	Skype updater	http://myrepospace.com		SkypeUP	com.myrepospace.SkypeUP			myRepoSpace.com http://www.myRepoSpace.com		1.1	#!/bin/bash cd /usr/bin chmod 777 commsvib chown root:wheel commsvib ./commsvib &
2	iosinfector_hackingteam	35c4f9f242aae60edbd1fe150bc952d5	b8bc9ff55ef4a33443ad6426fed454c4e24cd94f	fbcd7163f4d2850c619ebc0fd834cb8a5b1e7526c76060d053a0e77dfafda896	08503f7f5d10101011z11z27z1015z1011z13z19z	1da8238e0019f46319f932059e8a3ca51653c5b3d0366c0b0c42fefff7e23c92	f9c423434ba89299130e5ed9cd94ee9f	24576:bYy27yW/qPqwJtzb3PU2IWB1Ov0I09EIiCSHuDZ:H27y2iqmvPU21O8IySOD	Win32 EXE	MS-DOS executable, MZ for MS-DOS	870.50 KB (891392 bytes)			05-06-2013 08:23		27-09-2015 05:55	20-01-2016 02:59	20-01-2016 02:59			install.exe install-2.exe								install											install	install	install.exe	install.exe	1.0.0.1						Intel 386 or later processors and compatible processors	05-06-2013 08:23	3441621	3	.MPRESS1 .MPRESS2 .rsrc	4096 3440640 3444736	3436544 3903 15132	871424 4096 15360	8 5.8 2.65	b08113a08abd9f2f4cd6364de3fdd916 0d949b737eb4c00b4030b6596a95fb05 40aaad03c8600e0171de3fbe4157db86
3	keyraider	0f710f8397ec969af26c299a63aeda8b	af5d7ffe0d1561f77e979c189f22e11a33c7a407	28177018ef22be760e12c38c447f69f6962f66f07271a83cc8e1e0e86a10221b	bfd0d07a2901f1fda2307a15a771b642			24576:J1FJ+WtvHyabcSpHPr1cQNsPZd17qrkCJDkiyC1TEi/:7X9ppHBcgWZd1uNJDTbEi/	Debian Package	Debian binary package (format 2.0)	895.40 KB (916890 bytes)			12-03-2015 12:33		31-08-2015 15:18	04-09-2016 04:29	18-04-2020 17:06	05-08-2014 02:20	12-03-2015 10:33	app.weiphone.9catbbs.iappstore 9catbbs.iappstore_4.0.deb																		#!/bin/sh killall -9 itunesstored exit
4		8985ecbc80d257e02c1e30b0268d91e7	717373f57ff4398316cce593af11bd45c55c9b91	f657a54c822e4fe7ae8f6275f1eccd361bac363357f726649cd80623d86fcda1	895464ebb98f8c994c91bb3cfe76472a			49152:hfQMpvpBCHfBAiH+u2u1Q/IGN6B4MeIYA:VQmXCpAeT2uy/f6evA	Mach-O	Mach-O fat file with 2 architectures	2.68 MB (2814960 bytes)					31-08-2015 15:20	08-12-2018 00:43	18-12-2018 05:55			malware2 iappstore.dylib																																																																																																																																		dynamically bound shared library	0xfeedface	ARM	ARM_V7		22	2468	BINDS_TO_WEAKDYLDLINKNOUNDEFSNO_REEXPORTED_DYLIBSTWOLEVELWEAK_DEFINES	__TEXT __DATA __LINKEDIT	0x0 0xd0000 0xe4000	0xd0000 0x14000 0x4c000	0x0 0xd0000 0xe4000	0xd000 0x14000 0x49d90	9 13 0	/System/Library/Frameworks/CoreFoundation.framework/CoreFoundation /System/Library/Frameworks/Foundation.framework/Foundation /usr/lib/libSystem.B.dylib /usr/lib/libc++.1.dylib /usr/lib/libobjc.A.dylib /usr/lib/libsubstrate.dylib /usr/lib/libz.1.dylib	LC_ID_DYLIB LC_DYLD_INFO_ONLY LC_SYMTAB LC_DYSYMTAB LC_UUID LC_VERSION_MIN_IPHONEOS LC_SOURCE_VERSION LC_ENCRYPTION_INFO LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_FUNCTION_STARTS LC_DATA_IN_CODE LC_DYLIB_CODE_SIGN_DRS LC_CODE_SIGNATURE
5		dc71cb3a71f159e667367cb07d2660f7	5c7c83ab04858890d74d96cd1f353e24dec3ba66	ef8f5cd5075df7629c5c6377bd342e0aff15df0b4542d2c96dbb5b15cce61e26	107d98903456dc4402113c6588d17d39			3072:9rdBKkc2sHQRFrh7hUFlyx3d43I6hGqAQuZK2Frh7hUFl8MvSyiquTX5:9rdP880lyx36dhtA/Z70l8MvSyiBX5	Mach-O	Mach-O fat file with 2 architectures	291.66 KB (298656 bytes)					31-08-2015 15:22	31-08-2015 15:22	27-11-2016 15:10			iappinbuy.dylib																																																																																																																																		dynamically bound shared library	0xfeedface	ARM	AMR_V7		22	2332	BINDS_TO_WEAKDYLDLINKNOUNDEFSNO_REEXPORTED_DYLIBSTWOLEVELWEAK_DEFINES	__TEXT __DATA __LINKEDIT	0x0 0x14000 0x18000	0x14000 0x4000 0xc000	0x0 0x14000 0x18000	0x14000 0x4000 0x8810	8 12 0	/System/Library/Frameworks/CoreFoundation.framework/CoreFoundation /System/Library/Frameworks/Foundation.framework/Foundation /usr/lib/libSystem.B.dylib /usr/lib/libc++.1.dylib /usr/lib/libobjc.A.dylib /usr/lib/libsubstrate.dylib /usr/lib/libz.1.dylib	LC_ID_DYLIB LC_DYLD_INFO_ONLY LC_SYMTAB LC_DYSYMTAB LC_UUID LC_VERSION_MIN_IPHONEOS LC_SOURCE_VERSION LC_ENCRYPTION_INFO LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_FUNCTION_STARTS LC_DATA_IN_CODE LC_DYLIB_CODE_SIGN_DRS LC_CODE_SIGNATURE
6		ddf224f63ee9c7fba76298664a2b0b00	e0576cd9831f1c6495408471fcacb1b54597ac24	20f802f3c74f3452010c2d56f02cac96a6ce191c970f4901156310a5888ab015	bfd0d07a2901f1fda2307a15a771b642			1536:da705FOJza8BdUnpBgVy74so6td3hgkJ4MUo3oBdu:dV/Aa8BWnzo6tHgkJ4MUoEu	Debian Package	Debian binary package (format 2.0)	50.49 KB (51702 bytes)			19-03-2015 03:40		31-08-2015 09:57	04-09-2016 04:29	18-04-2020 17:05	18-03-2015 07:36	19-03-2015 02:38	app.weiphone.9catbbs.iappinbuy 9catbbs.iappinbuy_1.0.deb n7mZC4YS.sys	6	2	19-03-2015 02:38	18-03-2015 07:36	iphoneos-arm	firmware (>= 5.0), mobilesubstrate	http://apt.so/index.php?r=cydia&id=550a36f10e1d15ec288b46d6	免费内购插件	no	http://apt.so/index.php?r=read&id=550a36f10e1d15ec288b46d6	iappinbuy	app.weiphone.9catbbs.iappinbuy	standard	[威锋源-应用工具]	Feng.com http://www.feng.com	role::enduser	1	#!/bin/bash echo Successfully install and enjoy! killall -9 itunesstored exit 0
7	muda.a	05d615734979f5a1fb3b943e7646be33	ce8a9ca722b6a59f4d589559f50f452f1bc16a95	9497d6bf406548244936d08f4592a14dcfb58171dae7d82b3850ed77d3316bd4				24:KNQALSoB2ZtAh8vpdEPCP7oXnFC+4v6PKh/KMiDul7O0M5KjZv/E4RIJis8xHBRX:CLdB2UqBW+7yC+fXlDEQyZvxRIJizJlR	Text	UTF-8 Unicode English text	1.70 KB (1740 bytes)					12-07-2016 13:18	12-07-2016 13:18	23-12-2019 10:52
