× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 723e1e92ca96eb81c6447d9e6c0ef3e4825c37689ad2ff7d730818884067ecab
File name: myfile.apk
Detection ratio: 15 / 25
Analysis date: 2017-03-15 07:29:39 UTC ( 6 months, 2 weeks ago )
Antivirus Result Update
ALYac Android.Exploit.Exploid.G 20170315
Antiy-AVL Trojan[Backdoor]/Android.KungFu.hb 20170315
Arcabit Linux.CornelGEN.D5AB 20170315
Avira (no cloud) ANDROID/Agent.2357 20170315
AVware Exploit.Linux.Generic.Elf 20170315
Bkav Android.Backdoor.KungFu.A.Rubik.EB8E 20170314
ClamAV Unix.Malware.Agent-1752257 20170315
Emsisoft Linux.CornelGEN.1451 (B) 20170315
F-Secure Linux.CornelGEN.1451 20170315
Ikarus Backdoor.AndroidOS.KungFu 20170314
Jiangmin Exploit.Linux.ao 20170315
Kaspersky Exploit.Linux.Lotoor.x 20170315
Qihoo-360 Trojan.Android.Gen 20170315
Zillya Trojan.DroidKungFu..428 20170314
ZoneAlarm by Check Point HEUR:Exploit.AndroidOS.Lotoor.by 20170315
AegisLab 20170315
Baidu 20170315
CMC 20170314
CrowdStrike Falcon (ML) 20170130
Sophos ML 20170203
Kingsoft 20170315
Malwarebytes 20170315
McAfee-GW-Edition 20170315
Palo Alto Networks (Known Signatures) 20170315
Panda 20170314
Trustlook 20170315
VIPRE 20170315
Zoner 20170315
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.mediagroup.wcms.view. The internal version number of the application is 6. The displayed version string of the application is 1.1.
Required permissions
android.permission.CHANGE_NETWORK_STATE (change network connectivity)
android.permission.VIBRATE (control vibrator)
android.permission.WRITE_APN_SETTINGS (write Access Point Name settings)
android.permission.RECEIVE_BOOT_COMPLETED (automatically start at boot)
android.permission.WRITE_SMS (edit SMS or MMS)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.ACCESS_COARSE_LOCATION (coarse (network-based) location)
android.permission.CHANGE_WIFI_STATE (change Wi-Fi status)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.INTERNET (full Internet access)
android.permission.MOUNT_UNMOUNT_FILESYSTEMS (mount and unmount file systems)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
android.permission.READ_SMS (read SMS or MMS)
Activities
com.mediagroup.wcms.view.SplashActivity
com.mediagroup.wcms.view.PeriodicalsActivity
com.mediagroup.wcms.view.MagazineActivity
com.mediagroup.wcms.view.NewsListActivity
com.mediagroup.wcms.view.ContextActivity
com.mediagroup.wcms.view.AboutActivity
com.mediagroup.wcms.view.FavoriteActivity
com.mediagroup.wcms.view.SearchActivity
com.mediagroup.wcms.view.OuterUrlActivity
com.mediagroup.wcms.view.j$ap
Services
com.eguan.state.StateService
Receivers
com.eguan.state.Receiver
Activity-related intent filters
com.mediagroup.wcms.view.SplashActivity
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
Receiver-related intent filters
com.eguan.state.Receiver
actions: android.intent.action.BATTERY_CHANGED_ACTION, android.intent.action.SIG_STR, android.intent.action.BOOT_COMPLETED
Application certificate information
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
170
Uncompressed size
1075963
Highest datetime
2014-03-14 03:59:34
Lowest datetime
2014-03-14 03:59:34
Contained files by extension
png
150
xml
10
dex
1
MF
1
RSA
1
so
1
SF
1
Contained files by type
PNG
150
XML
10
unknown
5
ELF
4
DEX
1
File identification
MD5 93a2989a0418b871a19d49a3fd4c0a72
SHA1 19a731da8573ad11f3e3a4f5c2f0678b504016b1
SHA256 723e1e92ca96eb81c6447d9e6c0ef3e4825c37689ad2ff7d730818884067ecab
ssdeep
24576:e19+XjSRncIa/22mMtFRtNWHwOhxAk2RhY:i1RncIe1mMtv67hua

File size 929.4 KB ( 951699 bytes )
File type Android
Magic literal
Zip archive data, at least v1.0 to extract

TrID Android Package (73.9%)
Java Archive (20.4%)
ZIP compressed archive (5.6%)
Tags
apk android contains-elf

VirusTotal metadata
First submission 2017-03-15 07:29:39 UTC ( 6 months, 2 weeks ago )
Last submission 2017-03-15 07:29:39 UTC ( 6 months, 2 weeks ago )
File names myfile.apk
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!