× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 064dcb4d096d9e70db526e342d750169b9d5248d4442e27fd287db904ba3c31f
File name: 064DCB4D096D9E70DB526E342D750169B9D5248D4442E27FD287DB904BA3C31F.dat
Detection ratio: 19 / 58
Analysis date: 2017-02-28 09:48:35 UTC ( 4 months, 3 weeks ago )
Antivirus Result Update
AegisLab Android.Bgserv.Gen!c 20170228
Antiy-AVL Trojan/Android.TSGeneric 20170228
AVG Android/R1.EBD.419EE95A02A3 20170227
Avira (no cloud) ANDROID/BgServ.C 20170228
AVware Trojan.AndroidOS.Generic.A 20170228
CAT-QuickHeal Android.Bgserv.GEN74 20170228
Comodo UnclassifiedMalware 20170228
Cyren AndroidOS/GenBl.AF311EAA!Olympus 20170228
ESET-NOD32 a variant of Android/Bgserv.C 20170228
GData Android.Trojan.Agent.8W5105 20170228
Ikarus Trojan.AndroidOS.Agent 20170228
K7GW Trojan ( 004c70281 ) 20170228
McAfee Artemis!AF311EAA2AF1 20170225
McAfee-GW-Edition Artemis 20170228
Rising Trojan.Bgserv/Android!8.975 (cloud:I9V131JN1JF) 20170228
Symantec Trojan.Gen.2 20170227
Tencent Android.Trojan.Bgserv.Lohl 20170228
Zillya Trojan.Bgserv.Android.15 20170227
Zoner Trojan.AndroidOS.BGServ.D 20170228
Ad-Aware 20170228
AhnLab-V3 20170228
Alibaba 20170228
ALYac 20170228
Arcabit 20170228
Avast 20170228
Baidu 20170228
BitDefender 20170228
ClamAV 20170228
CMC 20170228
CrowdStrike Falcon (ML) 20170130
DrWeb 20170228
Emsisoft 20170228
Endgame 20170222
F-Prot 20170228
F-Secure 20170228
Fortinet 20170228
Sophos ML 20170203
Jiangmin 20170228
K7AntiVirus 20170228
Kaspersky 20170228
Kingsoft 20170228
Malwarebytes 20170228
Microsoft 20170228
eScan 20170228
NANO-Antivirus 20170228
nProtect 20170228
Panda 20170227
Qihoo-360 20170228
Sophos AV 20170228
SUPERAntiSpyware 20170228
TheHacker 20170228
TotalDefense 20170228
TrendMicro 20170228
TrendMicro-HouseCall 20170228
Trustlook 20170228
VBA32 20170227
VIPRE 20170228
ViRobot 20170228
Webroot 20170228
WhiteArmor 20170222
Yandex 20170225
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.android.vending.sectool.v1. The internal version number of the application is 15. The displayed version string of the application is 2.5. The minimum Android API level for the application to run (MinSDKVersion) is 3.
Required permissions
android.permission.RECEIVE_BOOT_COMPLETED (automatically start at boot)
com.google.android.providers.gsf.permission.READ_GSERVICES (Unknown permission from android reference)
android.permission.INTERNET (full Internet access)
android.permission.READ_PHONE_STATE (read phone state and identity)
com.google.android.googleapps.permission.GOOGLE_AUTH (Unknown permission from android reference)
Services
com.android.vending.sectool.v1.GoogleSecurityToolActivity
Receivers
com.android.vending.sectool.v1.GoogleSecurityToolReceiver
Receiver-related intent filters
com.android.vending.sectool.v1.GoogleSecurityToolReceiver
actions: android.intent.action.PACKAGE_ADDED, android.intent.action.PACKAGE_CHANGED, android.intent.action.PACKAGE_REMOVED, android.intent.action.BOOT_COMPLETED, com.android.vending.INSTALL_REFERRER, android.intent.action.GTALK_CONNECTED
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
8
Uncompressed size
135842
Highest datetime
2008-12-01 22:07:58
Lowest datetime
2008-12-01 22:07:58
Contained files by extension
xml
1
dex
1
MF
1
RSA
1
SF
1
png
1
Contained files by type
unknown
4
XML
1
DEX
1
ELF
1
PNG
1
File identification
MD5 af311eaa2af1342ba0e39028cf4f99fb
SHA1 163f11924b3bf364662762dc8d596726948a0846
SHA256 064dcb4d096d9e70db526e342d750169b9d5248d4442e27fd287db904ba3c31f
ssdeep
1536:4y1EadHHdEVSaaAFaL50Oz41xSDS34wqOxGcqIVuYgMZn:4udJqSJGBdq4xqyulW

File size 77.3 KB ( 79118 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (92.9%)
ZIP compressed archive (7.0%)
Tags
apk android contains-elf

VirusTotal metadata
First submission 2012-11-22 01:37:24 UTC ( 4 years, 8 months ago )
Last submission 2015-06-26 08:59:54 UTC ( 2 years ago )
File names af311eaa2af1342ba0e39028cf4f99fb.apk
com.android.vending.sectool.v1-2.apk
064DCB4D096D9E70DB526E342D750169B9D5248D4442E27FD287DB904BA3C31F.dat
af311eaa2af1342ba0e39028cf4f99fb.log
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!