× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 449f807ace3b404a8ddea83814ac8135e1685c85e38a0bbe80a4292241f2ff33
File name: f18-carrier-landing-ii-1-16-multi-android.apk
Detection ratio: 0 / 54
Analysis date: 2016-02-22 03:56:50 UTC ( 2 years, 8 months ago ) View latest
Antivirus Result Update
Ad-Aware 20160222
AegisLab 20160222
Yandex 20160221
AhnLab-V3 20160222
Alibaba 20160222
Antiy-AVL 20160222
Arcabit 20160222
Avast 20160222
AVG 20160222
Avira (no cloud) 20160222
AVware 20160222
Baidu-International 20160221
BitDefender 20160222
Bkav 20160222
ByteHero 20160222
CAT-QuickHeal 20160222
ClamAV 20160222
CMC 20160222
Comodo 20160222
Cyren 20160222
DrWeb 20160222
Emsisoft 20160222
ESET-NOD32 20160222
F-Secure 20160222
Fortinet 20160222
GData 20160222
Ikarus 20160222
Jiangmin 20160222
K7AntiVirus 20160222
K7GW 20160222
Kaspersky 20160222
Malwarebytes 20160222
McAfee 20160222
McAfee-GW-Edition 20160222
Microsoft 20160222
eScan 20160222
NANO-Antivirus 20160222
nProtect 20160222
Panda 20160222
Qihoo-360 20160222
Rising 20160222
Sophos AV 20160222
SUPERAntiSpyware 20160222
Symantec 20160221
Tencent 20160222
TheHacker 20160217
TotalDefense 20160222
TrendMicro 20160222
TrendMicro-HouseCall 20160222
VBA32 20160222
VIPRE 20160222
ViRobot 20160222
Zillya 20160222
Zoner 20160222
The file being studied is Android related! APK Android file more specifically. The application's main package name is it.rortos.f18carrierlandingii. The internal version number of the application is 1160. The displayed version string of the application is 1.16. The minimum Android API level for the application to run (MinSDKVersion) is 14. The target Android API level for the application to run (TargetSDKVersion) is 19.
Required permissions
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.INTERNET (full Internet access)
com.android.vending.CHECK_LICENSE (Unknown permission from android reference)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
com.android.vending.BILLING (Unknown permission from android reference)
Activities
com.prime31.UnityPlayerNativeActivity
com.google.android.gms.ads.AdActivity
com.prime31.GoogleIABProxyActivity
com.unity3d.plugin.downloader.UnityDownloaderActivity
Services
com.unity3d.plugin.downloader.UnityDownloaderService
Receivers
com.unity3d.plugin.downloader.UnityAlarmReceiver
Activity-related intent filters
com.prime31.UnityPlayerNativeActivity
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The studied file contains at least one Portable Executable.
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
159
Uncompressed size
38588272
Highest datetime
2014-10-06 14:28:26
Lowest datetime
2014-09-04 16:41:22
Contained files by extension
png
112
xml
13
dll
13
so
3
dex
1
MF
1
SF
1
DSA
1
Contained files by type
PNG
112
unknown
17
XML
13
Portable Executable
13
ELF
3
DEX
1
File identification
MD5 5efa7ff288f0006d89743ed058804073
SHA1 0dd82d67adb97c46da93308f9e78feddcb683db5
SHA256 449f807ace3b404a8ddea83814ac8135e1685c85e38a0bbe80a4292241f2ff33
ssdeep
196608:yVZCKAorEL0Onp+zR7+JSRuztnZJop/9GgRsQvQ460hadv8gyp:IL+3WOCudiQH8p/

File size 11.2 MB ( 11766548 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Java Archive (78.3%)
ZIP compressed archive (21.6%)
Tags
apk contains-pe software-collection android contains-elf

VirusTotal metadata
First submission 2014-10-07 12:00:15 UTC ( 4 years, 1 month ago )
Last submission 2016-10-06 00:13:43 UTC ( 2 years, 1 month ago )
File names f18-carrier-landing-ii.apk
f18-carrier-landing-ii-1-16-multi-android.apk
5c496afe7830248b78e7a57418aeef2cff650a89b826161e88813e4e2f95dd397d12382153cd1b3f31828111a48c3578e00252beb8b43321cd412f6a154aeb40
Advanced heuristic and reputation engines
ClamAV
Possibly Unwanted Application. While not necessarily malicious, the scanned file presents certain characteristics which depending on the user policies and environment may or may not represent a threat. For full details see: https://www.clamav.net/documents/potentially-unwanted-applications-pua .

Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!