Malware Analysis Report

2025-01-19 06:58

Sample ID 240522-c8243aaa7t
Target 65bddd9e2716631e90b9031f0724798e_JaffaCakes118
SHA256 cbcc84eb6e58607cf19c3ec8b5db0ddb75856a5720e0fca44f62e13c1667dae7
Tags
collection credential_access discovery evasion execution impact persistence
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Mobile Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral4

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral5

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral6

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral8

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral9

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral10

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral7

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

SHA256

cbcc84eb6e58607cf19c3ec8b5db0ddb75856a5720e0fca44f62e13c1667dae7

Threat Level: Likely malicious

The file 65bddd9e2716631e90b9031f0724798e_JaffaCakes118 was found to be: Likely malicious.

Malicious Activity Summary

collection credential_access discovery evasion execution impact persistence

Requests cell location

Checks if the Android device is rooted.

Checks memory information

Checks CPU information

Queries information about running processes on the device

Queries information about the current nearby Wi-Fi networks

Registers a broadcast receiver at runtime (usually for listening for system events)

Queries information about the current Wi-Fi connection

Loads dropped Dex/Jar

Obtains sensitive information copied to the device clipboard

Checks if the internet connection is available

Schedules tasks to execute at a specified time

Requests dangerous framework permissions

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data)

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-05-22 02:45

Signatures

Requests dangerous framework permissions

Description Indicator Process Target
Allows access to the list of accounts in the Accounts Service. android.permission.GET_ACCOUNTS N/A N/A
Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE N/A N/A
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. android.permission.READ_PHONE_STATE N/A N/A
Allows an application to read or write the system settings. android.permission.WRITE_SETTINGS N/A N/A
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps. android.permission.SYSTEM_ALERT_WINDOW N/A N/A
Required to be able to access the camera device. android.permission.CAMERA N/A N/A
Allows an app to access approximate location. android.permission.ACCESS_COARSE_LOCATION N/A N/A
Allows an app to access precise location. android.permission.ACCESS_FINE_LOCATION N/A N/A
Allows an application to collect component usage statistics. android.permission.PACKAGE_USAGE_STATS N/A N/A
Allows an application to read from external storage. android.permission.READ_EXTERNAL_STORAGE N/A N/A
Allows an application to record audio. android.permission.RECORD_AUDIO N/A N/A

Analysis: behavioral4

Detonation Overview

Submitted

2024-05-22 02:45

Reported

2024-05-22 02:45

Platform

android-x64-arm64-20240514-en

Max time network

9s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral5

Detonation Overview

Submitted

2024-05-22 02:45

Reported

2024-05-22 02:45

Platform

android-x86-arm-20240514-en

Max time network

6s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral6

Detonation Overview

Submitted

2024-05-22 02:45

Reported

2024-05-22 02:45

Platform

android-x64-20240514-en

Max time network

8s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral8

Detonation Overview

Submitted

2024-05-22 02:45

Reported

2024-05-22 02:45

Platform

android-x86-arm-20240514-en

Max time network

7s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
GB 142.250.187.195:443 tcp
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral9

Detonation Overview

Submitted

2024-05-22 02:45

Reported

2024-05-22 02:45

Platform

android-x64-20240514-en

Max time network

8s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral10

Detonation Overview

Submitted

2024-05-22 02:45

Reported

2024-05-22 02:45

Platform

android-x64-arm64-20240514-en

Max time network

10s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.200.46:443 tcp
GB 142.250.200.46:443 tcp
GB 142.250.200.46:443 tcp

Files

N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-05-22 02:45

Reported

2024-05-22 02:49

Platform

android-x86-arm-20240514-en

Max time kernel

179s

Max time network

194s

Command Line

com.xunlei.downloadprovider

Signatures

Checks if the Android device is rooted.

evasion
Description Indicator Process Target
N/A /system/app/Superuser.apk N/A N/A
N/A /system/app/Superuser.apk N/A N/A
N/A /sbin/su N/A N/A
N/A /system/app/Superuser.apk N/A N/A
N/A /sbin/su N/A N/A

Requests cell location

collection discovery
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getAllCellInfo N/A N/A
Framework service call com.android.internal.telephony.ITelephony.getCellLocation N/A N/A

Checks CPU information

evasion discovery
Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

evasion discovery
Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A
File opened for read /proc/meminfo N/A N/A
File opened for read /proc/meminfo N/A N/A

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /data/user/0/com.xunlei.downloadprovider/app_baidu_ad_sdk/__xadsdk__remote__final__running__.jar N/A N/A
N/A /data/user/0/com.xunlei.downloadprovider/app_e_qq_com_plugin/gdt_plugin.jar N/A N/A

Obtains sensitive information copied to the device clipboard

collection credential_access impact
Description Indicator Process Target
Framework service call android.content.IClipboard.addPrimaryClipChangedListener N/A N/A
Framework service call android.content.IClipboard.addPrimaryClipChangedListener N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Queries information about the current Wi-Fi connection

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A

Queries information about the current nearby Wi-Fi networks

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getScanResults N/A N/A

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A
Framework service call android.app.IActivityManager.registerReceiver N/A N/A
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Checks if the internet connection is available

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Reads information about phone network operator.

discovery

Schedules tasks to execute at a specified time

execution persistence
Description Indicator Process Target
Framework service call android.app.job.IJobScheduler.schedule N/A N/A

