× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 646c2f70cd72745f952ebaff176068ecbf62c98b489317dc78a5719dbe2d6477
File name: magicmarker.apk
Detection ratio: 0 / 57
Analysis date: 2016-06-03 02:02:46 UTC ( 2 years, 9 months ago ) View latest
Antivirus Result Update
Ad-Aware 20160603
AegisLab 20160602
AhnLab-V3 20160602
Alibaba 20160602
ALYac 20160603
Antiy-AVL 20160603
Arcabit 20160603
Avast 20160603
AVG 20160603
Avira (no cloud) 20160603
AVware 20160602
Baidu 20160602
Baidu-International 20160602
BitDefender 20160603
Bkav 20160602
CAT-QuickHeal 20160602
ClamAV 20160602
CMC 20160602
Comodo 20160602
Cyren 20160603
DrWeb 20160603
Emsisoft 20160603
ESET-NOD32 20160602
F-Prot 20160603
F-Secure 20160603
Fortinet 20160603
GData 20160603
Ikarus 20160602
Jiangmin 20160603
K7AntiVirus 20160602
K7GW 20160603
Kaspersky 20160603
Kingsoft 20160603
Malwarebytes 20160603
McAfee 20160603
McAfee-GW-Edition 20160603
Microsoft 20160602
eScan 20160603
NANO-Antivirus 20160603
nProtect 20160602
Panda 20160601
Qihoo-360 20160603
Rising 20160603
Sophos AV 20160603
SUPERAntiSpyware 20160602
Symantec 20160602
Tencent 20160603
TheHacker 20160602
TotalDefense 20160603
TrendMicro 20160603
TrendMicro-HouseCall 20160603
VBA32 20160601
VIPRE 20160603
ViRobot 20160602
Yandex 20160602
Zillya 20160601
Zoner 20160603
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.jaytronix.markermagic. The internal version number of the application is 28. The displayed version string of the application is 3.53. The minimum Android API level for the application to run (MinSDKVersion) is 9. The target Android API level for the application to run (TargetSDKVersion) is 19.
Required permissions
android.permission.SET_WALLPAPER (set wallpaper)
android.permission.READ_EXTERNAL_STORAGE (read from external storage)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
com.android.vending.BILLING (Unknown permission from android reference)
android.permission.INTERNET (full Internet access)
Activities
com.jaytronix.markermagic.MarkerMagicActivity
com.magicmarker.sizeselect.SizeSelectActivity
com.amazon.device.ads.AdActivity
com.google.android.gms.ads.AdActivity
Activity-related intent filters
com.jaytronix.markermagic.MarkerMagicActivity
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Contained files
Compression metadata
Contained files
235
Uncompressed size
2180058
Highest datetime
2015-03-09 14:22:44
Lowest datetime
2014-09-16 12:54:08
Contained files by extension
png
197
xml
32
dex
1
MF
1
RSA
1
js
1
SF
1
Contained files by type
PNG
197
XML
32
unknown
5
DEX
1
File identification
MD5 a5fffa1eeffe806c046e39235004293b
SHA1 b3dcafd29ddc32cac3c5eafbb38e5edf82cf48d0
SHA256 646c2f70cd72745f952ebaff176068ecbf62c98b489317dc78a5719dbe2d6477
ssdeep
24576:BGJTx+SFtRbT6JWWOsgMtV71jG5r14hfvbze5aUDVMM5:BQxNFtRbT+LOB2C/4G5aGMM5

File size 1.2 MB ( 1281476 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (72.9%)
Java Archive (20.1%)
ZIP compressed archive (5.5%)
PrintFox/Pagefox bitmap (var. P) (1.3%)
Tags
apk android dyn-class software-collection

VirusTotal metadata
First submission 2015-03-11 17:43:32 UTC ( 4 years ago )
Last submission 2019-01-15 22:28:25 UTC ( 2 months ago )
File names com.jaytronix.markermagic_3.53.apk
