× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: acb934ad5d87f570c35e71dde15d00e6b8da3e5e7f0b013bc630ee97592e4673
File name: gittigidiyor.apk
Detection ratio: 0 / 57
Analysis date: 2016-06-09 04:38:02 UTC ( 2 years, 8 months ago ) View latest
Antivirus Result Update
Ad-Aware 20160609
AegisLab 20160609
AhnLab-V3 20160609
Alibaba 20160608
ALYac 20160609
Antiy-AVL 20160609
Arcabit 20160609
Avast 20160609
AVG 20160609
Avira (no cloud) 20160608
AVware 20160609
Baidu 20160608
Baidu-International 20160606
BitDefender 20160609
Bkav 20160608
CAT-QuickHeal 20160609
ClamAV 20160609
CMC 20160607
Comodo 20160608
Cyren 20160609
DrWeb 20160609
Emsisoft 20160609
ESET-NOD32 20160609
F-Prot 20160609
F-Secure 20160609
Fortinet 20160609
GData 20160609
Ikarus 20160608
Jiangmin 20160609
K7AntiVirus 20160608
K7GW 20160609
Kaspersky 20160609
Kingsoft 20160609
Malwarebytes 20160609
McAfee 20160609
McAfee-GW-Edition 20160609
Microsoft 20160609
eScan 20160609
NANO-Antivirus 20160609
nProtect 20160608
Panda 20160608
Qihoo-360 20160609
Rising 20160609
Sophos AV 20160609
SUPERAntiSpyware 20160609
Symantec 20160609
Tencent 20160609
TheHacker 20160607
TotalDefense 20160607
TrendMicro 20160609
TrendMicro-HouseCall 20160609
VBA32 20160608
VIPRE 20160609
ViRobot 20160608
Yandex 20160608
Zillya 20160608
Zoner 20160609
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.gittigidiyormobil. The internal version number of the application is 1500. The displayed version string of the application is 1.5. The minimum Android API level for the application to run (MinSDKVersion) is 8. The target Android API level for the application to run (TargetSDKVersion) is 22.
Required permissions
android.permission.ACCESS_FINE_LOCATION (fine (GPS) location)
android.permission.VIBRATE (control vibrator)
com.gittigidiyormobil.permission.C2D_MESSAGE (C2DM permission.)
com.google.android.c2dm.permission.RECEIVE (Unknown permission from android reference)
com.tmob.app.share.MSTwitter (Unknown permission from android reference)
android.permission.ACCESS_COARSE_LOCATION (coarse (network-based) location)
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.GET_TASKS (retrieve running applications)
android.permission.CAMERA (take pictures and videos)
android.permission.INTERNET (full Internet access)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.BROADCAST_STICKY (send sticky broadcast)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
android.permission.GET_ACCOUNTS (discover known accounts)
android.permission.FLASHLIGHT (control flashlight)
Activities
com.tmob.app.share.MSTwitterAuthorizer
com.gittigidiyormobil.GGMainActivity
com.tmob.gittigidiyor.ui.startup.SplashScreen
com.gittigidiyormobil.DeepLinkingActivity
com.gittigidiyormobil.BannerActivity
com.tmob.app.share.PrepareRequestTokenActivity
com.tmob.gittigidiyor.ui.startup.QuickTourActivity
com.gittigidiyormobil.GGPushActivity
Services
com.netmera.mobile.NetmeraIntentService
com.tmob.app.share.MSTwitter
com.gittigidiyormobil.GCMIntentService
com.appsee.AppseeBackgroundUploader
Receivers
com.netmera.mobile.NetmeraBroadcastReceiver
com.google.android.gcm.GCMBroadcastReceiver
Activity-related intent filters
com.gittigidiyormobil.DeepLinkingActivity
actions: android.intent.action.VIEW
categories: android.intent.category.DEFAULT, android.intent.category.BROWSABLE
