× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: bd64dc1ab75ba316296b1522d9678775eee561493201902f31cd2c69465cbae4
File name: 2883f9a8fbf03c642470baf86a47a5de.apk
Detection ratio: 41 / 56
Analysis date: 2015-02-08 16:52:01 UTC ( 2 years, 10 months ago )
Antivirus Result Update
Ad-Aware Android.Trojan.DroidKungFu.L 20150208
AegisLab DroidKungFu 20150208
AhnLab-V3 Android-Malicious/Kungfu 20150208
Alibaba A.H.Sys.NstrInst.C 20150207
ALYac Android.Exploit.Exploid.G 20150208
Antiy-AVL Trojan[Exploit]/Linux.Lotoor 20150208
Avast ELF:KungFu-C [Trj] 20150206
AVG Android/Kungf 20150208
Avira (no cloud) Android/Malmix2.3 20150208
AVware Trojan.AndroidOS.DroidKungFu.a 20150207
Baidu-International Backdoor.AndroidOS.KungFu.AIe 20150208
BitDefender Android.Trojan.DroidKungFu.L 20150208
CAT-QuickHeal Exploit.DroidKungFu.C3 20150205
ClamAV Andr.KungFu-8 20150208
Comodo UnclassifiedMalware 20150208
Cyren AndroidOS/DroidKungFu.Q 20150208
DrWeb Android.Gongfu.6 20150208
Emsisoft Android.Trojan.DroidKungFu.L (B) 20150208
ESET-NOD32 Android/DroidKungFu.C 20150208
F-Prot AndroidOS/DroidKungFu.Q 20150208
F-Secure Trojan:Android/DroidKungFu.B 20150208
Fortinet Android/DroidKungFu.B!tr 20150208
GData Android.Trojan.DroidKungFu.L 20150208
Ikarus Trojan.AndroidOS.DroidKungFu 20150208
K7GW Trojan ( 0048d5541 ) 20150208
Kaspersky Backdoor.AndroidOS.KungFu.z 20150208
Kingsoft Android.Troj.hh_KungFu.a.(kcloud) 20150208
McAfee Artemis!2883F9A8FBF0 20150208
Microsoft Trojan:Linux/DroidKrungFu.A 20150208
eScan Android.Trojan.DroidKungFu.L 20150208
NANO-Antivirus Trojan.Android.KungFu.cvyutk 20150208
Qihoo-360 Trojan.Generic 20150208
Rising DEX:System.Fokonge!1.9DA8 20150207
Sophos AV Andr/KongFu-A 20150208
Symantec Android.Gonfu 20150208
Tencent a.system.safesys.c.[????] 20150208
TrendMicro AndroidOS_DroidKungFu.SMA 20150208
TrendMicro-HouseCall AndroidOS_DroidKungFu.SMA 20150208
VIPRE Trojan.AndroidOS.DroidKungFu.a 20150208
ViRobot Trojan.Linux.A.EX-Lotoor.7032[h] 20150208
Zillya Trojan.DroidKungFu..6 20150207
Yandex 20150208
Bkav 20150207
ByteHero 20150208
CMC 20150205
K7AntiVirus 20150208
Malwarebytes 20150208
McAfee-GW-Edition 20150208
Norman 20150208
nProtect 20150206
Panda 20150208
SUPERAntiSpyware 20150208
TheHacker 20150208
TotalDefense 20150208
VBA32 20150206
Zoner 20150206
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.mogo.media. The internal version number of the application is 2. The displayed version string of the application is 1.2. The minimum Android API level for the application to run (MinSDKVersion) is 5.
Risk summary
The studied DEX file makes use of API reflection
The studied DEX file loads a shared library
The studied DEX file makes use of cryptographic functions
The APK package studied contains shared ELF libraries
The APK package studied contains ELF executable files
Permissions that allow the application to manipulate your location
Permissions that allow the application to access Internet
Permissions that allow the application to access private information
Other permissions that could be considered as dangerous in certain scenarios
Required permissions
android.permission.ACCESS_FINE_LOCATION (fine (GPS) location)
android.permission.READ_EXTERNAL_STORAGE (read from external storage)
android.permission.READ_PHONE_STATE (read phone state and identity)
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS (access extra location provider commands)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.ACCESS_COARSE_LOCATION (coarse (network-based) location)
android.permission.CHANGE_WIFI_STATE (change Wi-Fi status)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.INTERNET (full Internet access)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
Permission-related API calls
ACCESS_NETWORK_STATE
INTERNET
VIBRATE
ACCESS_WIFI_STATE
ACCESS_COARSE_LOCATION
READ_LOGS
ACCESS_FINE_LOCATION
READ_PHONE_STATE
WAKE_LOCK
Ad-related libraries
vpon (vpon-3.0.1) with a 32.4 probability
admob (admob-4.0.2) with a 64.1 probability
adsmogo () with a probability
smartmad () with a probability
youmi () with a probability
Main Activity
com.mogo.media.MainActivity
Activities
com.mogo.media.ListActivity
com.mogo.media.PlayActivity
com.mogo.media.MainActivity
com.mogo.media.ClicksActivity
com.mogo.media.RecentlyActivity
com.mogo.media.MusicActivity
com.mogo.media.TestMain
com.mogo.media.ArtistList
com.mogo.media.ArtistActivity
com.mogo.media.AlbumList
com.mogo.media.AlbumActivity
com.eguan.state.Dialog
com.google.ads.AdActivity
Services
com.eguan.state.StateService
com.mogo.media.MusicService
Receivers
com.eguan.state.Receiver
Service-related intent filters
com.mogo.media.MusicService
actions: com.mogo.media.MUSIC_SERVICE
Activity-related intent filters
com.mogo.media.MainActivity
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
Receiver-related intent filters
com.eguan.state.Receiver
actions: android.intent.action.BATTERY_CHANGED_ACTION, android.intent.action.SIG_STR, android.intent.action.BOOT_COMPLETED
Application certificate information
Application bundle files
Interesting strings
File identification
MD5 2883f9a8fbf03c642470baf86a47a5de
SHA1 639871f194b648a18f27601e1e244b2c3ecebb23
SHA256 bd64dc1ab75ba316296b1522d9678775eee561493201902f31cd2c69465cbae4
ssdeep
12288:o7JBKTLox04gDr7g8BPWAO+BtS/XAdHXs:o7bEMx04g7lBbDHXs

File size 458.2 KB ( 469157 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (92.9%)
ZIP compressed archive (7.0%)
Tags
apk android

VirusTotal metadata
First submission 2013-06-16 20:00:56 UTC ( 4 years, 6 months ago )
Last submission 2015-02-08 16:52:01 UTC ( 2 years, 10 months ago )
File names 2883f9a8fbf03c642470baf86a47a5de.apk
7734626341799e6ec8c3db21722bb7e4502dca89-of3.apk
2883f9a8fbf03c642470baf86a47a5de.log
ExifTool file metadata
MIMEType
application/zip

ZipRequiredVersion
20

ZipCRC
0xa8e4994a

FileType
ZIP

ZipCompression
Deflated

ZipUncompressedSize
3930

ZipCompressedSize
1578

FileAccessDate
2015:02:08 17:44:58+01:00

ZipFileName
META-INF/MANIFEST.MF

ZipBitFlag
0x0808

FileCreateDate
2015:02:08 17:44:58+01:00

ZipModifyDate
2008:02:29 03:33:23

No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!