× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 1a34bd429643f0f0a9597af16d42392fd7179c2f1ed6411e10cd1d34d141f081
File name: 806355_e5624f_com.appspot.swisscodemonkeys.bald-23.apk
Detection ratio: 0 / 61
Analysis date: 2017-06-12 18:50:27 UTC ( 1 year, 11 months ago ) View latest
Antivirus Result Update
Ad-Aware 20170612
AegisLab 20170612
AhnLab-V3 20170612
Alibaba 20170612
ALYac 20170612
Antiy-AVL 20170612
Arcabit 20170612
Avast 20170612
AVG 20170612
Avira (no cloud) 20170612
AVware 20170612
Baidu 20170608
BitDefender 20170612
Bkav 20170612
CAT-QuickHeal 20170612
ClamAV 20170612
CMC 20170612
Comodo 20170612
CrowdStrike Falcon (ML) 20170420
Cyren 20170612
DrWeb 20170612
Emsisoft 20170612
Endgame 20170515
ESET-NOD32 20170612
F-Prot 20170612
F-Secure 20170612
Fortinet 20170612
GData 20170612
Ikarus 20170612
Sophos ML 20170607
Jiangmin 20170612
K7AntiVirus 20170612
K7GW 20170612
Kaspersky 20170612
Kingsoft 20170612
Malwarebytes 20170612
McAfee 20170612
McAfee-GW-Edition 20170612
Microsoft 20170612
eScan 20170612
NANO-Antivirus 20170612
nProtect 20170612
Palo Alto Networks (Known Signatures) 20170612
Panda 20170612
Qihoo-360 20170612
Rising 20170612
SentinelOne (Static ML) 20170516
Sophos AV 20170612
SUPERAntiSpyware 20170612
Symantec 20170612
Symantec Mobile Insight 20170608
Tencent 20170612
TheHacker 20170612
TotalDefense 20170612
TrendMicro 20170612
TrendMicro-HouseCall 20170612
Trustlook 20170612
VBA32 20170612
VIPRE 20170612
ViRobot 20170612
Webroot 20170612
WhiteArmor 20170608
Yandex 20170608
Zillya 20170612
ZoneAlarm by Check Point 20170612
Zoner 20170612
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.appspot.swisscodemonkeys.bald. The internal version number of the application is 23. The displayed version string of the application is 2.6. The minimum Android API level for the application to run (MinSDKVersion) is 15. The target Android API level for the application to run (TargetSDKVersion) is 22.
Required permissions
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.INTERNET (full Internet access)
Activities
com.appspot.swisscodemonkeys.libbald.BaldGalleryActivity
com.appspot.swisscodemonkeys.libbald.BaldMarkerActivity
com.appspot.swisscodemonkeys.libbald.BaldEffectActivity
com.appspot.swisscodemonkeys.libbald.BadResultActivity
chooser.ShareActivity
com.amazon.device.ads.AdActivity
com.appspot.swisscodemonkeys.facebook.FacebookAlbumsActivity
com.appspot.swisscodemonkeys.facebook.FacebookPhotosActivity
com.facebook.FacebookActivity
com.facebook.CustomTabActivity
com.facebook.CustomTabMainActivity
com.appbrain.AppBrainActivity
com.mopub.mobileads.MoPubActivity
com.mopub.mobileads.MraidActivity
com.mopub.common.MoPubBrowser
com.mopub.mobileads.MraidVideoPlayerActivity
com.inmobi.rendering.InMobiAdActivity
com.chartboost.sdk.CBImpressionActivity
com.facebook.ads.AudienceNetworkActivity
com.google.android.gms.ads.AdActivity
com.google.android.gms.ads.purchase.InAppPurchaseActivity
com.google.android.gms.common.api.GoogleApiActivity
Services
com.appbrain.AppBrainService
com.google.android.gms.analytics.AnalyticsService
com.google.android.gms.analytics.CampaignTrackingService
com.inmobi.signals.activityrecognition.ActivityRecognitionManager
Receivers
com.appspot.swisscodemonkeys.libbald.OnUpgradeBroadcastReceiver
com.appbrain.ReferrerReceiver
com.google.android.gms.analytics.AnalyticsReceiver
com.apptornado.TrackActivityReceiver
chooser.ShareExperiment$ShareReceiver
com.inmobi.commons.core.utilities.uid.ImIdShareBroadCastReceiver
Activity-related intent filters
com.appspot.swisscodemonkeys.libbald.BaldGalleryActivity
actions: android.intent.action.MAIN, android.intent.action.VIEW, android.intent.action.EDIT, android.intent.action.SEND, com.appspot.swisscodemonkeys.FACE
categories: android.intent.category.LAUNCHER, android.intent.category.DEFAULT