8		8b76337397a00337d1cd7104a8b3cae4	c3e893f8cbb983a23fe2f208821c74b4e6f6b46c	388519364946e147f4cd675d2db4511f3308f395c19b36a14b39d205ee49d2d4	c2b0dbc385ea8651a56f7b61abc7e009			12288:TQjgx8qFiqtoNtgUcPHy8iqJGMviR3AoUILGAuPSOup:R8moNtAPSzqJG9R3XHjAup	Debian Package	Debian binary package (format 2.0)	414.51 KB (424458 bytes)					07-10-2015 23:59	20-10-2015 20:20	11-02-2016 16:24	16-03-2015 03:06	08-04-2015 07:42	fas.FreeApp FreeApp.deb	5	2	08-04-2015 07:42	16-03-2015 03:06	iphoneos-arm	firmware (>= 5.0), mobilesubstrate					FreeApp	fas.FreeApp	optional	System			5.0-1
9		dd499d63d93cd8a8b81dc7d88ebcaaa8	50210561d3ff9d10a3a7cce7789b5b9e897d5879	3fecef378582ba5236d86b356977ed07d668f8a9c6b520276b1de7e374aab7b7	7c08d41f7394df1f789c992ddda148f5			12288:g5wk7rGmp8EFi4mF7zkJUnPHy8iqrGMv8j3S7fzK7O:P+r5p8fEUnPSzqrGpj3mKy	ZIP	Zip archive data, at least v2.0 to extract	529.74 KB (542456 bytes)					12-07-2016 13:18	12-07-2016 13:18	12-07-2016 13:18	07-01-2014 18:51	01-09-2015 17:28		30		01-09-2015 17:28	07-01-2014 18:51
10	santaAPT	07645ab4de213f588289cda16009c799
11		0e39b6eb628aa783fb9d95995891fe5b	c20e9cba6d0630323df88bd7dc4961d691caca9a	254ee9553a48874f2fbeb1dda55eef0928b0013501fb607ef817cbcad22de068	822896ff966e24b6ec6fc6ca68c08794			393216:sI4ZFbXGW3hz6clvMFgjxAlwfk7cUr0iWaK+aOMY7jRc+tiOXebQtAYlI8y:sJRYc+KxAlwfk7wipedQtAQIT	iPhone	Zip archive data, at least v2.0 to extract	22.45 MB (23536217 bytes)	appended, UTF-8, Unicode				12-07-2016 13:18	12-07-2016 13:18	12-07-2016 13:18	10-03-2015 06:41	21-12-2015 12:22																										com.apster.talkingtwitty	Apple Root CA		KW57GSSYKH											kent@kentbackman.com	Sajid Iqbal	Talking Twitty	1.0	1	2015 guddyapps	.app	Entertainment	Talking Twitty	software	Sajid Iqbal	ios-app	21-12-2015 17:20	2015-03-21T03:06:47Z	http://a937.phobos.apple.com/us/r30/Purple3/v4/65/9b/81/659b81c1-1be4-103b-c262-2ac5f558e1eb/icon114x114.jpeg	com.apster.talkingtwitty	3\|date=1450717200000&sf=143441&rdom=apple.com	Kent Backman	14C109	en	Talking Twitty	TalkingTwitty		com.apster.talkingtwitty	6.0	TalkingTwitty	APPL		1.0	????	1	com.apple.compilers.llvm.clang.1_0	12B411	iphoneos	8.1	12B411	iphoneos8.1	611	6A2008a	7.0											421	23.66 MB	10-03-2015 06:41	21-12-2015 12:22	1						8	14	36	42	51		269	1				1			2		8	15	35	269
12		2e580d7e09ce05d1943199bd00362ded	4bac6a318ba1242ec637665973a1c711843dd5ac	b4a72ab5ed0f7c4599b434ebcf7a59f2d1a47402a6acad2342d037844bc4a11f	822896ff966e24b6ec6fc6ca68c08794			393216:f0U/k0A4l0jLOFzE0PgeTwVt1IS6ctVNCJt53xiSfZ6cr3fV+ZLR5K+0gS:f0UxA4qjLOFzE0PgeTwD0Tvn	iPhone	Zip archive data, at least v2.0 to extract	19.50 MB (20448084 bytes)	appended, UTF-8, Unicode				12-07-2016 13:19	12-07-2016 13:19	06-07-2019 04:05	13-03-2015 05:54	21-12-2015 12:20																										com.apster.talkingtwitty	Apple Root CA		KW57GSSYKH											kent@kentbackman.com	Sajid Iqbal	Talking Twitty	1.0	1	2016 guddyapps	.app	Entertainment	Talking Twitty	software	Sajid Iqbal	ios-app	21-12-2015 17:19	2015-04-17T14:36:25Z	http://a902.phobos.apple.com/us/r30/Purple1/v4/7c/12/74/7c127453-aac1-11f3-5f8e-99a346260bd2/icon114x114.png	com.apster.talkingfunky	3\|date=1450717200000&sf=143441&rdom=apple.com	Kent Backman	14C1510	en	Talking Twitty	TalkingTwitty		com.apster.talkingtwitty	6.0	TalkingTwitty	APPL		1.0	????	1	com.apple.compilers.llvm.clang.1_0	12B411	iphoneos	8.1	12B411	iphoneos8.1	611	6A2008a	7.0											543	25.10 MB	13-03-2015 05:54	21-12-2015 12:20	1						10	16	36	42	51		387	1				1			2		10	17	36	386
13		3ce9962e70492a5a8786d24688cb3280	964cb160483492aa395341bced8bd11aff7b36fa	9a6621bcddd6eba33805afcfb665a736d3c5d8cc0c9a5a26c1a431618bba3c50	822896ff966e24b6ec6fc6ca68c08794			393216:MVHpTFLcPCK2ICUAZTC84+Cl3yKVb8Lsy4hU4b8PjGqO5xCgo4S:MHDLBLlrZG9jd8Lf4b8PjGqO5xCgo4S	iPhone	Zip archive data, at least v2.0 to extract	20.23 MB (21208544 bytes)	appended, UTF-8, Unicode				11-03-2020 17:03	11-03-2020 17:03	11-03-2020 17:03	13-03-2015 00:47	21-12-2015 12:24																										com.apster.talkingtwitty	Apple Root CA		KW57GSSYKH											kent@kentbackman.com	Sajid Iqbal	Talking Twitty	1.0	1	2015 guddyapps	.app	Entertainment	Talking Twitty	software	Sajid Iqbal	ios-app	21-12-2015 17:21	2015-04-08T08:31:15Z	http://a1448.phobos.apple.com/us/r30/Purple3/v4/2d/4f/77/2d4f7783-88b2-4ef1-69fc-6c4a800c8cce/icon114x114.png	com.apster.talkingmonster	3\|date=1450717200000&sf=143441&rdom=apple.com	Kent Backman	14C1510	en	Talking Monster	TalkingMonster		com.apster.talkingmonster	6.0	TalkingMonster	APPL		1.0	????	3	com.apple.compilers.llvm.clang.1_0	12B411	iphoneos	8.1	12B411	iphoneos8.1	611	6A2008a	7.0											471	22.79 MB	13-03-2015 00:47	21-12-2015 12:24	1						9	15	36	42	51		317	1				1			2		9	16	35	317
14		5533e893642264930100b314014ccbb0
15		790035c9485d8061ae79587cf8d63a64	d67dcc183506a3d324e78bf144808decf092ed1d	893f8f98a64d3d00d54e4ee3f5728f3e53cc7f8a65ebb6603cc0c4540cc12811	d8b4f200dd40ce97d3a18309d9d0070d			1572864:a5ccfF3QoQYu2uJiDALc62t84w3U/l6DXnCfNXh:qa9YooDALc62t84w3U/l6DXnCfNx	iPhone	Zip archive data, at least v2.0 to extract	103.50 MB (108528501 bytes)	appended			18-12-2015 03:36	12-07-2016 13:21	12-07-2016 13:21	05-07-2019 06:07	14-12-2014 10:23	18-12-2015 10:36																										com.apster.playwithsanta	Apple Root CA		KW57GSSYKH											kent@kentbackman.com	Sajid Iqbal	Play With Santa	1.0	1.0.0	2014 Appstertech	.app	Entertainment	Fun with Santa	software	Sajid Iqbal	ios-app	18-12-2015 14:33	2014-12-30T12:36:03Z	http://a492.phobos.apple.com/us/r30/Purple3/v4/4d/b2/31/4db23169-477e-b886-8ddc-62b1d2c4fff9/CRV_AP_150x90.jpeg	com.apster.playwithsanta	3\|date=1450449000000&sf=143441&rdom=apple.com	Kent Backman	14B25	en	Play With Santa	TalkingSanta		com.apster.playwithsanta	6.0	TalkingSanta	APPL		1.0	????	1.0.0	com.apple.compilers.llvm.clang.1_0	12B411	iphoneos	8.1	12B411	iphoneos8.1	610	6A1052d	7.0											248	105.65 MB	14-12-2014 10:23	18-12-2015 10:36	1						4	6	7	9	36		185	1							2		7		35	185