a5fffa1eeffe806c046e39235004293b.apk
com.jaytronix.markermagic_3.53_paid-www.apkhere.com.apk
MagicMarker_10101.apk
com.jaytronix.markermagic.apk
a5fffa1eeffe806c046e39235004293b.apk
magicmarker.apk
MagicMarker_28.apk
47e92fc020250f8cdd6dc75d321a5024e17e4c8b5fa8728a6adc9c6601720d5ab063838cbcf755dbeaf025b201be7308c32805b994975abcb798480174ea26e4
a5fffa1eeffe806c046e39235004293b.tmp.10051
GhZSz-xvCh2zfXqRBeRf20190115-109991-1o0h4rm
magicmarker.apk
646c2f70cd72745f952ebaff176068ecbf62c98b489317dc78a5719dbe2d6477
646c2f70cd72745f952ebaff176068ecbf62c98b489317dc78a5719dbe2d6477.file
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Permissions checked
android.permission.INTERNET:com.jaytronix.markermagic
android.permission.ACCESS_NETWORK_STATE:com.jaytronix.markermagic
Started receivers
android.intent.action.USER_PRESENT
android.intent.action.SCREEN_OFF
android.intent.action.BATTERY_CHANGED
Opened files
/data/data/com.jaytronix.markermagic/cache/ads359228586.jar
http:/googleads.g.doubleclick.net/mads/static/mad/sdk/native/sdk-core-v40.html
http:/googleads.g.doubleclick.net/mads/static/mad/sdk/native/sdk-core-v40.appcache
http:/googleads.g.doubleclick.net/mads/static/mad/sdk/native/sdk-core-v40.js
gmsg:/mobileads.google.com/loadAdURL?drt_include=0&request_scenario=online_request&type=admob&url=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fmads%2Fgma%3Fsession_id%3D17937748458829958839%26seq_num%3D1%26rm%3D2%26js%3Dafma-sdk-a-v5089000.5089000.0%26hl%3Den%26gnt%3D3%26ma%3D0%26carrier%3D310260%26u_sd%3D1.5%26sp%3D0%26muv%3D11%26riv%3D5%26ms%3DZkzNpCuCTMlD1mFyzryDuPW1_-BRLGzgtGYWh1t5Jyy-4VEw3DYCbaDzfDEXZhKF4zO6H07dTTaTd4asC4LXkIxPfuXrGgipoyyQfuxOtNZz2RuQpiIA_Mj9zTEymBid5m58IoDlikH75uTYDb4YCPcucwirBzh_q4ZhJydMj_ZOQwUcAquaDoFWEEqMmO4NyIB1REjn4TVRtwCq5Y9fcOxcgQrc8M14NQEasLFAq5yyjZYJSbRvQeLWRCqjaSvQ6insVn6ilOtqvL_ka0TTzWX7tyiMCNxThWWvYEMRoKRb4A_-m3bqNwoQzuq4Ej7cbDukdvC2Aweiu_iXXXCawQ%26format%3D320x50_mb%26coh%3D1%26gl%3DUS%26am%3D0%26cap%3Dm%26u_w%3D320%26u_h%3D533%26msid%3Dcom.jaytronix.markermagic%26app_name%3D28.android.com.jaytronix.markermagic%26an%3D28.android.com.jaytronix.markermagic%26u_audio%3D1%26u_so%3Dp%26preqs%3D0%26support_transparent_background%3Dfalse%26pimp%3D0%26currts%3D110508%26basets%3D110508%26pclick%3D0%26bisch%3Dtrue%26blev%3D0.5%26cans%3D-1%26canm%3Dfalse%26output%3Dhtml%26region%3Dmobile_app%26u_tz%3D120%26client_sdk%3D1%26ex%3D1%26client%3Dca-app-pub-5146220712828697%26slotname%3D4406051566%26gsb%3D3g%26caps%3DinlineVideo_interactiveVideo_mraid1_th_autoplay_mediation_av_sdkAdmobApiForAds_di%26_efs%3Dfalse%26forceHttps%3Dtrue%26blockAutoClicks%3D0%26eid%3D46621041%26jsv%3D145%26urll%3D1119&base_uri=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fmads%2Fgma&use_webview_loadurl=0&enable_auto_click_protection=0&google.afma.Notify_dt=1350889111441
/data/data/com.jaytronix.markermagic/cache
/data/data/com.jaytronix.markermagic/databases/com.google.android.gms.ads.db
Interesting calls
Calls APIs that provide access to information about the telephony services on the device. Applications can use such methods to determine telephony services and states, as well as to access some types of subscriber information.
