× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: c43732734ea1034030373dcc71cc6f502705b205e3a86107088c7ee50a36426f
File name: Wi-FiFinder_3.2.apk
Detection ratio: 24 / 56
Analysis date: 2015-07-22 09:49:53 UTC ( 3 years, 4 months ago )
Antivirus Result Update
Ad-Aware Android.Trojan.AndroRAT.E 20150722
AhnLab-V3 Android-Trojan/Sandrorat.c542 20150722
Alibaba A.W.Rog.EvilCert.A24 20150722
Arcabit Android.Trojan.AndroRAT.E 20150722
Avast Android:Kasandra-E [Trj] 20150722
AVG Android/Deng.LAF 20150721
Avira (no cloud) ANDROID/Spy.Kasandra.D.Gen 20150722
Baidu-International Trojan.AndroidOS.Sandr.a 20150722
BitDefender Android.Trojan.AndroRAT.E 20150722
CAT-QuickHeal Android.Sandr.A 20150722
Cyren AndroidOS/Sandr.A.gen!Eldorado 20150722
DrWeb Android.Spy.178.origin 20150722
Emsisoft Android.Trojan.AndroRAT.E (B) 20150722
ESET-NOD32 a variant of Android/Spy.Kasandra.C 20150722
F-Secure Android.Trojan.AndroRAT.E 20150722
Fortinet Android/Sandr.C!tr 20150722
GData Android.Trojan.AndroRAT.E 20150722
Ikarus Spyware.AndroidOS.Kasandra 20150722
K7GW Spyware ( 004c0dc11 ) 20150722
McAfee Artemis!CF6D89EC97B1 20150722
McAfee-GW-Edition Artemis 20150722
eScan Android.Trojan.AndroRAT.E 20150722
NANO-Antivirus Trojan.Android.Zerat.dekxmy 20150722
Sophos AV Andr/SandRat-C 20150722
AegisLab 20150722
Yandex 20150721
ALYac 20150722
Antiy-AVL 20150722
AVware 20150722
Bkav 20150721
ByteHero 20150722
ClamAV 20150721
Comodo 20150722
F-Prot 20150722
Jiangmin 20150720
K7AntiVirus 20150722
Kaspersky 20150722
Kingsoft 20150722
Malwarebytes 20150722
Microsoft 20150722
nProtect 20150722
Panda 20150721
Qihoo-360 20150722
Rising 20150721
SUPERAntiSpyware 20150722
Symantec 20150722
Tencent 20150722
TheHacker 20150721
TotalDefense 20150721
TrendMicro 20150722
TrendMicro-HouseCall 20150722
VBA32 20150721
VIPRE 20150722
ViRobot 20150722
Zillya 20150722
Zoner 20150722
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.jiwire.android.finder. The internal version number of the application is 321000. The displayed version string of the application is 3.2. The minimum Android API level for the application to run (MinSDKVersion) is 8.
Risk summary
The studied DEX file makes use of API reflection
The studied DEX file makes use of cryptographic functions
Permissions that allow the application to manipulate SMS
Permissions that allow the application to manipulate your location
Permissions that allow the application to perform payments
Permissions that allow the application to access Internet
Permissions that allow the application to access private information
Other permissions that could be considered as dangerous in certain scenarios
Required permissions
android.permission.CHANGE_NETWORK_STATE (change network connectivity)
android.permission.ACCESS_COARSE_LOCATION (coarse (network-based) location)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.INTERNET (full Internet access)
android.permission.ACCESS_FINE_LOCATION (fine (GPS) location)
android.permission.SEND_SMS (send SMS messages)
android.permission.WRITE_SMS (edit SMS or MMS)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.WRITE_CALL_LOG (write (but not read) the user's contacts data.)
android.permission.GET_TASKS (retrieve running applications)
android.permission.READ_CALL_LOG (read the user's call log.)
