× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: c249048ec59b730447144e3b79827814da028f633e0e2d1baad8e57c5aed3c2e
File name: passwalletpassbooknfc.apk
Detection ratio: 0 / 54
Analysis date: 2016-02-22 02:49:30 UTC ( 3 years, 1 month ago ) View latest
Antivirus Result Update
Ad-Aware 20160222
AegisLab 20160222
Yandex 20160221
AhnLab-V3 20160221
Alibaba 20160222
Antiy-AVL 20160222
Arcabit 20160222
Avast 20160222
AVG 20160222
Avira (no cloud) 20160221
AVware 20160222
Baidu-International 20160221
BitDefender 20160222
Bkav 20160220
ByteHero 20160222
CAT-QuickHeal 20160222
ClamAV 20160222
CMC 20160219
Comodo 20160222
Cyren 20160222
DrWeb 20160222
ESET-NOD32 20160221
F-Prot 20160221
F-Secure 20160222
Fortinet 20160222
GData 20160222
Ikarus 20160222
Jiangmin 20160222
K7AntiVirus 20160221
K7GW 20160222
Kaspersky 20160222
Malwarebytes 20160221
McAfee 20160222
McAfee-GW-Edition 20160222
Microsoft 20160222
eScan 20160222
NANO-Antivirus 20160222
nProtect 20160219
Panda 20160221
Qihoo-360 20160222
Rising 20160221
Sophos AV 20160222
SUPERAntiSpyware 20160221
Symantec 20160221
Tencent 20160222
TheHacker 20160217
TotalDefense 20160221
TrendMicro 20160222
TrendMicro-HouseCall 20160222
VBA32 20160220
VIPRE 20160222
ViRobot 20160222
Zillya 20160219
Zoner 20160222
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.attidomobile.passwallet. The internal version number of the application is 1373200. The displayed version string of the application is 1.37.32. The minimum Android API level for the application to run (MinSDKVersion) is 9. The target Android API level for the application to run (TargetSDKVersion) is 17.
Required permissions
com.attidomobile.passwallet.permission.C2D_MESSAGE (C2DM permission.)
android.permission.USE_CREDENTIALS (use the authentication credentials of an account)
android.permission.ACCESS_COARSE_LOCATION (coarse (network-based) location)
android.permission.BLUETOOTH (create Bluetooth connections)
android.permission.INTERNET (full Internet access)
com.google.android.providers.gsf.permission.READ_GSERVICES (Unknown permission from android reference)
com.android.vending.BILLING (Unknown permission from android reference)
android.permission.BLUETOOTH_ADMIN (bluetooth administration)
android.permission.NFC (control Near-Field Communication)
android.permission.ACCESS_FINE_LOCATION (fine (GPS) location)
com.yotadevices.framework.permission.ACCESS_BACKSCREEN (Unknown permission from android reference)
com.google.android.c2dm.permission.RECEIVE (Unknown permission from android reference)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.ACCESS_ALL_DOWNLOADS (Unknown permission from android reference)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
android.permission.MANAGE_ACCOUNTS (manage the accounts list)
android.permission.RECEIVE_BOOT_COMPLETED (automatically start at boot)
android.permission.AUTHENTICATE_ACCOUNTS (act as an account authenticator)
android.permission.WRITE_SETTINGS (modify global system settings)
android.permission.VIBRATE (control vibrator)
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.GET_ACCOUNTS (discover known accounts)
Activities
com.google.android.gms.ads.AdActivity
com.attidomobile.passwallet.activity.MainActivity
com.dropbox.client2.android.AuthActivity
com.attidomobile.passwallet.activity.SplashScreenActivity
com.attidomobile.passwallet.activity.PassDetailMapActivity
com.attidomobile.passwallet.activity.PassListActivity
com.attidomobile.passwallet.activity.SettingsActivity
com.attidomobile.passwallet.activity.TicketDetailActivity
com.google.ads.AdActivity
Services
com.attidomobile.passwallet.platform.utils.NotificationService
com.attidomobile.passwallet.widget.NearestPassService
com.attidomobile.passwallet.activity.rearscreen.TicketDetailRearScreenActivity
com.attidomobile.passwallet.activity.rearscreen.TicketDetailRearScreenBarcodeActivity
com.attidomobile.passwallet.activity.rearscreen.TicketDetailRearScreenInfoActivity
com.attidomobile.passwallet.platform.pushservice.GCMIntentService
com.attidomobile.passwallet.widget.lock.LockWidgetService
com.attidomobile.passwallet.ibeacon.BeaconService
uk.co.ravensoft.ravlib.platform.positioning.geofence.ReceiveTransitionsIntentService
com.attidomobile.passwallet.encrypt.EncryptionService
com.radiusnetworks.ibeacon.service.IBeaconService
com.radiusnetworks.ibeacon.IBeaconIntentProcessor
Receivers
com.attidomobile.passwallet.widget.receivers.NotificationEventReceiver
com.attidomobile.passwallet.widget.BootReceiver
com.attidomobile.passwallet.widget.ResizeWidgetProvider
