Extract QQ from iPhone and analyze it

QQ is one of the most popular chat App in the world. Now let me show you how to extract QQ from iPhone and analyze it.

The version of iOS is 9.3.2 and the version of QQ is 6.5.3.

 

As you could see that QQ saved lots of important info in the text format files. Such as telecom, uin, e-mails which belongs to the suspect. Also user log in info, etc.

 

 

What else? If suspect transfer files between PC version QQ and Mobile version QQ, those files are saved in the  Filerecv folder.

 

The most important is the chat messages including the deleted ones. As you could see that all chat messages are only plain text. No encryption is definitely a good news to forensic guys.