× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 868d1ce10b4c16058d085e79f879faceec9fbf67177dd821f6cde53f8533cb8e
File name: com.bigduckgames.flow.apk
Detection ratio: 0 / 58
Analysis date: 2017-04-19 21:18:33 UTC ( 2 years, 1 month ago ) View latest
Antivirus Result Update
Ad-Aware 20170419
AegisLab 20170419
AhnLab-V3 20170419
Alibaba 20170419
ALYac 20170419
Antiy-AVL 20170419
Arcabit 20170419
Avast 20170419
AVG 20170419
Avira (no cloud) 20170419
AVware 20170419
Baidu 20170419
BitDefender 20170419
Bkav 20170419
CAT-QuickHeal 20170419
ClamAV 20170419
CMC 20170419
Comodo 20170419
CrowdStrike Falcon (ML) 20170130
Cyren 20170419
DrWeb 20170419
Emsisoft 20170419
Endgame 20170419
ESET-NOD32 20170419
F-Prot 20170419
F-Secure 20170419
Fortinet 20170419
GData 20170419
Ikarus 20170419
Sophos ML 20170413
Jiangmin 20170419
K7AntiVirus 20170419
K7GW 20170419
Kaspersky 20170419
Kingsoft 20170419
Malwarebytes 20170419
McAfee 20170419
McAfee-GW-Edition 20170419
Microsoft 20170419
eScan 20170419
NANO-Antivirus 20170419
nProtect 20170419
Palo Alto Networks (Known Signatures) 20170419
Panda 20170419
Qihoo-360 20170419
Rising 20170419
SentinelOne (Static ML) 20170330
Sophos AV 20170419
SUPERAntiSpyware 20170419
Symantec 20170419
Symantec Mobile Insight 20170414
Tencent 20170419
TheHacker 20170419
TrendMicro-HouseCall 20170419
VBA32 20170419
VIPRE 20170419
ViRobot 20170419
Webroot 20170419
WhiteArmor 20170409
Yandex 20170419
Zillya 20170418
ZoneAlarm by Check Point 20170419
Zoner 20170419
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.bigduckgames.flow. The internal version number of the application is 30601. The displayed version string of the application is 3.6. The minimum Android API level for the application to run (MinSDKVersion) is 15. The target Android API level for the application to run (TargetSDKVersion) is 23.
Required permissions
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
com.android.vending.BILLING (Unknown permission from android reference)
android.permission.INTERNET (full Internet access)
android.permission.ACCESS_NETWORK_STATE (view network status)
Activities
com.bigduckgames.flow.flow
com.mopub.mobileads.MoPubActivity
com.mopub.mobileads.MraidActivity
com.mopub.common.MoPubBrowser
com.mopub.mobileads.MraidVideoPlayerActivity
com.amazon.device.ads.AdActivity
com.facebook.ads.InterstitialAdActivity
com.noodlecake.noodlenews.MoreGamesWebView
com.chartboost.sdk.CBImpressionActivity
com.google.android.gms.common.api.GoogleApiActivity
com.google.android.gms.ads.AdActivity
com.google.android.gms.ads.purchase.InAppPurchaseActivity
com.millennialmedia.internal.MMActivity
com.millennialmedia.internal.MMIntentWrapperActivity
com.amazon.ags.html5.overlay.GameCircleUserInterface
com.amazon.ags.html5.overlay.GameCircleAlertUserInterface
Receivers
com.appsflyer.MultipleInstallBroadcastReceiver
com.amazon.device.iap.ResponseReceiver
Providers
android.support.v4.content.FileProvider
Activity-related intent filters
com.bigduckgames.flow.flow
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
Receiver-related intent filters
com.appsflyer.MultipleInstallBroadcastReceiver
actions: com.android.vending.INSTALL_REFERRER
com.amazon.device.iap.ResponseReceiver
actions: com.amazon.inapp.purchasing.NOTIFY
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
602
Uncompressed size
27228193
Highest datetime
1980-00-00 00:00:00
Lowest datetime
1980-00-00 00:00:00
Contained files by extension