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A
Framework API call javax.crypto.Cipher.doFinal N/A N/A
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Processes

com.xunlei.downloadprovider

cat /sys/class/net/wlan0/address

cat /sys/class/net/wlan0/address

cat /sys/class/net/wlan0/address

com.xunlei.downloadprovider:getui

df

/system/bin/sh -c type su

getprop ro.product.cpu.abi

com.xunlei.downloadprovider:umeng

/system/bin/sh -c type su

Network

Country Destination Domain Proto
GB 142.250.187.195:443 tcp
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 mobile-login.xunlei.com udp
US 1.1.1.1:53 mobile-login-2.xunlei.com udp
CN 101.132.110.239:443 mobile-login.xunlei.com tcp
US 1.1.1.1:53 mobile-login-3.xunlei.com udp
GB 142.250.180.14:443 tcp
GB 142.250.180.14:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.179.238:443 android.apis.google.com tcp
US 1.1.1.1:53 umengacs.m.taobao.com udp
US 1.1.1.1:53 api-shoulei-ssl.xunlei.com udp
US 1.1.1.1:53 act.vip.xunlei.com udp
CN 110.253.188.241:443 umengacs.m.taobao.com tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
US 1.1.1.1:53 amdcopen.m.taobao.com udp
CN 203.119.217.116:80 amdcopen.m.taobao.com tcp
CN 220.185.168.192:80 act.vip.xunlei.com tcp
CN 203.119.217.116:80 amdcopen.m.taobao.com tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
US 1.1.1.1:53 sdk.e.qq.com udp
CN 113.108.27.88:80 sdk.e.qq.com tcp
US 1.1.1.1:53 mobads.baidu.com udp
CN 182.61.200.101:80 mobads.baidu.com tcp
CN 182.61.200.101:80 mobads.baidu.com tcp
CN 182.61.200.101:80 mobads.baidu.com tcp
CN 182.61.200.101:80 mobads.baidu.com tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
US 1.1.1.1:53 sdk.open.talk.igexin.com udp
US 1.1.1.1:53 sdk.open.talk.gepush.com udp
US 1.1.1.1:53 sdk.open.talk.getui.net udp
CN 183.134.98.76:5224 sdk.open.talk.getui.net tcp
CN 183.134.98.102:5224 sdk.open.talk.getui.net tcp
CN 183.134.98.112:5224 sdk.open.talk.getui.net tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
US 1.1.1.1:53 upgrade.xl9.xunlei.com udp
CN 47.100.62.160:80 upgrade.xl9.xunlei.com tcp
US 1.1.1.1:53 android.bugly.qq.com udp
CN 119.147.179.152:80 android.bugly.qq.com tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
CN 47.100.62.160:80 upgrade.xl9.xunlei.com tcp
US 1.1.1.1:53 adsp.xunlei.com udp
CN 47.103.21.128:80 adsp.xunlei.com tcp
US 1.1.1.1:53 mi.gdt.qq.com udp
CN 43.141.43.110:80 mi.gdt.qq.com tcp
CN 43.141.43.110:80 mi.gdt.qq.com tcp
US 1.1.1.1:53 c-gtc.getui.com udp
CN 43.141.43.110:80 mi.gdt.qq.com tcp
CN 115.227.15.13:80 c-gtc.getui.com tcp
CN 115.227.15.13:80 c-gtc.getui.com tcp
CN 182.61.200.101:80 mobads.baidu.com tcp
CN 220.185.168.192:80 act.vip.xunlei.com tcp
US 1.1.1.1:53 gslb.xcloud.sandai.net udp
CN 47.100.62.160:80 upgrade.xl9.xunlei.com tcp
CN 47.100.62.160:80 upgrade.xl9.xunlei.com tcp
US 1.1.1.1:53 log.tbs.qq.com udp
CN 47.103.21.128:80 adsp.xunlei.com tcp
HK 129.226.106.211:80 log.tbs.qq.com tcp
US 1.1.1.1:53 flowcontroll.dcdn.sandai.net udp
US 1.1.1.1:53 mobads-logs.baidu.com udp
CN 106.14.119.141:8080 flowcontroll.dcdn.sandai.net tcp
US 1.1.1.1:53 b-gtc.getui.com udp
CN 110.253.188.241:443 umengacs.m.taobao.com tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
CN 182.61.200.100:443 mobads-logs.baidu.com tcp
CN 182.61.200.100:443 mobads-logs.baidu.com tcp
CN 182.61.200.100:443 mobads-logs.baidu.com tcp
CN 182.61.200.100:443 mobads-logs.baidu.com tcp
CN 115.227.15.227:80 b-gtc.getui.com tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
CN 220.185.168.194:80 act.vip.xunlei.com tcp
CN 183.134.98.102:5224 sdk.open.talk.getui.net tcp
CN 183.134.98.112:5224 sdk.open.talk.getui.net tcp
CN 183.134.98.76:5224 sdk.open.talk.getui.net tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
US 1.1.1.1:53 umengjmacs.m.taobao.com udp
US 1.1.1.1:53 umengjmacs.m.taobao.com udp
US 1.1.1.1:53 amdcopen.m.taobao.com udp
CN 36.143.252.67:443 umengjmacs.m.taobao.com tcp
US 1.1.1.1:53 amdcopen.m.taobao.com udp
CN 203.119.217.116:80 amdcopen.m.taobao.com tcp
CN 203.119.217.116:80 amdcopen.m.taobao.com tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
CN 203.119.217.116:80 amdcopen.m.taobao.com tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
