× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 7be2f5da594fe7aad39e3c4f050779d1e9be53bf1d1c2010486f59c2550eb985
File name: 冰火围城.apk
Detection ratio: 0 / 57
Analysis date: 2016-06-04 14:42:40 UTC ( 2 years, 9 months ago ) View latest
Antivirus Result Update
Ad-Aware 20160604
AegisLab 20160604
AhnLab-V3 20160604
Alibaba 20160603
ALYac 20160604
Antiy-AVL 20160604
Arcabit 20160604
Avast 20160604
AVG 20160604
Avira (no cloud) 20160604
AVware 20160604
Baidu 20160603
Baidu-International 20160604
BitDefender 20160604
Bkav 20160604
CAT-QuickHeal 20160604
ClamAV 20160604
CMC 20160602
Comodo 20160604
Cyren 20160604
DrWeb 20160604
Emsisoft 20160604
ESET-NOD32 20160604
F-Prot 20160604
F-Secure 20160604
Fortinet 20160604
GData 20160604
Ikarus 20160604
Jiangmin 20160604
K7AntiVirus 20160604
K7GW 20160604
Kaspersky 20160604
Kingsoft 20160604
Malwarebytes 20160604
McAfee 20160604
McAfee-GW-Edition 20160604
Microsoft 20160604
eScan 20160604
NANO-Antivirus 20160604
nProtect 20160603
Panda 20160604
Qihoo-360 20160604
Rising 20160604
Sophos AV 20160604
SUPERAntiSpyware 20160604
Symantec 20160604
Tencent 20160604
TheHacker 20160604
TotalDefense 20160604
TrendMicro 20160604
TrendMicro-HouseCall 20160604
VBA32 20160603
VIPRE 20160604
ViRobot 20160604
Yandex 20160603
Zillya 20160603
Zoner 20160604
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.gameloft.android.ANMP.GloftTHHM. The internal version number of the application is 14226. The displayed version string of the application is 1.4.2g. The minimum Android API level for the application to run (MinSDKVersion) is 14. The target Android API level for the application to run (TargetSDKVersion) is 23.
Required permissions
android.permission.VIBRATE (control vibrator)
android.permission.READ_EXTERNAL_STORAGE (read from external storage)
android.permission.RECEIVE_BOOT_COMPLETED (automatically start at boot)
glshare.permission.ACCESS_SHARED_DATA (Unknown permission from android reference)
com.google.android.c2dm.permission.RECEIVE (Unknown permission from android reference)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.ACCESS_COARSE_LOCATION (coarse (network-based) location)
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.INTERNET (full Internet access)
com.android.browser.permission.READ_HISTORY_BOOKMARKS (read Browser's history and bookmarks)
com.gameloft.android.ANMP.GloftTHHM.permission.C2D_MESSAGE (C2DM permission.)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
com.android.vending.BILLING (Unknown permission from android reference)
android.permission.GET_ACCOUNTS (discover known accounts)
Activities
com.gameloft.android.ANMP.GloftTHHM.XamarinMainActivity
com.facebook.LoginActivity
com.gameloft.android.ANMP.GloftTHHM.installer.GameInstaller
com.gameloft.android.ANMP.GloftTHHM.iab.GMPActivity
com.gameloft.android.ANMP.GloftTHHM.IGPFreemiumActivity
com.gameloft.android.ANMP.GloftTHHM.InGameBrowser
com.gameloft.android.ANMP.GloftTHHM.PackageUtils.PermissionActivity
com.gameloft.glads.GLAdFullScreen
com.gameloft.glads.MRAIDFullScreen
com.gameloft.glads.vast.activity.VASTActivity
com.gameloft.glads.VASTFullScreen
Services
com.google.android.gms.analytics.CampaignTrackingService
com.gameloft.android.ANMP.GloftTHHM.GCMIntentService
Receivers
com.google.android.gcm.GCMBroadcastReceiver
com.gameloft.android.ANMP.GloftTHHM.PushNotification.LocalPushReceiver
com.gameloft.android.ANMP.GloftTHHM.PushNotification.PushIntentReceiver
com.gameloft.android.ANMP.GloftTHHM.PushNotification.PushDeleteReceiver
com.gameloft.android.ANMP.GloftTHHM.GLUtils.NetworkStateReceiver
com.gameloft.android.ANMP.GloftTHHM.BootCompletedReceiver
com.gameloft.android.ANMP.GloftTHHM.installer.IReferrerReceiver
com.gameloft.android.ANMP.GloftTHHM.ApplicationSetUp
Providers
mono.MonoRuntimeProvider
com.gameloft.android.ANMP.GloftTHHM.KeyProvider
Activity-related intent filters
com.gameloft.android.ANMP.GloftTHHM.IGPFreemiumActivity
actions: android.intent.action.MAIN
com.gameloft.android.ANMP.GloftTHHM.XamarinMainActivity
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
Receiver-related intent filters
com.gameloft.android.ANMP.GloftTHHM.PushNotification.PushIntentReceiver
actions: com.gameloft.android.ANMP.GloftTHHM.PNBroadcast
com.google.android.gcm.GCMBroadcastReceiver
actions: com.google.android.c2dm.intent.RECEIVE, com.google.android.c2dm.intent.REGISTRATION
categories: com.gameloft.android.ANMP.GloftTHHM
com.gameloft.android.ANMP.GloftTHHM.PushNotification.PushDeleteReceiver
actions: com.gameloft.android.ANMP.GloftTHHM.PNDeleteBroadcast
com.gameloft.android.ANMP.GloftTHHM.ApplicationSetUp
actions: com.gameloft.android.ApplicationSetUp
com.gameloft.android.ANMP.GloftTHHM.PushNotification.LocalPushReceiver
actions: android.intent.action.BOOT_COMPLETED
com.gameloft.android.ANMP.GloftTHHM.BootCompletedReceiver
actions: android.intent.action.BOOT_COMPLETED
categories: android.intent.category.DEFAULT
com.gameloft.android.ANMP.GloftTHHM.GLUtils.NetworkStateReceiver
actions: android.net.conn.CONNECTIVITY_CHANGE
com.gameloft.android.ANMP.GloftTHHM.installer.IReferrerReceiver
actions: com.android.vending.INSTALL_REFERRER
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
390
Uncompressed size
86895734
Highest datetime
2015-12-30 16:34:54
Lowest datetime
2015-12-14 16:20:38
Contained files by extension
png
293
xml
73
so
10
txt
3
bin
2
MF
1
RSA
1
dex
1
mp4
1
mp3
1
SF
1
Contained files by type
PNG
293
XML
72
unknown
13
ELF
10
DEX
1
MP3
1
File identification
MD5 a75c274f3cce3f255ce3603d19673dbc
SHA1 5f96fc71963b407f9d3fb872a7ffeb9f6fda802d
SHA256 7be2f5da594fe7aad39e3c4f050779d1e9be53bf1d1c2010486f59c2550eb985
ssdeep
1572864:vNgC2tmV8hjFGt22M6mx9HEEEL7RUQzpGzCUPCTqeH2:vNL2t88TU22DmLH/ELdBppUgqI2

File size 49.7 MB ( 52163330 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (72.9%)
Java Archive (20.1%)
ZIP compressed archive (5.5%)
PrintFox/Pagefox bitmap (var. P) (1.3%)
Tags
apk android contains-elf

VirusTotal metadata
First submission 2016-02-01 17:16:08 UTC ( 3 years, 1 month ago )
Last submission 2018-09-23 22:37:05 UTC ( 5 months, 3 weeks ago )
File names siegefall.apk
冰火围城.apk
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!