36bf22c6f5e0511f519212569e5c49d4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

36bf22c6f5e0511f519212569e5c49d4_JaffaCakes118
Size

18.8MB
MD5

36bf22c6f5e0511f519212569e5c49d4
SHA1

9806ac6fddf01e0f704a8f66d965c42ea8f4cedd
SHA256

60cf7053e5a64c967b990637ba1accc33ba2a53e91b1ebfcc484d19b98dd2e58
SHA512

af3c214af42c1ff348388ad6b5103d934b1108ffba2f349bc1f06513629dc6260d04b380251ada791abc5c7cb657900d3cb1175b518434597f2396aa4cd3a5ff
SSDEEP

393216:WlkU23L/aNwUXK6CkFoFn7u8Zv9jdaxapDFhQMm+BhF29zCca+:Wm53LCJ5oFiGuyDFhQf9zCca+

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Required to be able to access the camera device.	android.permission.CAMERA
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE

Files

36bf22c6f5e0511f519212569e5c49d4_JaffaCakes118
.apk android arch:arm

com.xunlei.downloadprovider

com.xunlei.downloadprovider.loading.LaunchActivity

Activities

com.xunlei.downloadprovider.loading.LaunchActivity

android.intent.action.MAIN

com.xunlei.downloadprovider.frame.MainTabActivity

android.intent.action.VIEW

com.xunlei.downloadprovider.bho.ThunderTaskBHOActivity

com.xunlei.downloadprovider.ADD_TASK

com.xunlei.downloadprovider.bho.ScanCodeResultActivity

com.xunlei.downloadprovider.ADD_TASK
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

com.xunlei.downloadprovider.qrcode.CameraActivity

android.intent.action.MAIN

com.xunlei.downloadprovider.download.create.DownloadBtFileExplorerActivity

android.intent.action.VIEW

com.xunlei.downloadprovider.vod.VodPlayerActivity

android.intent.action.VIEW
android.intent.action.VIEW

com.xunlei.downloadprovider.vod.VodProxyActivity

android.intent.action.MAIN

com.xunlei.downloadprovider.web.DetailPageBrowserActivity

android.intent.action.VIEW
android.intent.action.VIEW

com.xunlei.downloadprovider.web.base.ShortMovieDetailActivity

android.intent.action.VIEW

com.xunlei.downloadprovider.share.WBShareActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.xunlei.downloadprovider.thirdpart.ThirdPartActivity

com.xulei.downloadprovider.thirdpart.start

com.xiaomi.account.openauth.AuthorizeActivity

com.xiaomi.account.openauth.action.AUTH

Permissions

com.xiaomi.permission.AUTH_SERVICE
android.permission.GET_ACCOUNTS
android.permission.ACCESS_DOWNLOAD_MANAGER
android.permission.WRITE_EXTERNAL_STORAGE
com.android.browser.permission.READ_HISTORY_BOOKMARKS
android.permission.INTERNET
android.permission.WAKE_LOCK
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_WIFI_MULTICAST_STATE
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.READ_SETTINGS
com.android.launcher.permission.WRITE_SETTINGS
com.android.launcher.permission.UNINSTALL_SHORTCUT
android.permission.VIBRATE
android.permission.WRITE_SETTINGS
android.permission.READ_SETTINGS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.CAMERA
android.permission.RESTART_PACKAGES
android.permission.GET_TASKS
android.permission.READ_LOGS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.ACCESS_COARSE_LOCATION
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.READ_SMS
com.xunlei.downloadprovider.permission.MIPUSH_RECEIVE
android.permission.ACCESS_COARSE_UPDATES
android.permission.ACCESS_FINE_LOCATION
android.permission.DISABLE_KEYGUARD
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.READ_EXTERNAL_STORAGE

Receivers

com.xunlei.downloadprovider.service.downloads.kernel.NetworkReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.xunlei.downloadprovider.app.ExternBroadcastReceiver

com.xunlei.downloadprovider.app.ExternBroadcast

com.xunlei.downloadprovider.service.NetworkAndScreenReceiver

android.intent.action.USER_PRESENT
android.intent.action.SCREEN_ON
android.net.conn.CONNECTIVITY_CHANGE

com.xunlei.downloadprovider.service.OsBootReceiver

android.intent.action.BOOT_COMPLETED

com.xunlei.downloadprovider.vod.libscomponent.VodPlayerDownloadReceiver

android.intent.action.DOWNLOAD_COMPLETE

com.xunlei.downloadprovider.vod.libscomponent.VodPlayerNotificationClickReceiver

android.intent.action.DOWNLOAD_NOTIFICATION_CLICKED

com.xunlei.downloadprovider.notification.ApkReceiver

com.xunlei.action.APK_CLICK

com.xunlei.downloadprovider.notification.CommonFileReceiver

com.xunlei.action.COMMON_FILE_CLICK
com.xunlei.action.COMMON_MERGE_FILES_CLICK
com.xunlei.action.COMMON_DELETE_NOTI_CLICK

com.xunlei.downloadprovider.frame.user.ApkFinishIntallReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REPLACED
android.net.conn.CONNECTIVITY_CHANGE

com.xunlei.downloadprovider.frame.user.NetWorkChangedReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.umeng.message.RegistrationReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED
android.intent.action.BOOT_COMPLETED

com.umeng.message.UmengBroadcastReceiver

org.agoo.android.intent.action.RECEIVE
com.xunlei.downloadprovider.intent.action.COMMAND
org.agoo.android.intent.action.RE_ELECTION_V2

com.xunlei.downloadprovider.notification.pushmessage.xiaomi.XiaoMiPushReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.ERROR

com.xiaomi.push.service.receivers.NetworkStatusReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.xiaomi.push.service.receivers.PingReceiver

com.xiaomi.push.PING_TIMER

com.android.providers.downloads.DownloadReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.MEDIA_MOUNTED

