× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 2bce3db87fa35a7b24da5d2d6bce371399723a2209face2289794783c9b44389
File name: 877ace73bf520a321324ed435a4704fade9376c2950a9a345488f2f008ea916d9...
Detection ratio: 0 / 55
Analysis date: 2016-09-15 01:38:43 UTC ( 2 years, 4 months ago ) View latest
Antivirus Result Update
Ad-Aware 20160915
AegisLab 20160914
AhnLab-V3 20160914
Alibaba 20160914
Antiy-AVL 20160915
Arcabit 20160915
Avast 20160915
AVG 20160914
Avira (no cloud) 20160915
AVware 20160915
Baidu 20160914
BitDefender 20160915
Bkav 20160914
CAT-QuickHeal 20160914
ClamAV 20160913
CMC 20160912
Comodo 20160912
Cyren 20160915
DrWeb 20160915
Emsisoft 20160915
ESET-NOD32 20160914
F-Prot 20160915
F-Secure 20160915
Fortinet 20160915
GData 20160915
Ikarus 20160914
Jiangmin 20160915
K7AntiVirus 20160914
K7GW 20160915
Kaspersky 20160915
Kingsoft 20160915
Malwarebytes 20160915
McAfee 20160915
McAfee-GW-Edition 20160915
Microsoft 20160914
eScan 20160915
NANO-Antivirus 20160914
nProtect 20160915
Panda 20160914
Qihoo-360 20160915
Rising 20160915
Sophos AV 20160915
SUPERAntiSpyware 20160914
Symantec 20160915
Tencent 20160915
TheHacker 20160911
TotalDefense 20160907
TrendMicro 20160915
TrendMicro-HouseCall 20160915
VBA32 20160914
VIPRE 20160915
ViRobot 20160915
Yandex 20160914
Zillya 20160914
Zoner 20160914
The file being studied is Android related! APK Android file more specifically. The application's main package name is ru.yandex.searchplugin. The internal version number of the application is 4040500. The displayed version string of the application is 4.45. The minimum Android API level for the application to run (MinSDKVersion) is 14. The target Android API level for the application to run (TargetSDKVersion) is 19.
Required permissions
android.permission.ACCESS_FINE_LOCATION (fine (GPS) location)
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.RECEIVE_BOOT_COMPLETED (automatically start at boot)
android.permission.READ_PHONE_STATE (read phone state and identity)
ru.yandex.common.session.SESSION_LOG_BIND (Unknown permission from android reference)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS (access extra location provider commands)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.ACCESS_COARSE_LOCATION (coarse (network-based) location)
android.permission.PACKAGE_USAGE_STATS (update component usage statistics)
android.permission.GET_TASKS (retrieve running applications)
android.permission.CHANGE_WIFI_STATE (change Wi-Fi status)
android.permission.RECORD_AUDIO (record audio)
android.permission.INTERNET (full Internet access)
com.android.browser.permission.READ_HISTORY_BOOKMARKS (read Browser's history and bookmarks)
ru.yandex.searchplugin.images.FULL (Unknown permission from android reference)
android.permission.WRITE_SETTINGS (modify global system settings)
ru.yandex.searchplugin.appicons.FULL (Unknown permission from android reference)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.READ_CONTACTS (read contact data)
android.permission.READ_SMS (read SMS or MMS)
Activities
ru.yandex.searchplugin.MainActivity
ru.yandex.searchplugin.AboutActivity
ru.yandex.searchplugin.settings.SettingsActivity
ru.yandex.searchplugin.PackageUsageStatsActivity
ru.yandex.searchplugin.WelcomeActivity
ru.yandex.searchplugin.debug.DebugSettingsActivity
ru.yandex.searchplugin.widgets.big.preferences.BigWidgetSettingsActivity
ru.yandex.searchlib.notification.SplashActivity
ru.yandex.speechkit.gui.RecognizerActivity
Services
ru.yandex.searchplugin.assistant.AssistantService
ru.yandex.searchlib.notification.NotificationService
ru.yandex.common.clid.ClidService
com.yandex.metrica.MetricaService
ru.yandex.common.session.appstats.AppStatsCollectStartService
ru.yandex.common.session.LogsHelperService
Receivers
ru.yandex.searchplugin.Widget
ru.yandex.searchplugin.BigWidget
ru.yandex.searchplugin.SmallWidget
ru.yandex.common.session.receivers.BatteryInfoReceiver
ru.yandex.common.session.receivers.ConnectivityChangeReceiver
ru.yandex.searchplugin.assistant.receivers.AssistantBroadcastReceiver
ru.yandex.searchplugin.assistant.receivers.AssistantUserPresentReceiver
ru.yandex.searchplugin.widgets.big.data.apps.AppIconsBroadcastReceiver
