× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 75e111472f8f01574191b78ad5e8121066893a01aa317cb7c77e7b6b2a388a77
File name: b0d5c3edda8a8173ba1626a107bcd89874541347bd2a6fada8eed6c8983f0174b...
Detection ratio: 0 / 56
Analysis date: 2016-09-04 03:52:40 UTC ( 2 years, 6 months ago ) View latest
Antivirus Result Update
Ad-Aware 20160904
AegisLab 20160904
AhnLab-V3 20160903
Alibaba 20160901
ALYac 20160904
Antiy-AVL 20160904
Arcabit 20160904
Avast 20160904
AVG 20160903
Avira (no cloud) 20160903
AVware 20160904
Baidu 20160903
BitDefender 20160904
Bkav 20160901
CAT-QuickHeal 20160903
ClamAV 20160904
CMC 20160901
Comodo 20160903
Cyren 20160904
DrWeb 20160904
Emsisoft 20160904
ESET-NOD32 20160903
F-Prot 20160904
F-Secure 20160904
Fortinet 20160904
GData 20160904
Ikarus 20160903
Sophos ML 20160830
Jiangmin 20160904
K7AntiVirus 20160904
K7GW 20160904
Kaspersky 20160904
Kingsoft 20160904
Malwarebytes 20160904
McAfee 20160904
McAfee-GW-Edition 20160904
Microsoft 20160903
eScan 20160904
NANO-Antivirus 20160904
nProtect 20160904
Panda 20160903
Qihoo-360 20160904
Rising 20160904
Sophos AV 20160903
SUPERAntiSpyware 20160903
Symantec 20160904
Tencent 20160904
TheHacker 20160903
TotalDefense 20160904
TrendMicro 20160904
TrendMicro-HouseCall 20160904
VBA32 20160902
VIPRE 20160831
ViRobot 20160904
Yandex 20160903
Zillya 20160902
Zoner 20160904
The file being studied is Android related! APK Android file more specifically. The application's main package name is net.hideman. The internal version number of the application is 75. The displayed version string of the application is 4.1. The minimum Android API level for the application to run (MinSDKVersion) is 9. The target Android API level for the application to run (TargetSDKVersion) is 21.
Required permissions
android.permission.VIBRATE (control vibrator)
android.permission.INTERNET (full Internet access)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.READ_PHONE_STATE (read phone state and identity)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
com.android.vending.BILLING (Unknown permission from android reference)
Activities
net.hideman.auth.views.LoginActivity
net.hideman.connection.views.LogActivity
net.hideman.connection.views.SelectCountryActivity
net.hideman.connection.views.TunErrorActivity
net.hideman.connection.views.VpnServicePrepareActivity
net.hideman.help.views.ChatActivity
net.hideman.help.views.FaqActivity
net.hideman.help.views.FaqAnswerActivity
net.hideman.help.views.TicketActivity
net.hideman.payment.views.AdvertiserActivity
net.hideman.payment.views.GooglePaymentActivity
net.hideman.payment.views.HidemanOfferActivity
net.hideman.payment.views.LinkAccountActivity
net.hideman.payment.views.PaymentMethodActivity
net.hideman.payment.views.SitePaymentActivity
net.hideman.payment.views.SmsPaymentActivity
net.hideman.payment.views.SubscriptionSelectActivity
net.hideman.payment.views.FyberActivity
com.sponsorpay.publisher.ofw.SPOfferWallActivity
net.hideman.payment.views.SupersonicActivity
com.supersonicads.sdk.controller.ControllerActivity
com.supersonicads.sdk.controller.InterstitialActivity
com.supersonicads.sdk.controller.OpenUrlActivity
net.hideman.payment.views.AdColonyActivity
com.jirbo.adcolony.AdColonyOverlay
com.jirbo.adcolony.AdColonyFullscreen
com.jirbo.adcolony.AdColonyBrowser
net.hideman.payment.views.AppLovinActivity
com.applovin.adview.AppLovinInterstitialActivity
com.applovin.adview.AppLovinConfirmationActivity
net.hideman.settings.views.PortForwardingActivity
net.hideman.settings.views.SettingsActivity
net.hideman.views.AboutActivity
net.hideman.views.BlockableActivity
net.hideman.views.BlockActivity
net.hideman.views.HtmlViewActivity
net.hideman.views.MainActivity
net.hideman.views.NotificationActivity
net.hideman.views.StarterActivity
net.hideman.views.TestingActivity
net.hideman.views.WaitNetworkActivity
Services
net.hideman.widget.Widget2x1UpdateService
net.hideman.widget.Widget1x1UpdateService
net.hideman.connection.ConnectorService
net.hideman.connection.openvpn.OpenVpnService
Receivers
net.hideman.widget.Widget_2x1
net.hideman.widget.Widget_1x1
net.hideman.utils.NetworkState
Activity-related intent filters
net.hideman.views.StarterActivity
actions: android.net.vpn.SETTINGS, android.intent.action.MAIN
categories: android.intent.category.DEFAULT, android.intent.category.LAUNCHER
Receiver-related intent filters
net.hideman.utils.NetworkState
actions: android.net.conn.CONNECTIVITY_CHANGE
net.hideman.widget.Widget_2x1
actions: android.appwidget.action.APPWIDGET_UPDATE, net.hideman.action.NETWORK_STATE, net.hideman.connection.STATE_CHANGED, net.hideman.connection.IP_CHANGED
net.hideman.widget.Widget_1x1
actions: android.appwidget.action.APPWIDGET_UPDATE, net.hideman.action.NETWORK_STATE, net.hideman.connection.STATE_CHANGED