CN 220.185.168.194:80 act.vip.xunlei.com tcp
CN 203.119.217.116:80 amdcopen.m.taobao.com tcp
CN 183.134.98.76:5224 sdk.open.talk.getui.net tcp
CN 183.134.98.102:5224 sdk.open.talk.getui.net tcp
CN 183.134.98.112:5224 sdk.open.talk.getui.net tcp
CN 115.227.15.15:80 c-gtc.getui.com tcp
CN 115.227.15.15:80 c-gtc.getui.com tcp
CN 182.61.200.100:443 mobads-logs.baidu.com tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
CN 220.185.168.195:80 act.vip.xunlei.com tcp
CN 182.61.200.100:443 mobads-logs.baidu.com tcp
CN 182.61.200.100:443 mobads-logs.baidu.com tcp
CN 182.61.200.100:443 mobads-logs.baidu.com tcp
CN 182.61.200.101:80 mobads.baidu.com tcp
CN 115.227.15.229:80 b-gtc.getui.com tcp
CN 106.15.105.54:80 api-shoulei-ssl.xunlei.com tcp
CN 14.22.7.140:80 android.bugly.qq.com tcp
CN 119.147.179.152:80 android.bugly.qq.com tcp
CN 43.141.43.110:80 mi.gdt.qq.com tcp
CN 43.141.43.110:80 mi.gdt.qq.com tcp
CN 183.134.98.76:5224 sdk.open.talk.getui.net tcp
CN 183.134.98.112:5224 sdk.open.talk.getui.net tcp
CN 183.134.98.102:5224 sdk.open.talk.getui.net tcp
CN 220.185.168.195:80 act.vip.xunlei.com tcp
CN 106.11.61.135:80 tcp
CN 203.119.217.116:80 amdcopen.m.taobao.com tcp
CN 106.11.61.135:80 tcp
CN 182.61.200.101:80 mobads.baidu.com tcp
CN 203.119.217.116:80 amdcopen.m.taobao.com tcp
CN 220.185.168.191:80 act.vip.xunlei.com tcp
CN 115.227.15.14:80 c-gtc.getui.com tcp
CN 115.227.15.14:80 c-gtc.getui.com tcp
CN 182.61.200.100:443 mobads-logs.baidu.com tcp
CN 182.61.200.100:443 mobads-logs.baidu.com tcp
CN 183.134.98.76:5224 sdk.open.talk.getui.net tcp
CN 183.134.98.112:5224 sdk.open.talk.getui.net tcp
CN 183.134.98.102:5224 sdk.open.talk.getui.net tcp
CN 182.61.200.100:443 mobads-logs.baidu.com tcp
CN 182.61.200.100:443 mobads-logs.baidu.com tcp
CN 220.185.168.191:80 act.vip.xunlei.com tcp
CN 115.227.15.231:80 b-gtc.getui.com tcp
CN 106.11.61.137:80 tcp
CN 220.185.168.197:80 act.vip.xunlei.com tcp
CN 183.134.98.76:5224 sdk.open.talk.getui.net tcp
CN 106.11.61.135:80 tcp
US 1.1.1.1:53 umengjmacs.m.taobao.com udp
CN 110.253.189.208:443 umengjmacs.m.taobao.com tcp
CN 14.22.7.199:80 android.bugly.qq.com tcp
CN 14.22.7.140:80 android.bugly.qq.com tcp
CN 183.134.98.102:5224 sdk.open.talk.getui.net tcp
US 1.1.1.1:53 mi.gdt.qq.com udp
CN 43.141.43.110:80 mi.gdt.qq.com tcp
CN 183.134.98.112:5224 sdk.open.talk.getui.net tcp
CN 115.227.15.16:80 c-gtc.getui.com tcp
CN 115.227.15.16:80 c-gtc.getui.com tcp
CN 220.185.168.197:80 act.vip.xunlei.com tcp
CN 115.227.15.233:80 b-gtc.getui.com tcp
CN 220.185.168.193:80 act.vip.xunlei.com tcp
CN 183.134.98.76:5224 sdk.open.talk.getui.net tcp
CN 220.185.168.193:80 act.vip.xunlei.com tcp
US 1.1.1.1:53 sdk.open.talk.getui.net udp
CN 183.134.98.112:5224 sdk.open.talk.getui.net tcp
CN 220.185.168.200:80 act.vip.xunlei.com tcp
CN 183.134.98.102:5224 sdk.open.talk.getui.net tcp
CN 115.227.15.235:80 b-gtc.getui.com tcp
CN 14.22.7.199:80 android.bugly.qq.com tcp
CN 220.185.168.200:80 act.vip.xunlei.com tcp
CN 183.134.98.76:5224 sdk.open.talk.getui.net tcp
CN 220.185.168.196:80 act.vip.xunlei.com tcp
CN 110.253.189.208:80 umengjmacs.m.taobao.com tcp
CN 220.185.168.196:80 act.vip.xunlei.com tcp
CN 115.227.15.237:80 b-gtc.getui.com tcp
CN 183.134.98.112:5224 sdk.open.talk.getui.net tcp
CN 183.134.98.102:5224 sdk.open.talk.getui.net tcp
US 1.1.1.1:53 act.vip.xunlei.com udp
CN 220.185.168.191:80 act.vip.xunlei.com tcp
US 1.1.1.1:53 android.bugly.qq.com udp
CN 119.147.179.152:80 android.bugly.qq.com tcp
CN 220.185.168.191:80 act.vip.xunlei.com tcp
CN 183.134.98.76:5224 sdk.open.talk.getui.net tcp
CN 115.227.15.239:80 b-gtc.getui.com tcp
CN 220.185.168.192:80 act.vip.xunlei.com tcp
CN 115.227.15.241:80 b-gtc.getui.com tcp
CN 110.253.189.208:443 umengjmacs.m.taobao.com tcp
CN 14.22.7.140:80 android.bugly.qq.com tcp
CN 119.147.179.152:80 android.bugly.qq.com tcp
US 1.1.1.1:53 amdcopen.m.taobao.com udp
CN 203.119.217.116:80 amdcopen.m.taobao.com tcp
CN 183.134.98.102:5224 sdk.open.talk.getui.net tcp
CN 220.185.168.192:80 act.vip.xunlei.com tcp
CN 183.134.98.112:5224 sdk.open.talk.getui.net tcp
CN 203.119.217.116:80 amdcopen.m.taobao.com tcp

