× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 3c5539b642a33ab22c3d78f76545fe19b3a302dae72ba61d6db35a6c39051bba
File name: pkg.apk
Detection ratio: 0 / 58
Analysis date: 2017-06-29 19:28:53 UTC ( 1 year, 8 months ago ) View latest
Antivirus Result Update
Ad-Aware 20170629
AegisLab 20170629
AhnLab-V3 20170629
Alibaba 20170629
ALYac 20170629
Antiy-AVL 20170629
Arcabit 20170629
Avast 20170629
AVG 20170629
Avira (no cloud) 20170629
AVware 20170629
Baidu 20170629
BitDefender 20170629
CAT-QuickHeal 20170629
ClamAV 20170629
CMC 20170629
Comodo 20170629
CrowdStrike Falcon (ML) 20170420
Cyren 20170629
DrWeb 20170629
Emsisoft 20170629
Endgame 20170629
ESET-NOD32 20170629
F-Prot 20170629
F-Secure 20170629
Fortinet 20170629
GData 20170629
Ikarus 20170629
Sophos ML 20170607
Jiangmin 20170628
K7AntiVirus 20170629
K7GW 20170629
Kaspersky 20170629
Kingsoft 20170629
Malwarebytes 20170629
McAfee 20170629
McAfee-GW-Edition 20170629
Microsoft 20170629
eScan 20170629
NANO-Antivirus 20170629
nProtect 20170629
Palo Alto Networks (Known Signatures) 20170629
Panda 20170629
Qihoo-360 20170629
Rising 20170629
SentinelOne (Static ML) 20170516
Sophos AV 20170629
SUPERAntiSpyware 20170629
Symantec 20170629
Symantec Mobile Insight 20170629
Tencent 20170629
TheHacker 20170628
TrendMicro-HouseCall 20170629
Trustlook 20170629
VBA32 20170629
VIPRE 20170629
ViRobot 20170629
Webroot 20170629
WhiteArmor 20170627
Yandex 20170628
Zillya 20170628
ZoneAlarm by Check Point 20170629
Zoner 20170629
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.Laxarus.TigerBall. The internal version number of the application is 24. The displayed version string of the application is 1.1.7. The minimum Android API level for the application to run (MinSDKVersion) is 16. The target Android API level for the application to run (TargetSDKVersion) is 23.
Required permissions
com.android.vending.BILLING (Unknown permission from android reference)
android.permission.INTERNET (full Internet access)
android.permission.ACCESS_NETWORK_STATE (view network status)
Activities
com.unity3d.player.UnityPlayerNativeActivity
com.soomla.store.billing.google.GooglePlayIabService$IabActivity
com.google.games.bridge.NativeBridgeActivity
com.unity3d.ads.adunit.AdUnitActivity
com.unity3d.ads.adunit.AdUnitSoftwareActivity
Receivers
com.amazon.device.iap.ResponseReceiver
Activity-related intent filters
com.unity3d.player.UnityPlayerNativeActivity
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
Receiver-related intent filters
com.amazon.device.iap.ResponseReceiver
actions: com.amazon.inapp.purchasing.NOTIFY
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1154
Uncompressed size
40145380
Highest datetime
2017-06-29 21:59:06
Lowest datetime
2017-06-29 21:58:44
Contained files by extension
png
353
xml
33
dll
15
dex
1
Contained files by type
unknown
598
PNG
353
XML
33
Portable Executable
15
DEX
1
File identification
MD5 992ba7ad7884e19eba856fc0271c061c
SHA1 37846204ea66871cbf16fde91859a7236ca9b556
SHA256 3c5539b642a33ab22c3d78f76545fe19b3a302dae72ba61d6db35a6c39051bba
ssdeep
393216:Vql2Y5/VNlb6sa5kaolrhHU7zoklI6CwAOf44MRUHknsItRIguL/MP:V5Y5DlRa6jvKI6CwNkWdhL/MP

File size 22.9 MB ( 24059290 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Java Archive (74.3%)
ZIP compressed archive (20.5%)
PrintFox/Pagefox bitmap (var. P) (5.1%)
Tags
apk contains-pe android

VirusTotal metadata
First submission 2017-06-29 19:28:53 UTC ( 1 year, 8 months ago )
Last submission 2017-07-05 19:16:27 UTC ( 1 year, 8 months ago )
File names pkg.apk
tigerball.apk
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!