× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 543e9c4746cf6690f42c376d084278dc528a5175485d374ebc6ea20d898e2ab7
File name: rs_9103_v40_4.0.apk
Detection ratio: 28 / 54
Analysis date: 2015-12-19 12:14:56 UTC ( 3 years, 5 months ago ) View latest
Antivirus Result Update
Ad-Aware Android.Riskware.Agent.gLLY 20151219
AegisLab Silentinst 20151219
Alibaba A.L.Rog.LmClientD 20151208
Antiy-AVL RiskWare[RiskTool:not-a-virus,HEUR]/Android.Silentinst.2 20151219
Arcabit Android.Riskware.Agent.gLLY 20151219
Avast Android:HiddenApp-D [Trj] 20151219
AVG Android/Deng.PES 20151219
Avira (no cloud) ANDROID/HiddenApp.A.11 20151219
AVware Trojan.AndroidOS.Generic.A 20151219
Baidu-International Trojan.Android.HiddenApp.G 20151219
BitDefender Android.Riskware.Agent.gLLY 20151219
CAT-QuickHeal Android.Feiwo.Ba4c2 (PUP) 20151219
Cyren AndroidOS/GenBl.5B8CCDAE!Olympus 20151219
DrWeb Android.DownLoader.222.origin 20151219
ESET-NOD32 a variant of Android/HiddenApp.G 20151219
F-Secure Android.Riskware.Agent 20151218
Fortinet Android/HiddenApp.G!tr 20151219
GData Android.Riskware.Agent.gLLY 20151219
Ikarus Backdoor.AndroidOS.HiddenApp 20151219
K7GW Trojan ( 0001140e1 ) 20151219
Kaspersky not-a-virus:HEUR:RiskTool.AndroidOS.Silentinst.b 20151219
McAfee Artemis!5B8CCDAE7CB3 20151219
eScan Android.Riskware.Agent.gLLY 20151219
NANO-Antivirus Riskware.Android.HiddenApp.dxghhf 20151219
Tencent Android.Trojan.Hiddenapp.Sxyq 20151219
VIPRE Trojan.AndroidOS.Generic.A 20151219
Zillya Trojan.HiddenApp..4 20151218
Zoner Spyware.AndroidOS.Spyset.A 20151219
Yandex 20151218
AhnLab-V3 20151218
ALYac 20151218
Bkav 20151219
ByteHero 20151219
ClamAV 20151217
CMC 20151217
Comodo 20151219
Emsisoft 20151219
F-Prot 20151219
Jiangmin 20151219
K7AntiVirus 20151219
Malwarebytes 20151219
McAfee-GW-Edition 20151219
Microsoft 20151219
nProtect 20151218
Panda 20151219
Rising 20151218
Sophos AV 20151219
SUPERAntiSpyware 20151219
Symantec 20151217
TheHacker 20151218
TrendMicro 20151219
TrendMicro-HouseCall 20151219
VBA32 20151218
ViRobot 20151219
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.xbkpnotification. The internal version number of the application is 4. The displayed version string of the application is 4.0. The minimum Android API level for the application to run (MinSDKVersion) is 17. The target Android API level for the application to run (TargetSDKVersion) is 17.
Required permissions
android.permission.WRITE_CONTACTS (write contact data)
android.permission.RECEIVE_BOOT_COMPLETED (automatically start at boot)
android.permission.READ_PHONE_STATE (read phone state and identity)
android.permission.INSTALL_PACKAGES (directly install applications)
android.permission.REORDER_TASKS (reorder applications running)
android.permission.KILL_BACKGROUND_PROCESSES (kill background processes)
com.android.mms (Unknown permission from android reference)
android.permission.WRITE_SMS (edit SMS or MMS)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.PROCESS_OUTGOING_CALLS (intercept outgoing calls)
android.permission.GET_TASKS (retrieve running applications)
android.permission.DELETE_PACKAGES (delete applications)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.INTERNET (full Internet access)
android.permission.MOUNT_UNMOUNT_FILESYSTEMS (mount and unmount file systems)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
android.permission.READ_CONTACTS (read contact data)
android.permission.READ_SMS (read SMS or MMS)
Activities
com.xbkpnotification.MainActivity
com.xbkpnotification.WinPopActivity
com.xbkpnotification.ShowInstallActivity
Services
com.client.service.SilentClickService
Receivers
com.client.receive.PushAlarmReceiver
com.client.receive.PushBootReceiver
com.client.receive.NoticeReceiver
com.client.receive.InstallAppReceiver
Activity-related intent filters
com.xbkpnotification.MainActivity
actions: android.intent.action.MAIN
categories: android.intent.category.DEFAULT
Receiver-related intent filters
com.client.receive.PushBootReceiver
actions: android.intent.action.BOOT_COMPLETED
com.client.receive.NoticeReceiver
actions: com.client.receive.NoticeAction, com.client.receive.NoticeClearAction
com.client.receive.InstallAppReceiver
actions: android.intent.action.PACKAGE_ADDED, android.intent.action.PACKAGE_INSTALL, android.intent.action.PACKAGE_REMOVED
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Contained files
Compression metadata
Contained files
14
Uncompressed size
274223
Highest datetime
2014-01-16 15:44:42
Lowest datetime
2014-01-16 15:44:42
Contained files by extension
xml
7
png
2
dex
1
MF
1
RSA
1
SF
1
Contained files by type
XML
7
unknown
4
PNG
2
DEX
1
File identification
MD5 5b8ccdae7cb3326b7d6b5cf2a9a14647
SHA1 8bfeeede06c90bf7de5deceb29c3d9c0bd30cf51
SHA256 543e9c4746cf6690f42c376d084278dc528a5175485d374ebc6ea20d898e2ab7
ssdeep
3072:7ugkHuNj9o+M4EPm0e7V+WFciMl/+/kvqjd3y1rFVrRUan:7a+M497QWLMl/+/3jd3crHrL

File size 116.7 KB ( 119544 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (73.9%)
Java Archive (20.4%)
ZIP compressed archive (5.6%)
Tags
apk android

VirusTotal metadata
First submission 2015-09-03 08:57:36 UTC ( 3 years, 8 months ago )
Last submission 2016-11-10 10:31:48 UTC ( 2 years, 6 months ago )
File names rs_9103_v40_4.0.apk
xb_client_v40.apk
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!