× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 6775a8711283ce4f6f1f000f3bd6d65bb1666c37175efd6b3edc2091842eeeb7
File name: com.imsgroups.exyuradio-2.apk
Detection ratio: 0 / 44
Analysis date: 2013-03-06 07:35:17 UTC ( 4 years, 1 month ago )
Antivirus Result Update
Yandex 20130305
AntiVir 20130306
Antiy-AVL 20130305
Avast 20130306
AVG 20130306
BitDefender 20130306
CAT-QuickHeal 20130306
ClamAV 20130306
Commtouch 20130306
Comodo 20130306
DrWeb 20130306
Emsisoft 20130306
eSafe 20130211
ESET-NOD32 20130306
F-Prot 20130306
F-Secure 20130306
Fortinet 20130306
GData 20130306
Ikarus 20130306
Jiangmin 20130304
K7AntiVirus 20130305
Kaspersky 20130306
Kingsoft 20130304
Malwarebytes 20130306
McAfee 20130306
McAfee-GW-Edition 20130306
Microsoft 20130306
eScan 20130306
NANO-Antivirus 20130306
Norman 20130305
nProtect 20130305
Panda 20130305
PCTools 20130306
Rising 20130306
Sophos 20130306
SUPERAntiSpyware 20130306
Symantec 20130306
TheHacker 20130305
TotalDefense 20130305
TrendMicro 20130306
TrendMicro-HouseCall 20130306
VBA32 20130305
VIPRE 20130306
ViRobot 20130306
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.imsgroups.exyuradio. The internal version number of the application is 8. The displayed version string of the application is 1.0.7. The minimum Android API level for the application to run (MinSDKVersion) is 8. The target Android API level for the application to run (TargetSDKVersion) is 17.
Risk summary
The studied DEX file makes use of API reflection
The studied DEX file makes use of cryptographic functions
Permissions that allow the application to access Internet
Permissions that allow the application to access private information
Other permissions that could be considered as dangerous in certain scenarios
Required permissions
android.permission.CHANGE_NETWORK_STATE (change network connectivity)
android.permission.INTERNET (full Internet access)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.CHANGE_WIFI_STATE (change Wi-Fi status)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.READ_PHONE_STATE (read phone state and identity)
Permission-related API calls
FACTORY_TEST
ACCESS_NETWORK_STATE
CHANGE_NETWORK_STATE
INTERNET
VIBRATE
ACCESS_WIFI_STATE
WAKE_LOCK
READ_CONTACTS
READ_PHONE_STATE
Ad-related libraries
admob (admob-6.0.1) with a 85.2 probability
applift (applift-5) with a 97.6 probability
Main Activity
com.imsgroups.exyuradio.activities.MainActivity
Activities
com.imsgroups.exyuradio.activities.MainActivity
com.imsgroups.exyuradio.activities.AlarmActivity
com.imsgroups.exyuradio.activities.SearchActivity
com.google.ads.AdActivity
com.appbrain.AppBrainActivity
Services
com.appbrain.AppBrainService
com.imsgroups.exyuradio.services.NotificationService
com.imsgroups.exyuradio.services.PlayerService
Receivers
com.appbrain.ReferrerReceiver
Activity-related intent filters
com.imsgroups.exyuradio.activities.MainActivity
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
Receiver-related intent filters
com.appbrain.ReferrerReceiver
actions: com.android.vending.INSTALL_REFERRER
Application certificate information
Application bundle files
Interesting strings
File identification
MD5 239512d1f78da3874594547f28a995c8
SHA1 257dc4877dfd129c9afe41bd4fdd525f673d7fc9
SHA256 6775a8711283ce4f6f1f000f3bd6d65bb1666c37175efd6b3edc2091842eeeb7
ssdeep
49152:7DE8cXwncyseo+TO/o6lpIOredxEsOI9BHHAg0B1oM4n/WnZW7Hx93EvmrSX:7DE8cXwncys79/o6lp5reAu9Bnr0B1mA

File size 2.0 MB ( 2062566 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (63.3%)
Java Archive (28.7%)
ZIP compressed archive (7.9%)
Tags
apk android

VirusTotal metadata
First submission 2013-03-06 07:35:17 UTC ( 4 years, 1 month ago )
Last submission 2013-03-06 07:35:17 UTC ( 4 years, 1 month ago )
File names com.imsgroups.exyuradio-2.apk
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0x8bc0ce7b

