× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 5eaecdb17d84a4939e7a07dd44d4074b92300f0e9038285ce2206443aaaaa325
File name: 531546_128b50_kill_shot_2.6.apk
Detection ratio: 0 / 57
Analysis date: 2016-06-12 02:55:55 UTC ( 2 years, 9 months ago ) View latest
Antivirus Result Update
Ad-Aware 20160612
AegisLab 20160612
AhnLab-V3 20160611
Alibaba 20160608
ALYac 20160610
Antiy-AVL 20160612
Arcabit 20160612
Avast 20160612
AVG 20160611
Avira (no cloud) 20160611
AVware 20160612
Baidu 20160608
Baidu-International 20160606
BitDefender 20160612
Bkav 20160611
CAT-QuickHeal 20160611
ClamAV 20160612
CMC 20160607
Comodo 20160612
Cyren 20160612
DrWeb 20160612
Emsisoft 20160612
ESET-NOD32 20160611
F-Prot 20160612
F-Secure 20160612
Fortinet 20160612
GData 20160612
Ikarus 20160611
Jiangmin 20160612
K7AntiVirus 20160611
K7GW 20160612
Kaspersky 20160612
Kingsoft 20160612
Malwarebytes 20160611
McAfee 20160612
McAfee-GW-Edition 20160612
Microsoft 20160612
eScan 20160612
NANO-Antivirus 20160612
nProtect 20160610
Panda 20160611
Qihoo-360 20160612
Rising 20160612
Sophos AV 20160612
SUPERAntiSpyware 20160611
Symantec 20160612
Tencent 20160612
TheHacker 20160612
TotalDefense 20160612
TrendMicro 20160612
TrendMicro-HouseCall 20160612
VBA32 20160611
VIPRE 20160612
ViRobot 20160611
Yandex 20160611
Zillya 20160610
Zoner 20160612
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.hotheadgames.google.free.rawsniper. The internal version number of the application is 26001401. The displayed version string of the application is 2.6. The minimum Android API level for the application to run (MinSDKVersion) is 14. The target Android API level for the application to run (TargetSDKVersion) is 22.
Required permissions
com.hotheadgames.google.free.rawsniper.permission.C2D_MESSAGE (C2DM permission.)
android.permission.VIBRATE (control vibrator)
android.permission.READ_PHONE_STATE (read phone state and identity)
com.google.android.c2dm.permission.RECEIVE (Unknown permission from android reference)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.INTERNET (full Internet access)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
com.android.vending.BILLING (Unknown permission from android reference)
android.permission.GET_ACCOUNTS (discover known accounts)
android.permission.RECORD_AUDIO (record audio)
Activities
com.hotheadgames.android.horque.HorqueActivity
com.hotheadgames.android.horque.thirdparty.PickFriendsActivity
com.tapjoy.TJAdUnitActivity
com.tapjoy.mraid.view.ActionHandler
com.tapjoy.mraid.view.Browser
com.sponsorpay.mediation.hyprmx.mbe.HyprMXVideoActivity
com.hyprmx.android.sdk.activity.HyprMXOfferViewerActivity
com.hyprmx.android.sdk.activity.HyprMXRequiredInformationActivity
com.hyprmx.android.sdk.activity.HyprMXSplashActivity
com.hyprmx.android.sdk.activity.HyprMXOfferListActivity
com.hyprmx.android.sdk.activity.HyprMXNoOffersActivity
com.hyprmx.android.sdk.activity.HyprMXWebTrafficActivity
com.jirbo.adcolony.AdColonyOverlay
com.jirbo.adcolony.AdColonyFullscreen
com.jirbo.adcolony.AdColonyBrowser
com.chartboost.sdk.CBImpressionActivity
com.facebook.FacebookActivity
com.facebook.ads.InterstitialAdActivity
com.vungle.publisher.FullScreenAdActivity
com.sponsorpay.publisher.mbe.SPBrandEngageActivity
com.sponsorpay.publisher.interstitial.SPInterstitialActivity
com.sponsorpay.publisher.ofw.SPOfferWallActivity
com.kamcord.android.KamcordActivity
com.kamcord.android.ReplayActivity
com.kamcord.android.WebActivity
com.helpshift.HSConversation
com.helpshift.HSQuestionsList
com.helpshift.HSQuestion
com.helpshift.HSSection
com.helpshift.HSFaqs
com.helpshift.HSReview
com.helpshift.ScreenshotPreviewActivity
com.helpshift.SearchResultActivity
