× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 96eae0cf4062c5600b1ba18e0985a2493e0b0d08ef62b17605f8c36872d2ac04
File name: 9101fc97f9b6066a1ccd04116d6c33359bc9311fb7423c11d3c11f8b5bebb4779...
Detection ratio: 0 / 56
Analysis date: 2016-09-21 23:57:33 UTC ( 2 years, 3 months ago ) View latest
Antivirus Result Update
Ad-Aware 20160921
AegisLab 20160921
AhnLab-V3 20160921
Alibaba 20160921
ALYac 20160921
Antiy-AVL 20160921
Arcabit 20160921
Avast 20160921
AVG 20160921
Avira (no cloud) 20160922
AVware 20160922
Baidu 20160921
BitDefender 20160922
Bkav 20160921
CAT-QuickHeal 20160921
ClamAV 20160922
CMC 20160921
Comodo 20160922
Cyren 20160922
DrWeb 20160922
Emsisoft 20160922
ESET-NOD32 20160922
F-Prot 20160922
F-Secure 20160921
Fortinet 20160922
GData 20160922
Ikarus 20160921
Jiangmin 20160921
K7AntiVirus 20160921
K7GW 20160922
Kaspersky 20160921
Kingsoft 20160922
Malwarebytes 20160922
McAfee 20160922
McAfee-GW-Edition 20160921
Microsoft 20160921
eScan 20160922
NANO-Antivirus 20160921
nProtect 20160921
Panda 20160921
Qihoo-360 20160922
Rising 20160921
Sophos AV 20160921
SUPERAntiSpyware 20160921
Symantec 20160921
Tencent 20160922
TheHacker 20160920
TotalDefense 20160920
TrendMicro 20160921
TrendMicro-HouseCall 20160921
VBA32 20160921
VIPRE 20160921
ViRobot 20160921
Yandex 20160921
Zillya 20160921
Zoner 20160921
The file being studied is Android related! APK Android file more specifically. The application's main package name is ru.yandex.searchplugin. The internal version number of the application is 4050100. The displayed version string of the application is 4.51. The minimum Android API level for the application to run (MinSDKVersion) is 14. The target Android API level for the application to run (TargetSDKVersion) is 19.
Required permissions
android.permission.ACCESS_FINE_LOCATION (fine (GPS) location)
android.permission.PACKAGE_USAGE_STATS (update component usage statistics)
android.permission.RECEIVE_BOOT_COMPLETED (automatically start at boot)
android.permission.INTERNET (full Internet access)
android.permission.GET_TASKS (retrieve running applications)
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS (access extra location provider commands)
android.permission.RECORD_AUDIO (record audio)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.ACCESS_COARSE_LOCATION (coarse (network-based) location)
android.permission.WAKE_LOCK (prevent phone from sleeping)
ru.yandex.common.session.SESSION_LOG_BIND (Unknown permission from android reference)
android.permission.CHANGE_WIFI_STATE (change Wi-Fi status)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.READ_PHONE_STATE (read phone state and identity)
com.android.browser.permission.READ_HISTORY_BOOKMARKS (read Browser's history and bookmarks)
ru.yandex.searchplugin.images.FULL (Unknown permission from android reference)
android.permission.WRITE_SETTINGS (modify global system settings)
ru.yandex.searchplugin.appicons.FULL (Unknown permission from android reference)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
android.permission.READ_CONTACTS (read contact data)
android.permission.READ_SMS (read SMS or MMS)
Activities
ru.yandex.searchplugin.MainActivity
ru.yandex.searchplugin.AboutActivity
ru.yandex.searchplugin.settings.SettingsActivity
ru.yandex.searchplugin.PackageUsageStatsActivity
ru.yandex.searchplugin.WelcomeActivity
ru.yandex.searchplugin.debug.DebugSettingsActivity
ru.yandex.searchplugin.widgets.big.preferences.BigWidgetSettingsActivity
ru.yandex.searchplugin.yabro.YandexBrowserDialogActivity