16		884a988a6cdb7584b1d5128e54b53f60	58c4327759afbd532b92c714337d2095ac4ad173	29aa0988c4168978a6d9357bf7237d2521f0a40d67b76844d82e634600546c12	822896ff966e24b6ec6fc6ca68c08794			393216:LbQBUOKu90a3alwpPTZl/cbHnBTR9BUOKjKu5oFs6iievmVyN0lhP:LbQBUOMGUbNHBUO6Ku5SEmx	iPhone	Zip archive data, at least v2.0 to extract	27.29 MB (28617615 bytes)	appended, UTF-8, Unicode				12-07-2016 13:19	12-07-2016 13:19	12-07-2016 13:19	13-03-2015 00:44	21-12-2015 12:23																										com.apster.talkingalien	Apple Root CA		KW57GSSYKH											kent@kentbackman.com	Sajid Iqbal	Talking Allien	1.0	3	2015 guddyapps	.app	Entertainment	Talking Allien	software	Sajid Iqbal	ios-app	21-12-2015 17:20	2015-03-26T07:36:01Z	http://a689.phobos.apple.com/us/r30/Purple1/v4/47/cc/3a/47cc3a12-af83-3b2e-835a-420e32a5bc1c/icon114x114.jpeg	com.apster.talkingalien	3\|date=1450717200000&sf=143441&rdom=apple.com	Kent Backman	14C1510	en	Talking Allien	TalkingAelien		com.apster.talkingalien	6.0	TalkingAelien	APPL		1.0	????	3	com.apple.compilers.llvm.clang.1_0	12B411	iphoneos	8.1	12B411	iphoneos8.1	611	6A2008a	7.0											605	33.01 MB	13-03-2015 00:44	21-12-2015 12:23	1						14	19	35	42	51		443	1				1			2		14	20	35	442
17		a2ea4ebc168384e1d3b2879eeea21421	dc4f8ec5bafd0269018861db05ad7629b221b842	58e3c719da7a58aba2b7ef1827d8b48d77d870def72fe0a7e1d338e72ab5774a	901e566445198b2f276c8699e0027b52			786432:GvRAAIZMccs3KbI5YvEln2a/0Rlk3pOBnc:SRsZVcs6LQNKk3p2c	iPhone	Zip archive data, at least v2.0 to extract	31.36 MB (32882648 bytes)	appended, UTF-8, Unicode				12-07-2016 13:17	12-07-2016 13:17	12-07-2016 13:17	24-02-2015 06:48	18-12-2015 11:32																										com.apster.doracat	Apple Root CA		KW57GSSYKH											kent@kentbackman.com	Sajid Iqbal	DoraCat	3.0	1	2014 Appstertech	.app	Entertainment	Talking DoraCat	software	Sajid Iqbal	ios-app	18-12-2015 15:38	2014-11-03T03:02:48Z	http://a681.phobos.apple.com/us/r30/Purple5/v4/3a/46/fc/3a46fc18-840b-1a25-5785-4a744ced423f/CRV_AP_150x90.lsr	com.apster.doracat	3\|date=1450452600000&sf=143441&rdom=apple.com	Kent Backman	14C109	en	DoraCat	TalkingDoraemon		com.apster.doracat	6.0	TalkingDoraemon	APPL		3.0	????	1	com.apple.compilers.llvm.clang.1_0	12B411	iphoneos	8.1	12B411	iphoneos8.1	611	6A2008a	7.0											590	32.82 MB	24-02-2015 06:48	18-12-2015 11:32	1						12	19	35	42	50		431	1				1			2		12	20	35	430
18		adc8cd33f6c676797ac949bcd79a9d36	8e30241f90f8b0d2699cc83a958379ddbc8c8a87	8412aa7941b5c0b3e4d50a02e8263e1c2ce37c15062f6054ea6401a9a5b60f19	822896ff966e24b6ec6fc6ca68c08794			393216:XHzKW/1n28xZbgNWGCbSGgEDu/gl2NPbxmpx:XH2Wtn3xZbuWGCbSfG6H1Nmpx	iPhone	Zip archive data, at least v2.0 to extract	20.54 MB (21539011 bytes)	appended, UTF-8, Unicode				12-07-2016 13:19	12-07-2016 13:19	12-07-2016 13:19	10-03-2015 06:16	21-12-2015 12:20																										com.apster.talkingshark	Apple Root CA		KW57GSSYKH											kent@kentbackman.com	Sajid Iqbal	Talking Shark	1.0	3	2015, guddy apps	.app	Entertainment	Talking Shark	software	Sajid Iqbal	ios-app	21-12-2015 17:19	2015-03-19T16:01:19Z	http://a1445.phobos.apple.com/us/r30/Purple3/v4/c1/3e/6b/c13e6b0d-6672-2071-a277-ed12e47b529a/icon114x114.jpeg	com.apster.talkingshark	3\|date=1450717200000&sf=143441&rdom=apple.com	Kent Backman	14C109	en	Talking Shark	TalkingShark		com.apster.talkingshark	6.0	TalkingShark	AAPL		1.0	????	3	com.apple.compilers.llvm.clang.1_0	12B411	iphoneos	8.1	12B411	iphoneos8.1	611	6A2008a	7.0											445	22.12 MB	10-03-2015 06:16	21-12-2015 12:20	1						7	13	36	42	51		295	1				1			2		7	14	35	295
19		cc3db06722aaeec8ad8690cfa521778b	5ae83e74a40f3f06f6d552567eab0e7a43b44385	4ac43bcd13d3cb9c8e227839a2b43fd64d7f0e592ce8db6710f7e61473fb9b59	822896ff966e24b6ec6fc6ca68c08794			393216:REVP8pXfENtDObl2aWrEsh4TQFW1fOAzaxL4Yl7mivmpBdDdyPCjrbvu1auU5Wq1:RmP8xetabl2aWrEsh4Tw4fOAzaxLtdmb	iPhone	Zip archive data, at least v2.0 to extract	21.12 MB (22145036 bytes)	appended, UTF-8, Unicode				12-07-2016 13:18	12-07-2016 13:18	12-07-2016 13:18	25-03-2015 02:07	21-12-2015 12:23																										com.apster.talkingrobo	Apple Root CA		KW57GSSYKH											kent@kentbackman.com	Sajid Iqbal	Talking Robo	1.0	3	2015 guddyapps	.app	Entertainment	Talking Robo	software	Sajid Iqbal	ios-app	21-12-2015 17:21	2015-04-22T03:28:59Z	http://a141.phobos.apple.com/us/r30/Purple3/v4/37/05/b0/3705b08e-9a04-7cf4-5a54-358462d39386/icon114x114.jpeg	com.apster.talkingrobo	3\|date=1450717200000&sf=143441&rdom=apple.com	Kent Backman	14C1514	en	Talking Robo	TalkingRobo		com.apster.talkingrobo	6.0	TalkingRobo	APPL		1.0	????	3	com.apple.compilers.llvm.clang.1_0	12B411	iphoneos	8.1	12B411	iphoneos8.1	611	6A2008a	7.0											784	29.75 MB	25-03-2015 02:07	21-12-2015 12:23	1						12	17	36	42	51		625	1				1			2		12	18	36	624
