× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 8ea8a21338c43c149d1b0f4f49d009825e0d228e849bb9a0e315fe5130d0006f
File name: 8ea8a21338c43c149d1b0f4f49d009825e0d228e849bb9a0e315fe5130d0006f.vir
Detection ratio: 0 / 56
Analysis date: 2015-01-08 08:35:41 UTC ( 4 years, 2 months ago ) View latest
Antivirus Result Update
Ad-Aware 20150108
AegisLab 20150108
Yandex 20150107
AhnLab-V3 20150108
ALYac 20150108
Antiy-AVL 20150108
Avast 20150108
AVG 20150108
Avira (no cloud) 20150108
AVware 20150108
Baidu-International 20150107
BitDefender 20150108
Bkav 20150107
ByteHero 20150108
CAT-QuickHeal 20150108
ClamAV 20150108
CMC 20150107
Comodo 20150108
Cyren 20150108
DrWeb 20150108
Emsisoft 20150108
ESET-NOD32 20150108
F-Prot 20150108
F-Secure 20150108
Fortinet 20150108
GData 20150108
Ikarus 20150108
Jiangmin 20150107
K7AntiVirus 20150108
K7GW 20150107
Kaspersky 20150108
Kingsoft 20150108
Malwarebytes 20150108
McAfee 20150108
McAfee-GW-Edition 20150107
Microsoft 20150108
eScan 20150108
NANO-Antivirus 20150108
Norman 20150108
nProtect 20150107
Panda 20150107
Qihoo-360 20150108
Rising 20150108
Sophos AV 20150108
SUPERAntiSpyware 20150108
Symantec 20150108
Tencent 20150108
TheHacker 20150106
TotalDefense 20150108
TrendMicro 20150108
TrendMicro-HouseCall 20150108
VBA32 20150108
VIPRE 20150108
ViRobot 20150108
Zillya 20150108
Zoner 20150107
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.kabam.cnthg. The internal version number of the application is 4110. The displayed version string of the application is 1.1.0. The minimum Android API level for the application to run (MinSDKVersion) is 10. The target Android API level for the application to run (TargetSDKVersion) is 21.
Required permissions
android.permission.VIBRATE (control vibrator)
android.permission.INTERNET (full Internet access)
com.google.android.c2dm.permission.RECEIVE (Unknown permission from android reference)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.GET_TASKS (retrieve running applications)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.READ_PHONE_STATE (read phone state and identity)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
com.android.vending.BILLING (Unknown permission from android reference)
android.permission.GET_ACCOUNTS (discover known accounts)
com.kabam.cnthg.permission.C2D_MESSAGE (C2DM permission.)
Activities
com.kabam.activity.SODABaseActivity
com.kabam.soda.SodaActivity
com.facebook.LoginActivity
com.chartboost.sdk.CBImpressionActivity
com.AdX.Override.AdXOverride
com.otherlevels.androidportal.NotificationOpenActivity
Services
com.otherlevels.androidportal.UnityGCMIntentService
Receivers
com.kabam.lab.manager.KBReceiver
com.amazon.inapp.purchasing.ResponseReceiver
com.AdX.tag.AdXAppTracker
com.otherlevels.androidportal.UnityGCMBroadcastReceiver
Activity-related intent filters
com.kabam.activity.SODABaseActivity
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
com.kabam.soda.SodaActivity
actions: android.intent.action.VIEW
Receiver-related intent filters
com.kabam.lab.manager.KBReceiver
actions: com.kabam.notification, android.intent.action.SCREEN_ON, android.intent.action.USER_PRESENT
com.amazon.inapp.purchasing.ResponseReceiver
actions: com.amazon.inapp.purchasing.NOTIFY
com.otherlevels.androidportal.UnityGCMBroadcastReceiver
actions: com.google.android.c2dm.intent.RECEIVE, com.google.android.c2dm.intent.REGISTRATION
categories: com.kabam.cnthg
com.AdX.tag.AdXAppTracker
actions: com.android.vending.INSTALL_REFERRER
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The studied file contains at least one Portable Executable.