Files

/data/data/com.xunlei.downloadprovider/databases/MessageStore.db-journal

MD5 ecbb9b74a3bb533fc44d19e1a692a8a2
SHA1 ec8e716bd22a259a54ddfb29b671da709e09ade2
SHA256 340e08b3a654d207f3705292b1853573238288329be5a9f0472879b53923a2c9
SHA512 cc9d130714e171d1e68b829779b008e3e52a98b14d31d8be4884c6471d4827bdce10ad83c001c589d1e905653fed29fd96bbd018f3805dd6e8c3e998667d8c25

/data/data/com.xunlei.downloadprovider/databases/MessageStore.db

MD5 aa99281ce0cd69a9302f8b64b918ad75
SHA1 ccafc0e5fb16198e466b209a888301f4100fafe8
SHA256 a3cde8388c50e78c7b3c8dab1d0c46c64c375248031adbb6a5802e3da65bb431
SHA512 a8b80f09a555652d3e4b9775b6aa58341dad7fb120509e128df417533ba361353b19530306e8691f1ce5fc0c69f1a89d29bd2eb176291a5e85b945d14c9eb085

/data/data/com.xunlei.downloadprovider/databases/MessageStore.db-shm

MD5 890ada7b89700040dcc52f8494b32dac
SHA1 d266cde62207d947ae0295c62ea1643c8f4e60b1
SHA256 cc115769737831831cbfa2e58e93fe607ca366ade63419e91693cc707e9edfc2
SHA512 3006bb592d3ba373ce7fba862ec299bf85e4515b2cc94753f872084ff130d907e39f95aaa2fc56b99b51ad5636de194c223c73b57b09be0b494d97fbfd5ecf40

/data/data/com.xunlei.downloadprovider/databases/MessageStore.db-wal

MD5 6009007cfca69e512bec29b6ae7d0f19
SHA1 e5559b8fa6f01e19687a5a0a7966f731722f03b3
SHA256 92378d3c3b4e5c9119be3c18427fc67e1ffa14fa52f8a2aa445d3b7ac1f52a01
SHA512 9074c6d68d4f7c01a307e0a5e81135ed44cec4de16f9050104bd2c2a678c4cdfd1c52a9e79195b54634ddeef27655558f319a3affb1b0badc1e98e07db50c9bb

/data/data/com.xunlei.downloadprovider/databases/MsgLogStore.db-journal

MD5 ded7c017fadca84b203fac1d1bf0ec6a
SHA1 3bb3c8212bced2febaaf6904d7d6d3552bf54887
SHA256 4391c75f578f9d47b038932d0e380ff0933587b503126602fc9e758db73e30c1
SHA512 a7bce551ae600067e7a57bf6dd3c4961de9c741fd5c41fc9573caf5c63aeb3c710fb9989457e36dbc2b46220132d92aa25ae83fc6e5244d56bf630eb8c1d259e

/data/data/com.xunlei.downloadprovider/databases/MsgLogStore.db

MD5 f2b4b0190b9f384ca885f0c8c9b14700
SHA1 934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA256 0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512 ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

/data/data/com.xunlei.downloadprovider/databases/MsgLogStore.db-shm

MD5 4e8994d4beda752e9d28c1d44f678185
SHA1 c358a00bc95882ef1d86ae8eceb90cc81a69ebae
SHA256 b8930c6adcfbcb867f6b5217c15eaa296c8f685e4273919b87994cc42a016611
SHA512 e19af09d8031e1a224e6da57bac1105a3987c59e06d9c81f8d6a1a18311b083fe525426cb96dc2f87632c8cbe3d18cd46e239bc7d548ada5126aeb0008ea0263

/data/data/com.xunlei.downloadprovider/databases/MsgLogStore.db-wal

MD5 01a230a7d4fd6d8ae514720ff96d4762
SHA1 f2c1ec557259de8ec93b74d01894021448bdba91
SHA256 645536237d0b08b64ae05be9f3863f7174d3f65c84eacfc962d3109218f6af86
SHA512 98492370d37cc058f70c41721b5cb0fd1df9f7df84354155111d0f3693e3d5d2695e3749b362043e8212f9749a343f0c3181cb2c46852a699abc068f77b1eb16

/data/data/com.xunlei.downloadprovider/databases/bugly_db_-journal

MD5 286362de97372f11731b98bb00aeefec
SHA1 4bb5419873f6cf2d144bc2c29b5345bc2153155e
SHA256 d9fc20ef712cfb26356860b6d6330076fdecd1e93413754adbf8cf5a644dd0b9
SHA512 36bde4d6c834fcf96ae498b37083cc95739da4c491309670f58cf8b1bc176bc89058467119d88696851516f0cbe2cfc1fae4c64e2558e86b985f4e98c7e2a62e

/data/data/com.xunlei.downloadprovider/databases/bugly_db_

MD5 95d46db78de55c45cbdd799da2d391c7
SHA1 1d099f42b7749ec4a889787cb9fe6033c9a4affa
SHA256 abc9c53911cdec6faad99d7d92c25cb8ac71d885a55ffd637acb278015cb09ba
SHA512 035541d4e1866e0f67b9d61bce1fe4b72704ffe733142136e29dba799830ad1cd6b5dcd13513820250bc10a67eca764833431444008f891510ef15b5a0d7bf20

/data/data/com.xunlei.downloadprovider/databases/bugly_db_-shm

MD5 bb7df04e1b0a2570657527a7e108ae23
SHA1 5188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256 c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

/data/data/com.xunlei.downloadprovider/databases/bugly_db_-wal

MD5 7e563562d0d91087ac82da69eaebc637
SHA1 41e380d577a73b8ef2d2f087268f1f8a2de65d06
SHA256 eea31ef46f6910299d2bc8e95d9679b8b5c723a6f21d3805ab90b54365cb8c0b
SHA512 151d5e07532d3e900a59033bac71307f22e18ec7db99ae1a09db8393bfc233e6b5d3fe91db83b4c72531592bbc73aed874a8e73a403f1882ceab7c0db3ed0320

/data/data/com.xunlei.downloadprovider/app_crashrecord/1004

MD5 e44b79e722845567c9edfc73f8e54b21
SHA1 fb285356ed05d56a66693d9c9c1536b97f87fb16
SHA256 bc3ada2b8f973c0dde39b05443d196d547853245032d12ffe2f2edde9fea7841
SHA512 7113ec6087993dc44d37cc3ca164afe9f6379b318442c6b54d85e5dba23e8185c7056c20c9724518831607d009fd4f5dd2f3e6563d61a01a931daaec6be6232a

/data/data/com.xunlei.downloadprovider/app_crashrecord/1004

MD5 fde6e1da5ba01db9a2cdd2987843739a
SHA1 02beb78607ff81a7e61127364fff12514c335fb5
SHA256 68006f464120cf468ac182b6c22676877d87eaf9e6d873202f49b553e8b94076
SHA512 98d59d4864ed43f663f5b45849e518579a3ee2600e1931df9ce7095d8593f09623c716771905affdcc204f8fe1ab3e17df3e73dcbe414e47e3ca43246567dd71

/data/data/com.xunlei.downloadprovider/app_crashrecord/1002

MD5 486e2bac2b3e9e1cb411d2838a4854bd
SHA1 81dd0a7537f4af319b830ae834908986be85da8b
SHA256 5644a250fa6cef16c2c802b98275656a5fc39dcf89bcc22193742d85c7313f57
SHA512 c146789563dae163e373489b3df53f22efebd32b69643992969241eb5ad5eec668de67e7cd2aaf5c3a8af57b0842115d00183825734f57643d3fdb09835fe681

