× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 76406562de2f9a3ad632692fe1f13802c50ea43615f78f81665cd957bce2a81e
File name: JEO_Validity Extender
Detection ratio: 1 / 60
Analysis date: 2017-07-24 09:02:57 UTC ( 4 months, 3 weeks ago ) View latest
Antivirus Result Update
CAT-QuickHeal Android.Fakejeo.A2535 (PUP) 20170724
Ad-Aware 20170724
AegisLab 20170724
AhnLab-V3 20170724
Alibaba 20170724
ALYac 20170724
Antiy-AVL 20170724
Arcabit 20170724
Avast 20170724
AVG 20170724
Avira (no cloud) 20170724
AVware 20170721
Baidu 20170724
BitDefender 20170724
Bkav 20170722
ClamAV 20170724
CMC 20170724
Comodo 20170724
CrowdStrike Falcon (ML) 20170710
Cylance 20170724
Cyren 20170724
DrWeb 20170724
Emsisoft 20170724
Endgame 20170721
ESET-NOD32 20170724
F-Prot 20170724
F-Secure 20170724
Fortinet 20170724
GData 20170724
Ikarus 20170724
Sophos ML 20170607
Jiangmin 20170724
K7AntiVirus 20170724
K7GW 20170724
Kaspersky 20170724
Kingsoft 20170724
Malwarebytes 20170724
MAX 20170724
McAfee 20170723
McAfee-GW-Edition 20170723
Microsoft 20170724
eScan 20170724
NANO-Antivirus 20170724
nProtect 20170724
Palo Alto Networks (Known Signatures) 20170724
Panda 20170723
Qihoo-360 20170724
Rising 20170724
SentinelOne (Static ML) 20170718
Sophos AV 20170724
SUPERAntiSpyware 20170724
Symantec 20170724
Symantec Mobile Insight 20170724
Tencent 20170724
TheHacker 20170723
TrendMicro-HouseCall 20170724
Trustlook 20170724
VBA32 20170721
VIPRE 20170724
ViRobot 20170724
Webroot 20170724
WhiteArmor 20170721
Yandex 20170724
Zillya 20170721
ZoneAlarm by Check Point 20170724
Zoner 20170724
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.validityextend.jeovalextenderchecker. The internal version number of the application is 1. The displayed version string of the application is 1.0. The minimum Android API level for the application to run (MinSDKVersion) is 15. The target Android API level for the application to run (TargetSDKVersion) is 22.
Required permissions
android.permission.VIBRATE (control vibrator)
com.huawei.android.launcher.permission.WRITE_SETTINGS (modify global system settings)
android.permission.RECEIVE_BOOT_COMPLETED (automatically start at boot)
android.permission.INTERNET (full Internet access)
com.huawei.android.launcher.permission.READ_SETTINGS (Unknown permission from android reference)
com.sec.android.provider.badge.permission.READ (Unknown permission from android reference)
com.validityextend.jeovalextenderchecker.permission.C2D_MESSAGE (C2DM permission.)
com.majeur.launcher.permission.UPDATE_BADGE (Unknown permission from android reference)
com.google.android.c2dm.permission.RECEIVE (Unknown permission from android reference)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.WAKE_LOCK (prevent phone from sleeping)
com.sonymobile.home.permission.PROVIDER_INSERT_BADGE (Unknown permission from android reference)
com.huawei.android.launcher.permission.CHANGE_BADGE (Unknown permission from android reference)
android.permission.CHANGE_WIFI_STATE (change Wi-Fi status)
android.permission.ACCESS_NETWORK_STATE (view network status)
com.htc.launcher.permission.UPDATE_SHORTCUT (Unknown permission from android reference)
com.htc.launcher.permission.READ_SETTINGS (Unknown permission from android reference)
com.sonyericsson.home.permission.BROADCAST_BADGE (Unknown permission from android reference)
com.sec.android.provider.badge.permission.WRITE (Unknown permission from android reference)
com.anddoes.launcher.permission.UPDATE_COUNT (Unknown permission from android reference)
Activities
com.validityextend.jeovalextenderchecker.SplashActivityNew
com.validityextend.jeovalextenderchecker.MainActivity
com.validityextend.jeovalextenderchecker.ValidityChecker
com.validityextend.jeovalextenderchecker.ValidityDisplay
com.validityextend.jeovalextenderchecker.ValidityExtend
com.validityextend.jeovalextenderchecker.ExitActivity
com.facebook.ads.AudienceNetworkActivity
com.google.android.gms.ads.AdActivity
com.google.android.gms.ads.purchase.InAppPurchaseActivity
com.google.android.gms.common.api.GoogleApiActivity
com.onesignal.PermissionsActivity
Services
com.onesignal.GcmIntentService
com.onesignal.SyncService
com.onesignal.NotificationRestoreService
Receivers
com.onesignal.GcmBroadcastReceiver