Receiver-related intent filters
com.appspot.swisscodemonkeys.libbald.OnUpgradeBroadcastReceiver
actions: android.intent.action.MY_PACKAGE_REPLACED
com.inmobi.commons.core.utilities.uid.ImIdShareBroadCastReceiver
actions: com.inmobi.share.id
com.appbrain.ReferrerReceiver
actions: com.android.vending.INSTALL_REFERRER
com.google.android.gms.analytics.AnalyticsReceiver
actions: com.google.android.gms.analytics.ANALYTICS_DISPATCH
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
753
Uncompressed size
8416176
Highest datetime
1980-00-00 00:00:00
Lowest datetime
1980-00-00 00:00:00
Contained files by extension
png
456
xml
268
so
7
jpg
6
dex
1
MF
1
RSA
1
otf
1
dat
1
wav
1
ogg
1
txt
1
SF
1
Contained files by type
PNG
456
XML
267
unknown
15
ELF
7
JPG
6
DEX
1
OGG
1
File identification
MD5 c51da79dc829a7ecc4a30e1c71ad0581
SHA1 dce648b9b9904b714d61cce51fb4c8a96e29f337
SHA256 1a34bd429643f0f0a9597af16d42392fd7179c2f1ed6411e10cd1d34d141f081
ssdeep
98304:3L5hxT2rBohnJHdu0eec82NdYZ0IcTIAl69vpYWASDUHOBC:dhxPdveeOqZtwhk9vWGzBC

File size 4.3 MB ( 4552099 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (63.6%)
Java Archive (17.5%)
Sweet Home 3D design (generic) (12.7%)
ZIP compressed archive (4.8%)
PrintFox/Pagefox bitmap (var. P) (1.2%)
Tags
apk checks-gps android contains-elf

VirusTotal metadata
First submission 2017-01-31 15:40:05 UTC ( 2 years, 3 months ago )
Last submission 2019-01-25 16:37:59 UTC ( 3 months, 3 weeks ago )
File names com.appspot.swisscodemonkeys.bald.apk
egaodiantuizi_itmop.com.apk
dejame-calvo.apk
806355_e5624f_com.appspot.swisscodemonkeys.bald-23.apk
Make_Me_Bald_v2.6_apkpure.com.apk
com.appspot.swisscodemonkeys.bald.apk
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Opened files
/data/data/com.appspot.swisscodemonkeys.bald/files/com.appbrain.ping
/data/data/com.appspot.swisscodemonkeys.bald/files/AppEventsLogger.persistedevents
/data/data/com.appspot.swisscodemonkeys.bald/files
/mnt/sdcard/bald/.badresults
/mnt/sdcard/Android/data/com.appspot.swisscodemonkeys.bald/cache/imagedl
/mnt/sdcard/bald/gallery
/mnt/sdcard/bald/.paintInfo
/mnt/sdcard/bald
/mnt/sdcard/bald/templates
/data
Accessed files
/data/data/com.appspot.swisscodemonkeys.bald/files
/data/data/com.appspot.swisscodemonkeys.bald/files/appbrain/interstitial.html
Deleted files
/data/data/com.appspot.swisscodemonkeys.bald/filescom.appbrain.ping
Interesting calls
Calls APIs that provide access to information about the telephony services on the device. Applications can use such methods to determine telephony services and states, as well as to access some types of subscriber information.
Calls APIs that provide access to the system location services. These services allow applications to obtain periodic updates of the device's geographical location, or to fire an application-specified Intent when the device enters the proximity of a given geographical location.
Contacted URLs
https://graph.facebook.com/v2.8/112347112181344?format=json&sdk=android&fields=supports_implicit_sdk_logging%2Cgdpv4_nux_content%2Cgdpv4_nux_enabled%2Cgdpv4_chrome_custom_tabs_enabled%2Candroid_dialog_configs%2Candroid_sdk_error_categories%2Capp_events_session_timeout%2Capp_events_feature_bitmask%2Cseamless_login%2Csmart_login_bookmark_icon_url%2Csmart_login_menu_icon_url
http://sdk.appbrain.com/api/pb?action=up
http://ping.apptornado.com/bald.xml?silent=1&nid=0&model=google+crespo&scmid=cMTEMQ&sys=4.0.4&play=-1&ver=23&aid=f1d829626470c18&inst=1350547899&lang=en&hm=Nexus+S&c1=us&c2=us&nscm=G0cwA1XgGLw&apps=&appbrain=128&installer=&sdk=15&man=samsung&sig=dmqmEMwyzHZvcK-1KkCsDw&prod=soju
Accessed URIs
market://details?id=com.google.android.gm
https://graph.facebook.com/v2.8/112347112181344
content://com.facebook.katana.provider.PlatformProvider/versions
content://com.facebook.wakizashi.provider.PlatformProvider/versions