png
399
xml
123
txt
27
so
15
js
4
ogg
4
ttf
2
dex
1
MF
1
zip
1
RSA
1
SF
1
Contained files by type
PNG
399
XML
123
unknown
59
ELF
15
OGG
4
DEX
1
ZIP
1
File identification
MD5 bc28cef2945df03dd9a70e093a41f00a
SHA1 0170e677b08e653b4631929f2a6a78bff09cd3c6
SHA256 868d1ce10b4c16058d085e79f879faceec9fbf67177dd821f6cde53f8533cb8e
ssdeep
196608:/PtVTsrO3/zOiKZitnHx9mkJu2IXNmEOeqYxeKriOICRd8dwP+o:3tZsrO3bAUbmfBULYsYhRd8+P+o

File size 10.3 MB ( 10770552 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (63.6%)
Java Archive (17.5%)
Sweet Home 3D design (generic) (12.7%)
ZIP compressed archive (4.8%)
PrintFox/Pagefox bitmap (var. P) (1.2%)
Tags
apk android contains-elf

VirusTotal metadata
First submission 2017-02-20 19:12:10 UTC ( 2 years, 3 months ago )
Last submission 2019-02-10 08:05:31 UTC ( 3 months, 1 week ago )
File names flow-free.apk
PnszVkhdwNNTBDT6L4YY20170529-27291-obf0nc
com.bigduckgames.flow.apk
com.bigduckgames.flow.apk
app-a2ccbd35lcz.apk
Flow.apk
Flow%20Free_3.6_apk-dl.com.apk
com.bigduckgames.flow.apk
810525_a85926_com.bigduckgames.flow-30601.apk
flow-free-3-6.apk
Flow_Free_v3.6_apkpure.com.apk
bc28cef2945df03dd9a70e093a41f00a.virus
APKupdate_com_bigduckgames_flow-30601.apk
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Permissions checked
android.permission.INTERNET:com.bigduckgames.flow
android.permission.ACCESS_NETWORK_STATE:com.bigduckgames.flow
Started receivers
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.BATTERY_CHANGED
Opened files
/data/data/com.bigduckgames.flow/cache/share
/data/data/com.bigduckgames.flow/files/.YFlurrySenderIndex.info.AnalyticsMain
/data/data/com.bigduckgames.flow/files/.yflurryprotonconfig.26ff77976b0158c1
/data/data/com.bigduckgames.flow/files/.yflurryprotonreport.26ff77976b0158c1
/data/data/com.bigduckgames.flow/files/.yflurryanongoingpulsecallbackreporter
/data/data/com.bigduckgames.flow/files/.yflurryreport.26ff77976b0158c1
/data/data/com.bigduckgames.flow/files
/data/data/com.bigduckgames.flow/files/.yflurrydatasenderblock.672b234a-4be6-4abe-a1e5-c0bcc0e42043
/data/data/com.bigduckgames.flow/files/.YFlurrySenderIndex.info.AnalyticsData_THHC25KCM852393KJ897_229
/data/data/com.bigduckgames.flow/cache
/system
/mnt/sdcard
/data/data/com.bigduckgames.flow/files/.flurryinstallreceiver.
/data/data/com.bigduckgames.flow/cache/mopub-volley-cache
Accessed files
/data/data/com.bigduckgames.flow/files
/data/data/com.bigduckgames.flow/files/.FlurrySenderIndex.info.AnalyticsMain
/data/data/com.bigduckgames.flow/files/.YFlurrySenderIndex.info.AnalyticsMain
/data/data/com.bigduckgames.flow/files/.yflurryprotonconfig.26ff77976b0158c1
/data/data/com.bigduckgames.flow/files/.yflurryprotonreport.26ff77976b0158c1
/data/data/com.bigduckgames.flow/files/.yflurryanongoingpulsecallbackreporter
/data/data/com.bigduckgames.flow/files/.yflurryreport.26ff77976b0158c1
/data/data/com.bigduckgames.flow/files/.flurryagent.-40dcc2a4
/data/data/com.bigduckgames.flow/files/.flurryinstallreceiver.
/data/data/com.bigduckgames.flow/files/.yflurrydatasenderblock.672b234a-4be6-4abe-a1e5-c0bcc0e42043
Interesting calls
Calls APIs that provide access to information about the telephony services on the device. Applications can use such methods to determine telephony services and states, as well as to access some types of subscriber information.
Accessed URIs
http://ads.mopub.com/m/open?v=6&id=com.bigduckgames.flow&av=3.6&udid=mp_tmpl_advertising_id&dnt=mp_tmpl_do_not_track