com.onesignal.NotificationOpenedReceiver
com.onesignal.BootUpReceiver
com.onesignal.UpgradeReceiver
Providers
com.google.firebase.provider.FirebaseInitProvider
Activity-related intent filters
com.validityextend.jeovalextenderchecker.SplashActivityNew
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
Receiver-related intent filters
com.onesignal.GcmBroadcastReceiver
actions: com.google.android.c2dm.intent.RECEIVE
categories: com.validityextend.jeovalextenderchecker
com.onesignal.BootUpReceiver
actions: android.intent.action.BOOT_COMPLETED, android.intent.action.QUICKBOOT_POWERON
com.onesignal.UpgradeReceiver
actions: android.intent.action.MY_PACKAGE_REPLACED
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Contained files
Compression metadata
Contained files
649
Uncompressed size
8168476
Highest datetime
1980-00-00 00:00:00
Lowest datetime
1980-00-00 00:00:00
Contained files by extension
png
434
xml
207
dex
1
MF
1
RSA
1
jpg
1
SF
1
Contained files by type
PNG
434
XML
206
unknown
7
DEX
1
JPG
1
File identification
MD5 b4cbc88067e275b19b0beb277024aca1
SHA1 5dc1ee4a95646310673d3865f13f548dc407e16c
SHA256 76406562de2f9a3ad632692fe1f13802c50ea43615f78f81665cd957bce2a81e
ssdeep
98304:mLI722222QC2vnkGiCafL61YILqJupM6teBG0/Lo3DJI1dr65hHU:lxfkGVaz03SuphIPU3tWNCy

File size 3.8 MB ( 3933697 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (73.9%)
Java Archive (20.4%)
ZIP compressed archive (5.6%)
Tags
apk android dyn-calls dyn-class

VirusTotal metadata
First submission 2017-01-01 05:38:27 UTC ( 11 months, 2 weeks ago )
Last submission 2017-09-06 23:46:25 UTC ( 3 months, 1 week ago )
File names JEO_Validity Extender
JEO Validity Extender Checker_v1.0_apkpure.com.apk
JEO Validity Extender
JEO_Validity_Extender_Checker_v1.0_apkpure.com.apk
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Permissions checked
android.permission.INTERNET:com.validityextend.jeovalextenderchecker
android.permission.ACCESS_NETWORK_STATE:com.validityextend.jeovalextenderchecker
Started services
#Intent;component=com.validityextend.jeovalextenderchecker/com.onesignal.NotificationRestoreService;i.android.support.content.wakelockid=1;end
Started receivers
android.net.conn.CONNECTIVITY_CHANGE
com.google.analytics.RADIO_POWERED
android.intent.action.SCREEN_ON
android.intent.action.SCREEN_OFF
android.intent.action.BATTERY_CHANGED
Opened files
/data/app/com.validityextend.jeovalextenderchecker-1.apk
/data/data/com.validityextend.jeovalextenderchecker/code_cache/secondary-dexes
/sbin
/system/bin
/system/bin/gzip
/system/bin/app_process
/system/bin/run-as
/system/bin/keystore
/system/bin/ip
/system/bin/ionice
/system/bin/sensorservice
/system/bin/input
/system/bin/fsck_msdos
/system/bin/df
/system/bin/smd
/system/bin/qemud
/system/bin/screenshot
/system/bin/route
/system/bin/mediaserver
/system/bin/bootanimation
/system/bin/showlease
/system/bin/ndc
/system/bin/flash_image
/system/bin/InputDispatcher_test
/system/bin/sleep
/system/bin/dnsmasq
https:/googleads.g.doubleclick.net/mads/static/mad/sdk/native/sdk-core-v40.html
/data/data/com.validityextend.jeovalextenderchecker/code_cache
/data/data/com.validityextend.jeovalextenderchecker/cache
/data/data/com.validityextend.jeovalextenderchecker/databases/com.google.android.gms.ads.db
/data/data/com.validityextend.jeovalextenderchecker/files/secondary-dexes
/data
Accessed files
/data/data/com.validityextend.jeovalextenderchecker/files
/system/app/Superuser.apk
/sbin
/vendor/bin
/system/sbin
/system/bin
Interesting calls
Calls APIs that provide access to information about the telephony services on the device. Applications can use such methods to determine telephony services and states, as well as to access some types of subscriber information.
Dynamically loaded classes
com.google.android.ads.zxxz.k
Dynamically called methods
android.content.SharedPreferences$Editor.apply
Contacted URLs
https://onesignal.com/api/v1/apps/531b82a1-1258-4df6-84a9-124a5a5def26/android_params.js
https://graph.facebook.com/network_ads_common
Accessed URIs
content://com.sonymobile.home.resourceprovider/badge
content://com.facebook.katana.provider.AttributionIdProvider
http://www.example.com
https://googleads.g.doubleclick.net/mads/static/mad/sdk/native/sdk-core-v40.html