/data/data/com.xunlei.downloadprovider/app_crashrecord/1002

MD5 0f777f6a60851f861aa90795ecebcb8d
SHA1 953a2606af991b66ad86227a47c8fdfbb2ee8cf4
SHA256 9653195ad8067e303b0667119bef15ef1b13945543863e5ccc00643543b51feb
SHA512 3d8b9f4d78588a1b92c1eb55ef4f8cd87a21bbe8a5e5dd9833d72e3eaf99c090063cca3b7bb5957d95edb3a24d9931de9a82d0dffb1d6f8a2c3813a4d6e84698

/data/data/com.xunlei.downloadprovider/files/.mainiconfig

MD5 bb3c6ac40232bf357d5b1833113b2a13
SHA1 dcea66e18fbc649326e6d93b7a8dd1f32cc4d139
SHA256 8b22d408e61daf23ceb97910ae6e8c0e485cfd1ae32fa0c7c1fc093f0d397d44
SHA512 1535a4417a48fcdc6091c964036fed63cc0139639b3c90eceefe97725781fb507a9e4f763f1a063926b2a389d365476a0cca8e4787f345ecd79c4f49ce081a58

/data/data/com.xunlei.downloadprovider/databases/xl-acc-stat.db-journal

MD5 da5585e080e0aaf165b02a45ec184246
SHA1 e839ee56045a21809a312707d2c666f8ec68b85c
SHA256 096e61f5c85f51768a86aaf141380e0de5bc89f2aa6aa9f6444860b316934698
SHA512 34b6bbbdd3a0e62e19da92d18fd78cafb37c25bf6aa96f7eb2988b9302648e960f5e2e40c8d4e3adad612bd06889c459e152a3bd7779efd32d4476c581cd8b0a

/data/data/com.xunlei.downloadprovider/databases/xl-acc-stat.db-wal

MD5 c275af3623aa6c592bbe63a04d8000a7
SHA1 3505771441a1bcec0dbbd956b2c3b88a65be66e2
SHA256 da31e1f0c6f33be406fd6725e4a2ddf23d9cf01462149b034822187d1a01bd0b
SHA512 a40822c6aa580d67be3aa50835d0f8e0f0f691648f75f584a87e3bc783f351434716b42e97842d39498bddbbe471f1f4d18bded1adcc8f3c8b0ab295c6a9a06a

/data/data/com.xunlei.downloadprovider/databases/analytics.db-journal

MD5 6acfd975094d0710952a9d68f8c3e8ea
SHA1 8deaf7e579ab7bf941d0ea8df62405564464ea0c
SHA256 220236a41a3dfc684f517218e04f431a15b53e8df05243d7b3480aa8d8f51e60
SHA512 774d7e6a5f0ba1b3ec6e8dc6c96fd79f96caf83da76032334404f8f77fc94e61be0f0fadb0228f744fa09b8000077cf8fdfcb101e2c115387bbebaedbb7b693d

/data/data/com.xunlei.downloadprovider/databases/analytics.db

MD5 d584deb2aa262233d3e7bb0d91bfd730
SHA1 51d3514702efefd3800eea3ba45ca06241214849
SHA256 e373d5e4f2c5f42e5de222bd7714f63ce46b365730aa37b729a98fbab45059b3
SHA512 cfe9724d0a828d25241275c29799118bdcad97cf95bec791b3df82e453c3d98c25656ba6890edca966da7f9dc201ad5789911d74ac73e26ab3d3da832c6b2f8b

/data/data/com.xunlei.downloadprovider/databases/analytics.db-wal

MD5 22c9669871512d8a8cc330749b0546c6
SHA1 98141ee3d5f5b6daa23a7837e1ffb669143416f4
SHA256 f898370242f725e65c6c49d89d6a8002c14d63ea45396d19ef59e92e28d36537
SHA512 f9d85ba9a7dde78553e66555c81a59c74bc1fded54ad89c3edc2b391a10ddb5bcab8c2119fce991c08625f2b7b5ad47f05443aa342457a6c9fde64d9c742c34c

/data/data/com.xunlei.downloadprovider/databases/accs.db-journal

MD5 f075aea5729bb8bc8f52f09b21aa34e8
SHA1 6f7436bb53324a0894bdebd82bf5e522686fe6e2
SHA256 05f198713e41266937bb4dc51a654eb3a328890018650b67c378699b9ffda628
SHA512 46c517f50197c642f7174c2d0a72171a83087da3db1310e3f6a56eb7ca24b398e6cf5e29c05c35ba33ed7b2801ca45f857c47bfda9b7c172a62bbb39d0a05561

/data/data/com.xunlei.downloadprovider/databases/accs.db-wal

MD5 42b568bc947bd715eb83812c5db0943a
SHA1 e446c2ae21303dba71e8f234f79f0448164b6978
SHA256 db0cacfa7e9fed9511becab8b5cf4bdbba4dacf691aec2a19338f287b248adb3
SHA512 5fda1aa92accfa27bc3485cde269206806a80f2a373bb7b841f855a0175b998186b0f791fc3a3e3965842b2bc8611da3606935117800d9f657d4e5474735a158

/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

MD5 9781ca003f10f8d0c9c1945b63fdca7f
SHA1 4156cf5dc8d71dbab734d25e5e1598b37a5456f4
SHA256 3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793
SHA512 25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

MD5 9517bb69ec0d374a488e399ef0775a25
SHA1 f468a2caaac94ce6df9d234f2d705631c7ade470
SHA256 10447f8cc25c8003c84e5d7ae7c25fee99f624cb677a6af1620932768f8257f6
SHA512 54b1d43c74f39d787fa56db119ec66a362b301637853188c1738ce7dc1863b59b561c2d525f4621393f8df27317d9700d42853a89da7b064ae07c9b9b63e7d0d

