× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: aeed732a3dd47e1460a89d129298faabaa767d98cea4497d870f815887a4c11a
File name: GreenFarm3_27911.apk
Detection ratio: 0 / 56
Analysis date: 2016-05-27 12:33:06 UTC ( 2 years, 9 months ago ) View latest
Antivirus Result Update
Ad-Aware 20160527
AegisLab 20160527
AhnLab-V3 20160527
Alibaba 20160527
ALYac 20160527
Antiy-AVL 20160527
Arcabit 20160527
Avast 20160527
AVG 20160527
AVware 20160527
Baidu 20160527
Baidu-International 20160527
BitDefender 20160527
Bkav 20160527
CAT-QuickHeal 20160527
ClamAV 20160527
CMC 20160523
Comodo 20160527
Cyren 20160527
DrWeb 20160527
Emsisoft 20160527
ESET-NOD32 20160527
F-Prot 20160527
F-Secure 20160527
Fortinet 20160527
GData 20160527
Ikarus 20160527
Jiangmin 20160527
K7AntiVirus 20160527
K7GW 20160527
Kaspersky 20160527
Kingsoft 20160527
Malwarebytes 20160527
McAfee 20160527
McAfee-GW-Edition 20160527
Microsoft 20160527
eScan 20160527
NANO-Antivirus 20160527
nProtect 20160527
Panda 20160527
Qihoo-360 20160527
Rising 20160527
Sophos AV 20160527
SUPERAntiSpyware 20160527
Symantec 20160527
Tencent 20160527
TheHacker 20160526
TotalDefense 20160527
TrendMicro 20160527
TrendMicro-HouseCall 20160527
VBA32 20160527
VIPRE 20160527
ViRobot 20160527
Yandex 20160526
Zillya 20160526
Zoner 20160527
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.gameloft.android.ANMP.GloftGF2F. The internal version number of the application is 40623. The displayed version string of the application is 4.0.6. The minimum Android API level for the application to run (MinSDKVersion) is 9. The target Android API level for the application to run (TargetSDKVersion) is 22.
Required permissions
com.gameloft.android.ANMP.GloftGF2F.permission.C2D_MESSAGE (C2DM permission.)
android.permission.VIBRATE (control vibrator)
android.permission.READ_EXTERNAL_STORAGE (read from external storage)
android.permission.RECEIVE_BOOT_COMPLETED (automatically start at boot)
android.permission.READ_PHONE_STATE (read phone state and identity)
glshare.permission.ACCESS_SHARED_DATA (Unknown permission from android reference)
com.google.android.c2dm.permission.RECEIVE (Unknown permission from android reference)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.INTERNET (full Internet access)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
com.android.vending.BILLING (Unknown permission from android reference)
Activities
com.gameloft.android.ANMP.GloftGF2F.Start
com.gameloft.android.ANMP.GloftGF2F.AdServerInterstitial
com.gameloft.android.ANMP.GloftGF2F.AdServerVideos
com.gameloft.android.ANMP.GloftGF2F.ActivityMessage
com.facebook.LoginActivity
com.gameloft.android.ANMP.GloftGF2F.S320x240.GloftGF2F
com.gameloft.android.ANMP.GloftGF2F.S480x320.GloftGF2F
com.gameloft.android.ANMP.GloftGF2F.S800x480.GloftGF2F
Services
com.gameloft.android.ANMP.GloftGF2F.GCMIntentService
com.gameloft.android2d.iap.billings.google.BillingService
Receivers
com.google.android.gcm.GCMBroadcastReceiver
com.gameloft.android2d.iap.billings.google.BillingReceiver
com.gameloft.android.ANMP.GloftGF2F.PushNotification.LocalPushReceiver
com.gameloft.android.ANMP.GloftGF2F.PushNotification.PushDeleteReceiver
com.gameloft.android.ANMP.GloftGF2F.GoogleIAPTrackerReceiver
com.gameloft.android.ANMP.GloftGF2F.installer.IReferrerReceiver
Providers
com.gameloft.android.ANMP.GloftGF2F.KeyProvider
Activity-related intent filters
com.gameloft.android.ANMP.GloftGF2F.Start
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
com.gameloft.android.ANMP.GloftGF2F.S320x240.GloftGF2F
actions: android.intent.action.MAIN
com.gameloft.android.ANMP.GloftGF2F.S800x480.GloftGF2F
actions: android.intent.action.MAIN
com.gameloft.android.ANMP.GloftGF2F.S480x320.GloftGF2F
actions: android.intent.action.MAIN
Receiver-related intent filters
com.google.android.gcm.GCMBroadcastReceiver
actions: com.google.android.c2dm.intent.RECEIVE, com.google.android.c2dm.intent.REGISTRATION
categories: com.gameloft.android.ANMP.GloftGF2F
com.gameloft.android.ANMP.GloftGF2F.installer.IReferrerReceiver
actions: com.android.vending.INSTALL_REFERRER
com.gameloft.android.ANMP.GloftGF2F.GoogleIAPTrackerReceiver
