× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 6b1fa0498ab4e1c5105c7900d1bbaf7865f1e7c763b947e5fcc1614dcb6302b3
File name: com.libiitech.makeupSalonPrincessParty-1.4.apk
Detection ratio: 1 / 60
Analysis date: 2017-05-18 10:20:07 UTC ( 1 year, 10 months ago ) View latest
Antivirus Result Update
Fortinet Adware/AdColony!Android 20170518
Ad-Aware 20170518
AegisLab 20170518
AhnLab-V3 20170518
Alibaba 20170518
Antiy-AVL 20170518
Arcabit 20170518
Avast 20170518
AVG 20170518
Avira (no cloud) 20170518
AVware 20170518
Baidu 20170503
BitDefender 20170518
Bkav 20170518
CAT-QuickHeal 20170518
ClamAV 20170518
CMC 20170517
Comodo 20170518
CrowdStrike Falcon (ML) 20170130
Cyren 20170518
DrWeb 20170518
Emsisoft 20170518
Endgame 20170515
ESET-NOD32 20170518
F-Prot 20170518
F-Secure 20170518
GData 20170518
Ikarus 20170518
Sophos ML 20170516
Jiangmin 20170518
K7AntiVirus 20170518
K7GW 20170518
Kaspersky 20170518
Kingsoft 20170518
Malwarebytes 20170518
McAfee 20170518
McAfee-GW-Edition 20170517
Microsoft 20170518
eScan 20170518
NANO-Antivirus 20170518
nProtect 20170518
Palo Alto Networks (Known Signatures) 20170518
Panda 20170517
Qihoo-360 20170518
Rising 20170518
SentinelOne (Static ML) 20170516
Sophos AV 20170518
SUPERAntiSpyware 20170518
Symantec 20170517
Symantec Mobile Insight 20170518
Tencent 20170518
TheHacker 20170516
TotalDefense 20170518
TrendMicro 20170518
TrendMicro-HouseCall 20170518
Trustlook 20170518
VBA32 20170517
VIPRE 20170518
ViRobot 20170518
Webroot 20170518
WhiteArmor 20170517
Yandex 20170517
Zillya 20170518
ZoneAlarm by Check Point 20170518
Zoner 20170518
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.libiitech.makeupSalonPrincessParty. The internal version number of the application is 5. The displayed version string of the application is 1.4. The minimum Android API level for the application to run (MinSDKVersion) is 10. The target Android API level for the application to run (TargetSDKVersion) is 14.
Required permissions
android.permission.VIBRATE (control vibrator)
android.permission.READ_EXTERNAL_STORAGE (read from external storage)
com.android.launcher.permission.UNINSTALL_SHORTCUT (Unknown permission from android reference)
android.permission.READ_PHONE_STATE (read phone state and identity)
com.android.launcher.permission.INSTALL_SHORTCUT (Unknown permission from android reference)
android.permission.CAMERA (take pictures and videos)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.INTERNET (full Internet access)
android.permission.MOUNT_UNMOUNT_FILESYSTEMS (mount and unmount file systems)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
com.android.vending.BILLING (Unknown permission from android reference)
Activities
org.cocos2dx.hellocpp.HelloCpp
com.google.android.gms.ads.AdActivity
com.vungle.publisher.FullScreenAdActivity
com.applovin.adview.AppLovinInterstitialActivity
com.applovin.adview.AppLovinConfirmationActivity
com.jirbo.adcolony.AdColonyOverlay
com.jirbo.adcolony.AdColonyFullscreen
com.jirbo.adcolony.AdColonyBrowser
Services
org.openudid.OpenUDID_service
lb.moregame.LBMoreGameApkDownloadService
Receivers
lb.moregame.LBMoreGameApkInstaller
Service-related intent filters
org.openudid.OpenUDID_service
actions: org.openudid.GETUDID
Activity-related intent filters
org.cocos2dx.hellocpp.HelloCpp
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
Receiver-related intent filters
lb.moregame.LBMoreGameApkInstaller
actions: android.intent.action.PACKAGE_ADDED, android.intent.action.PACKAGE_REPLACED, android.intent.action.PACKAGE_REMOVED
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
1000+
Uncompressed size
77463810
Highest datetime
2017-03-04 15:55:40
Lowest datetime
1980-01-01 08:00:00
Contained files by extension
png
917
xml
39
jpg
14
mp3
14
wav
2
dex
1
MF
1
RSA
1
so
1
OTF
1
SF
1
Contained files by type
PNG
917
XML
46
JPG
14
MP3
13
unknown
8
DEX
1
ELF
1
File identification
MD5 10707b31fda951e0999bd6d7abe9c3d1
SHA1 5e9c3f69e49de35c9b958a7395af2871e15df15a
SHA256 6b1fa0498ab4e1c5105c7900d1bbaf7865f1e7c763b947e5fcc1614dcb6302b3
ssdeep
1572864:60rJrcFmcnNC18lxcnTUc+A8qitpp/WbTkzkNO6:6GJrBcM1gYh+A8qGpp/Wf7r

File size 65.5 MB ( 68712282 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (50.4%)
Java Archive (13.9%)
BlueEyes Animation (12.9%)
Sweet Home 3D design (generic) (10.0%)
Mozilla Firefox browser extension (7.6%)
Tags
apk android contains-elf

VirusTotal metadata
First submission 2017-05-12 21:15:35 UTC ( 1 year, 10 months ago )
Last submission 2019-02-20 01:00:37 UTC ( 1 month ago )
File names oaasaN0bnkqE
saoa09gSrgawhpa9gxkTHF85vLx5HDAjp0bYC
asamsvebyFdmM7Y9IxGvJCfycOXp7JBIiG2UNXxZzIF69tFWvIxewz9iYDVrK
oasaH9cdSzFmJJtc36QhDrsMaiePf1ORM2ixzcwLPJxWszaAII
com.libiitech.makeupSalonPrincessParty-1.4.apk
amsoZqy97uVLB
ossmFaW2wu41N92z1CZu8qJYzVP0DVrxeQR3C0H2AVO96aaeDR7ENTXfxqtktz
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!