com.attidomobile.passwallet.widget.yota.YotaWidgetProvider
com.attidomobile.passwallet.platform.pushservice.GcmBroadcastReceiver
com.attidomobile.passwallet.PassWalletReferrerReceiver
com.attidomobile.passwallet.widget.lock.LockWidgetProvider
uk.co.ravensoft.ravlib.platform.positioning.geofence.RavGeofenceBroadcastReceiver
com.attidomobile.passwallet.sdk.receivers.TimezoneChangedReceiver
Providers
com.attidomobile.passwallet.provider.PassWalletContentProvider
Activity-related intent filters
com.attidomobile.passwallet.activity.SplashScreenActivity
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
com.dropbox.client2.android.AuthActivity
actions: android.intent.action.VIEW
categories: android.intent.category.BROWSABLE, android.intent.category.DEFAULT
com.attidomobile.passwallet.activity.TicketDetailActivity
actions: android.intent.action.VIEW
categories: android.intent.category.BROWSABLE, android.intent.category.DEFAULT
Receiver-related intent filters
com.attidomobile.passwallet.widget.lock.LockWidgetProvider
actions: android.appwidget.action.APPWIDGET_UPDATE
com.attidomobile.passwallet.PassWalletReferrerReceiver
actions: com.android.vending.INSTALL_REFERRER
uk.co.ravensoft.ravlib.platform.positioning.geofence.RavGeofenceBroadcastReceiver
actions: uk.co.ravensoft.ravlib.platform.positioning.geofence.RavGeofenceBroadcastReceiver.ACTION_RECEIVE_GEOFENCE
com.attidomobile.passwallet.widget.ResizeWidgetProvider
actions: android.appwidget.action.APPWIDGET_UPDATE
com.attidomobile.passwallet.widget.BootReceiver
actions: android.intent.action.BOOT_COMPLETED
com.attidomobile.passwallet.sdk.receivers.TimezoneChangedReceiver
actions: android.intent.action.TIMEZONE_CHANGED
com.attidomobile.passwallet.widget.receivers.NotificationEventReceiver
actions: com.attidomobile.passwallet.NOTIFICATION_DISMISSED, com.attidomobile.passwallet.IBEACON_NOTIFICATION_DISMISSED, com.attidomobile.passwallet.NOTIFICATION_UPDATE
com.attidomobile.passwallet.platform.pushservice.GcmBroadcastReceiver
actions: com.google.android.c2dm.intent.RECEIVE, com.google.android.c2dm.intent.REGISTRATION
categories: com.attidomobile.passwallet
com.attidomobile.passwallet.widget.yota.YotaWidgetProvider
actions: com.yotadevices.yotaphone.action.APPWIDGET_VISIBILITY_CHANGED, com.yotadevices.yotaphone.action.APPWIDGET_NOTIFICATION, android.appwidget.action.APPWIDGET_UPDATE, android.appwidget.action.APPWIDGET_UPDATE_OPTIONS, android.intent.action.TIME_TICK
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
411
Uncompressed size
9046152
Highest datetime
2015-05-26 00:05:06
Lowest datetime
2015-05-25 23:49:58
Contained files by extension
png
309
xml
89
so
3
dex
1
MF
1
RSA
1
gif
1
txt
1
SF
1
Contained files by type
PNG
309
XML
89
unknown
8
ELF
3
DEX
1
GIF
1
Compressed bundles
File identification
MD5 ee5713573b05f87023a346128e759016
SHA1 910cfe3ce0c585577b9eabba5bd5c0127ca2b09a
SHA256 c249048ec59b730447144e3b79827814da028f633e0e2d1baad8e57c5aed3c2e
ssdeep
98304:gSUoCxKbOC9B0UPZ8uPpFlgOj30pQpWghSEh0yY:DUoCEOC9BjZ8+e6cEc

File size 4.4 MB ( 4606826 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (72.9%)
Java Archive (20.1%)
ZIP compressed archive (5.5%)
PrintFox/Pagefox bitmap (var. P) (1.3%)
Tags
apk android software-collection contains-elf

VirusTotal metadata
First submission 2015-05-26 11:47:16 UTC ( 3 years, 10 months ago )
Last submission 2016-10-10 09:59:46 UTC ( 2 years, 5 months ago )
File names passwalletpassbooknfc.apk
package.apk
passwallet-passbook-nfc.apk
f8275ffaa4a79a464676e7f0c13b0ceaad888589ae3dc472ada979a6aa26c3fc184954c20d12c7c40a3b677e625771e7ca481f16888497b5d96db6e0e4c26405
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Started services
#Intent;action=com.attidomobile.passwallet.NOTIFICATION_UPDATE;component=com.attidomobile.passwallet/.widget.NearestPassService;end
#Intent;action=android.intent.action.BOOT_COMPLETED;launchFlags=0x10;component=com.attidomobile.passwallet/uk.co.ravensoft.ravlib.platform.positioning.geofence.ReceiveTransitionsIntentService;end
Started receivers
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED
android.intent.action.MEDIA_EJECT
android.intent.action.MEDIA_MOUNTED
android.intent.action.MEDIA_UNMOUNTED
android.intent.action.MEDIA_REMOVED
android.intent.action.CONFIGURATION_CHANGED
Opened files
/data/data/com.attidomobile.passwallet/files/gaClientId
/data/data/com.attidomobile.passwallet/files/gaInstallData
/data/data/com.attidomobile.passwallet/files/NotiBase.dat
/data/data/com.attidomobile.passwallet/files/PassiBeaconNotification.dat
