× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 47f92fcd64e20b7aca1edfbddea3dcfdafc8144070fcf0e51de626ce56c8a1de
File name: InstaFace_223037.apk
Detection ratio: 0 / 57
Analysis date: 2016-05-24 07:39:02 UTC ( 1 year, 7 months ago ) View latest
Antivirus Result Update
Ad-Aware 20160524
AegisLab 20160524
AhnLab-V3 20160524
Alibaba 20160524
ALYac 20160524
Antiy-AVL 20160524
Arcabit 20160524
Avast 20160524
AVG 20160524
Avira (no cloud) 20160524
AVware 20160524
Baidu 20160523
Baidu-International 20160523
BitDefender 20160524
Bkav 20160524
CAT-QuickHeal 20160524
ClamAV 20160524
CMC 20160523
Comodo 20160524
Cyren 20160524
DrWeb 20160524
Emsisoft 20160524
ESET-NOD32 20160524
F-Prot 20160524
F-Secure 20160524
Fortinet 20160524
GData 20160524
Ikarus 20160524
Jiangmin 20160524
K7AntiVirus 20160524
K7GW 20160524
Kaspersky 20160524
Kingsoft 20160524
Malwarebytes 20160524
McAfee 20160524
McAfee-GW-Edition 20160523
Microsoft 20160524
eScan 20160524
NANO-Antivirus 20160524
nProtect 20160523
Panda 20160523
Qihoo-360 20160524
Rising 20160524
Sophos AV 20160524
SUPERAntiSpyware 20160524
Symantec 20160524
Tencent 20160524
TheHacker 20160523
TotalDefense 20160524
TrendMicro 20160524
TrendMicro-HouseCall 20160524
VBA32 20160523
VIPRE 20160524
ViRobot 20160524
Yandex 20160523
Zillya 20160523
Zoner 20160524
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.baiwang.instaface. The internal version number of the application is 37. The displayed version string of the application is 3.15. The minimum Android API level for the application to run (MinSDKVersion) is 9. The target Android API level for the application to run (TargetSDKVersion) is 19.
Required permissions
android.permission.READ_EXTERNAL_STORAGE (read from external storage)
android.permission.CAMERA (take pictures and videos)
android.permission.SYSTEM_ALERT_WINDOW (display system-level alerts)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.READ_PHONE_STATE (read phone state and identity)
android.permission.INTERNET (full Internet access)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
Activities
com.baiwang.instaface.activity.HomeActivity
com.baiwang.instaface.activity.CameraActivity
com.baiwang.instaface.activity.CropFaceActivity
com.baiwang.instaface.activity.list.ListFaceOffActivity
com.baiwang.instaface.activity.main.FaceOffActivity
com.baiwang.instaface.activity.facejoin.FaceJoinHomeActivity
com.baiwang.instaface.activity.facejoin.FaceJoinExpActivity
com.baiwang.instaface.activity.facejoin.FaceJoinActivity
com.baiwang.instaface.activity.main.FaceGradientActivity
com.baiwang.instaface.activity.main.FaceBlendActivity
com.baiwang.instaface.activity.main.FaceMaskActivity
com.baiwang.instaface.activity.list.ListFaceActivity
com.baiwang.instaface.activity.main.FaceSplitActivity
com.baiwang.lib.recapp.RecommendAppActivity
com.baiwang.lib.recommend.local.CardRecommendActivity
com.baiwang.lib.recapp.RecommendAppActivity_Dynamic
com.baiwang.instaface.activity.ShareActivity
com.google.android.gms.ads.AdActivity
com.umeng.fb.ConversationActivity
com.umeng.fb.ContactActivity
Activity-related intent filters
com.baiwang.instaface.activity.HomeActivity
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
656
Uncompressed size
15225949
Highest datetime
2015-06-04 15:59:52
Lowest datetime
2013-01-19 01:52:36
Contained files by extension
png
419
xml
161
jpg
60
dat
8
so
3
dex
1
MF
1
RSA
1
SF
1
Contained files by type
PNG
418
XML
161
JPG
61
unknown
12
ELF
3
DEX
1
File identification
MD5 6bccb20728bcb06dfe3e7388875d1b55
SHA1 b4d7e77d48e14d9c9ffcd3dc4bee60d248b5ebd9
SHA256 47f92fcd64e20b7aca1edfbddea3dcfdafc8144070fcf0e51de626ce56c8a1de
ssdeep
196608:HKkhXE6AVrf52LI3Fs/JB7FUKT4QgXEcoWTLM0CGL3gLNPyymOwY:HK56AVrYU3MJtiKT4QgX6n0CGshPx3

File size 10.2 MB ( 10722516 bytes )
File type Android
Magic literal
Zip archive data, at least v1.0 to extract

TrID Android Package (62.1%)
Java Archive (17.1%)
BlueEyes Animation (15.9%)
ZIP compressed archive (4.7%)
Tags
apk android dyn-class contains-elf

