× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 6f8f3602f47861c8b619ed206c7ed220c78ccc1a0de78e9ab1d4b68fd763e316
File name: 6f8f3602f47861c8b619ed206c7ed220c78ccc1a0de78e9ab1d4b68fd763e316....
Detection ratio: 0 / 62
Analysis date: 2018-08-20 21:36:09 UTC ( 5 months ago ) View latest
Antivirus Result Update
Ad-Aware 20180820
AegisLab 20180820
AhnLab-V3 20180820
Alibaba 20180713
ALYac 20180820
Antiy-AVL 20180820
Arcabit 20180820
Avast 20180820
Avast-Mobile 20180820
AVG 20180820
Avira (no cloud) 20180820
AVware 20180820
Babable 20180725
Baidu 20180820
BitDefender 20180820
Bkav 20180820
CAT-QuickHeal 20180820
ClamAV 20180820
CMC 20180817
Comodo 20180820
CrowdStrike Falcon (ML) 20180723
Cybereason 20180308
Cylance 20180820
Cyren 20180820
DrWeb 20180820
eGambit 20180820
Emsisoft 20180820
Endgame 20180730
ESET-NOD32 20180820
F-Prot 20180820
F-Secure 20180820
Fortinet 20180820
GData 20180820
Ikarus 20180820
Sophos ML 20180717
Jiangmin 20180820
K7AntiVirus 20180820
K7GW 20180820
Kaspersky 20180820
Kingsoft 20180820
Malwarebytes 20180820
MAX 20180820
McAfee 20180820
McAfee-GW-Edition 20180820
Microsoft 20180820
eScan 20180820
NANO-Antivirus 20180820
Palo Alto Networks (Known Signatures) 20180820
Panda 20180820
Qihoo-360 20180820
Rising 20180820
SentinelOne (Static ML) 20180701
Sophos AV 20180820
SUPERAntiSpyware 20180820
Symantec 20180820
Symantec Mobile Insight 20180814
TACHYON 20180820
Tencent 20180820
TheHacker 20180818
TotalDefense 20180820
TrendMicro 20180820
TrendMicro-HouseCall 20180820
Trustlook 20180820
VBA32 20180820
VIPRE 20180820
ViRobot 20180820
Webroot 20180820
Yandex 20180820
Zillya 20180820
ZoneAlarm by Check Point 20180820
Zoner 20180819
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.netease.ko. The internal version number of the application is 54. The displayed version string of the application is 1.215.415162. The minimum Android API level for the application to run (MinSDKVersion) is 17. The target Android API level for the application to run (TargetSDKVersion) is 26.
Required permissions
android.permission.CHANGE_NETWORK_STATE (change network connectivity)
android.permission.USE_CREDENTIALS (use the authentication credentials of an account)
android.permission.ACCESS_COARSE_LOCATION (coarse (network-based) location)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.INTERNET (full Internet access)
com.android.vending.BILLING (Unknown permission from android reference)
android.permission.ACCESS_FINE_LOCATION (fine (GPS) location)
com.google.android.c2dm.permission.RECEIVE (Unknown permission from android reference)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.GET_TASKS (retrieve running applications)
com.qti.permission.PROFILER (Unknown permission from android reference)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
android.permission.READ_EXTERNAL_STORAGE (read from external storage)
android.permission.RECEIVE_BOOT_COMPLETED (automatically start at boot)
android.permission.FLASHLIGHT (control flashlight)
android.permission.READ_PHONE_STATE (read phone state and identity)
android.permission.VIBRATE (control vibrator)
android.permission.CAMERA (take pictures and videos)
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.CHANGE_WIFI_STATE (change Wi-Fi status)
android.permission.RECORD_AUDIO (record audio)
android.permission.MODIFY_AUDIO_SETTINGS (change your audio settings)