ru.yandex.searchlib.notification.NotificationConnectivityBroadcastReceiver
ru.yandex.searchlib.notification.NotificationBroadcastReceiver
ru.yandex.common.clid.ClidBroadcastReceiver
ru.yandex.searchplugin.assistant.receivers.AssistantNetworkChangeReceiver
ru.yandex.searchplugin.assistant.receivers.NotificationUpdateReceiver
com.yandex.metrica.MetricaEventHandler
ru.yandex.common.session.receivers.ScreenStateReceiver
ru.yandex.common.session.receivers.PackageEventReceiver
ru.yandex.common.session.receivers.DeviceBootReceiver
ru.yandex.common.session.receivers.TimeZoneChangeReceiver
ru.yandex.common.session.receivers.WifiScanCompletedReceiver
Providers
ru.yandex.searchplugin.widgets.big.data.apps.AppIconsContentProvider
ru.yandex.searchplugin.viewport.images.ImageContentProvider
ru.yandex.searchplugin.MetricaContentProvider
ru.yandex.searchplugin.SearchMobileLogsProvider
Service-related intent filters
com.yandex.metrica.MetricaService
actions: com.yandex.metrica.IMetricaService
categories: android.intent.category.DEFAULT
ru.yandex.common.session.LogsHelperService
actions: ru.yandex.common.session.CHECK_DELIVERY_ACTION, ru.yandex.common.session.SCHEDULE_DELIVERY_CHECK_ACTION, ru.yandex.common.session.LOG_AUTOSEND_ACTION, ru.yandex.common.session.HANDLE_AUTOSEND_RESULT_ACTION, ru.yandex.common.session.DELIVERY_CHECK_RESULT_ACTION, ru.yandex.common.session.HEARTBEAT_ACTION, ru.yandex.common.session.TIMEZONE_CHANGED, ru.yandex.common.session.SCHEDULE_AUTOSEND, ru.yandex.common.session.SCHEDULE_HEARTBEAT, ru.yandex.common.session.REPORT_APP_STATS, ru.yandex.common.session.STOP_WIFI_AP_SCAN_ACTION, ru.yandex.common.session.START_WIFI_AP_SCAN_ACTION, ru.yandex.common.session.WRITE_WIFI_SCAN_RESULTS_ACTION
ru.yandex.common.session.appstats.AppStatsCollectStartService
actions: ru.yandex.appstatscollector.RESET_ALARM_MANAGER_ACTION, ru.yandex.appstatscollector.STOP_ALARM_MANAGER_ACTION, ru.yandex.appstatscollector.REFRESH_APP_USAGE_STATS
Activity-related intent filters
ru.yandex.searchplugin.MainActivity
actions: android.intent.action.MAIN, android.intent.action.ASSIST
categories: android.intent.category.LAUNCHER, android.intent.category.DEFAULT
ru.yandex.speechkit.gui.RecognizerActivity
actions: ru.yandex.speechkit.action.voice_recognition
categories: android.intent.category.DEFAULT
Receiver-related intent filters
ru.yandex.searchplugin.assistant.receivers.NotificationUpdateReceiver
actions: ru.yandex.searchplugin.NOTIFICATION_UPDATE
ru.yandex.searchplugin.widgets.big.data.apps.AppIconsBroadcastReceiver
actions: android.intent.action.PACKAGE_REPLACED, android.intent.action.PACKAGE_REMOVED, android.intent.action.PACKAGE_ADDED
ru.yandex.searchlib.notification.NotificationConnectivityBroadcastReceiver
actions: android.net.conn.CONNECTIVITY_CHANGE
ru.yandex.searchplugin.assistant.receivers.AssistantUserPresentReceiver
actions: android.intent.action.USER_PRESENT
ru.yandex.common.session.receivers.TimeZoneChangeReceiver
actions: android.intent.action.TIMEZONE_CHANGED
ru.yandex.searchplugin.assistant.receivers.AssistantNetworkChangeReceiver
actions: android.net.conn.CONNECTIVITY_CHANGE
ru.yandex.searchplugin.SmallWidget
actions: android.appwidget.action.APPWIDGET_UPDATE
ru.yandex.searchplugin.Widget
actions: android.appwidget.action.APPWIDGET_UPDATE
ru.yandex.common.session.receivers.BatteryInfoReceiver
actions: android.intent.action.ACTION_POWER_CONNECTED, android.intent.action.ACTION_POWER_DISCONNECTED, android.intent.action.BATTERY_LOW, android.intent.action.BATTERY_OKAY
com.yandex.metrica.MetricaEventHandler
actions: com.yandex.metrica.intent.action.SYNC, com.android.vending.INSTALL_REFERRER, android.intent.action.PACKAGE_ADDED, android.intent.action.PACKAGE_DATA_CLEARED
ru.yandex.common.session.receivers.DeviceBootReceiver
actions: android.intent.action.BOOT_COMPLETED
ru.yandex.common.clid.ClidBroadcastReceiver
actions: com.yandex.clid.action.CHANGE_CLID, ru.yandex.common.clid.intent.CLIDABLE, android.intent.action.PACKAGE_ADDED, android.intent.action.PACKAGE_REMOVED, android.intent.action.PACKAGE_REPLACED
categories: android.intent.category.DEFAULT
ru.yandex.searchlib.notification.NotificationBroadcastReceiver