/data/data/com.attidomobile.passwallet/files/PassNearestNotification.dat
/data/data/com.attidomobile.passwallet/files/.TwitterSdk/cl/com.crashlytics.sdk.android/session_analytics.tap.tmp
/data/data/com.attidomobile.passwallet/files/passwallet
/data/data/com.attidomobile.passwallet/files
/data/data/com.attidomobile.passwallet/files/.TwitterSdk/cl/com.crashlytics.sdk.android
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/passes
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/archive
/data/data/com.attidomobile.passwallet/files/.TwitterSdk/cl/com.crashlytics.sdk.android/session_analytics_to_send
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/template
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/temp
/data/data/com.attidomobile.passwallet/files/.flurryagent.1a6e912e
/data/data/com.attidomobile.passwallet/files/.flurrydatasenderblock.bce17d96-1533-4ca2-89bd-1c1af3a88d36
/data/data/com.attidomobile.passwallet/files/.FlurrySenderIndex.info.Data_75HB9B2D8RTYG83PPJTH_151
/data/data/com.attidomobile.passwallet/files/.FlurrySenderIndex.info.Main
/mnt/sdcard
/mnt/sdcard/download
/mnt/sdcard/Download
/sdcard/download
/data/data/com.attidomobile.passwallet/files/.TwitterSdk/cl/com.crashlytics.sdk.android/session_analytics.tap
Accessed files
/data/data/com.attidomobile.passwallet/files
/data/data/com.attidomobile.passwallet/files/.TwitterSdk/cl
/mnt/sdcard/download
/mnt/sdcard/Download
/sdcard/download
/data/data/com.attidomobile.passwallet/files/.FlurrySenderIndex.info.Main
/data/data/com.attidomobile.passwallet/files/.flurryagent.1a6e912e
/data/data/com.attidomobile.passwallet/files/.flurryinstallreceiver.
/data/data/com.attidomobile.passwallet/files/.flurrydatasenderblock.bce17d96-1533-4ca2-89bd-1c1af3a88d36
/data/data/com.attidomobile.passwallet/files/.TwitterSdk/cl/com.crashlytics.sdk.android
/data/data/com.attidomobile.passwallet/files/.FlurrySenderIndex.info.Data_75HB9B2D8RTYG83PPJTH_151
/data/data/com.attidomobile.passwallet/files/.TwitterSdk/cl/com.crashlytics.sdk.android/crash_marker
/data/data/com.attidomobile.passwallet/files/.TwitterSdk/cl/com.crashlytics.sdk.android/initialization_marker
/data/data/com.attidomobile.passwallet/files/.TwitterSdk/cl/com.crashlytics.sdk.android/session_analytics.tap
/data/data/com.attidomobile.passwallet/files/gaOptOut
/data/data/com.attidomobile.passwallet/files/.TwitterSdk/cl/com.crashlytics.sdk.android/session_analytics_to_send
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/passes
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/archive
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/template/boarding_pass.png
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/template/coupon.png
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/template/event_ticket.png
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/template/store_generic.png
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/template
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/deleted.dat
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/serialized.json_enc
Contacted URLs
http://data.flurry.com/aap.do
001B000000000000000000000000000300970000013A72E6EE7D001437354842394232443852545947383350504A54480007312E33372E3332000100000013414E446435393264623835663261316637313200000000013A72E6ECC60000013A72E6ECC60006000C6465766963652E6D6F64656C00074E657875732053000B6275696C642E6272616E640006676F6F676C6500086275696C642E696400064A524F303345000F76657273696F6E2E72656C656173650005342E302E34000C6275696C642E646576696365000663726573706F000D6275696C642E70726F647563740004736F6A7500000000000000936C0B2D
Accessed URIs
/mnt/sdcard/download
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/
/data/data/com.attidomobile.passwallet/files/passwallet/
file:///mnt/sdcard/Android/data/com.attidomobile.passwallet/files/passes/
file:///mnt/sdcard/Android/data/com.attidomobile.passwallet/files/archive/
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/template/boarding_pass.png
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/template/coupon.png
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/template/event_ticket.png
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/template/store_generic.png
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/template/
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/passes
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/archive
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/template
/mnt/sdcard/Android/data/com.attidomobile.passwallet/files/temp/