Contained files
Compression metadata
Contained files
1499
Uncompressed size
77399415
Highest datetime
2014-12-17 17:59:46
Lowest datetime
2014-12-17 17:57:28
Contained files by extension
png
249
xml
20
dll
17
jpg
2
Contained files by type
unknown
712
PNG
249
XML
20
Portable Executable
17
JPG
2
File identification
MD5 fb60fc870eab24004212088b82ba8790
SHA1 5a610e3b4954663f724849cddedb823be557a7b6
SHA256 8ea8a21338c43c149d1b0f4f49d009825e0d228e849bb9a0e315fe5130d0006f
ssdeep
786432:AyS2ATywyNgiX2EjIf2EdT9zY9A4kdc9G/RU1rJJZosFyBKmH:Ab27a+2EjvEd5zYG4Kc9G5U17/yBFH

File size 38.5 MB ( 40371007 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Java Archive (74.3%)
ZIP compressed archive (20.5%)
PrintFox/Pagefox bitmap (var. P) (5.1%)
Tags
apk contains-pe ext-prg android software-collection

VirusTotal metadata
First submission 2015-01-08 08:35:41 UTC ( 4 years, 2 months ago )
Last submission 2019-01-13 16:03:07 UTC ( 2 months, 1 week ago )
File names 718721_b0d7f5_the_hunger_games_panem_rising_1.1.0.apk
the-hunger-games-panem-rising.apk
8ea8a21338c43c149d1b0f4f49d009825e0d228e849bb9a0e315fe5130d0006f.vir
Advanced heuristic and reputation engines
Symantec reputation Suspicious.Insight
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Started receivers
android.net.conn.CONNECTIVITY_CHANGE
External programs launched
/system/xbin/which su
Opened files
/data/app/com.kabam.cnthg-1.apk
/data/data/com.kabam.cnthg/cache/volley
/data/data/com.kabam.cnthg/cache/__chartboost/CBRequestManager
/data/data/com.kabam.cnthg/cache/__chartboost/CBSessionDirectory
APP_ASSETS/bin/Data/settings.xml
/data/data/com.kabam.cnthg/cache/__chartboost/CBSessionDirectory/cb_previous_session_info
Accessed files
/data/app/com.kabam.cnthg-1.apk/assets/bin/Data/settings.xml
/system/app/Superuser.apk
/data/data/com.kabam.cnthg/cache/volley
/data/data/com.kabam.cnthg/cache/__chartboost/CBRequestManager
/data/data/com.kabam.cnthg/cache/__chartboost/CBSessionDirectory
/data/data/com.kabam.cnthg/cache/__chartboost/CBSessionDirectory/cb_previous_session_info
Interesting calls
Calls APIs that provide access to information about the telephony services on the device. Applications can use such methods to determine telephony services and states, as well as to access some types of subscriber information.
Contacted URLs
https://885.engine.mobileapptracking.com/serve/ver=3.3&transaction_id=87138739-7a0e-4cb5-bb43-d108b3f3215c&sdk=android&action=session&advertiser_id=885&android_id=bfc1484e2df11cc2&app_name=Panem+Rising&app_version=4110&connection_type=mobile&country_code=us&currency_code=USD&device_brand=samsung&device_carrier=Android&device_cpu_type=armv7l&device_model=Nexus+S&insdate=1349848400&language=English&mat_id=b573ca55-78f9-42f1-b028-7fae3f61118b&mobile_country_code=310&mobile_network_code=260&os_version=4.0.4&package_name=com.kabam.cnthg&revenue=0.0&screen_density=1.5&screen_layout_size=800x480&sdk_version=3.3&site_id=73790&conversion_user_agent=Mozilla/5.0+(Linux;+U;+Android+4.0.4;+en-us;+sdk+Build/MR1)+AppleWebKit/534.30+(KHTML,+like+Gecko)+Version/4.0+Mobile+Safari/534.30&system_date=1349848434
Accessed URIs
https://live.chartboost.com/api/config