/storage/emulated/0/.DataStorage/ContextData.xml

MD5 58dbbc2c155aeea619c67896fb9c8e96
SHA1 7ceb457346c6692cda5d7ab7263c4aa9b5803755
SHA256 642a1ee24851b0d6935582020bded4ab221e01ba8e19ea3ffbc8f86f98b6398e
SHA512 ea36fe93909374137c370d20e0bf1a99a4db1d9a08c9e306d9fb71621982306236f008d7628a531bcb05c0b8506c62f0c19ff7f47902c10fa0fa1a484986323a

/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

MD5 f61b4b50671bb5507057d3c85d8464f6
SHA1 85293462374d981a421cf3d3c7c48ea225d3681c
SHA256 9b06bc4e7f14950b7218e3cba56b3d41e52e5adf7f6a20dd90bbf43e4a90f1d1
SHA512 c2f0afc1aec759e4c9cbe70332afb0055ae1b40ee5c68dd7491f57d44b2386babb5e0308bcbbabe78d7234311e63a6eab55c0def45cc1fbb9bd323abd0bf6551

/storage/emulated/0/.DataStorage/ContextData.xml

MD5 53521bb78439602e531c22450b9e5cdf
SHA1 78f61c8bbd272754ce06625681551ec02453e8fd
SHA256 783960180aaffc76f91a94271822225d691c6a5186c5afe5cce330cd9d7b9f46
SHA512 53212c0c9888ca9bff9712f1635282356c019c8a8ad50eb2ef21ba240cf1cdf18c9aeb759fe7e6e551d4438bd647f6517d7d46c07f1e639b0da2e170a18e9e87

/data/data/com.xunlei.downloadprovider/app_baidu_ad_sdk/__xadsdk__remote__final__builtinversion__.jar

MD5 f2429b0af41f9121486badd960ada5ed
SHA1 ba311798a27c3ccf05aa054ebf56f723d54cf0d3
SHA256 7629e4704834ca162c1ad659266f7ff1a5849122644a01b96c367cb910c5a3c2
SHA512 ba2c033d1da143f94378cfc9c47d7baa569a08504372582702a1d415b529c2339b592af618524f2a35689ac37e8e481f29880f9c4cfadec192ad61e233fce26e

/data/user/0/com.xunlei.downloadprovider/app_baidu_ad_sdk/__xadsdk__remote__final__running__.jar

MD5 a0b15067391572c7b6e28f2f09f4751e
SHA1 b885a515401c48d0fa07f201dbfecd1e068ac88e
SHA256 35dd73c5553cde06c38a45f0c81a2904cd556f63ed35c6955c7a8b0ca8c0ce86
SHA512 04df1aceca5ec6ae739e6437b795dceb868a4eb05f56c6d4b43f79071ec64fd23bf9826a90e1ce06566e709d96a0e1fbca852a699b976110099e057bcf3c0ed5

/data/data/com.xunlei.downloadprovider/app_e_qq_com_plugin/update_lc

MD5 dce7c4174ce9323904a934a486c41288
SHA1 e117797422d35ce52f036963c7e9603e9955b5c7
SHA256 0c030586945fe504b604ecc2e875c38ede400cd5cd73da9730302162e6b02c6f
SHA512 d570ab6a8f4a7b54d426b0481219074b5277ace37d88438d87ab97eb387938eca1cf7b09fa42d596c56ada860710d2a7385d2a96e1cedff58ad6ed8900f1b143

/storage/emulated/0/xunlei/ThunderdownDB/xl_downloads.db-journal

MD5 054250e53564f686b780899172372b2c
SHA1 3fd856ef2fa507afdb784187242efabc7eae0194
SHA256 e9e790533c2b29158d8517d406dbde5547ae420d73d3bf0a38bc34fe7ba0e76d
SHA512 7fa5238f15bdc85bf9cd6881dbdccfbd6098c1643a3d571408b93f46e7c1081bf37e0a4682618669a8482fc7e57c73bda021d8ed013a2c2d7e615daf508de1b8

/data/data/com.xunlei.downloadprovider/app_e_qq_com_plugin/update_lc

MD5 0bcef9c45bd8a48eda1b26eb0c61c869
SHA1 4345cb1fa27885a8fbfe7c0c830a592cc76a552b
SHA256 bbf3f11cb5b43e700273a78d12de55e4a7eab741ed2abf13787a4d2dc832b8ec
SHA512 91972aa34055bca20ddb643b9f817a547e5d4ad49b7ff16a7f828a8d72c4cb4a5679cff4da00f9fb6b2833de7eb3480b3b4a7c7c7b85a39028de55acaf2d8812

/data/data/com.xunlei.downloadprovider/app_e_qq_com_plugin/gdt_plugin.jar.sig

MD5 3a32d9fe52c08f815599218879ef5ac5
SHA1 3e66708872db5614e7e675ef9b26020e514ddc0f
SHA256 18252f19019e32bb147d698c7c450229522bbe8deddc3a4cd5e86abef48d94e2
SHA512 d65dca700fd7816d0ab048892586362129c5e6597df5e7f308571ed5e44531406bf84bc15a78be18f127b70d0fccf45c059016eb6f0a191102c70815c79b37ef

/data/data/com.xunlei.downloadprovider/app_e_qq_com_plugin/gdt_plugin.jar

MD5 33aeb27eefc5ae7838f01186e27d8816
SHA1 2a7ef64266577916f05cc841c9f977ca8a34568f
SHA256 c6a8f2838c910a50b56bddad227ebed00b8b32a6869a432c83964b1150ad2c59
SHA512 ebd8ccc5750aa1c2a28e849149d0ef3d1c997479008a803a931ea10c82bd99d90797a99329690cbea6cbc18d45bbe481a5576abfe3ca8afc96dbb3974a0e00c5

/storage/emulated/0/xunlei/ThunderdownDB/xl_downloads.db-wal

MD5 26180d39e50e2c832b4a355b8bff91fe
SHA1 94e0848d0cc7f9c2acf0f14470e7a5f4df5d1549
SHA256 23302884b43271d20d4c370b531ead1a976368ce339503d7223e4f1b1da2188a
SHA512 9d6a519fe353aff20539b73153ba99d8407385ce7b4438619d85c18c3c24490e6647f762f47affd6c5ffd66766658febc127f7d06c7d5c3d93759d719d30c7f2