Dynamically loaded classes
com.google.android.ads.zxxz.a
com.google.android.ads.zxxz.g
com.google.android.ads.zxxz.d
com.google.android.ads.zxxz.c
com.google.android.ads.zxxz.h
com.google.android.ads.zxxz.b
com.google.android.ads.zxxz.f
com.google.android.ads.zxxz.e
Contacted URLs
https://googleads.g.doubleclick.net/mads/gma?session_id=17937748458829958839&seq_num=1&rm=2&js=afma-sdk-a-v5089000.5089000.0&hl=en&gnt=3&ma=0&carrier=310260&u_sd=1.5&sp=0&muv=11&riv=5&ms=ZkzNpCuCTMlD1mFyzryDuPW1_-BRLGzgtGYWh1t5Jyy-4VEw3DYCbaDzfDEXZhKF4zO6H07dTTaTd4asC4LXkIxPfuXrGgipoyyQfuxOtNZz2RuQpiIA_Mj9zTEymBid5m58IoDlikH75uTYDb4YCPcucwirBzh_q4ZhJydMj_ZOQwUcAquaDoFWEEqMmO4NyIB1REjn4TVRtwCq5Y9fcOxcgQrc8M14NQEasLFAq5yyjZYJSbRvQeLWRCqjaSvQ6insVn6ilOtqvL_ka0TTzWX7tyiMCNxThWWvYEMRoKRb4A_-m3bqNwoQzuq4Ej7cbDukdvC2Aweiu_iXXXCawQ&format=320x50_mb&coh=1&gl=US&am=0&cap=m&u_w=320&u_h=533&msid=com.jaytronix.markermagic&app_name=28.android.com.jaytronix.markermagic&an=28.android.com.jaytronix.markermagic&u_audio=1&u_so=p&preqs=0&support_transparent_background=false&pimp=0&currts=110508&basets=110508&pclick=0&bisch=true&blev=0.5&cans=-1&canm=false&output=html&region=mobile_app&u_tz=120&client_sdk=1&ex=1&client=ca-app-pub-5146220712828697&slotname=4406051566&gsb=3g&caps=inlineVideo_interactiveVideo_mraid1_th_autoplay_mediation_av_sdkAdmobApiForAds_di&_efs=false&forceHttps=true&blockAutoClicks=0&eid=46621041&jsv=145&urll=1119
Accessed URIs
geo:0,0?q=donuts
http://www.google.com
market://details?id=com.google.android.gms.ads
http://googleads.g.doubleclick.net/mads/static/mad/sdk/native/sdk-core-v40.html
http://googleads.g.doubleclick.net/mads/static/mad/sdk/native/sdk-core-v40.appcache
http://googleads.g.doubleclick.net/mads/static/mad/sdk/native/sdk-core-v40.js
gmsg://mobileads.google.com/loadAdURL?drt_include=0&request_scenario=online_request&type=admob&url=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fmads%2Fgma%3Fsession_id%3D17937748458829958839%26seq_num%3D1%26rm%3D2%26js%3Dafma-sdk-a-v5089000.5089000.0%26hl%3Den%26gnt%3D3%26ma%3D0%26carrier%3D310260%26u_sd%3D1.5%26sp%3D0%26muv%3D11%26riv%3D5%26ms%3DZkzNpCuCTMlD1mFyzryDuPW1_-BRLGzgtGYWh1t5Jyy-4VEw3DYCbaDzfDEXZhKF4zO6H07dTTaTd4asC4LXkIxPfuXrGgipoyyQfuxOtNZz2RuQpiIA_Mj9zTEymBid5m58IoDlikH75uTYDb4YCPcucwirBzh_q4ZhJydMj_ZOQwUcAquaDoFWEEqMmO4NyIB1REjn4TVRtwCq5Y9fcOxcgQrc8M14NQEasLFAq5yyjZYJSbRvQeLWRCqjaSvQ6insVn6ilOtqvL_ka0TTzWX7tyiMCNxThWWvYEMRoKRb4A_-m3bqNwoQzuq4Ej7cbDukdvC2Aweiu_iXXXCawQ%26format%3D320x50_mb%26coh%3D1%26gl%3DUS%26am%3D0%26cap%3Dm%26u_w%3D320%26u_h%3D533%26msid%3Dcom.jaytronix.markermagic%26app_name%3D28.android.com.jaytronix.markermagic%26an%3D28.android.com.jaytronix.markermagic%26u_audio%3D1%26u_so%3Dp%26preqs%3D0%26support_transparent_background%3Dfalse%26pimp%3D0%26currts%3D110508%26basets%3D110508%26pclick%3D0%26bisch%3Dtrue%26blev%3D0.5%26cans%3D-1%26canm%3Dfalse%26output%3Dhtml%26region%3Dmobile_app%26u_tz%3D120%26client_sdk%3D1%26ex%3D1%26client%3Dca-app-pub-5146220712828697%26slotname%3D4406051566%26gsb%3D3g%26caps%3DinlineVideo_interactiveVideo_mraid1_th_autoplay_mediation_av_sdkAdmobApiForAds_di%26_efs%3Dfalse%26forceHttps%3Dtrue%26blockAutoClicks%3D0%26eid%3D46621041%26jsv%3D145%26urll%3D1119&base_uri=https%3A%2F%2Fgoogleads.g.doubleclick.net%2Fmads%2Fgma&use_webview_loadurl=0&enable_auto_click_protection=0&google.afma.Notify_dt=1350889111441
gmsg://mobileads.google.com/jsLoaded?google.afma.Notify_dt=1350889111604