actions: android.intent.action.LOCALE_CHANGED, android.intent.action.BOOT_COMPLETED, android.intent.action.ACTION_EXTERNAL_APPLICATIONS_AVAILABLE, android.intent.action.USER_PRESENT
categories: android.intent.category.DEFAULT
ru.yandex.searchplugin.BigWidget
actions: android.appwidget.action.APPWIDGET_UPDATE, ru.yandex.searchplugin.action.ACTION_DATA_EXPIRED_TRAFFIC, ru.yandex.searchplugin.action.ACTION_DATA_EXPIRED_ALL
ru.yandex.common.session.receivers.PackageEventReceiver
actions: android.intent.action.PACKAGE_ADDED, android.intent.action.PACKAGE_REMOVED, android.intent.action.PACKAGE_FULLY_REMOVED
ru.yandex.common.session.receivers.ConnectivityChangeReceiver
actions: android.net.conn.CONNECTIVITY_CHANGE, android.intent.action.AIRPLANE_MODE
ru.yandex.common.session.receivers.ScreenStateReceiver
actions: android.intent.action.SCREEN_OFF, android.intent.action.SCREEN_ON
ru.yandex.common.session.receivers.WifiScanCompletedReceiver
actions: android.net.wifi.SCAN_RESULTS, android.net.wifi.STATE_CHANGE
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
804
Uncompressed size
14114686
Highest datetime
2015-04-06 12:57:50
Lowest datetime
2015-04-06 12:56:24
Contained files by extension
png
418
xml
133
dot
2
txt
2
dex
1
MF
1
der
1
sh
1
so
1
SF
1
DSA
1
Contained files by type
PNG
418
unknown
251
XML
133
DEX
1
ELF
1
Compressed bundles
File identification
MD5 fdc619410aa580ebfad95e5682533739
SHA1 775caf6018a1cf36d89bd5c7913deb468901a89f
SHA256 2bce3db87fa35a7b24da5d2d6bce371399723a2209face2289794783c9b44389
ssdeep
98304:o24yOGHwyaDCgqEk9iUstbkKwoESmZRSjeLjbItewou/3J:oUZ9Uq9ijNk77S8RkeLj3Ju/5

File size 4.7 MB ( 4963778 bytes )
File type Android
Magic literal
Zip archive data, at least v1.0 to extract

TrID Android Package (73.9%)
Java Archive (20.4%)
ZIP compressed archive (5.6%)
Tags
apk checks-gps android contains-elf

VirusTotal metadata
First submission 2015-04-10 23:44:52 UTC ( 3 years, 9 months ago )
Last submission 2016-10-13 03:41:28 UTC ( 2 years, 3 months ago )
File names ru.yandex.searchplugin.apk
877ace73bf520a321324ed435a4704fade9376c2950a9a345488f2f008ea916d9f7ff021ca262c4e92aedd45d505e971d6c32e0fc0a9504221b83cf91e4eb70d
fdc619410aa580ebfad95e5682533739.apk
yandex.searchplugin4.45.apk
yandex-search.apk
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Permissions checked
android.permission.READ_PHONE_STATE:ru.yandex.searchplugin
android.permission.INTERNET:ru.yandex.searchplugin
ru.yandex.common.session.SESSION_LOG_BIND:ru.yandex.searchplugin
android.permission.ACCESS_COARSE_LOCATION:ru.yandex.searchplugin
android.permission.ACCESS_FINE_LOCATION:ru.yandex.searchplugin
android.permission.ACCESS_WIFI_STATE:ru.yandex.searchplugin
android.permission.ACCESS_NETWORK_STATE:ru.yandex.searchplugin
Started services
#Intent;action=ru.yandex.common.session.SCHEDULE_AUTOSEND;component=ru.yandex.searchplugin/ru.yandex.common.session.LogsHelperService;end
#Intent;action=ru.yandex.common.session.SCHEDULE_HEARTBEAT;component=ru.yandex.searchplugin/ru.yandex.common.session.LogsHelperService;end
#Intent;action=ru.yandex.appstatscollector.STOP_ALARM_MANAGER_ACTION;component=ru.yandex.searchplugin/ru.yandex.common.session.appstats.AppStatsCollectStartService;end
Stopped services
#Intent;component=ru.yandex.searchplugin/ru.yandex.searchlib.notification.NotificationService;end
Opened files
/data/app/ru.yandex.searchplugin-1.apk
/data/data/ru.yandex.searchplugin/files
Accessed files
/data/data/ru.yandex.searchplugin/files
/mnt/sdcard/enable_logging
/data/app/ru.yandex.searchplugin-1.apk
Interesting calls
Calls APIs that provide access to information about the telephony services on the device. Applications can use such methods to determine telephony services and states, as well as to access some types of subscriber information.
Calls APIs that provide access to the system location services. These services allow applications to obtain periodic updates of the device's geographical location, or to fire an application-specified Intent when the device enters the proximity of a given geographical location.
Accessed URIs
content://ru.yandex.searchplugin.ymoblogger/mob_logs
metrica://ru.yandex.searchplugin
content://ru.yandex.searchplugin.MetricaContentProvider/API_LEVEL