× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 181faa7a07b099a5d9f799930d7cb60a3d8e4d234fc88290f2f47c78d34cf60f
File name: 181faa7a07b099a5d9f799930d7cb60a3d8e4d234fc88290f2f47c78d34cf60f
Detection ratio: 8 / 61
Analysis date: 2017-04-07 19:42:23 UTC ( 1 year, 11 months ago ) View latest
Antivirus Result Update
Bkav Android.Malware.SDi.6359 20170407
Cyren AndroidOS/GenBl.F5F66DC2!Olympus 20170407
Fortinet Adware/Startapp.A 20170407
Jiangmin TrojanDropper.AndroidOS.zyj 20170407
Symantec Trojan.Gen.8!cloud 20170407
TrendMicro-HouseCall Suspicious_GEN.F47V0125 20170407
Trustlook Android.PUA.General 20170407
WhiteArmor Android-PUA.SN-Sure.36373246233837576144080650.[PUA] 20170327
Ad-Aware 20170407
AegisLab 20170407
AhnLab-V3 20170407
Alibaba 20170407
ALYac 20170407
Antiy-AVL 20170407
Arcabit 20170407
Avast 20170407
AVG 20170407
Avira (no cloud) 20170407
AVware 20170407
Baidu 20170406
BitDefender 20170407
CAT-QuickHeal 20170407
ClamAV 20170407
CMC 20170407
Comodo 20170407
CrowdStrike Falcon (ML) 20170130
DrWeb 20170407
Emsisoft 20170407
Endgame 20170407
ESET-NOD32 20170407
F-Prot 20170407
F-Secure 20170407
GData 20170407
Ikarus 20170407
Sophos ML 20170203
K7AntiVirus 20170407
K7GW 20170407
Kaspersky 20170407
Kingsoft 20170407
Malwarebytes 20170407
McAfee 20170407
McAfee-GW-Edition 20170407
Microsoft 20170407
eScan 20170407
NANO-Antivirus 20170407
nProtect 20170407
Palo Alto Networks (Known Signatures) 20170407
Panda 20170407
Qihoo-360 20170407
Rising 20170407
SentinelOne (Static ML) 20170330
Sophos AV 20170407
SUPERAntiSpyware 20170407
Symantec Mobile Insight 20170406
Tencent 20170407
TheHacker 20170406
TotalDefense 20170407
TrendMicro 20170407
VBA32 20170407
VIPRE 20170407
ViRobot 20170407
Webroot 20170407
Yandex 20170406
Zillya 20170407
ZoneAlarm by Check Point 20170407
Zoner 20170407
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.AUTORUS.GTRRedlineRacing. The internal version number of the application is 2. The displayed version string of the application is 1.0.0. The minimum Android API level for the application to run (MinSDKVersion) is 9. The target Android API level for the application to run (TargetSDKVersion) is 23.
Required permissions
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.ACCESS_COARSE_LOCATION (coarse (network-based) location)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.INTERNET (full Internet access)
com.android.vending.CHECK_LICENSE (Unknown permission from android reference)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
Activities
com.unity3d.player.UnityPlayerActivity
com.appodeal.ads.InterstitialActivity
com.appodeal.ads.VideoActivity
com.appodeal.ads.LoaderActivity
com.google.android.gms.ads.AdActivity
com.chartboost.sdk.CBImpressionActivity
com.applovin.adview.AppLovinInterstitialActivity
com.mopub.mobileads.MoPubActivity
com.mopub.common.MoPubBrowser
com.mopub.mobileads.MraidActivity
com.mopub.mobileads.MraidVideoPlayerActivity
org.nexage.sourcekit.mraid.MRAIDBrowser
com.amazon.device.ads.AdActivity
com.my.target.ads.MyTargetActivity
org.nexage.sourcekit.vast.activity.VPAIDActivity
org.nexage.sourcekit.vast.activity.VASTActivity
com.appodeal.ads.networks.SpotXActivity
com.facebook.ads.InterstitialAdActivity
com.unity3d.ads.android.view.UnityAdsFullscreenActivity
com.unity3d.ads.android2.view.UnityAdsFullscreenActivity
com.jirbo.adcolony.AdColonyOverlay
com.jirbo.adcolony.AdColonyFullscreen
com.jirbo.adcolony.AdColonyBrowser
com.vungle.publisher.FullScreenAdActivity
com.startapp.android.publish.list3d.List3DActivity
com.startapp.android.publish.OverlayActivity
com.startapp.android.publish.FullScreenActivity
com.yandex.mobile.ads.AdActivity
com.inmobi.rendering.InMobiAdActivity
com.flurry.android.FlurryFullscreenTakeoverActivity
com.appodeal.ads.networks.vpaid.VPAIDActivity
Services
com.yandex.metrica.MetricaService
com.inmobi.signals.activityrecognition.ActivityRecognitionManager
Receivers
com.appodeal.ads.AppodealPackageAddedReceiver
com.yandex.metrica.MetricaEventHandler
com.inmobi.commons.core.utilities.uid.ImIdShareBroadCastReceiver
Service-related intent filters
com.yandex.metrica.MetricaService
actions: com.yandex.metrica.IMetricaService
categories: android.intent.category.DEFAULT
Activity-related intent filters
com.unity3d.player.UnityPlayerActivity
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER, android.intent.category.LEANBACK_LAUNCHER
Receiver-related intent filters
com.yandex.metrica.MetricaEventHandler
actions: com.android.vending.INSTALL_REFERRER
com.appodeal.ads.AppodealPackageAddedReceiver
actions: android.intent.action.PACKAGE_ADDED
com.inmobi.commons.core.utilities.uid.ImIdShareBroadCastReceiver
actions: com.inmobi.share.id
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The studied file contains at least one Portable Executable.
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
331
Uncompressed size
70164108
Highest datetime
2016-08-31 01:23:48
Lowest datetime
2016-03-06 19:35:18
Contained files by extension
png
236
xml
39
dll
9
dex
8
so
3
MF
1
mdb
1
RSA
1
SF
1
Contained files by type
PNG
236
XML
39
unknown
35
Portable Executable
9
DEX
8
ELF
3
ZIP
1
File identification
MD5 f5f66dc2e65b44489e02442207a7bd5e
SHA1 66517c83d0c643f01bc479c2ffbd7a4f79f88b34
SHA256 181faa7a07b099a5d9f799930d7cb60a3d8e4d234fc88290f2f47c78d34cf60f
ssdeep
786432:rMyarHtzdqW+UB7h7sT0ZgcRs1moo4SdPWusgMNMCpG8IZ0gOZJmivNiw:rlMdYpUBNnZgpmVTdPW7gaMqIZ1iJmiP

File size 33.7 MB ( 35387860 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (91.3%)
ZIP compressed archive (6.9%)
PrintFox/Pagefox bitmap (var. P) (1.7%)
Tags
apk contains-pe android contains-elf

VirusTotal metadata
First submission 2016-10-20 07:48:23 UTC ( 2 years, 5 months ago )
Last submission 2016-10-20 07:48:23 UTC ( 2 years, 5 months ago )
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!