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
1115
Uncompressed size
1222755
Highest datetime
2015-03-08 16:55:54
Lowest datetime
2015-03-08 16:51:12
Contained files by extension
png
935
xml
53
x86
2
Contained files by type
PNG
935
XML
53
ELF
12
File identification
MD5 c43509073321fcd75204ed0ea988948a
SHA1 ab0a0a430505ba47d7ae13b33c85b8493b712684
SHA256 75e111472f8f01574191b78ad5e8121066893a01aa317cb7c77e7b6b2a388a77
ssdeep
196608:fAXdI1rtE1oboJ0mXQQvTOl3KElqu1Cad9CbIhBSMWT8cGD6:IOS1ooJ0mXDyjlqu1CadcIhBSDT83D6

File size 9.1 MB ( 9507285 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (73.9%)
Java Archive (20.4%)
ZIP compressed archive (5.6%)
Tags
apk android software-collection contains-elf

VirusTotal metadata
First submission 2015-03-09 12:38:48 UTC ( 4 years ago )
Last submission 2016-10-13 05:40:53 UTC ( 2 years, 5 months ago )
File names net.hideman.apk
75e111472f8f01574191b78ad5e8121066893a01aa317cb7c77e7b6b2a388a77
hideman-vpn.apk
hideman-vpn-4-1-multi-android.apk
b0d5c3edda8a8173ba1626a107bcd89874541347bd2a6fada8eed6c8983f0174b90d854c1a8b812b632bec8cb5d6542ca1a258f6ee627936f5030d541f323b5c
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Permissions checked
android.permission.INTERNET:net.hideman
android.permission.READ_LOGS:net.hideman
Started activities
#Intent;component=net.hideman/.views.MainActivity;end
Started services
#Intent;component=net.hideman/.widget.Widget2x1UpdateService;end
#Intent;component=net.hideman/.widget.Widget1x1UpdateService;end
Started receivers
net.hideman.action.NETWORK_STATE
Opened files
/data/data/net.hideman/files/endpoints
/data/data/net.hideman/files/1350547478000-approved.stacktrace
/data/data/net.hideman/files/1350547478000.stacktrace
/data/data/net.hideman/files
Accessed files
/data/data/net.hideman/files
/data/data/net.hideman/cache/e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855.p12
/data/data/net.hideman/files/ACRA-INSTALLATION
Interesting calls
Calls APIs that provide access to information about the telephony services on the device. Applications can use such methods to determine telephony services and states, as well as to access some types of subscriber information.
Contacted URLs
https://www.hideman.net/api/call/
757365726E616D653D67756573742670617373776F72643D5A33566C63335125334425304126636F6D6D616E643D6765745F617574685F64617461267569643D39323362616161356435373062663336646262313033346531623632626262626661636433313862353033373830346536323037353265376464313661313262266C616E673D757326747970653D6D6F62696C65266C616E673D5553
https://docs.google.com/document/d/13lW4im07HsaBTX4WdvDuKb61j9FN4Ux2rNI3tb3fFWU/export/format=txt
http://www.hideman.net/api/call/
757365726E616D653D67756573742670617373776F72643D5A33566C63335125334425304126636F6D6D616E643D6765745F617574685F64617461267569643D39323362616161356435373062663336646262313033346531623632626262626661636433313862353033373830346536323037353265376464313661313262266C616E673D757326747970653D6D6F62696C65266C616E673D5553
https://www.dropbox.com/s/o4eicap49h5jzcj/API endpoints.txt/dl=1
http://www.hideman.net/api/call/
757365726E616D653D6D6235333236363133253430686964656D616E2E6E65742670617373776F72643D4E544E68597A67314D6725334425334425304126636F6D6D616E643D636F6E6E656374696F6E73267569643D39323362616161356435373062663336646262313033346531623632626262626661636433313862353033373830346536323037353265376464313661313262266C616E673D757326706B637331323D3126636F6E6669673D3026636F6E66696756657273696F6E3D31
http://www.hideman.net/api/call/
757365726E616D653D6D6235333236363133253430686964656D616E2E6E65742670617373776F72643D4E544E68597A67314D6725334425334425304126636F6D6D616E643D6765745F6C696D697473267569643D39323362616161356435373062663336646262313033346531623632626262626661636433313862353033373830346536323037353265376464313661313262266C616E673D7573
http://www.hideman.net/api/call/
757365726E616D653D6D6235333236363133253430686964656D616E2E6E65742670617373776F72643D4E544E68597A67314D6725334425334425304126636F6D6D616E643D6970267569643D39323362616161356435373062663336646262313033346531623632626262626661636433313862353033373830346536323037353265376464313661313262266C616E673D7573
https://www.hideman.net/bugs/api/store/
7B2274616773223A7B224150505F56455253494F4E5F4E414D45223A22342E31222C22555345525F43524153485F44415445223A22323031322D31302D31385431303A30343A33382E3030302B30323030222C22555345525F4150505F53544152545F44415445223A22323031322D31302D31385431303A30343A32392E3030302B30323030222C2250484F4E455F4D4F44454C223A224E657875732053222C224252414E44223A22676F6F676C65222C22494E5354414C4C4154494F4E5F4944223A2236346332343931372D343131622D343066622D393463392D303430353365656362313863222C22414E44524F49445F56455253494F4E223A22342E30...