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
584

ZipCompressedSize
293

ZipFileName
res/anim/shake.xml

ZipBitFlag
0x0808

ZipModifyDate
2013:02:27 13:08:05

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Permissions checked
android.permission.INTERNET:com.imsgroups.exyuradio
android.permission.ACCESS_NETWORK_STATE:com.imsgroups.exyuradio
Started services
#Intent;action=com.appbrain.CHECK;component=com.imsgroups.exyuradio/com.appbrain.AppBrainService;end
Started receivers
android.intent.action.USER_PRESENT
android.intent.action.SCREEN_OFF
android.net.conn.CONNECTIVITY_CHANGE
Opened files
/data/data/com.imsgroups.exyuradio/files/app_data
/data/data/com.imsgroups.exyuradio/files/gaClientId
/data/data/com.imsgroups.exyuradio/files/gaInstallData
http:/media.admob.com/sdk-core-v40.js
http:/pagead2.googlesyndication.com/pagead/images/mobile_unified_button_icon_white.png
http:/media.admob.com/formats/attribution.js
http:/pagead2.googlesyndication.com/pagead/images/i.png
/data/data/com.imsgroups.exyuradio/cache/admob
/data/data/com.imsgroups.exyuradio/databases/admob
Accessed files
/data/data/com.imsgroups.exyuradio/databases/ExYuRadio.db
/data/data/com.imsgroups.exyuradio/files/gaOptOut
Interesting calls
Calls APIs that provide access to information about the telephony services on the device. Applications can use such methods to determine telephony services and states, as well as to access some types of subscriber information.
Contacted URLs
http://p.appbrain.com/app2.data/v=31
http://sdk.appbrain.com/api/pb/action=up
http://googleads.g.doubleclick.net/mads/gma?preqs=0&session_id=3191749833045254204&seq_num=1&u_w=320&msid=com.imsgroups.exyuradio&cap=m%2Ca&js=afma-sdk-a-v6.2.1&bas_off=0&net=ed&app_name=8.android.com.imsgroups.exyuradio&hl=en&smart_w=full&gnt=3&carrier=310260&u_audio=1&kw&u_sd=1.5&isu=735F37084C305AEBE2D094A329EC042A&cipa=0&format=320x50_mb&oar=0&smart_h=auto&u_h=533&bas_on=0&ptime=0&u_so=p&output=html&region=mobile_app&u_tz=120&client_sdk=1&ex=1&slotname=a150d5a8b94420d&kw_type=broad&gsb=3g&caps=inlineVideo_interactiveVideo_mraid1_th_autoplay_mediation_sdkAdmobApiForAds_di&jsv=46
Accessed URIs
market://details?id=com.google.ads
geo:0,0?q=donuts
market://search?q=pname:com.google
tel://6509313940
gmsg://mobileads.google.com/loadSdkConstants?mraid_banner_path=http%3A%2F%2Fmedia.admob.com%2Fmraid%2Fv1%2Fmraid_app_banner.js&mraid_interstitial_path=http%3A%2F%2Fmedia.admob.com%2Fmraid%2Fv1%2Fmraid_app_interstitial.js&mraid_expanded_banner_path=http%3A%2F%2Fmedia.admob.com%2Fmraid%2Fv1%2Fmraid_app_expanded_banner.js&mraid_disable_redirect=0&min_hwa_banner=18&google.afma.Notify_dt=1349802473762
gmsg://mobileads.google.com/loadAdURL?type=admob&drt_include=1&url=http%3A%2F%2Fgoogleads.g.doubleclick.net%3A80%2Fmads%2Fgma%3Fpreqs%3D0%26session_id%3D3191749833045254204%26seq_num%3D1%26u_w%3D320%26msid%3Dcom.imsgroups.exyuradio%26cap%3Dm%252Ca%26js%3Dafma-sdk-a-v6.2.1%26bas_off%3D0%26net%3Ded%26app_name%3D8.android.com.imsgroups.exyuradio%26hl%3Den%26smart_w%3Dfull%26gnt%3D3%26carrier%3D310260%26u_audio%3D1%26kw%26u_sd%3D1.5%26isu%3D735F37084C305AEBE2D094A329EC042A%26cipa%3D0%26format%3D320x50_mb%26oar%3D0%26smart_h%3Dauto%26u_h%3D533%26bas_on%3D0%26ptime%3D0%26u_so%3Dp%26output%3Dhtml%26region%3Dmobile_app%26u_tz%3D120%26client_sdk%3D1%26ex%3D1%26slotname%3Da150d5a8b94420d%26kw_type%3Dbroad%26gsb%3D3g%26caps%3DinlineVideo_interactiveVideo_mraid1_th_autoplay_mediation_sdkAdmobApiForAds_di%26jsv%3D46&request_scenario=online_request&use_webview_loadurl=0&google.afma.Notify_dt=1349802473764