com.android.browser.permission.READ_HISTORY_BOOKMARKS (read Browser's history and bookmarks)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
android.permission.RECORD_AUDIO (record audio)
android.permission.WRITE_CONTACTS (write contact data)
android.permission.READ_EXTERNAL_STORAGE (read from external storage)
android.permission.RECEIVE_BOOT_COMPLETED (automatically start at boot)
android.permission.CALL_PHONE (directly call phone numbers)
android.permission.READ_PHONE_STATE (read phone state and identity)
android.permission.READ_SMS (read SMS or MMS)
android.permission.CAMERA (take pictures and videos)
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.CHANGE_WIFI_STATE (change Wi-Fi status)
android.permission.RECEIVE_SMS (receive SMS)
android.permission.READ_CONTACTS (read contact data)
Permission-related API calls
FACTORY_TEST
GET_TASKS
ACCESS_NETWORK_STATE
RECORD_AUDIO
READ_LOGS
SEND_SMS
VIBRATE
ACCESS_WIFI_STATE
CAMERA
CHANGE_WIFI_STATE
INTERNET
ACCESS_FINE_LOCATION
CHANGE_COMPONENT_ENABLED_STATE
READ_PHONE_STATE
READ_CONTACTS
WRITE_HISTORY_BOOKMARKS
WAKE_LOCK
External libraries
com.google.android.maps
Ad-related libraries
flurry (flurry-2.2.5) with a 47.2 probability
Main Activity
com.jiwire.android.finder.MainTabActivity
Activities
com.jiwire.android.finder.MainTabActivity
com.jiwire.android.finder.HomeActivityGroup
com.jiwire.android.finder.HomeScreenActivity
com.jiwire.android.finder.FavoritesList
com.jiwire.android.finder.SubmitHotspotActivity
com.jiwire.android.finder.scanner.ScannerActivityGroup
com.jiwire.android.finder.scanner.ScannerScanActivity
com.jiwire.android.finder.scanner.ScannerSettingsActivity
com.jiwire.android.finder.scanner.ScannerListActivity
com.jiwire.android.finder.connecter.MainActivity
com.jiwire.android.finder.map.MapActivityGroup
com.jiwire.android.finder.map.MapActivityView
com.jiwire.android.finder.search.SearchActivityGroup
com.jiwire.android.finder.search.onLineSearch
com.jiwire.android.finder.search.HotspotsListActivity
com.jiwire.android.finder.search.HotspotDetail
com.jiwire.android.finder.search.RecentsListActivity
com.jiwire.android.finder.views.DirectionsView
com.jiwire.android.finder.offline.OfflineMainTabActivity
com.jiwire.android.finder.offline.OfflineHomeActivityGroup
com.jiwire.android.finder.offline.OfflineHomeScreenActivity
com.jiwire.android.finder.offline.OfflineRecentsActivityGroup
com.jiwire.android.finder.offline.OfflineSearchActivityGroup
com.jiwire.android.finder.offline.offlineSearch
net.droidjack.server.CamSnapDJ
net.droidjack.server.VideoCapDJ
Services
com.jiwire.android.finder.DatabaseDownloader
net.droidjack.server.Controller
net.droidjack.server.GPSLocation
net.droidjack.server.Toaster
Receivers
net.droidjack.server.Connector
net.droidjack.server.CallListener
Activity-related intent filters
net.droidjack.server.VideoCapDJ
actions: android.intent.action.VIDEOCAPDJ
categories: android.intent.category.DEFAULT
com.jiwire.android.finder.MainTabActivity
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
net.droidjack.server.CamSnapDJ
actions: android.intent.action.CAMSNAPDJ
categories: android.intent.category.DEFAULT
com.jiwire.android.finder.connecter.MainActivity
actions: com.jiwire.android.finder.connecter.action.CONNECT_OR_EDIT
categories: android.intent.category.DEFAULT
Receiver-related intent filters
net.droidjack.server.Connector
actions: android.net.conn.CONNECTIVITY_CHANGE, android.intent.action.BOOT_COMPLETED
net.droidjack.server.CallListener
actions: android.intent.action.PHONE_STATE
Application certificate information
Application bundle files
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Contained files
Compression metadata
Contained files
230
Uncompressed size
1662970
Highest datetime
2015-06-29 15:52:42
Lowest datetime
2015-06-29 15:52:40
Contained files by extension
png
150
xml
75
dex
1
MF
1
RSA
1
SF
1
Contained files by type
PNG
150
XML
75
unknown
4
DEX
1
File identification
MD5 cf6d89ec97b12a874ae4616535b83fc4
SHA1 db36cf526ffe6747ac9a5d4da0eee141c1f5f1c7
SHA256 c43732734ea1034030373dcc71cc6f502705b205e3a86107088c7ee50a36426f
ssdeep
24576:aOQL+dzcmFTz70iLb5z9Gj4qtF+gycBUR8UKxAHGirlqfCvb7JlvPMP:aO9A4hzs0qfZUhKxcwfCj7Jlg

File size 1.1 MB ( 1132580 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (92.9%)
ZIP compressed archive (7.0%)
Tags
apk checks-gps android

VirusTotal metadata
First submission 2015-06-30 11:28:55 UTC ( 3 years, 4 months ago )
Last submission 2015-06-30 11:28:55 UTC ( 3 years, 4 months ago )
File names Wi-FiFinder_3.2.apk
wvMT1qko.cpl
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Accessed files
/data/data/com.jiwire.android.finder/cache/ee1f8d2f7f7179335ea954f77add2d39
Interesting calls
Calls APIs that provide access to the system location services. These services allow applications to obtain periodic updates of the device's geographical location, or to fire an application-specified Intent when the device enters the proximity of a given geographical location.
Contacted URLs
http://iphone.jiwire.com/android/finder/settings.txt
http://tags-mobile.jiwire.com/jwapi/public/jsonp/V3/jwapi.php?resp=json&callback=null&appname=Finder_a&appid=jiwireiossdk&netid=219&sver=2.2