/data/user/0/com.xunlei.downloadprovider/app_e_qq_com_plugin/gdt_plugin.jar

MD5 55e569035587b71ab59bfec9aa150753
SHA1 aa6a51e991e7283b5127550d012a42be807057e2
SHA256 0e8cdf3fbdd75f2dd40354649328c2d7f5effdd37df90521483e09c629616f4a
SHA512 4cb4d3a371cfc84a1c2ea54990129e3db99bd5a2ea8f7a7c3c609428d300f15dec1343b8b39ef14bcb5182f54c987823d5e9515eb7388259cc6c883daa626ccb

/data/data/com.xunlei.downloadprovider/files/init_c1.pid

MD5 ec4af7badf9cd35ee5dca71a5664e491
SHA1 d01497cfafcb886e1226399ab4e076ab182170fe
SHA256 9ac05dceef813a18db3a08cf2eec1813fb58e48a4315191904a5f86f9bbac37d
SHA512 cddb54860933d0be88067057f5f3757ccd2267a4b7369f97da861ebc817084c55014c1025d8b2b25ab9b820fe88358b6a973ab05ae8f573ef515f176ffefdf55

/data/data/com.xunlei.downloadprovider/databases/pushsdk.db-shm

MD5 3156866f94e50075b3d1be68ca252f70
SHA1 58523e737c62d86635fc8b2e1bc414ff1bc81073
SHA256 07f1fcfa56d5d646f64033137675b28321db5c7efb8263045751d37104e85797
SHA512 12432e183264c6c957acf9b0a5894bd469e7aaf902b8e393e876687f0a955fb53ec099d3deb883b472f106f9e9082c464b2e243b85f9b04067729801919772ae

/data/data/com.xunlei.downloadprovider/databases/gtc.db-journal

MD5 27035a641fb8e720898a9e633a027254
SHA1 f25c52361da857f02538b718c3e58f1521403607
SHA256 c9f51ebf224a1d6661bbc99057d40855a03546214bc32e927b15ee434a741f04
SHA512 7f7bf0fc6c71eebd269a350a9d1838b0fa5a15a331b27f3f8e295ad36fdafcf419b46a045f741040dc9912ff325ecb1f33387bdf32c13acc085d8c977b265f54

/data/data/com.xunlei.downloadprovider/databases/gtc.db-wal

MD5 1e35e17a98a77060dab47a25974c8b3e
SHA1 8d4aa16f1b73cc069bf48b509ca0f2b05f8539ac
SHA256 f6e74690192458b2a9f30e34738de2df628c1b98322cc672b2b80ad82c5a6cbd
SHA512 dda4319c443f14b59a4cbc31b78a50d2cfe3ec2d486f2ed34caee4a61b3182cf3475221c9c35ae496b8c86ffc7ab11dc31df5308c49728f4d93cc9bbe7e4e9b3

/storage/emulated/0/Android/data/com.xunlei.downloadprovider/files/tbslog/tbslog.txt

MD5 c440cb80e30a27d4ad30fa35ecef6dbd
SHA1 012111fd83a3b70988c7e31326e989120d2f5bb2
SHA256 5a7e8d94f1de84b0f26cd6eba45ef4e303d8bd1e94a8beda94fb9022c789ee89
SHA512 2c02130dbea14a654106c786f1e4c8a8e3493e245e3067eed43e68374df85e3b9c24282243d794e0a712f5ae2681dc101f419a6dab21e5599d34adcd3a762177

/storage/emulated/0/libs/com.xunlei.downloadprovider_.db

MD5 072511873b47558942bace05659d652f
SHA1 8289b61f8be77e7f526001db660a0ec445b219cd
SHA256 24fd53fff5c2cb11263258fa1478159c5340677915084dc293f7a41ce6dad47e
SHA512 06164049955afd2f579b65b0385ad49739b65e20294aba6bbc490c7f17a31aa936dda19ab129ae4ae479001ee90ffebd3e3ec262954654fa3b7139e43df0eb10

/data/data/com.xunlei.downloadprovider/files/Identify.txt

MD5 de5225eb391e1007c2f9ed7317a20416
SHA1 33205555cd5a73af06072e7b61989b053766cb21
SHA256 df94b4fbd6ef2601b0405936c82b145073ae7c3675b8db55428f654bec225800
SHA512 500bbee32d40824dc08a39d2eca7f80ea4335b9211c8a45c5389d717ee958fe07b159b6c137356231b1ae3f70fbae6a387c461dc7a9ba8427fc094772966f3d4

/data/data/com.xunlei.downloadprovider/files/Identify.txt

MD5 5ded7142b6cdb7170de86cf99e144ca6
SHA1 63914fa253fa56e8e27cb254186672c3a29e0572
SHA256 188668f6338d1d83c8d8f39137b8552dd4024b7f89a2df42f69c0e58e23c846c
SHA512 141873b795cdbbec8bc2b634939dc25e0e55e13407d438c20ed5105bc65533636e37bc47fc65ee50dd61a038e2f3c81fea17a126a53e78a93d2529a21b855de9

/data/data/com.xunlei.downloadprovider/files/Identify.txt

MD5 0040b06534f0463e9ff2d9ba4038b64e
SHA1 69d40e70fba4b60f7017f1d3b62c8a319c2e64c7
SHA256 fdd457c8a06d3626b3f761761b27f1f4c5df828e4aaf1a7517fddc7d077e7e62
SHA512 dd20add9e08fa0145bda977dfcc63225145fe5924420e4c833c17373d8e1c312806a7efa455a1cea5f0e08c5b73e175ec79ced675c5112b665183b76d6e80784

/data/data/com.xunlei.downloadprovider/databases/GDTSDK.db-journal

MD5 5b05e2c385dbd4e253321eaf05a20eff
SHA1 22df101363349fe4c36f0674edefc9503eb26397
SHA256 0a8436bf1dbff50cdccf63ed6c1c7d8427257f33e3eff1a4011c4ff9bd24a1f4
SHA512 3f5e60a43160243b837c1a99838f5e702f34866690c6bd520fb56c08d3d1958d4fca8b04bdd791956dd39f16ce1a3065de9868db935724b3b1b35d67d892d585