actions: android.intent.action.BOOT_COMPLETED
categories: android.intent.category.DEFAULT
com.gameloft.android.ANMP.GloftGF2F.PushNotification.PushDeleteReceiver
actions: com.gameloft.android.ANMP.GloftGF2F.PNDeleteBroadcast
com.gameloft.android2d.iap.billings.google.BillingReceiver
actions: com.android.vending.billing.IN_APP_NOTIFY, com.android.vending.billing.RESPONSE_CODE, com.android.vending.billing.PURCHASE_STATE_CHANGED
com.gameloft.android.ANMP.GloftGF2F.PushNotification.LocalPushReceiver
actions: android.intent.action.BOOT_COMPLETED
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
215
Uncompressed size
57736713
Highest datetime
2015-07-20 19:53:22
Lowest datetime
2015-05-13 10:55:44
Contained files by extension
png
45
xml
27
1
8
bin
5
2
5
txt
4
3
3
so
3
5
2
4
2
6
2
dex
1
MF
1
RSA
1
js
1
7
1
ogg
1
SF
1
Contained files by type
unknown
138
PNG
45
XML
27
ELF
3
DEX
1
OGG
1
File identification
MD5 cd80e7a852e812f45a82bdda9f783594
SHA1 50c976539230931fe797999999dee1fce8d231dd
SHA256 aeed732a3dd47e1460a89d129298faabaa767d98cea4497d870f815887a4c11a
ssdeep
393216:mRY7ZOKODXRZFeayOvoa9oEbAY+dTp68IgyaMFCo2VkMXL:I+OKOD7FeayOvjoAAYQ/gandkcL

File size 17.7 MB ( 18588593 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (58.6%)
Java Archive (16.2%)
Sweet Home 3D design (generic) (11.7%)
Mozilla Archive Format (gen) (7.8%)
ZIP compressed archive (4.4%)
Tags
apk android contains-elf

VirusTotal metadata
First submission 2015-07-27 12:58:21 UTC ( 3 years, 7 months ago )
Last submission 2018-10-30 05:26:56 UTC ( 4 months, 3 weeks ago )
File names com.gameloft.android.ANMP.GloftGF2F.apk
green-farm-3-4-0-6-multi-android.apk
2268-cd80e7a852e812f45a82bdda9f783594-1444739013.apk
9-3560-1458628441-19916.apk
cf070fb589dea2499a9f5f27fbc52dec690be081679a7e005278a03ed8cfdd02b1d791db25bac37ea5543bbe7cf4d37066d409a0993d218869f92efbfbce295e
com.gameloft.android.ANMP.GloftGF2F.apk
green-farm.apk
com.gameloft.android.ANMP.GloftGF2F-1.apk
filename
GreenFarm3_27911.apk
2268-cd80e7a852e812f45a82bdda9f783594-1444739013.apk
green-farm-3-v4-0-6-pdalife.ru_.apk
cd80e7a852e812f45a82bdda9f783594.tmp.17047
1.apk
com.gameloft.android.ANMP.GloftGF2F.apk
com.gameloft.android.ANMP.GloftGF2F.apk
Green Farm 3_v4.0.6_apkpure.com.apk
Green-Farm-3-v4-0-6-Pdalife.ru.apk
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Started activities
#Intent;launchFlags=0x30020000;component=com.gameloft.android.ANMP.GloftGF2F/.S800x480.GloftGF2F;i.SCREEN_ORIENTATION=0;end
Started services
#Intent;action=com.google.android.c2dm.intent.REGISTER;package=com.google.android.gsf;S.sender=108176907654;end
Opened files
/data/data/com.gameloft.android.ANMP.GloftGF2F/files/glot_save_time
/data/data/com.gameloft.android.ANMP.GloftGF2F/files/File_marker
/data/data/com.gameloft.android.ANMP.GloftGF2F/files/device
/data/data/com.gameloft.android.ANMP.GloftGF2F/files/GLOT_Stream
/data/data/com.gameloft.android.ANMP.GloftGF2F/files/ghqis10k
/mnt/sdcard/Android/data/com.gameloft.android.ANMP.GloftGF2F
/mnt/sdcard/.gameloft
APP_ASSETS/800x480/iaks
/data/data
/data/data/com.gameloft.android.ANMP.GloftGF2F/files
Accessed files
/data/data
/mnt/sdcard/GlotDebug
/mnt/sdcard/Android/data/com.gameloft.android.ANMP.GloftGF2F
/data/data/com.gameloft.android.ANMP.GloftGF2F/databases/PN.db
Interesting calls
Calls APIs that provide access to information about the telephony services on the device. Applications can use such methods to determine telephony services and states, as well as to access some types of subscriber information.
Contacted URLs
https://ingameads.gameloft.com/redir/rewards.php/action=retrieveitems&game_code=GF2F&game_ver=4.0.6&lang=EN&androidid=f1d829626470c18&user=018871741825127&hdidfv=255a88b5-096f-48f6-ac85-1f3a299ffe77
jar://file:/data/app/com.gameloft.android.ANMP.GloftGF2F-1.apk!/res/raw/content.txt
https://iap.gameloft.com/freemium/gold/api/hacker_tools/
http://vgold.gameloft.com/locate/auth
Accessed URIs
content://com.gameloft.android.ANMP.GloftGF2F.KeyProvider/key
content://com.gameloft.android.ANMP.GloftGF2F.KeyProvider/key/
content://com.facebook.katana.provider.AttributionIdProvider