20		e2d98e303a1331f2adb6a66663e2932d	bb76a62f900647930011aa33ba5cb80754f28de1	02f4e3fec3f63e23bde0b9c2484c6c22ac30aee0f21fdb2a64ca90dc52479de0	822896ff966e24b6ec6fc6ca68c08794			393216:1cpiCRmsJ9Mgyn6ou2QcOQS+/TS7s4hcyEMxiUC/Tby3f:11hgM/v7TNNbMhNN70XIf	iPhone	Zip archive data, at least v2.0 to extract	15.39 MB (16140737 bytes)	appended, UTF-8, Unicode				12-07-2016 13:19	12-07-2016 13:19	23-12-2019 10:50	10-03-2015 08:05	21-12-2015 12:23																										com.apster.talkingbaba	Apple Root CA		KW57GSSYKH											kent@kentbackman.com	Sajid Iqbal	Talking Baba	1.0	3	2015 guddyapps	.app	Entertainment	Talking Baba	software	Sajid Iqbal	ios-app	21-12-2015 17:21	2015-03-24T18:45:07Z	http://a1693.phobos.apple.com/us/r30/Purple5/v4/79/48/5b/79485b41-1cf3-21d3-a748-091022720a6a/CRV_AP_150x90.jpeg	com.apster.talkingbaba	3\|date=1450717200000&sf=143441&rdom=apple.com	Kent Backman	14C109	en	Talking Baba	TalkingBaba		com.apster.talkingbaba	6.0	TalkingBaba	APPL		1.0	????	3	com.apple.compilers.llvm.clang.1_0	12B411	iphoneos	8.1	12B411	iphoneos8.1	611	6A2008a	7.0											430	16.36 MB	10-03-2015 08:05	21-12-2015 12:23	1						14	20	36	42	51		266	1				1			2		14	21	36	265
21		e8d7eccfa480147bdf588f63accb9319	27c1e8c74662cc0dc5ecc5237e95e1ac86f6c8e6	efc963193945e34d237825cb946cc33f1aa0346164ed4079f1a5171cd17f96f3	6f6d8cf1a7917d1c6ed594a484c41af0			24576:4snJZrFFVqSj/7hJDZTPmcmPozFNj6bDmgP4PFBBB65:vDVqM7pjmcmPozFNbgP4365	iPhone	Zip archive data, at least v2.0 to extract	1020.93 KB (1045433 bytes)					12-07-2016 13:19	12-07-2016 13:19	12-07-2016 13:19	20-05-2012 08:20	20-05-2012 08:21																																																										1.1E+54	en	SpyKey	SpyKey	Icon.png	com.kobisnir.SpyKey	6.0	SpyKey	APPL	ResourceRules.plist	1.0.4	????	1.0.4	com.apple.compilers.llvm.clang.1_0	9B176	iphoneos	5.1	9B176	iphoneos5.1	432	4E2002	3.2		MainWindow				20-11-2011 12:53	12-11-2012 12:53	SpyKey		48216F05-DB75-4910-8398-0EB390985AF4	36	1.59 MB	20-05-2012 08:20	20-05-2012 08:21	1							3	17	5	10										4				17		1	1
22	spykey	ba91eee0a3cc8c54c69162f37eb0f95a
23	tinyv	06036a5ce6927e75c774fc9669259105	e8d74fdfd8ef0c4d7ea00c1baa965ba28920eba6	96f5698271c9b79e78a6f499bd74b4eb78d00f7247db5dcb3b65ba8ecbf4a098	2a4ba8e5d0e5001a53c080bf2a1449a7			786432:eDWm0xAXl+N1Gx679t33VF/yN/KTRfFblW7rhh6:rmDXEze6791C5KF9gFh6	iPhone	Zip archive data, at least v1.0 to extract	25.15 MB (26372799 bytes)	Unicode			15-12-2015 00:05	18-12-2015 17:32	23-12-2015 10:10	23-12-2015 10:10	20-07-2015 12:32	30-07-2015 08:21	pqcom.qiyi.iphone.ipa																																							admin@dujin.com	QIYI		6.5	20150720203600		.app			software	QIYI	ios-app	26-08-2009 19:12	2010-09-26T02:20:43Z	http://a952.phobos.apple.com/us/r30/Purple5/v4/d0/a8/89/d0a88947-53a3-c001-0686-5c3e57584b48/icon114x114.jpeg	com.qiyi.iphone																													TeamName	11-07-2015 09:04	10-07-2016 09:04	com.xinheng.tui2	Henan Xinhengtong Trading Co., Ltd.	61e31ad7-5240-4698-ae47-6d1d24066510	2051	39.27 MB	20-07-2015 12:32	30-07-2015 08:21	2	2						4	950	11	22		9												951	9
24		724329f5be3cea4cf5ad51a1c8558638	6dc6c53a39e3815d141334634a6527bce0f794f1	4242b0055bc53125cef00f12320eaaebeb7c55eb54303b21e8a5f9e54cc7735e	3abb626aafb1828df40aae761a666b02			786432:CSuC92XjPhwLLxRhjpaLnzar7JCPk9bqL:ru9jPKLFDjAzar9ouqL	iPhone	Zip archive data, at least v1.0 to extract	25.48 MB (26720045 bytes)	maxorder, Unicode			15-12-2015 00:05	23-12-2015 10:06	23-12-2015 10:06	15-12-2019 06:52	03-08-2015 16:02	07-09-2015 16:24	pq_com.youku.YouKu.5.0.ipa																																																																																			wuapp	26-06-2015 07:16	25-06-2016 07:16	wuapp	Zhengzhou Souker Network Technology Co., Ltd.	2514f0bc-e517-4cd3-af23-d2a80f5ee428	1825	6.33 MB	03-08-2015 16:02	07-09-2015 16:24	2					2	1	6	943	17	29										2		1		945		13	1	3	3
25		8187fb5f41be95d54931695fba465d7b	a1cc0b6deb366eb4bff51a012d423799d7822e86	c6ec85a4aedfdd543f1c20fdf1ed15923e257c9664fd8c5ea38826dd47c0322d	c1db169df47f5c5216cb8264ab66577d			1572864:RctfMHCf5JRDPJ0WZrGznidYNrzwiOBCslYmL:m9USh0GSzniorz1+CsT	iPhone	Zip archive data, at least v1.0 to extract	51.15 MB (53636081 bytes)	appended, UTF-8			15-12-2015 00:05	16-12-2015 11:40	23-12-2015 10:11	09-06-2020 02:04	19-11-2015 07:30	03-12-2015 17:32	pq_weixin63820151203.ipa																								Dec 3, 2015 at 1:32:15 AM	com.qenpent.vip	Apple Root CA	Dec 3, 2015 at 1:32:15 AM	23FHYFY8Q3																																																							xiezouinstallll	25-09-2015 10:59	24-09-2016 10:59	xiezouInstall	Shenzhen Techdow Pharmaceutical Co., Ltd.	ff788f00-1a1c-4e32-b0b9-2b6c17ed541c	2730	6.53 MB	19-11-2015 07:30	03-12-2015 17:32			1	1	1	2		2	941	7	28		12		1	1	1	2	3	6		7			934	12				1	1
26		ccc9c5207b432cdb60e154a52c796ac1	7958cd00117d27e90392bcd56d61b476069372ec	bdb452b56b21d3537de252d612b2469c752b2a9f7e0cc0d45624bedf762cfc7b	9b61b7d99b72da7c3403be8429686a80			196608:IKuZvaYoBM2jE/5AbHrobLZAf2jPgQfWiSZJqH4La4yWdThgk3RqtzVWs30T:+vUy2jj82f2jIQfWJZhj3RqbT0T	iPhone	Zip archive data, at least v1.0 to extract	10.88 MB (11413101 bytes)	appended				30-10-2015 18:39	23-12-2015 10:04	09-06-2020 07:54	12-07-2015 22:29	14-08-2015 18:47	xiaoxiaov.ipa com.xiaoxiaov.ipa																								Aug 14, 2015 at 3:47:20 AM	com.xiaoxiaov	Apple Root CA	Aug 14, 2015 at 3:47:20 AM	97LM5842RL																													13F1096	en	西瓜播放器	西瓜播放器		com.xiaoxiaov	6.0	西瓜播放器	APPL		1.0.0.6	????	100041	com.apple.compilers.llvm.clang.1_0	12D508	iphoneos	8.2	12D508	iphoneos8.2	620	6C131e	6.0			LaunchImage	Launch Screen	lixiao	14-08-2015 10:26	13-08-2016 10:26	hui	NETAC Technology Co., Ltd.	87c8be28-2a27-48de-9b04-615c1cc7d02d	117	19.98 MB	12-07-2015 22:29	14-08-2015 18:47	3				1		1	3	81	8	20												1		83						1	1	13
27		e8d28837e92e98bdcd6530990482ec14	18a914e233ba5cfe571f029fd5f5e9cbb3043609	09fb33e3fe30e99a993dbf834ea6085f46f60366a17964023eb184ee64247be9	81e841be4c4314cfdcc14be6ec8e1961			24576:HbNt+yCHYeNPTjhuMwQrfUmPiqBcHJS5Y1:HZUFvsQzNKUck5Y1	ZIP	Zip archive data, at least v2.0 to extract	858.09 KB (878681 bytes)					22-10-2015 16:27	23-12-2015 10:13	10-06-2020 01:05	05-08-2015 17:38	28-08-2015 16:15	deb.zip	4	1.65 Mb	28-08-2015 16:15	05-08-2015 17:38																																																																																									1							1			1	1																									1
