× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 6cde0b0ebea7527f47d2c94d00c6f1ec103d343eac4829afb77ee5fbf23b2c50
File name: [androidapplications.ru]com.coffeestainstudios.goatsimulator.payd...
Detection ratio: 6 / 61
Analysis date: 2018-02-16 17:18:09 UTC ( 1 year, 1 month ago )
Antivirus Result Update
Arcabit Android.Riskware.Agent.gDIXG 20180216
BitDefender Android.Riskware.Agent.gDIXG 20180216
Emsisoft Android.Riskware.Agent.gDIXG (B) 20180216
GData Android.Riskware.Agent.gDIXG 20180216
MAX malware (ai score=77) 20180216
WhiteArmor PUP.HighConfidence 20180205
Ad-Aware 20180216
AegisLab 20180216
AhnLab-V3 20180216
Alibaba 20180209
ALYac 20180216
Antiy-AVL 20180216
Avast 20180216
Avast-Mobile 20180216
AVG 20180216
Avira (no cloud) 20180216
AVware 20180216
Baidu 20180208
Bkav 20180212
CAT-QuickHeal 20180216
ClamAV 20180216
CMC 20180216
Comodo 20180216
CrowdStrike Falcon (ML) 20170201
Cybereason None
Cylance 20180216
Cyren 20180216
DrWeb 20180216
eGambit 20180216
Endgame 20180216
ESET-NOD32 20180216
F-Prot 20180216
F-Secure 20180216
Fortinet 20180216
Ikarus 20180216
Sophos ML 20180121
Jiangmin 20180216
K7AntiVirus 20180216
K7GW 20180216
Kaspersky 20180216
Kingsoft 20180216
Malwarebytes 20180216
McAfee 20180216
McAfee-GW-Edition 20180216
Microsoft 20180216
eScan 20180216
NANO-Antivirus 20180216
nProtect 20180216
Palo Alto Networks (Known Signatures) 20180216
Panda 20180216
Qihoo-360 20180216
Rising 20180216
SentinelOne (Static ML) 20180115
Sophos AV 20180216
SUPERAntiSpyware 20180216
Symantec 20180216
Symantec Mobile Insight 20180215
Tencent 20180216
TheHacker 20180216
TrendMicro-HouseCall 20180216
Trustlook 20180216
VBA32 20180216
VIPRE 20180216
ViRobot 20180216
Webroot 20180216
Yandex 20180216
Zillya 20180216
ZoneAlarm by Check Point 20180216
Zoner 20180216
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.coffeestainstudios.goatsimulator.payday. The internal version number of the application is 970480. The displayed version string of the application is 1.0.0. The minimum Android API level for the application to run (MinSDKVersion) is 15. The target Android API level for the application to run (TargetSDKVersion) is 24.
Required permissions
com.google.android.c2dm.permission.RECEIVE (Unknown permission from android reference)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.INTERNET (full Internet access)
com.android.vending.CHECK_LICENSE (Unknown permission from android reference)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
Activities
com.amazon.ags.html5.overlay.GameCircleUserInterface
com.amazon.identity.auth.device.authorization.AuthorizationActivity
com.amazon.ags.html5.overlay.GameCircleAlertUserInterface
com.coffeestainstudios.goatsimulator.payday.UE3JavaApp
com.coffeestainstudios.goatsimulator.payday.UE3JavaApp
com.coffeestainstudios.goatcore.UE3JavaPreferences
Services
com.coffeestainstudios.goatcore.UE3JavaFileDownloader
com.google.android.gms.measurement.AppMeasurementService
com.coffeestainstudios.goatcore.GGFirebaseMessagingService
com.coffeestainstudios.goatcore.GGFirebaseInstanceIDService
gcm.play.android.samples.com.gcmquickstart.RegistrationIntentService
Receivers
com.amazon.identity.auth.device.authorization.PackageIntentReceiver
com.coffeestainstudios.goatcore.UE3JavaDownloaderAlarmReceiver
com.google.android.gms.measurement.AppMeasurementReceiver
com.google.android.gms.gcm.GcmReceiver
Service-related intent filters
com.coffeestainstudios.goatcore.GGFirebaseMessagingService
actions: com.google.firebase.MESSAGING_EVENT
com.coffeestainstudios.goatcore.GGFirebaseInstanceIDService
actions: com.google.firebase.INSTANCE_ID_EVENT
Activity-related intent filters
com.coffeestainstudios.goatsimulator.payday.UE3JavaApp
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER, android.intent.category.LEANBACK_LAUNCHER
com.coffeestainstudios.goatcore.UE3JavaPreferences
actions: android.intent.action.MAIN
categories: android.intent.category.DEFAULT
com.amazon.identity.auth.device.authorization.AuthorizationActivity
actions: android.intent.action.VIEW
categories: android.intent.category.DEFAULT, android.intent.category.BROWSABLE
Receiver-related intent filters
com.google.android.gms.gcm.GcmReceiver
actions: com.google.android.c2dm.intent.RECEIVE
categories: com.example.gcm
com.amazon.identity.auth.device.authorization.PackageIntentReceiver
actions: android.intent.action.PACKAGE_INSTALL, android.intent.action.PACKAGE_ADDED
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
131
Uncompressed size
86228778
Highest datetime
2017-05-19 14:53:36
Lowest datetime
1980-01-01 01:00:00
Contained files by extension
png
73
xml
38
jpg
7
txt
3
so
2
dex
1
MF
1
zip
1
RSA
1
jks
1
SF
1
Contained files by type
PNG
73
XML
37
unknown
10
JPG
7
ELF
2
DEX
1
ZIP
1
File identification
MD5 156a60c66404fe650defce9b5744b7f1
SHA1 352d70288c0dff40640d89926485470aed0f1c52
SHA256 6cde0b0ebea7527f47d2c94d00c6f1ec103d343eac4829afb77ee5fbf23b2c50
ssdeep
786432:05mKpt7vmycSwFqtWQsxxbJtgpnhwyDEFLh9lV/:0UKpAiSqVsx/tgpnqVFD

File size 27.9 MB ( 29303895 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (73.9%)
Java Archive (20.4%)
ZIP compressed archive (5.6%)
Tags
apk android contains-elf

VirusTotal metadata
First submission 2018-02-16 17:18:09 UTC ( 1 year, 1 month ago )
Last submission 2018-02-16 17:18:09 UTC ( 1 year, 1 month ago )
File names [androidapplications.ru]com.coffeestainstudios.goatsimulator.payday.apk
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!