× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 315d9805024452642595c3f25e4afd52a580985fae61d7050a3d1c9b177c8ab5
File name: com.gameloft.android.ANMP.GloftAGHM_1.5.0g-15026_minAPI14(armeabi...
Detection ratio: 0 / 52
Analysis date: 2016-08-17 08:58:25 UTC ( 2 years, 9 months ago ) View latest
Antivirus Result Update
Ad-Aware 20160817
AegisLab 20160817
AhnLab-V3 20160817
Alibaba 20160817
ALYac 20160817
Antiy-AVL 20160817
Arcabit 20160817
Avast 20160817
AVG 20160817
Avira (no cloud) 20160817
AVware 20160817
Baidu 20160817
BitDefender 20160817
CAT-QuickHeal 20160817
ClamAV 20160817
CMC 20160816
Comodo 20160817
Cyren 20160817
DrWeb 20160817
Emsisoft 20160817
ESET-NOD32 20160817
F-Prot 20160817
F-Secure 20160817
Fortinet 20160817
GData 20160817
Ikarus 20160817
Jiangmin 20160817
K7AntiVirus 20160817
K7GW 20160817
Kaspersky 20160817
Kingsoft 20160817
Malwarebytes 20160817
McAfee 20160817
McAfee-GW-Edition 20160816
Microsoft 20160817
eScan 20160817
NANO-Antivirus 20160817
nProtect 20160817
Panda 20160816
Qihoo-360 20160817
Sophos AV 20160816
SUPERAntiSpyware 20160817
Symantec 20160817
Tencent 20160817
TheHacker 20160816
TrendMicro 20160817
TrendMicro-HouseCall 20160817
VBA32 20160816
VIPRE 20160817
ViRobot 20160817
Zillya 20160816
Zoner 20160817
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.gameloft.android.ANMP.GloftAGHM. The internal version number of the application is 15026. The displayed version string of the application is 1.5.0g. The minimum Android API level for the application to run (MinSDKVersion) is 14. The target Android API level for the application to run (TargetSDKVersion) is 23.
Required permissions
android.permission.VIBRATE (control vibrator)
android.permission.READ_EXTERNAL_STORAGE (read from external storage)
android.permission.RECEIVE_BOOT_COMPLETED (automatically start at boot)
glshare.permission.ACCESS_SHARED_DATA (Unknown permission from android reference)
com.google.android.c2dm.permission.RECEIVE (Unknown permission from android reference)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.ACCESS_COARSE_LOCATION (coarse (network-based) location)
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.INTERNET (full Internet access)
com.gameloft.android.ANMP.GloftAGHM.permission.C2D_MESSAGE (C2DM permission.)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
com.android.vending.BILLING (Unknown permission from android reference)
android.permission.GET_ACCOUNTS (discover known accounts)
Activities
com.gameloft.android.ANMP.GloftAGHM.MainActivity
com.facebook.LoginActivity
com.gameloft.android2d.iap.utils.MyWebView
com.gameloft.android.ANMP.GloftAGHM.IGPFreemiumActivity
com.gameloft.android.ANMP.GloftAGHM.PackageUtils.PermissionActivity
com.facebook.ads.InterstitialAdActivity
com.google.android.gms.ads.AdActivity
com.gameloft.glads.GLAdFullScreen
com.gameloft.glads.MRAIDFullScreen
com.gameloft.glads.vast.activity.VASTActivity
com.gameloft.glads.VASTFullScreen
com.gameloft.android.ANMP.GloftAGHM.ParseDeepLinkActivity
Services
com.google.android.gms.analytics.CampaignTrackingService
com.gameloft.android.ANMP.GloftAGHM.GCMIntentService
Receivers
com.google.android.gcm.GCMBroadcastReceiver
com.gameloft.android.ANMP.GloftAGHM.PushNotification.LocalPushReceiver
com.gameloft.android.ANMP.GloftAGHM.PushNotification.PushIntentReceiver
com.gameloft.android.ANMP.GloftAGHM.PushNotification.PushDeleteReceiver
com.gameloft.android.ANMP.GloftAGHM.GLUtils.NetworkStateReceiver
com.gameloft.android.ANMP.GloftAGHM.BootCompletedReceiver
com.gameloft.android.ANMP.GloftAGHM.installer.IReferrerReceiver
com.gameloft.android.ANMP.GloftAGHM.ApplicationSetUp
Providers
com.gameloft.android.ANMP.GloftAGHM.KeyProvider
Activity-related intent filters
com.gameloft.android.ANMP.GloftAGHM.IGPFreemiumActivity
actions: android.intent.action.MAIN
com.gameloft.android.ANMP.GloftAGHM.MainActivity
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
com.gameloft.android.ANMP.GloftAGHM.ParseDeepLinkActivity
actions: com.google.android.apps.plus.VIEW_DEEP_LINK
categories: android.intent.category.DEFAULT, android.intent.category.BROWSABLE
Receiver-related intent filters
com.google.android.gcm.GCMBroadcastReceiver
actions: com.google.android.c2dm.intent.RECEIVE, com.google.android.c2dm.intent.REGISTRATION
categories: com.gameloft.android.ANMP.GloftAGHM
com.gameloft.android.ANMP.GloftAGHM.ApplicationSetUp
actions: com.gameloft.android.ApplicationSetUp
com.gameloft.android.ANMP.GloftAGHM.PushNotification.LocalPushReceiver