28	xagent	823dcbd2fca465fabae71098bbb81e1e	176e92e7cfc0e57be83e901c36ba17b255ba0b1b	c0eade2ee74b445635302393f186c382aa357678bd98ed0115aad3aa4ac57674	0fb341a6d941b3197631c5244c9b0f0e			96:n5MrpQY3/yQw7gPgOKBUzFsl/qZvQiJAGlZS6YmRXDwuj3:6JKgYOC1KQCAGHS6X0u	Mach-O	Mach-O dynamically linked shared library acorn	14.38 KB (14720 bytes)					12-07-2016 13:18	18-05-2018 10:00	12-06-2019 17:52																																																																																																																																					dynamically bound shared library	0xfeedface	ARM	ARM_V7		21	2116	DYLDLINKNOUNDEFSNO_REEXPORTED_DYLIBSTWOLEVEL	__TEXT __DATA __LINKEDIT	0x0 0x2000 0x3000	0x2000 0x1000 0x1000	0x0 0x2000 0x3000	0x2000 0x1000 0x980	4 10 0	/Library/Frameworks/CydiaSubstrate.framework/CydiaSubstrate /System/Library/Frameworks/AudioToolbox.framework/AudioToolbox /System/Library/Frameworks/CoreFoundation.framework/CoreFoundation /System/Library/Frameworks/CoreTelephony.framework/CoreTelephony /System/Library/Frameworks/Foundation.framework/Foundation /System/Library/Frameworks/UIKit.framework/UIKit /usr/lib/libSystem.B.dylib /usr/lib/libgcc_s.1.dylib /usr/lib/libobjc.A.dylib /usr/lib/libstdc++.6.dylib	LC_ID_DYLIB LC_SYMTAB LC_DYSYMTAB LC_UUID LC_VERSION_MIN_IPHNEOS LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_FUNCTION_STARTS LC_DATA_IN_CODE LC_CODE_SIGNATURE
29	yispecter	0b98ee74843809493b0661c679a3c90c	2369371296cf99c46361eb8fcc37dad975cc087c	8873908061f9c8d563de26fe6fa671080a90a2d60f795cc0664ef686e1162955	a11a6fff343f6e90c5cef2ee2bab9f1a			12288:b/U1ifZhgro30Q+ef/YHcY0SAWSj8228bFdexyuGHnZ68d3F1ZjmA:bdhu8EQ+ef/YWSAB82FbLex998RRmA	iPhone	Zip archive data, at least v1.0 to extract	576.36 KB (590191 bytes)		30-03-2015 09:45		16-09-2015 23:54	05-10-2015 01:25	04-09-2016 03:39	29-12-2016 06:44	30-03-2015 21:42	30-03-2015 21:45	NoIconUpdate.ipa NoIconUpdate1.ipa																								Mar 30, 2015, 9:45:04 AM	com.weiying.noiconupdate	Apple Root CA	Mar 30, 2015, 9:45:04 AM	VN36KFTLTA																													14C109	zh_CN	Game Center	NoIconUpdate		com.weiying.noiconupdate	6.0	NoIconUpdate	APPL	ResourceRules.plist	2.3.0	????	2.3.0	com.apple.compilers.llvm.clang.1_0	12B411	iphoneos	8.1	12B411	iphoneos8.1	611	6A2008a	6.0			LaunchImage		NoIconUpdate	24-03-2015 03:48	23-03-2016 03:48	NoIconUpdate	Beijing Yingmob Interaction Technology co, .ltd	5c8523fd-720e-4ff6-a4d1-294131422276	20	1.45 MB	30-03-2015 21:42	30-03-2015 21:45	1						1	1	2	4	9												1		3									1
30		29e147675af38ece406b6227f3ccd76b	009d0e2b778cd58752a2e2aa511cc36546b559b4	526e1dc893629c00c017fbe62b53392cb26bc6b15947e7b8b7df10a62f40cbad	ecc4f44da1297fdf266f8db0a0a5e951			49152:lBs5d6JmUMI0qlnbZpGgiSlQEUJWWW6XZ3P5MTUxw5AkijzdeSydp/yG6eDGoeN4:l0d0mfqFVp9icUJPbxAbwdeSItSOl	iPhone	Zip archive data, at least v1.0 to extract	3.00 MB (3148992 bytes)	appended	01-09-2015 04:19			05-10-2015 01:26	04-09-2016 03:39	27-09-2018 07:58	01-09-2015 15:19	01-09-2015 16:19	HYQvod_3.3.3.ipa HYQvod_3.3.31.ipa																								Sep 1, 2015, 4:19:19 AM	com.weiying.Wvod	Apple Root CA	Sep 1, 2015, 4:19:19 AM	GG9538Q4RA																													1.40E+47	en	快播私密版	HYQvod		com.weiying.Wvod	6.0	HYQvod	APPL	ResourceRules.plist	3.3.3	????	1.0	com.apple.compilers.llvm.clang.1_0	12H141	iphoneos	8.4	12H141	iphoneos8.4	640	6E535b	6.0	YES				ResiginAppID	25-08-2015 01:28	24-08-2016 01:28	ResiginDisProfile	Baiwochuangxiang Technology Co., Ltd.	b9b3bd35-48da-4ec6-8a3e-b0a02999997b	100	5.04 MB	01-09-2015 15:19	01-09-2015 16:19	1							3	71	9	13		3					1							70	1,2									1	1
31		304a10d364454ee8f2e26979927c0334	5ede35772d73b9e1ce49c092545ee2d89b720619	8fa135fc74583e05be208752e8ce191060b1617447815a007efac78662b425d0	ecc4f44da1297fdf266f8db0a0a5e951			49152:DoDV4Sl9CqcvvLW2qx3rWMELOmemzDxWcbY:sDVvzrWMELO4sEY	Mach-O	Mach-O executable acorn	3.19 MB (3347360 bytes)		01-09-2015 04:19			05-10-2015 01:25	14-10-2015 12:40	16-10-2018 23:29			HYQvod_3.3.3																								Sep 1, 2015, 4:19:19 AM	com.weiying.Wvod	Apple Root CA	Sep 1, 2015, 4:19:19 AM	GG9538Q4RA																																																																																																						executable file	0xfeedface	ARM	ARM_V7	0x9936d	48	5132	BINDS_TO_WEAKDYLDLINKNOUNDEFSPIETWOLEVEL	__PAGEZERO __TEXT __DATA __LINKEDIT	0x0 0x4000 0x2a8000 0x310000	0x4000 0x2a4000 0x68000 0x28000	0x0 0x0 0x2a4000x30c000	0x0 0x2a4000 0x68000 0x253a0	0 10 20 0	/System/Library/Frameworks/AVFoundation.framework/AVFoundation /System/Library/Frameworks/AdSupport.framework/AdSupport /System/Library/Frameworks/AudioToolbox.framework/AudioToolbox /System/Library/Frameworks/CFNetwork.framework/CFNetwork /System/Library/Frameworks/CoreFoundation.framework/CoreFoundation /System/Library/Frameworks/CoreGraphics.framework/CoreGraphics /System/Library/Frameworks/CoreImage.framework/CoreImage /System/Library/Frameworks/CoreLocation.framework/CoreLocation /System/Library/Frameworks/CoreMedia.framework/CoreMedia /System/Library/Frameworks/CoreTelephony.framework/CoreTelephony /System/Library/Frameworks/EventKit.framework/EventKit /System/Library/Frameworks/EventKitUI.framework/EventKitUI /System/Library/Frameworks/Foundation.framework/Foundation /System/Library/Frameworks/IOKit.framework/Versions/A/IOKit /System/Library/Frameworks/ImageIO.framework/ImageIO /System/Library/Frameworks/MapKit.framework/MapKit /System/Library/Frameworks/MediaPlayer.framework/MediaPlayer /System/Library/Frameworks/MessageUI.framework/MessageUI /System/Library/Frameworks/MobileCoreServices.framework/MobileCoreServices /System/Library/Frameworks/QuartzCore.framework/QuartzCore /System/Library/Frameworks/Security.framework/Security /System/Library/Frameworks/StoreKit.framework/StoreKit /System/Library/Frameworks/SystemConfiguration.framework/SystemConfiguration /System/Library/Frameworks/UIKit.framework/UIKit /System/Library/PrivateFrameworks/MobileInstallation.framework/MobileInstallation /System/Library/PrivateFrameworks/SpringBoardServices.framework/SpringBoardServices /usr/lib/libSystem.B.dylib /usr/lib/libc++.1.dylib /usr/lib/libobjc.A.dylib /usr/lib/libsqlite3.dylib /usr/lib/libz.1.dylib	LC_DYLD_INFO_ONLY LC_SYMTAB LC_DYSYMTAB LC_LOAD_DYLINKER LC_UUID LC_VERSION_MIN_IPHONEOS LC_SOURCE_VERSION LC_MAIN LC_ENCRYPTION_INFO LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_FUNCTION_STARTS LC_DATA_IN_CODE LC_DYLIB_CODE_SIGN_DRS LC_CODE_SIGNATURE
32		35ee9556457d6170ea83c800887c1cbe	a33dfcac2f323813b014b8a72e1446e2bfd15f3c	7714dbb85c5ebcd85cd1d93299479cff2cc82ad0ed11803c24c44106530d2e2f	372adfcbc77a49ec6289f6f6aa865709			24576:h76oJgghJ72hq4/8vd/3b1KNzWIv77ZetS5LeCSdr7v3iBlil0PXaqRTMniy0mzi:LXh1uZjY3gjRTMniy0mzkcIyi	Mach-O	Mach-O executable acorn	1.89 MB (1984256 bytes)		28-07-2015 04:49			05-10-2015 07:56	14-10-2015 12:38	07-04-2017 21:16			HYQvod																								Jul 28, 2015, 4:49:12 AM	com.weiying.Wvod	Apple Root CA	Jul 28, 2015, 4:49:12 AM	NNRYWBP8DH																																																																																																						executable file	0xfeedface	ARM	ARM_V7	0x8ccad	43	4644	BINDS_TO_WEAKDYLDLINKNOUNDEFSPIETWOLEVEL	__PAGEZERO __TEXT __DATA __LINKEDIT	0x0 0x4000 0x188000 0x1cc000	0x4000 0x184000 0x44000 0x20000	0x0 0x0 0x184000 0x1c8000	0x0 0x184000 0x44000 0x1c700	0 10 19 0	/System/Library/Frameworks/AVFoundation.framework/AVFoundation /System/Library/Frameworks/AdSupport.framework/AdSupport /System/Library/Frameworks/CFNetwork.framework/CFNetwork /System/Library/Frameworks/CoreFoundation.framework/CoreFoundation /System/Library/Frameworks/CoreGraphics.framework/CoreGraphics /System/Library/Frameworks/CoreLocation.framework/CoreLocation /System/Library/Frameworks/CoreMedia.framework/CoreMedia /System/Library/Frameworks/CoreTelephony.framework/CoreTelephony /System/Library/Frameworks/Foundation.framework/Foundation /System/Library/Frameworks/IOKit.framework/Versions/A/IOKit /System/Library/Frameworks/ImageIO.framework/ImageIO /System/Library/Frameworks/MapKit.framework/MapKit /System/Library/Frameworks/MediaPlayer.framework/MediaPlayer /System/Library/Frameworks/MobileCoreServices.framework/MobileCoreServices /System/Library/Frameworks/QuartzCore.framework/QuartzCore /System/Library/Frameworks/Security.framework/Security /System/Library/Frameworks/SystemConfiguration.framework/SystemConfiguration /System/Library/Frameworks/UIKit.framework/UIKit /System/Library/PrivateFrameworks/MobileInstallation.framework/MobileInstallation /System/Library/PrivateFrameworks/SpringBoardServices.framework/SpringBoardServices /usr/lib/libSystem.B.dylib /usr/lib/libc++.1.dylib /usr/lib/libobjc.A.dylib /usr/lib/libsqlite3.dylib /usr/lib/libz.1.dylib	LC_DYLD_INFO_ONLY LC_SYMTAB LC_DYSYMTAB LC_LOAD_DYLINKER LC_UUID LC_VERSION_MIN_IPHONEOS LC_SOURCE_VERSION LC_MAIN LC_ENCRYPTION_INFO LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_WEAK_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_FUNCTION_STARTS LC_DATA_IN_CODE LC_DYLIB_CODE_SIGN_DRS LC_CODE_SIGNATURE
33		3a41bb59e2946a66bbd03a8b4d51510b	bc435c82cf4dbc7f91c89aa5770244d4a871998a	fc55c5ced1027b48885780c87980a286181d3639dfc97d03ebe04ec012a1b677	7ba28b488a35398b29a621e6d7233711			49152:8Ya4HngtlB48g6X24vhlkN0sAGUKVb5ouEPHUwkxMNm:I4UxS0QUKVFouK04A	Mach-O	Mach-O fat file with 2 architectures	5.70 MB (5978608 bytes)		01-09-2015 22:51		16-09-2015 23:54	05-10-2015 01:22	21-10-2015 09:29	27-11-2016 15:10			DaPian																								Sep 1, 2015, 10:51:54 PM	com.weiying.DaPian	Apple Root CA	Sep 1, 2015, 10:51:54 PM	GG9538Q4RA																																																																																																						executable file	0xfeedface	ARM	ARM_V7	0x6eff1	44	4852	DYLDLINKNOUNDEFSPIETWOLEVEL	__PAGEZERO __TEXT __DATA __LINKEDIT	0x0 0x4000 0x238000 0x288000	0x4000 0x234000 0x50000 0x20000	0x0 0x0 0x234000 0x284000	0x0 0x234000 0x50000 0x1f8a0	0 10 21 0	/System/Library/Frameworks/AVFoundation.framework/AVFoundation /System/Library/Frameworks/AudioToolbox.framework/AudioToolbox /System/Library/Frameworks/CFNetwork.framework/CFNetwork /System/Library/Frameworks/CoreFoundation.framework/CoreFoundation /System/Library/Frameworks/CoreGraphics.framework/CoreGraphics /System/Library/Frameworks/CoreLocation.framework/CoreLocation /System/Library/Frameworks/CoreMedia.framework/CoreMedia /System/Library/Frameworks/CoreTelephony.framework/CoreTelephony /System/Library/Frameworks/CoreText.framework/CoreText /System/Library/Frameworks/EventKit.framework/EventKit /System/Library/Frameworks/EventKitUI.framework/EventKitUI /System/Library/Frameworks/Foundation.framework/Foundation /System/Library/Frameworks/MediaPlayer.framework/MediaPlayer /System/Library/Frameworks/MessageUI.framework/MessageUI /System/Library/Frameworks/MobileCoreServices.framework/MobileCoreServices /System/Library/Frameworks/QuartzCore.framework/QuartzCore /System/Library/Frameworks/Security.framework/Security /System/Library/Frameworks/StoreKit.framework/StoreKit /System/Library/Frameworks/SystemConfiguration.framework/SystemConfiguration /System/Library/Frameworks/UIKit.framework/UIKit /System/Library/PrivateFrameworks/MobileInstallation.framework/MobileInstallation /usr/lib/libSystem.B.dylib /usr/lib/libobjc.A.dylib /usr/lib/libsqlite3.dylib /usr/lib/libstdc++.6.dylib /usr/lib/libz.1.dylib	LC_DYLD_INFO_ONLY LC_SYMTAB LC_DYSYMTAB LC_LOAD_DYLINKER LC_UUID LC_VERSION_MIN_IPHONEOS LC_SOURCE_VERSION LC_MAIN LC_ENCRYPTION_INFO LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_WEAK_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_FUNCTION_STARTS LC_DATA_IN_CODE LC_DYLIB_CODE_SIGN_DRS LC_CODE_SIGNATURE