ru.yandex.searchlib.notification.SplashActivity
ru.yandex.speechkit.gui.RecognizerActivity
Services
ru.yandex.searchplugin.assistant.AssistantService
ru.yandex.searchlib.notification.NotificationService
ru.yandex.common.clid.ClidService
com.yandex.metrica.MetricaService
ru.yandex.common.session.appstats.AppStatsCollectStartService
ru.yandex.common.session.LogsHelperService
Receivers
ru.yandex.searchplugin.yabro.YandexBrowserPackageReceiver
ru.yandex.searchplugin.Widget
ru.yandex.searchplugin.BigWidget
ru.yandex.searchplugin.SmallWidget
ru.yandex.common.session.receivers.BatteryInfoReceiver
ru.yandex.common.session.receivers.ConnectivityChangeReceiver
ru.yandex.searchplugin.assistant.receivers.AssistantBroadcastReceiver
ru.yandex.searchplugin.assistant.receivers.AssistantOnBootBroadcastReceiver
ru.yandex.searchplugin.assistant.receivers.AssistantUserPresentReceiver
ru.yandex.searchplugin.widgets.big.data.apps.AppIconsBroadcastReceiver
ru.yandex.searchlib.notification.NotificationConnectivityBroadcastReceiver
ru.yandex.searchlib.notification.NotificationBroadcastReceiver
ru.yandex.common.clid.ClidBroadcastReceiver
ru.yandex.searchplugin.assistant.receivers.AssistantNetworkChangeReceiver
ru.yandex.searchplugin.assistant.receivers.NotificationUpdateReceiver
com.yandex.metrica.MetricaEventHandler
ru.yandex.common.session.receivers.ScreenStateReceiver
ru.yandex.common.session.receivers.PackageEventReceiver
ru.yandex.common.session.receivers.DeviceBootReceiver
ru.yandex.common.session.receivers.TimeZoneChangeReceiver
ru.yandex.common.session.receivers.WifiScanCompletedReceiver
ru.yandex.common.session.receivers.LocaleChangeReceiver
Providers
ru.yandex.searchplugin.widgets.big.data.apps.AppIconsContentProvider
ru.yandex.searchplugin.viewport.images.ImageContentProvider
ru.yandex.searchplugin.MetricaContentProvider
ru.yandex.searchplugin.SearchMobileLogsProvider
Service-related intent filters
com.yandex.metrica.MetricaService
actions: com.yandex.metrica.IMetricaService
categories: android.intent.category.DEFAULT
ru.yandex.common.session.LogsHelperService
actions: ru.yandex.common.session.CHECK_DELIVERY_ACTION, ru.yandex.common.session.SCHEDULE_DELIVERY_CHECK_ACTION, ru.yandex.common.session.LOG_AUTOSEND_ACTION, ru.yandex.common.session.HANDLE_AUTOSEND_RESULT_ACTION, ru.yandex.common.session.DELIVERY_CHECK_RESULT_ACTION, ru.yandex.common.session.HEARTBEAT_ACTION, ru.yandex.common.session.TIMEZONE_CHANGED, ru.yandex.common.session.SCHEDULE_AUTOSEND, ru.yandex.common.session.SCHEDULE_HEARTBEAT, ru.yandex.common.session.REPORT_APP_STATS, ru.yandex.common.session.STOP_WIFI_AP_SCAN_ACTION, ru.yandex.common.session.START_WIFI_AP_SCAN_ACTION, ru.yandex.common.session.WRITE_WIFI_SCAN_RESULTS_ACTION, ru.yandex.common.session.INIT_LOGGER_ACTION
ru.yandex.common.session.appstats.AppStatsCollectStartService
actions: ru.yandex.appstatscollector.RESET_ALARM_MANAGER_ACTION, ru.yandex.appstatscollector.STOP_ALARM_MANAGER_ACTION, ru.yandex.appstatscollector.REFRESH_APP_USAGE_STATS
Activity-related intent filters
ru.yandex.searchplugin.MainActivity
actions: android.intent.action.MAIN, android.intent.action.ASSIST
categories: android.intent.category.LAUNCHER, android.intent.category.DEFAULT
ru.yandex.speechkit.gui.RecognizerActivity
actions: ru.yandex.speechkit.action.voice_recognition
categories: android.intent.category.DEFAULT
Receiver-related intent filters
ru.yandex.searchplugin.assistant.receivers.AssistantOnBootBroadcastReceiver
actions: android.intent.action.BOOT_COMPLETED