com.unity3d.ads.android.view.UnityAdsFullscreenActivity
com.applovin.adview.AppLovinInterstitialActivity
com.applovin.adview.AppLovinConfirmationActivity
Services
org.openudid.OpenUDID_service
com.hyprmx.android.sdk.service.ApplicationInstallService
com.vungle.publisher.VungleService
com.kamcord.android.UploadService
com.helpshift.HSService
com.helpshift.HSRetryService
com.hotheadgames.android.horque.thirdparty.AndroidSwrveGcmIntentService
Receivers
com.hotheadgames.android.horque.AlarmReceiver
com.hotheadgames.android.horque.HorqueReceiver
com.hotheadgames.android.horque.GcmReceiver
Service-related intent filters
org.openudid.OpenUDID_service
actions: org.openudid.GETUDID
Activity-related intent filters
com.hotheadgames.android.horque.HorqueActivity
actions: android.intent.action.MAIN, android.intent.action.VIEW
categories: android.intent.category.LAUNCHER, android.intent.category.DEFAULT, android.intent.category.BROWSABLE
Receiver-related intent filters
com.hotheadgames.android.horque.GcmReceiver
actions: com.google.android.c2dm.intent.RECEIVE
categories: com.hotheadgames.google.free.rawsniper
com.hotheadgames.android.horque.HorqueReceiver
actions: com.android.vending.INSTALL_REFERRER
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
569
Uncompressed size
66744948
Highest datetime
2015-12-03 15:10:06
Lowest datetime
2015-12-03 14:37:22
Contained files by extension
png
427
xml
121
so
6
otf
3
mp3
2
dex
1
MF
1
RSA
1
js
1
txt
1
SF
1
Contained files by type
PNG
427
XML
121
unknown
14
ELF
6
DEX
1
File identification
MD5 fbd85287c5a4bcb16b8a85cb58d7f3f4
SHA1 8a084da8e1549e4e72ab87edecf0e3d049b0065b
SHA256 5eaecdb17d84a4939e7a07dd44d4074b92300f0e9038285ce2206443aaaaa325
ssdeep
1572864:dx7+dvrBbrMdVdigj82SnpMpoWMxQ5GBrSemN:dxydvr9AHw+o35SN

File size 52.7 MB ( 55221291 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Java Archive (74.3%)
ZIP compressed archive (20.5%)
PrintFox/Pagefox bitmap (var. P) (5.1%)
Tags
apk checks-gps android contains-elf

VirusTotal metadata
First submission 2015-12-10 02:21:19 UTC ( 3 years, 3 months ago )
Last submission 2018-10-26 07:19:06 UTC ( 4 months, 4 weeks ago )
File names 2268-fbd85287c5a4bcb16b8a85cb58d7f3f4-1450601915.apk
kill-shot-2.6.apk
kill-shot.apk
com.hotheadgames.google.free.rawsniper-2.apk
531546_128b50_kill_shot_2.6.apk
2268-fbd85287c5a4bcb16b8a85cb58d7f3f4-1450601915.apk
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Opened files
/data/data/com.hotheadgames.google.free.rawsniper/cache/me.kiip.sdk/http/journal.tmp
/data/data/com.hotheadgames.google.free.rawsniper/cache/volley
/data/data/com.hotheadgames.google.free.rawsniper/cache/me.kiip.sdk/http
/data/data/com.hotheadgames.google.free.rawsniper/files
/mnt/sdcard/Android/data/com.hotheadgames.google.free.rawsniper/files
/mnt/sdcard/Android/data/com.hotheadgames.google.free.rawsniper/cache
Accessed files
/data/data/com.hotheadgames.google.free.rawsniper/cache/volley
/data/data/com.hotheadgames.google.free.rawsniper/cache/me.kiip.sdk/http/journal.bkp
/data/data/com.hotheadgames.google.free.rawsniper/cache/me.kiip.sdk/http/journal
Interesting calls
Calls APIs that provide access to information about the telephony services on the device. Applications can use such methods to determine telephony services and states, as well as to access some types of subscriber information.
Calls APIs that provide access to the system location services. These services allow applications to obtain periodic updates of the device's geographical location, or to fire an application-specified Intent when the device enters the proximity of a given geographical location.
Accessed URIs
content://com.facebook.katana.provider.AttributionIdProvider
https://api.kiip.me/2.0/app/cache