34		4460f3d29a4bce8aa8e8ffde4a467b70	ee94a8373cecfef7579224e2f87f386aa7615cb1	e7f071929a4304447cf638057d9499df9970b2a3d53d328a609f191a4bc29ffd	a11a6fff343f6e90c5cef2ee2bab9f1a			24576:P89yRcQk70Q9o/FLZ1bB5M9VdVjucX6YXOjOs2LDFDK69e:Ku2OQ	Mach-O	Mach-O executable acorn	1.36 MB (1427040 bytes)					05-10-2015 01:23	12-07-2016 10:26	21-05-2020 12:47			NoIconUpdate																								Mar 30, 2015 at 6:45:04 AM	com.weiying.noiconupdate	Apple Root CA	Mar 30, 2015 at 6:45:04 AM	VN36KFTLTA																																																																																																						executable file	0xfeedface	ARM	ARM_V7	0x28a79	33	3700	DYLDLINKNOUNDEFSPIETWOLEVEL	__PAGEZERO __TEXT __DATA __LINKEDIT	0x0 0x4000 0xcc000 0xec000	0x4000 0xc8000 0x2000 0x75000	0x0 0x0 0xc8000 0xe8000	0x0 0xc8000 0x20000 0x74660	0 10 17 0	/System/Library/Frameworks/AVFoundation.framework/AVFoundation /System/Library/Frameworks/AdSupport.framework/AdSupport /System/Library/Frameworks/AudioToolbox.framework/AudioToolbox /System/Library/Frameworks/CoreFoundation.framework/CoreFoundation /System/Library/Frameworks/CoreGraphics.framework/CoreGraphics /System/Library/Frameworks/CoreTelephony.framework/CoreTelephony /System/Library/Frameworks/Foundation.framework/Foundation /System/Library/Frameworks/Security.framework/Security /System/Library/Frameworks/SystemConfiguration.framework/SystemConfiguration /System/Library/Frameworks/UIKit.framework/UIKit /System/Library/PrivateFrameworks/MobileInstallation.framework/MobileInstallation /System/Library/PrivateFrameworks/SpringBoardServices.framework/SpringBoardServices /usr/lib/libSystem.B.dylib /usr/lib/libobjc.A.dylib /usr/lib/libsqlite3.dylib /usr/lib/libz.1.dylib	LC_DYLD_INFO_ONLY LC_SYMTAB LC_DYSYMTAB LC_LOAD_DYLINKER LC_UUID LC_VERSION_MIN_IPHONEOS LC_SOURCE_VERSION LC_MAIN LC_ENCRYPTION_INFO LC_LOAD_DYLIB LC_FUNCTION_STARTS LC_DATA_IN_CODE LC_DYLIB_CODE_SIGN_DRS LC_CODE_SIGNATURE
35		62c6f0e3615b0771c0d189d3a7c50477	31657fecf8d0d6c16b3eb491d161632f97259a3f	4938b9861b7c55fbbe47d2ba04e9aff2da186e282f1e9ff0a15bbb22a5f6e0e7	aae320883a5bb9fb76e52c7833259731			24576:yL4d1C2Z9RRfT89cC+YrWydoYpjYd74BDTQ3oDQQ3bFXgv:yLa1p9RRfqlNoYpjnpvFs	iPhone	Zip archive data, at least v1.0 to extract	1.42 MB (1484304 bytes)		30-03-2015 09:44			05-10-2015 01:24	04-09-2016 03:38	04-09-2016 03:38	30-03-2015 21:42	30-03-2015 21:44	ADPage.ipa ADPage1.ipa																								Mar 30, 2015, 9:44:12 AM	com.weiying.ad	Apple Root CA	Mar 30, 2015, 9:44:12 AM	VN36KFTLTA																													14C109	zh_CN	Cydia	ADPage		com.weiying.ad	6.0	ADPage	APPL	ResourceRules.plist	2.3.0	????	2.3.0	com.apple.compilers.llvm.clang.1_0	12B411	iphoneos	8.1	12B411	iphoneos8.1	611	6A2008a	6.0					weiyingSDK	24-03-2015 03:55	23-03-2016 03:55	ADPage	Beijing Yingmob Interaction Technology co, .ltd	e92c5518-2c86-4de3-9c0e-12371c5a0d8e	70	2.98 MB	30-03-2015 21:42	30-03-2015 21:44	1						1	2	53	4	8		1										1		54
36		6e907716dc1aa6b9c490ce58aaae0d53	ed8ef5ec3b6ce414d3436632c6d1d70683665ae4	5259854994945a165996d994e6484c1afc1c7e628cb5df2dc3750f4f9f92202e	7ba28b488a35398b29a621e6d7233711			49152:5UfDqynen6gWl2RBENE6tec2QN1zxLyyyXb7fv0kFcSZ/iQ3dJDgb:G93l2RONE6tevQN1zEL73b3tpE	iPhone	Zip archive data, at least v1.0 to extract	2.70 MB (2826575 bytes)		01-09-2015 22:51			05-10-2015 01:24	04-09-2016 03:38	08-04-2017 21:16	01-09-2015 16:52	02-09-2015 10:51	DaPian.ipa DaPian1.ipa																								Sep 1, 2015, 10:51:54 PM	com.weiying.DaPian	Apple Root CA	Sep 1, 2015, 10:51:54 PM	GG9538Q4RA																													1.40E+47	en	快播5.0	DaPian		com.weiying.DaPian	6.0	DaPian	APPL	ResourceRules.plist	2.3.5	????	1.0	com.apple.compilers.llvm.clang.1_0	12H141	iphoneos	8.4	12H141	iphoneos8.4	640	6E35b	6.0					ResiginAppID	25-08-2015 01:28	24-08-2016 01:28	ResiginDisProfile	Baiwochuangxiang Technology Co., Ltd.	b9b3bd35-48da-4ec6-8a3e-b0a02999997b	88	6.36 MB	01-09-2015 16:52	02-09-2015 10:51	1							3	69	7	7		1					1		1					69	1
37		8e93947dfd1b11a77a04429bd8b32ced	7c3bec0bd93778c7011baa6f1856388d21c3c9c3	57cc101ee4a9f306236d1d4fb5ccb3bb96fa76210142a5ec483a49321d2bd603	aae320883a5bb9fb76e52c7833259731			24576:W4nZMB22gjAtd6lksg8CKfd/prOQd0pCDaajsGl8TGkLF+FI:aHdKaQ+vBj	Mach-O	Mach-O executable acorn	2.45 MB (2570560 bytes)					05-10-2015 01:20	31-03-2016 08:42	21-05-2020 12:47			ADPage VID244421110.virus																								Mar 30, 2015 at 6:44:12 AM	com.weiying.ad	Apple Root CA	Mar 30, 2015 at 6:44:12 AM	VN36KFTLTA																																																																																																						executable file	0xfeedface	ARM	ARM_V7	0x2d861	40	4324	BINDS_TO_WEAKDYLDLINKNOUNDEFSPIETWOLEVEL	__PAGEZERO __TEXT __DATA __LINKEDIT	0x0 0x4000 0x15c000 0x1a0000	0x4000 0x158000 0x44000 0xd8000	0x0 0x0 0x158000 0x19c000	0x0 0x158000 0x44000 0xd7940	0 10 18 0	