com.tmob.app.share.PrepareRequestTokenActivity
actions: android.intent.action.VIEW
categories: android.intent.category.DEFAULT, android.intent.category.BROWSABLE
com.tmob.gittigidiyor.ui.startup.SplashScreen
actions: android.intent.action.MAIN, android.intent.action.VIEW
categories: android.intent.category.LAUNCHER, android.intent.category.DEFAULT, android.intent.category.BROWSABLE
Receiver-related intent filters
com.netmera.mobile.NetmeraBroadcastReceiver
actions: com.google.android.c2dm.intent.RECEIVE, com.google.android.c2dm.intent.REGISTRATION
categories: com.gittigidiyormobil
com.google.android.gcm.GCMBroadcastReceiver
actions: com.google.android.c2dm.intent.RECEIVE, com.google.android.c2dm.intent.REGISTRATION
categories: com.gittigidiyormobil
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Contained files
Compression metadata
Contained files
1468
Uncompressed size
4362138
Highest datetime
2015-05-06 11:58:32
Lowest datetime
2015-04-14 15:20:42
Contained files by extension
png
916
xml
51
jpg
19
ttf
6
gif
4
MF
1
RSA
1
SF
1
Contained files by type
PNG
916
XML
51
JPG
19
unknown
9
GIF
4
HTML
1
File identification
MD5 d0f91fbfdf3895039197e09031405bc7
SHA1 90061625c13f6eedfe4daab9958b4821a6807f9b
SHA256 acb934ad5d87f570c35e71dde15d00e6b8da3e5e7f0b013bc630ee97592e4673
ssdeep
98304:UxfWWoxtU/9bM66pwwaNwnmgVqTIicmaOvFiPJdWKUPRICIrCP4D2cTKp1AJHmUa:QfWdvU/spwwacmHsvz7UO0ConSAy+

File size 6.2 MB ( 6543319 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (56.7%)
OpenOffice Extension (23.2%)
Java Archive (15.6%)
ZIP compressed archive (4.3%)
Tags
apk checks-gps android

VirusTotal metadata
First submission 2015-05-08 04:01:10 UTC ( 3 years, 9 months ago )
Last submission 2016-09-23 04:29:45 UTC ( 2 years, 5 months ago )
File names gittigidiyor.apk
gittigidiyor.apk
60de2f15699afc53fea2f097d4fc78344c75315ec2d62611bc7509cad6ff16a01742c3e164f60dfe1b15be908195336045f115e97a94199814e34e9ddd3d3120
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Opened files
/data/data/com.gittigidiyormobil/files
Accessed files
/data/data/com.gittigidiyormobil/files
/data/data/com.gittigidiyormobil/files/INSTALLATION
Interesting calls
Calls APIs that provide access to information about the telephony services on the device. Applications can use such methods to determine telephony services and states, as well as to access some types of subscriber information.
Calls APIs that provide access to the system location services. These services allow applications to obtain periodic updates of the device's geographical location, or to fire an application-specified Intent when the device enters the proximity of a given geographical location.
Contacted URLs
https://mobilus.gittigidiyor.com/v2/service/auth/init
7B2276657273696F6E223A22312E35222C226D6F64656C223A224E657875732053222C22706C6174666F726D223A22616E64726F6964222C22697350726F64756374696F6E223A747275657D
https://mobilus.gittigidiyor.com/v2/service/category/withDeepest=true&withSpec=true&withCatalog=true
https://mobilus.gittigidiyor.com/v2/service/cargo/categories/noCargo
https://mobilus.gittigidiyor.com/v2/service/category/passive
https://mobilus.gittigidiyor.com/v2/service/city/ordered
https://mobilus.gittigidiyor.com/v2/service/utility/apiCredentials
https://mobilus.gittigidiyor.com/v2/service/utility/noInstallmentsMessage
https://mobilus.gittigidiyor.com/v2/service/basket/key