actions: android.intent.action.BOOT_COMPLETED
com.gameloft.android.ANMP.GloftAGHM.PushNotification.PushDeleteReceiver
actions: com.gameloft.android.ANMP.GloftAGHM.PNDeleteBroadcast
com.gameloft.android.ANMP.GloftAGHM.GLUtils.NetworkStateReceiver
actions: android.net.conn.CONNECTIVITY_CHANGE
com.gameloft.android.ANMP.GloftAGHM.PushNotification.PushIntentReceiver
actions: com.gameloft.android.ANMP.GloftAGHM.PNBroadcast
com.gameloft.android.ANMP.GloftAGHM.BootCompletedReceiver
actions: android.intent.action.BOOT_COMPLETED
categories: android.intent.category.DEFAULT
com.gameloft.android.ANMP.GloftAGHM.installer.IReferrerReceiver
actions: com.android.vending.INSTALL_REFERRER
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
435
Uncompressed size
47006919
Highest datetime
2016-08-09 16:35:08
Lowest datetime
2016-08-09 15:06:30
Contained files by extension
png
337
xml
77
txt
5
so
2
bin
1
MF
1
zip
1
RSA
1
dex
1
ogg
1
SF
1
Contained files by type
PNG
337
XML
77
unknown
16
ELF
2
DEX
1
ZIP
1
OGG
1
File identification
MD5 d5d389cb902fc679f647fe8d78790bf0
SHA1 b76dd59f9f2ca40167a519ca9a05b549ba15176f
SHA256 315d9805024452642595c3f25e4afd52a580985fae61d7050a3d1c9b177c8ab5
ssdeep
786432:wpPyogV2bzx168BMX6RkwpN/QJ03ISfjwgcU7SIsv6aOPP:w8UbF1lGX6RfN/QJ035DfS5v6j

File size 35.7 MB ( 37421968 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Java Archive (74.3%)
ZIP compressed archive (20.5%)
PrintFox/Pagefox bitmap (var. P) (5.1%)
Tags
apk android contains-elf via-tor

VirusTotal metadata
First submission 2016-08-10 22:38:44 UTC ( 2 years, 9 months ago )
Last submission 2018-05-07 17:42:29 UTC ( 1 year ago )
File names com.ea.game.nfs14_row_v1.6.6-3445_Android-4.0.3.apk
com.gameloft.android.ANMP.GloftAGHM-1.5.0g-APK4Fun.com.apk
com.gameloft.android.ANMP.GloftAGHM.apk
asphalt-nitro-1.5.0g.apk
base.apk
com.gameloft.android.ANMP.GloftAGHM_1.5.0g-15026_minAPI14(armeabi-v7a)(nodpi)_apkmirror.com.apk
asphalt-nitro.apk
asphalt-nitro-1-5-0g.apk
com.gameloft.android.ANMP.GloftAGHM_v1.5.0g-15026_Android-4.0.apk
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Permissions checked
glshare.permission.ACCESS_SHARED_DATA:com.gameloft.android.ANMP.GloftAGHM
Started receivers
com.gameloft.android.ANMP.GloftAGHM_pushbroadcast
android.intent.action.BATTERY_CHANGED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.BATTERY_LOW
android.intent.action.BATTERY_OKAY
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED
Opened files
/data/data/com.gameloft.android.ANMP.GloftAGHM/files/AppEventsLogger.persistedevents
/data/data/com.gameloft.android.ANMP.GloftAGHM/files/AppEventsLogger.persistedsessioninfo
/data/data/com.gameloft.android.ANMP.GloftAGHM/files
/sdcard/Android/data/com.gameloft.android.ANMP.GloftAGHM/files
/data/data/com.gameloft.android.ANMP.GloftAGHM/filesglads
/mnt/sdcard
/mnt/sdcard/Android/data/com.gameloft.android.ANMP.GloftAGHM/files
/data/data/com.gameloft.android.ANMP.GloftAGHM/cache
/mnt/sdcard/Android/data
Accessed files
/data/data/com.gameloft.android.ANMP.GloftAGHM/files
/sdcard/Android/data/com.gameloft.android.ANMP.GloftAGHM/files
/data/data/com.gameloft.android.ANMP.GloftAGHM/databases/PN.db
/system/app/Superuser.apk
/proc/cpuinfo
/mnt/sdcard/Android/data
/mnt/sdcard/gameloft/games/glads.cfg
Deleted files
/data/data/com.gameloft.android.ANMP.GloftAGHM/filesAppEventsLogger.persistedsessioninfo
Interesting calls
Calls APIs that provide access to information about the telephony services on the device. Applications can use such methods to determine telephony services and states, as well as to access some types of subscriber information.
Contacted URLs
https://graph.facebook.com/v2.2/377180559157719/activities?format=json&sdk=android
http://201205igp.gameloft.com/redir/hdloading.php?game=AGHM&country=US&lg=en&ver=2.1&device=samsung_NexusS&f=4.0.4&udid=bfAeESCtHVjXeLd2O3p3nlD1ENkvNoVcrGXq7CvZ1Oo=&hdidfv=e53977d2-c28a-4875-8905-afca18d1997f&androidid=fc9e1b6303f0e8c7&g_ver=1.5.0g&line_number=mpRd14q8qARUoHkwKMkdaVD1ENkvNoVcrGXq7CvZ1Oo=&google_adid=&google_optout=1&appType=3&check=2&enc=1
https://graph.facebook.com/v2.2/377180559157719?format=json&sdk=android&fields=supports_implicit_sdk_logging%2Cgdpv4_nux_content%2Cgdpv4_nux_enabled%2Candroid_dialog_configs
Accessed URIs
content://com.gameloft.android.ANMP.GloftAGHM.KeyProvider/key
content://com.gameloft.android.ANMP.GloftAGHM.KeyProvider/key/
content://com.facebook.katana.provider.AttributionIdProvider