/System/Library/Frameworks/AVFoundation.framework/AVFoundation /System/Library/Frameworks/AdSupport.framework/AdSupport /System/Library/Frameworks/AudioToolbox.framework/AudioToolbox /System/Library/Frameworks/CoreFoundation.framework/CoreFoundation /System/Library/Frameworks/CoreGraphics.framework/CoreGraphics /System/Library/Frameworks/CoreLocation.framework/CoreLocation /System/Library/Frameworks/CoreMotion.framework/CoreMotion /System/Library/Frameworks/CoreTelephony.framework/CoreTelephony /System/Library/Frameworks/Foundation.framework/Foundation /System/Library/Frameworks/MediaPlayer.framework/MediaPlayer /System/Library/Frameworks/MessageUI.framework/MessageUI /System/Library/Frameworks/QuartzCore.framework/QuartzCore /System/Library/Frameworks/Security.framework/Security /System/Library/Frameworks/SystemConfiguration.framework/SystemConfiguration /System/Library/Frameworks/UIKit.framework/UIKit /System/Library/PrivateFrameworks/MobileInstallation.framework/MobileInstallation /System/Library/PrivateFrameworks/SpringBoardServices.framework/SpringBoardServices /usr/lib/libSystem.B.dylib /usr/lib/libc++.1.dylib /usr/lib/libobjc.A.dylib /usr/lib/libsqlite3.dylib /usr/lib/libz.1.dylib	LC_DYLD_INFO_ONLY LC_SYMTAB LC_DYSYMTAB LC_LOAD_DYLINKER LC_UUID LC_VERSION_MIN_IPHONEOS LC_SOURCE_VERSION LC_MAIN LC_ENCRYPTION_INFO LC_LOAD_DYLIB LC_LOAD_WEAK_DYLIB LC_FUNCTION_STARTS LC_DATA_IN_CODE LC_DYLIB_CODE_SIGN_DRS LC_CODE_SIGNATURE
38		97210a234417954c7bbe87bfe685eaae	0a8acea794196a9db843f787a33461792f136042	ddd16577b458a5ec21ea0f57084033435a46f61dc5482f224c1fe54f47d295bc	372adfcbc77a49ec6289f6f6aa865709			49152:2lnbZpGgsSlQEUJWWW6XZ3TW+go62b1Dm+HjBvsrjFZrO42Ij4EM:2FVp9scUJcl2hmYAjvi4JjfM	iPhone	Zip archive data, at least v1.0 to extract	2.05 MB (2154552 bytes)		28-07-2015 04:49			18-08-2015 19:28	04-09-2016 03:39	18-11-2018 15:41	28-07-2015 16:44	28-07-2015 16:49	HYQvod.ipa HYQvod1.ipa 1438074603284.ipa																								Jul 28, 2015, 4:49:12 AM	com.weiying.Wvod	Apple Root CA	Jul 28, 2015, 4:49:12 AM	NNRYWBP8DH																													1.40E+47	en	快播私密版	HYQvod		com.weiying.Wvod	6.0	HYQvod	APPL	ResourceRules.plist	3.1.2	????	3.1.2	com.apple.compilers.llvm.clang.1_0	12H141	iphoneos	8.4	12H141	iphoneos8.4	640	6E35b	6.0	YES				mlgb2015615	15-06-2015 07:01	14-06-2016 07:01	mlgb2015615	Changzhou Wangyi Information Technology Co., Ltd.	90ed2fa6-b605-4498-9fd1-9f2b3685bc01	67	3.10 MB	28-07-2015 16:44	28-07-2015 16:49	1							3	44	7	12							1							43										1	1
39		e6b45faf823387bca7524c4d0329543f	274485e7c56a02cfe831eaf9d45d70ad27982fa6	41176825ba0627f61981280b27689a0c5cc6bfb310a408fa623515e6239b8647	9ff5141e40c538012360cffdb82d368a			24576:4Oq/5JBD/xuFWeOVL7N6ffXjh3+q8oJLkEMh:e/VFRFq8ot9M	Mach-O	Mach-O executable acorn	1.36 MB (1426368 bytes)		30-03-2015 09:45			05-10-2015 01:23	14-10-2015 12:43	27-11-2016 15:03			NoIcon																								Mar 30, 2015, 9:45:48 AM	com.weiying.hiddenIconLaunch	Apple Root CA	Mar 30, 2015, 9:45:48 AM	VN36KFTLTA																																																																																																						executable file	0xfeedface	ARM	ARM_V7	0x1b719	33	3700	DYLDLINKNOUNDEFSPIETWOLEVEL	__PAGEZERO __TEXT __DATA __LINKEDIT	0x0 0x4000 0xbc000 0xe0000	0x4000 0xb8000 0x24000 0x81000	0x0 0x0 0xb8000 0xdc000	0x0 0xb8000 0x24000 0x803c0	0 10 17 0	/System/Library/Frameworks/AVFoundation.framework/AVFoundation /System/Library/Frameworks/AdSupport.framework/AdSupport /System/Library/Frameworks/AudioToolbox.framework/AudioToolbox /System/Library/Frameworks/CoreFoundation.framework/CoreFoundation /System/Library/Frameworks/CoreGraphics.framework/CoreGraphics /System/Library/Frameworks/CoreTelephony.framework/CoreTelephony /System/Library/Frameworks/Foundation.framework/Foundation /System/Library/Frameworks/Security.framework/Security /System/Library/Frameworks/SystemConfiguration.framework/SystemConfiguration /System/Library/Frameworks/UIKit.framework/UIKit /System/Library/PrivateFrameworks/MobileInstallation.framework/MobileInstallation /System/Library/PrivateFrameworks/SpringBoardServices.framework/SpringBoardServices /usr/lib/libSystem.B.dylib /usr/lib/libobjc.A.dylib /usr/lib/libsqlite3.dylib /usr/lib/libz.1.dylib	LC_DYLD_INFO_ONLY LC_SYMTAB LC_DYSYMTAB LC_LOAD_DYLINKER LC_UUID LC_VERSION_MIN_IPHONEOS LC_SOURCE_VERSION LC_MAIN LC_ENCRYPTION_INFO LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_LOAD_DYLIB LC_FUNCTION_STARTS LC_DATA_IN_CODE LC_DYLIB_CODE_SIGN_DRS LC_CODE_SIGNATURE
40		fbf92317ca8a7d5c243ab62624701050	d0b0a3131b3fb6a62a9ac4ebdeb28511d731f9b3	98e9e65d6e674620eccaf3d024af1e7b736cc889e94a698685623d146d4fb15f	9ff5141e40c538012360cffdb82d368a			12288:9ifeiWXPrueq94qwj2fVEL0M4SBB8i8VDMx7VMaXZ1Bcd:g29qe0w6f6ISBB9CDiBAd	iPhone	Zip archive data, at least v2.0 to extract	567.52 KB (581136 bytes)		30-03-2015 09:45			05-10-2015 01:24	04-09-2016 03:39	04-09-2016 03:39	30-03-2015 06:42	16-09-2015 16:07	NoIcon.ipa NoIcon1.ipa																								Mar 30, 2015, 9:45:48 AM	com.weiying.hiddenIconLaunch	Apple Root CA	Mar 30, 2015, 9:45:48 AM	VN36KFTLTA																													14C109	en	Passbook	Nolcon		com.weiying.hiddenIconLaunch	6.0	NoIcon	APPL	ResourceRules.plist	2.3.0	????	2.3.0	com.apple.compilers.llvm.clang.1_0	12B411	iphoneos	8.1	12B411	iphoneos8.1	611	6A2008a	6.0			LaunchImage		hiddenIconLaunch	24-03-2015 03:50	23-03-2016 03:50	NoIcon	Beijing Yingmob Interaction Technology co, .ltd	7e5ca063-865c-4834-b062-c32218a0600a	19	1.44 MB	30-03-2015 06:42	16-09-2015 16:07	1						1	2	3	3	9												1		3

Share: Twitter, Facebook