× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: 9ad7741db4c5b386c51435de0c94045137ef0961b34e04ff326a3992ee688a89
File name: myfile.apk
Detection ratio: 42 / 62
Analysis date: 2018-07-12 10:08:45 UTC ( 4 days, 21 hours ago )
Antivirus Result Update
Ad-Aware Android.Trojan.DroidKungFu.B 20180712
AegisLab SUSPICIOUS 20180712
Alibaba A.H.Sys.NstrInst 20180712
Antiy-AVL Trojan[Backdoor]/Android.KungFu.z 20180712
Arcabit Android.Trojan.DroidKungFu.B 20180712
Avast ELF:KungFu-C [Trj] 20180712
Avast-Mobile ELF:KungFu-C [Trj] 20180712
AVG ELF:KungFu-C [Trj] 20180712
Avira (no cloud) ANDROID/Malmix2.3 20180710
AVware Trojan.AndroidOS.DroidKungFu.a 20180712
Babable Malware.HighConfidence 20180406
Baidu Android.Trojan.DroidKungFu.v 20180712
BitDefender Android.Trojan.DroidKungFu.L 20180712
CAT-QuickHeal Linux.Trojan.DroidKrungFu.A 20180712
ClamAV Andr.Trojan.KungFu-9 20180712
Cyren ELF/Trojan.TGGP-8 20180712
DrWeb Android.Siggen.6322 20180712
Emsisoft Android.Trojan.DroidKungFu.L (B) 20180712
ESET-NOD32 Android/DroidKungFu.C 20180712
F-Secure Android.Trojan.DroidKungFu.L 20180712
Fortinet Android/DroidKungFu.B!tr 20180712
GData Android.Trojan.DroidKungFu.A 20180712
Ikarus PUA.AndroidOS.Youmi 20180712
Jiangmin Exploit.Linux.ao 20180712
K7GW Trojan ( 004c39741 ) 20180712
Kaspersky Exploit.Linux.Lotoor.x 20180712
MAX malware (ai score=99) 20180712
McAfee RDN/Generic BackDoor 20180712
McAfee-GW-Edition RDN/Generic Exploit 20180712
Microsoft Trojan:Linux/DroidKrungFu.A 20180712
eScan Android.Trojan.DroidKungFu.B 20180712
NANO-Antivirus Trojan.ElfArm32.KungFu.bfnfgi 20180712
Qihoo-360 Trojan.Android.Gen 20180712
Sophos AV Andr/DroidRt-A 20180712
Symantec Trojan.Gen.2 20180712
Tencent a.system.safesys.[????] 20180712
TotalDefense Kugfu.XAWM!suspicious 20180712
TrendMicro ELF_LOTOOR.A 20180712
TrendMicro-HouseCall ELF_LOTOOR.A 20180712
Zillya Trojan.DroidKungFu..6 20180711
ZoneAlarm by Check Point HEUR:Backdoor.AndroidOS.KungFu.z 20180712
Zoner Trojan.AndroidOS.DroidKungFu.L 20180711
AhnLab-V3 20180712
ALYac 20180712
Bkav 20180712
CMC 20180712
Comodo 20180712
CrowdStrike Falcon (ML) 20180530
Cybereason 20180225
eGambit 20180712
Endgame 20180711
F-Prot 20180712
Sophos ML 20180601
K7AntiVirus 20180712
Kingsoft 20180712
Malwarebytes 20180712
Palo Alto Networks (Known Signatures) 20180712
Panda 20180711
Rising 20180712
SentinelOne (Static ML) 20180701
SUPERAntiSpyware 20180712
TACHYON 20180712
TheHacker 20180712
Trustlook 20180712
VBA32 20180711
VIPRE 20180712
ViRobot 20180712
Webroot 20180712
Yandex 20180711
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.allen.txtqc. The internal version number of the application is 1. The displayed version string of the application is 1.0. The minimum Android API level for the application to run (MinSDKVersion) is 4.
Required permissions
android.permission.CHANGE_WIFI_STATE (change Wi-Fi status)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
android.permission.INTERNET (full Internet access)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.READ_PHONE_STATE (read phone state and identity)
Activities
com.allen.txtqc.txtReader
com.allen.txtqc.ViewFileAct_Float
com.allen.txtqc.Settings
com.eguan.state.Dialog
Services
com.eguan.state.StateService
Receivers
com.eguan.state.Receiver
Activity-related intent filters
com.allen.txtqc.txtReader
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
Receiver-related intent filters
com.eguan.state.Receiver
actions: android.intent.action.BATTERY_CHANGED_ACTION, android.intent.action.SIG_STR, android.intent.action.BOOT_COMPLETED
Application certificate information
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
30
Uncompressed size
881556
Highest datetime
2014-02-23 19:01:32
Lowest datetime
2014-02-23 19:01:32
Contained files by extension
xml
10
jpg
7
png
2
dex
1
MF
1
RSA
1
so
1
txt
1
SF
1
Contained files by type
XML
10
JPG
7
unknown
6
ELF
4
PNG
2
DEX
1
File identification
MD5 ba1b8bc4cb3010925ef5877366a0b4aa
SHA1 a518610876a792b09bb1413d1e0098f4c464b0fc
SHA256 9ad7741db4c5b386c51435de0c94045137ef0961b34e04ff326a3992ee688a89
ssdeep
12288:4NTprUqCM90FRZPrcFiyovFiyoyIbqE6PiGDWkEZ3SbUtfunqRUIViA/pTTmPco:4NTFCM9u/zc0T0OGv6PiGDNWuUtflR7O

File size 631.0 KB ( 646166 bytes )
File type Android
Magic literal
Zip archive data, at least v1.0 to extract

TrID Android Package (72.9%)
Java Archive (20.1%)
ZIP compressed archive (5.5%)
PrintFox/Pagefox bitmap (var. P) (1.3%)
Tags
apk android contains-elf

VirusTotal metadata
First submission 2017-03-15 10:35:41 UTC ( 1 year, 4 months ago )
Last submission 2018-07-12 10:08:45 UTC ( 4 days, 21 hours ago )
File names myfile.apk
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!