VirusTotal metadata
First submission 2015-06-10 23:24:53 UTC ( 2 years, 7 months ago )
Last submission 2017-10-01 10:29:45 UTC ( 3 months, 2 weeks ago )
File names instaface-face-eyes-morph.apk
InstaFace_223037.apk
411148_792390_com.baiwang.instaface-37.apk
com.baiwang.instaface_3.15_37.apk
filename
6BCCB20728BCB06DFE3E7388875D1B55.apk
%E5%8F%98%E8%84%B8%E5%A4%A7%E5%92%96_3.15_37.apk
变脸大咖.apk
6bccb20728bcb06dfe3e7388875d1b55.tmp.2989
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Permissions checked
android.permission.READ_PHONE_STATE:com.baiwang.instaface
android.permission.INTERNET:com.baiwang.instaface
android.permission.ACCESS_WIFI_STATE:com.baiwang.instaface
android.permission.ACCESS_NETWORK_STATE:com.baiwang.instaface
android.permission.WRITE_EXTERNAL_STORAGE:com.baiwang.instaface
Started receivers
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
android.intent.action.SCREEN_OFF
Opened files
/data/data/com.baiwang.instaface/cache/ads2043167667.jar
/data/data/com.baiwang.instaface/files
APP_ASSETS/ui/home_bg.jpg
APP_ASSETS/ui/home_decr_bg.png
APP_ASSETS/ui/home_decr_logo.png
/data/data/com.baiwang.instaface/files/.flurryagent.6cbc6b65
/data/data/com.baiwang.instaface/files/.flurrydatasenderblock.34973ad6-db24-4471-af90-453a71d3715e
/data/data/com.baiwang.instaface/files/.FlurrySenderIndex.info.Data_CNTD5RP237VMRKYDDNS5_151
/data/data/com.baiwang.instaface/files/.FlurrySenderIndex.info.Main
/data/data/com.baiwang.instaface/files/.um
/data/data/com.baiwang.instaface/cache
/mnt/sdcard
Accessed files
/data/data/com.baiwang.instaface/files
/data/data/com.baiwang.instaface/files/.um
/data/data/com.baiwang.instaface/files/.FlurrySenderIndex.info.Main
/data/data/com.baiwang.instaface/files/.flurryagent.6cbc6b65
/data/data/com.baiwang.instaface/files/.flurryinstallreceiver.
/data/data/com.baiwang.instaface/files/.flurrydatasenderblock.34973ad6-db24-4471-af90-453a71d3715e
/data/data/com.baiwang.instaface/files/.FlurrySenderIndex.info.Data_CNTD5RP237VMRKYDDNS5_151
/data/data/com.baiwang.instaface/files/mobclick_agent_cached_com.baiwang.instaface37
/data/data/com.baiwang.instaface/files/.imprint
/data/data/com.baiwang.instaface/files/umeng_it.cache
/mnt/sdcard/.UTSystemConfig/Global/Alvin2.xml
Deleted files
/data/data/com.baiwang.instaface/filesmobclick_agent_header_com.baiwang.instaface
/data/data/com.baiwang.instaface/filesmobclick_agent_cached_com.baiwang.instaface37
Interesting calls
Calls APIs that provide access to information about the telephony services on the device. Applications can use such methods to determine telephony services and states, as well as to access some types of subscriber information.
Dynamically loaded classes
com.google.android.ads.zxxz.b
com.google.android.ads.zxxz.h
com.google.android.ads.zxxz.e
com.google.android.ads.zxxz.d
com.google.android.ads.zxxz.i
com.google.android.ads.zxxz.c
com.google.android.ads.zxxz.g
com.google.android.ads.zxxz.f
com.google.android.ads.zxxz.a
Contacted URLs
http://feedback.umeng.com/feedback/reply/appkey=54081bc6fd98c5cd7b00fd42&feedback_id=FB[54081bc6fd98c5cd7b00fd42_aee6acc6c77d80fdd3d0566853b26f23]13498036881304416
http://oc.umeng.com/check_config_update
636F6E74656E743D2537422532327265706F72745F706F6C696379253232253341312532432532327061636B616765253232253341253232636F6D2E62616977616E672E696E737461666163652532322532432532326170706B65792532322533412532323534303831626336666439386335636437623030666434322532322532432532326C6173745F636F6E6669675F74696D6525323225334125323225323225324325323273646B5F76657273696F6E253232253341253232352E342E32253232253243253232747970652532322533412532326F6E6C696E655F636F6E6669672532322532432532326368616E6E656C253232253341253232506C61...
http://feedback.umeng.com/feedback/reply/appkey=54081bc6fd98c5cd7b00fd42&feedback_id=FB[54081bc6fd98c5cd7b00fd42_aee6acc6c77d80fdd3d0566853b26f23]13498036884415265
http://data.flurry.com/aap.do
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
http://feedback.umeng.com/feedback/reply/appkey=54081bc6fd98c5cd7b00fd42&feedback_id=FB[54081bc6fd98c5cd7b00fd42_aee6acc6c77d80fdd3d0566853b26f23]13498037008942263
http://alog.umeng.com/app_logs