Activities
com.netease.game.MessiahNativeActivity
com.netease.messiah.VideoPlayer
com.soundcloud.android.crop.CropImageActivity
com.netease.ntunisdk.base.deeplink.UniDeepLinkActivity
com.netease.mpay.oversea.task.handlers.MpayActivity
com.netease.mpay.oversea.task.handlers.MpayUserCenterActivity
com.netease.mpay.oversea.task.handlers.MpayInterimActivity
com.google.android.gms.common.api.GoogleApiActivity
jp.line.android.sdk.activity.WebLoginActivity
jp.line.android.sdk.activity.LineAuthCompleteActivity
com.twitter.sdk.android.tweetui.PlayerActivity
com.twitter.sdk.android.tweetui.GalleryActivity
com.twitter.sdk.android.tweetcomposer.ComposerActivity
com.twitter.sdk.android.core.identity.OAuthActivity
com.google.android.gms.ads.AdActivity
com.google.android.gms.ads.purchase.InAppPurchaseActivity
com.google.android.gms.auth.api.signin.internal.SignInHubActivity
com.google.android.gms.common.api.GoogleApiActivity
com.netease.ntunisdk.zxing.client.android.CaptureActivity
com.facebook.CustomTabActivity
com.facebook.CustomTabMainActivity
com.facebook.FacebookActivity
Services
com.twitter.sdk.android.tweetcomposer.TweetUploadService
com.google.android.gms.auth.api.signin.RevocationBoundService
Receivers
com.appsflyer.MultipleInstallBroadcastReceiver
Providers
com.netease.unisdk.gmbridge.provider.GmFileProvider
com.netease.ntunisdk.UniCompatFileProvider
com.facebook.FacebookContentProvider
com.netease.ntunisdk.UniFacebookFileProvider
Activity-related intent filters
com.netease.ntunisdk.base.deeplink.UniDeepLinkActivity
actions: android.intent.action.VIEW
categories: android.intent.category.BROWSABLE, android.intent.category.DEFAULT
jp.line.android.sdk.activity.LineAuthCompleteActivity
actions: android.intent.action.VIEW
categories: android.intent.category.DEFAULT, android.intent.category.BROWSABLE
com.netease.game.MessiahNativeActivity
actions: android.intent.action.MAIN, android.intent.action.VIEW
categories: android.intent.category.LAUNCHER, android.intent.category.DEFAULT, android.intent.category.BROWSABLE
Receiver-related intent filters
com.appsflyer.MultipleInstallBroadcastReceiver
actions: com.android.vending.INSTALL_REFERRER
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
1095
Uncompressed size
72116158
Highest datetime
2018-08-14 18:44:28
Lowest datetime
1980-01-01 08:00:00
Contained files by extension
png
625
xml
216
so
17
jpg
15
bin
9
txt
3
dex
2
MF
1
RSA
1
ttf
1
lst
1
SF
1
Contained files by type
PNG
625
XML
215
unknown
119
ELF
17
JPG
15
JSON
6
DEX
2
HTML
1
File identification
MD5 a8adbd74c1ec32cd3edd5920952b7fe6
SHA1 ab3b5d2576d6a7bc24473432d4e3f147a0b7b856
SHA256 6f8f3602f47861c8b619ed206c7ed220c78ccc1a0de78e9ab1d4b68fd763e316
ssdeep
786432:RQo7qi3HnRmUQ7qTH8GZA/tQ4t9E33s8V2iPa6rZ0Ku6NndCD:Rzvh/Q7yZAFiHsvibN0Ku6NndCD

File size 32.3 MB ( 33884870 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (72.9%)
Java Archive (20.1%)
ZIP compressed archive (5.5%)
PrintFox/Pagefox bitmap (var. P) (1.3%)
Tags
apk android contains-elf

VirusTotal metadata
First submission 2018-08-20 21:36:09 UTC ( 5 months ago )
Last submission 2018-10-01 08:55:55 UTC ( 3 months, 2 weeks ago )
File names knives-out-6x6km-battle-royale.apk
994390_5ddfdc_knives_out_v1.215.415162.apk
6f8f3602f47861c8b619ed206c7ed220c78ccc1a0de78e9ab1d4b68fd763e316.file
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!