Services

com.xunlei.downloadprovider.service.DownloadService

com.xunlei.downloadprovider.service.DownloadServiceAction

com.uc.addon.sdk.remote.AddonService

com.uc.browser.action.Addon

com.xunlei.downloadprovider.thirdpart.thirdpartycallplay.ServiceThirdPartyCallPlay

com.xunlei.ThirdPartyCallPlay

com.umeng.message.UmengService

com.xunlei.downloadprovider.intent.action.START
com.xunlei.downloadprovider.intent.action.COCKROACH
org.agoo.android.intent.action.PING

org.android.agoo.service.ElectionService

org.agoo.android.intent.action.ELECTION_V2

com.baidu.location.f

com.baidu.location.service_v2.2
__xadsdk__remote__final__.jar
.apk android
dynamic1119.jar
.apk android
gdtadv2.jar
.apk android
xldlnapass.jar
.apk android

org.fourthline.cling

Android Permissions

36bf22c6f5e0511f519212569e5c49d4_JaffaCakes118

Permissions

com.xiaomi.permission.AUTH_SERVICE

android.permission.GET_ACCOUNTS

android.permission.ACCESS_DOWNLOAD_MANAGER

android.permission.WRITE_EXTERNAL_STORAGE

com.android.browser.permission.READ_HISTORY_BOOKMARKS

android.permission.INTERNET

android.permission.WAKE_LOCK

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_WIFI_MULTICAST_STATE

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.READ_SETTINGS

com.android.launcher.permission.WRITE_SETTINGS

com.android.launcher.permission.UNINSTALL_SHORTCUT

android.permission.VIBRATE

android.permission.WRITE_SETTINGS

android.permission.READ_SETTINGS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.CAMERA

android.permission.RESTART_PACKAGES

android.permission.GET_TASKS

android.permission.READ_LOGS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.ACCESS_COARSE_LOCATION

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.READ_SMS

com.xunlei.downloadprovider.permission.MIPUSH_RECEIVE

android.permission.ACCESS_COARSE_UPDATES

android.permission.ACCESS_FINE_LOCATION

android.permission.DISABLE_KEYGUARD

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.READ_EXTERNAL_STORAGE

Sharing

General

Malware Config

Signatures

Files

com.xunlei.downloadprovider

com.xunlei.downloadprovider.loading.LaunchActivity

Activities

com.xunlei.downloadprovider.loading.LaunchActivity

com.xunlei.downloadprovider.frame.MainTabActivity

com.xunlei.downloadprovider.bho.ThunderTaskBHOActivity

com.xunlei.downloadprovider.bho.ScanCodeResultActivity

com.xunlei.downloadprovider.qrcode.CameraActivity

com.xunlei.downloadprovider.download.create.DownloadBtFileExplorerActivity

com.xunlei.downloadprovider.vod.VodPlayerActivity

com.xunlei.downloadprovider.vod.VodProxyActivity

com.xunlei.downloadprovider.web.DetailPageBrowserActivity

com.xunlei.downloadprovider.web.base.ShortMovieDetailActivity

com.xunlei.downloadprovider.share.WBShareActivity

com.tencent.tauth.AuthActivity

com.xunlei.downloadprovider.thirdpart.ThirdPartActivity

com.xiaomi.account.openauth.AuthorizeActivity

Permissions

Receivers

com.xunlei.downloadprovider.service.downloads.kernel.NetworkReceiver

com.xunlei.downloadprovider.app.ExternBroadcastReceiver

com.xunlei.downloadprovider.service.NetworkAndScreenReceiver

com.xunlei.downloadprovider.service.OsBootReceiver

com.xunlei.downloadprovider.vod.libscomponent.VodPlayerDownloadReceiver

com.xunlei.downloadprovider.vod.libscomponent.VodPlayerNotificationClickReceiver

com.xunlei.downloadprovider.notification.ApkReceiver

com.xunlei.downloadprovider.notification.CommonFileReceiver

com.xunlei.downloadprovider.frame.user.ApkFinishIntallReceiver

com.xunlei.downloadprovider.frame.user.NetWorkChangedReceiver

com.umeng.message.RegistrationReceiver

com.umeng.message.UmengBroadcastReceiver

com.xunlei.downloadprovider.notification.pushmessage.xiaomi.XiaoMiPushReceiver

com.xiaomi.push.service.receivers.NetworkStatusReceiver

com.xiaomi.push.service.receivers.PingReceiver

com.android.providers.downloads.DownloadReceiver

Services

com.xunlei.downloadprovider.service.DownloadService

com.uc.addon.sdk.remote.AddonService

com.xunlei.downloadprovider.thirdpart.thirdpartycallplay.ServiceThirdPartyCallPlay

com.umeng.message.UmengService

org.android.agoo.service.ElectionService

com.baidu.location.f

org.fourthline.cling

Android Permissions

36bf22c6f5e0511f519212569e5c49d4_JaffaCakes118