× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 00eff43cf2b65b583a555c19bcebfa44d0315bfd5224fc394a214ef4e6d054c6
File name: 00eff43cf2b65b583a555c19bcebfa44d0315bfd5224fc394a214ef4e6d054c6....
Detection ratio: 0 / 62
Analysis date: 2017-12-28 00:56:35 UTC ( 1 year, 1 month ago )
Antivirus Result Update
Ad-Aware 20171225
AegisLab 20171227
AhnLab-V3 20171227
Alibaba 20171227
ALYac 20171228
Antiy-AVL 20171228
Arcabit 20171227
Avast 20171227
Avast-Mobile 20171227
AVG 20171227
Avira (no cloud) 20171227
AVware 20171228
Baidu 20171227
BitDefender 20171228
Bkav 20171227
CAT-QuickHeal 20171227
ClamAV 20171227
CMC 20171227
Comodo 20171228
CrowdStrike Falcon (ML) 20171016
Cybereason 20171103
Cylance 20171228
Cyren 20171227
DrWeb 20171227
eGambit 20171228
Emsisoft 20171227
Endgame 20171130
ESET-NOD32 20171227
F-Prot 20171228
F-Secure 20171227
Fortinet 20171228
GData 20171228
Ikarus 20171227
Sophos ML 20170914
Jiangmin 20171227
K7AntiVirus 20171227
K7GW 20171228
Kaspersky 20171227
Kingsoft 20171228
Malwarebytes 20171228
MAX 20171228
McAfee 20171228
McAfee-GW-Edition 20171227
Microsoft 20171227
eScan 20171227
NANO-Antivirus 20171227
nProtect 20171227
Palo Alto Networks (Known Signatures) 20171228
Panda 20171227
Qihoo-360 20171228
Rising 20171227
SentinelOne (Static ML) 20171224
Sophos AV 20171228
SUPERAntiSpyware 20171227
Symantec 20171227
Symantec Mobile Insight 20171227
Tencent 20171228
TheHacker 20171226
TotalDefense 20171227
TrendMicro 20171227
TrendMicro-HouseCall 20171228
Trustlook 20171228
VBA32 20171227
VIPRE 20171227
ViRobot 20171227
WhiteArmor 20171226
Yandex 20171225
Zillya 20171226
ZoneAlarm by Check Point 20171227
Zoner 20171227
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.ruh.hracebetpro. The internal version number of the application is 35. The displayed version string of the application is 1.1.13p. The minimum Android API level for the application to run (MinSDKVersion) is 15. The target Android API level for the application to run (TargetSDKVersion) is 22.
Required permissions
android.permission.RECEIVE_BOOT_COMPLETED (automatically start at boot)
com.google.android.c2dm.permission.RECEIVE (Unknown permission from android reference)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.INTERNET (full Internet access)
com.ruh.hracebetpro.permission.C2D_MESSAGE (C2DM permission.)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
com.android.vending.BILLING (Unknown permission from android reference)
android.permission.GET_ACCOUNTS (discover known accounts)
Activities
com.soomla.store.billing.google.GooglePlayIabService$IabActivity
com.facebook.LoginActivity
com.ruh.hracebet.AppActivity
com.chartboost.sdk.CBImpressionActivity
com.vungle.publisher.VideoFullScreenAdActivity
com.vungle.publisher.MraidFullScreenAdActivity
com.adcolony.sdk.AdColonyInterstitialActivity
com.adcolony.sdk.AdColonyAdViewActivity
com.google.android.gms.ads.AdActivity
com.google.android.gms.ads.purchase.InAppPurchaseActivity
com.google.android.gms.common.api.GoogleApiActivity
Services
com.google.android.gms.analytics.CampaignTrackingService
com.google.android.gms.measurement.AppMeasurementService
com.google.firebase.iid.FirebaseInstanceIdService
Receivers
com.ruh.hracebet.InstallReceiver
com.ruh.hracebet.ConnectionReceiver
com.ruh.hracebet.AlarmReceiver
com.ruh.hracebet.AlarmReceiverRepeating
com.ruh.hracebet.BroadcastReceiverRestart
com.google.android.gms.measurement.AppMeasurementReceiver
com.google.firebase.iid.FirebaseInstanceIdReceiver
com.google.firebase.iid.FirebaseInstanceIdInternalReceiver
Providers
com.facebook.NativeAppCallContentProvider
com.google.firebase.provider.FirebaseInitProvider
Service-related intent filters
com.google.firebase.iid.FirebaseInstanceIdService
actions: com.google.firebase.INSTANCE_ID_EVENT
Activity-related intent filters
com.ruh.hracebet.AppActivity
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
Receiver-related intent filters
com.google.android.gms.measurement.AppMeasurementReceiver
actions: com.google.android.gms.measurement.UPLOAD
com.ruh.hracebet.BroadcastReceiverRestart
actions: android.intent.action.BOOT_COMPLETED
categories: android.intent.category.DEFAULT
com.ruh.hracebet.ConnectionReceiver
actions: android.net.conn.CONNECTIVITY_CHANGE
com.ruh.hracebet.AlarmReceiver
actions: com.ruh.hracebet.AlarmReceiver
com.google.firebase.iid.FirebaseInstanceIdReceiver
actions: com.google.android.c2dm.intent.RECEIVE, com.google.android.c2dm.intent.REGISTRATION
categories: com.ruh.hracebetpro
com.ruh.hracebet.InstallReceiver
actions: com.android.vending.INSTALL_REFERRER
com.ruh.hracebet.AlarmReceiverRepeating
actions: com.ruh.hracebet.AlarmReceiverRepeating
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
765
Uncompressed size
49742213
Highest datetime
2017-07-04 12:14:10
Lowest datetime
2017-06-16 20:48:56
Contained files by extension
png
614
xml
104
mp3
17
ttf
9
jpg
2
dex
1
MF
1
RSA
1
so
1
SF
1
Contained files by type
PNG
614
XML
107
unknown
25
MP3
15
JPG
2
DEX
1
ELF
1
File identification
MD5 49e7b4ca19f29fba12afb236f1a0d792
SHA1 3cdeed224bf20eea3d17226536758075b00c9d1a
SHA256 00eff43cf2b65b583a555c19bcebfa44d0315bfd5224fc394a214ef4e6d054c6
ssdeep
786432:wmAiDogLWtmgvkgjJ1jwf1tdoMf4VOLXp:b3KtmgfjJJwr8Q

File size 28.2 MB ( 29538835 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (73.9%)
Java Archive (20.4%)
ZIP compressed archive (5.6%)
Tags
apk android contains-elf

VirusTotal metadata
First submission 2017-09-12 10:03:32 UTC ( 1 year, 5 months ago )
Last submission 2017-09-12 10:03:32 UTC ( 1 year, 5 months ago )
File names 00eff43cf2b65b583a555c19bcebfa44d0315bfd5224fc394a214ef4e6d054c6.file
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!