/data/data/com.xunlei.downloadprovider/databases/GDTSDK.db

MD5 755d1d1b0599d7be973031b5a9ed3373
SHA1 3b13cffb97005729fc20cd9b9a8547e0fa32632d
SHA256 90bc14445f887f7dbff548bdcc44145362d7fd20cc8ad8568b4d5c9372ee9b46
SHA512 afbd3a1c76a41015b2d4523d1c08dc14a3a75dfea3a5082b5e0552d750a498fd316bc98055b9f0ad2992f28b820ef15254461fb5df4cd6c21573a96f17b24ae2

/data/data/com.xunlei.downloadprovider/databases/GDTSDK.db-wal

MD5 e0b3589ebe1d4353cc344f7980c4b013
SHA1 38192890328349ed7d3af4cc93e1debdb34aa749
SHA256 7b44c5d237a594df119b1c5b2efd141a86ca5fafe01642246b9b90295de159bb
SHA512 fd4cddefdd5b568d3aa44a477efddc54d11d2eaace102c0c0b6727434d0facc4ed5e8c209fff7de7f110a0ffc2664300d141f4d9e953a28d9eb5b7392673af53

/data/data/com.xunlei.downloadprovider/app_crashrecord/1004

MD5 0d210bfb2a0e1f1b4c082a6a0f79de07
SHA1 bb8ed9e364db79d1d9f2fcde3f15091893222faa
SHA256 988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d
SHA512 536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1

/data/data/com.xunlei.downloadprovider/files/seq_id

MD5 1d5f446840123481d23a14645e5f6d0c
SHA1 bfa04723436f28641a9e28f71f244a1024980e0e
SHA256 30f281eb9de6290ce751d9685d527cf392c7ac975390ed3e0a4d67f3a8824f3a
SHA512 fc31f12622ce2dff7480c3fc6fd197c98a2bb01953882b9c5c3ad89a5901045c4bfbb86566b976a06ae44cbf55b3f530ee5ca0227b5880d338b964b56485218a

/data/data/com.xunlei.downloadprovider/files/setting.cfg

MD5 73f2500c76b13d1c24bef88fd1135e2b
SHA1 21cf0e9b310d3c5dbf2a0ef7fb4b5edde0c17dad
SHA256 7095208dc87832d56da3d18d7b76e4a3b19577f3a225e8069face93fb060ca02
SHA512 ad89e5b8173d2ce7fc3a9982e940c297608be143260544c927ff6b541aaf560b0fed3bc9600e0d59735f1f9f2235a47c6e0350830ec15263c44036adcf2f4d1d

/data/data/com.xunlei.downloadprovider/files/xluagc_seq_id

MD5 d2ca1e0a6bbe50b83058e89accdcb931
SHA1 00757d03c1cbcc8f34cddd575b24f7441967bf7a
SHA256 ca45581b05fad22323c54e24d8a674bfe6fbf93cbdbe30d797e9eb7e6239ae9f
SHA512 22284dcea883441c1e085d369dda4798cff8cee5e33c9e885ea3daabad10aa142a26c8447af29b584538b1fb90c5576efddadcf09899273a36d4283c5d343ff9

/data/data/com.xunlei.downloadprovider/files/vipchannel_seq_id

MD5 ab39d36ed232c13017153ba1b1a786f5
SHA1 76096a6cf372590eda681e9820c6145748ca9443
SHA256 2451b0cd7d6b553a2e7c4f33ad250787fb858363bddd728ed9d492283ec86779
SHA512 e342411fc6708971578cd6ef903cef879f05b715f5c82a4cc5b384bda61b9c24f91d317c1d2d6fa9f6afc74bcddec1ca2c75ac2734368b0f39d11741162da5dc

/data/data/com.xunlei.downloadprovider/app_baidu_ad_sdk/oat/__xadsdk__remote__final__running__.jar.cur.prof

MD5 243b3048354e94361c66ab677ffa3d73
SHA1 23ed713568a9beaa2e21ac3cea2cfddf5f134b18
SHA256 be3403402f41a0a4e66a308487a26cd5e058db6c0cd28675f0bea5d13250dd58
SHA512 2965ffc553f505a3332126debec9360cef2daca90efec4a9aab294d4b494e43affec5bf6506fc902254dae13fde155727e4d6830f9061c065fa348025c93a248

/data/data/com.xunlei.downloadprovider/app_e_qq_com_plugin/oat/gdt_plugin.jar.cur.prof

MD5 839026af961a083d84fad82f1c9a9400
SHA1 d4b18ef823b836458fcd29ad5c093e2b6cff67b9
SHA256 22723453af67d283862adb7779b8a40ea922349e0db0351ee0ed2ad73f50f306
SHA512 e5772fc57f8b584a71105340520846c1eb56744236e73220ec0becd2455e1441fe6c483a3309293e00ecdd3b41d31165370ab01df2be14385c78b1011640ba20

/data/data/com.xunlei.downloadprovider/files/xluagc_statstorage_v5.xml

MD5 7f27ca38c3dfbd95fe3a9f8d1fb63a9c
SHA1 a12eb372ec81fc59c9a26ad222d4166ceca7b2d9
SHA256 b4717318e4ab8a07df89a98aa6467e42a5cc69c0f24a39ae376b94f7fe0c0dfc
SHA512 ab0fa2539ebafcea714b566b690b31797954ec3564c139bf46bc647fecfeaa4afce7c7fc1be204a3f59f145e08932111ab24e76c0c60548c38611a8f8d97259a

Analysis: behavioral2

Detonation Overview

Submitted

2024-05-22 02:45

Reported

2024-05-22 02:45

Platform

android-x86-arm-20240514-en

Max time network

7s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
GB 142.250.200.42:443 tcp
GB 142.250.178.10:443 tcp
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral3

Detonation Overview

Submitted

2024-05-22 02:45

Reported

2024-05-22 02:45

Platform

android-x64-20240514-en

Max time network

8s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral7

Detonation Overview

Submitted

2024-05-22 02:45

Reported

2024-05-22 02:45

Platform

android-x64-arm64-20240514-en

Max time network

9s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A