ru.yandex.searchplugin.widgets.big.data.apps.AppIconsBroadcastReceiver
actions: android.intent.action.PACKAGE_REPLACED, android.intent.action.PACKAGE_REMOVED, android.intent.action.PACKAGE_ADDED
ru.yandex.searchlib.notification.NotificationConnectivityBroadcastReceiver
actions: android.net.conn.CONNECTIVITY_CHANGE
ru.yandex.common.session.receivers.LocaleChangeReceiver
actions: android.intent.action.LOCALE_CHANGED
ru.yandex.searchplugin.assistant.receivers.AssistantUserPresentReceiver
actions: android.intent.action.USER_PRESENT
ru.yandex.common.session.receivers.TimeZoneChangeReceiver
actions: android.intent.action.TIMEZONE_CHANGED
ru.yandex.searchplugin.assistant.receivers.AssistantNetworkChangeReceiver
actions: android.net.conn.CONNECTIVITY_CHANGE
ru.yandex.common.session.receivers.WifiScanCompletedReceiver
actions: android.net.wifi.SCAN_RESULTS, android.net.wifi.STATE_CHANGE
ru.yandex.common.session.receivers.PackageEventReceiver
actions: android.intent.action.PACKAGE_ADDED, android.intent.action.PACKAGE_REMOVED, android.intent.action.PACKAGE_FULLY_REMOVED, android.intent.action.PACKAGE_REPLACED
ru.yandex.common.clid.ClidBroadcastReceiver
actions: com.yandex.clid.action.CHANGE_CLID, ru.yandex.common.clid.intent.CLIDABLE, android.intent.action.PACKAGE_ADDED, android.intent.action.PACKAGE_REMOVED, android.intent.action.PACKAGE_REPLACED
categories: android.intent.category.DEFAULT
ru.yandex.common.session.receivers.BatteryInfoReceiver
actions: android.intent.action.ACTION_POWER_CONNECTED, android.intent.action.ACTION_POWER_DISCONNECTED, android.intent.action.BATTERY_LOW, android.intent.action.BATTERY_OKAY
ru.yandex.searchplugin.assistant.receivers.NotificationUpdateReceiver
actions: ru.yandex.searchplugin.NOTIFICATION_UPDATE
com.yandex.metrica.MetricaEventHandler
actions: com.yandex.metrica.intent.action.SYNC, com.android.vending.INSTALL_REFERRER, android.intent.action.PACKAGE_ADDED, android.intent.action.PACKAGE_DATA_CLEARED
ru.yandex.common.session.receivers.DeviceBootReceiver
actions: android.intent.action.BOOT_COMPLETED
ru.yandex.searchplugin.Widget
actions: android.appwidget.action.APPWIDGET_UPDATE
ru.yandex.searchlib.notification.NotificationBroadcastReceiver
actions: android.intent.action.LOCALE_CHANGED, android.intent.action.BOOT_COMPLETED, android.intent.action.ACTION_EXTERNAL_APPLICATIONS_AVAILABLE, android.intent.action.USER_PRESENT
categories: android.intent.category.DEFAULT
ru.yandex.searchplugin.BigWidget
actions: android.appwidget.action.APPWIDGET_UPDATE, ru.yandex.searchplugin.action.ACTION_DATA_EXPIRED_TRAFFIC, ru.yandex.searchplugin.action.ACTION_DATA_EXPIRED_ALL
ru.yandex.common.session.receivers.ScreenStateReceiver
actions: android.intent.action.SCREEN_OFF, android.intent.action.SCREEN_ON
ru.yandex.common.session.receivers.ConnectivityChangeReceiver
actions: android.net.conn.CONNECTIVITY_CHANGE, android.intent.action.AIRPLANE_MODE
ru.yandex.searchplugin.SmallWidget
actions: android.appwidget.action.APPWIDGET_UPDATE
ru.yandex.searchplugin.yabro.YandexBrowserPackageReceiver
actions: android.intent.action.PACKAGE_REMOVED
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
847
Uncompressed size
11230894
Highest datetime
2015-05-06 14:06:56
Lowest datetime
2015-05-06 14:05:06
Contained files by extension
png
436
xml
157
dot
2
dex
1
MF
1
der
1
js
1
sh
1
so
1
SF
1
DSA
1
Contained files by type
PNG
436
unknown
252
XML
157
DEX
1
ELF
1
File identification
MD5 48a067d867fc9e3cb97450c09d90f5fc
SHA1 1ab82a84543bf4c0a5076a747f29e94a9e0edc3e
SHA256 96eae0cf4062c5600b1ba18e0985a2493e0b0d08ef62b17605f8c36872d2ac04
ssdeep
98304:vGMNejG5BwWrv43F24T24824Ep242t2YjJ++oxKiAZtvwdC:+MNecwyv4VZm8AJjJ++ox0Zt7

File size 4.5 MB ( 4686135 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (72.9%)
Java Archive (20.1%)
ZIP compressed archive (5.5%)
PrintFox/Pagefox bitmap (var. P) (1.3%)
Tags
apk checks-gps android contains-elf

VirusTotal metadata
First submission 2015-05-09 19:44:13 UTC ( 3 years, 8 months ago )
Last submission 2017-08-14 03:07:18 UTC ( 1 year, 5 months ago )
File names yandex-search.apk
ru.yandex.searchplugin_63876800.apk
ru.yandex.searchplugin.apk
ru.yandex.searchplugin-1.apk
搜索小部件.apk"; modification-date="Mon, 13 Feb 2017 17:20:33 +0000"; read-date="Mon, 13 Feb 2017 17:20:30 +0000
9101fc97f9b6066a1ccd04116d6c33359bc9311fb7423c11d3c11f8b5bebb47792378b42577e21b098e7942c8db1f4fc9ac6c1885487d169892822aff3971775
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Permissions checked
android.permission.READ_PHONE_STATE:ru.yandex.searchplugin
android.permission.INTERNET:ru.yandex.searchplugin
android.permission.ACCESS_COARSE_LOCATION:ru.yandex.searchplugin
android.permission.ACCESS_FINE_LOCATION:ru.yandex.searchplugin
android.permission.ACCESS_WIFI_STATE:ru.yandex.searchplugin
android.permission.ACCESS_NETWORK_STATE:ru.yandex.searchplugin
Started services
#Intent;action=ru.yandex.common.session.INIT_LOGGER_ACTION;component=ru.yandex.searchplugin/ru.yandex.common.session.LogsHelperService;end
#Intent;action=ru.yandex.appstatscollector.STOP_ALARM_MANAGER_ACTION;component=ru.yandex.searchplugin/ru.yandex.common.session.appstats.AppStatsCollectStartService;end
#Intent;action=ru.yandex.searchplugin.action.COLLECT_NEW_DATA;component=ru.yandex.searchplugin/.assistant.AssistantService;end
#Intent;action=ru.yandex.searchplugin.action.COLLECT_NEW_DATA_BAR;component=ru.yandex.searchplugin/.assistant.AssistantService;end
#Intent;action=ru.yandex.common.session.SCHEDULE_AUTOSEND;component=ru.yandex.searchplugin/ru.yandex.common.session.LogsHelperService;end
Stopped services
#Intent;component=ru.yandex.searchplugin/ru.yandex.searchlib.notification.NotificationService;end
Opened files
/data/app/ru.yandex.searchplugin-1.apk
/data/data/ru.yandex.searchplugin/files
Accessed files
/data/data/ru.yandex.searchplugin/files
/mnt/sdcard/enable_logging
/data/app/ru.yandex.searchplugin-1.apk
/system/app/Superuser.apk
/sbin/su
/system/bin/su
/system/xbin/su
Interesting calls
Calls APIs that provide access to information about the telephony services on the device. Applications can use such methods to determine telephony services and states, as well as to access some types of subscriber information.
Calls APIs that provide access to the system location services. These services allow applications to obtain periodic updates of the device's geographical location, or to fire an application-specified Intent when the device enters the proximity of a given geographical location.
Contacted URLs
https://startup.mobile.yandex.net/analytics/startup?deviceid=&app_platform=android&protocol_version=2&analytics_sdk_version=165&analytics_sdk_version_name=1.65&model=Nexus%20S&manufacturer=Samsung&os_version=4.0.4&screen_width=800&screen_height=480&screen_dpi=240&scalefactor=1.5&locale=en-US&device_type=phone&query_hosts=1
Accessed URIs
metrica://ru.yandex.searchplugin
content://ru.yandex.searchplugin.MetricaContentProvider/API_LEVEL
content://ru.yandex.searchplugin.MetricaContentProvider/DEVICE_ID
content://ru.yandex.searchplugin.MetricaContentProvider/GeoLocation
https://startup.mobile.yandex.net/