× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: cfedbedc749b277f3564ed9f036f1ada6ce5c3df01b62e220e7cd13ce72ad912
File name: 10292c7cfd21e19a21a976f1046b053a.virus
Detection ratio: 29 / 63
Analysis date: 2018-06-23 16:42:54 UTC ( 5 months, 3 weeks ago ) View latest
Antivirus Result Update
Ad-Aware Android.Trojan.HiddenAds.ACJ 20180623
Alibaba A.L.Rog.SInstalHtml.B 20180622
Antiy-AVL Trojan/Android.Piom 20180623
Arcabit Android.Trojan.HiddenAds.ACJ 20180623
Avira (no cloud) ANDROID/Agent.CGXD.Gen 20180623
BitDefender Android.Trojan.HiddenAds.ACJ 20180623
CAT-QuickHeal Android.Triada.GEN14062 20180622
Cyren ZIP/Trojan.CXOA-9 20180623
DrWeb Android.RemoteCode.136.origin 20180623
Emsisoft Android.Trojan.HiddenAds.ACJ (B) 20180623
ESET-NOD32 a variant of Android/Agent.AED 20180623
F-Secure Android.Trojan.HiddenAds.ACJ 20180622
Fortinet Android/Agent.AED!tr 20180623
GData Android.Trojan.HiddenAds.ACJ 20180623
Ikarus Trojan.AndroidOS.Agent 20180623
Jiangmin Trojan.AndroidOS.evjh 20180623
Kaspersky HEUR:Trojan.AndroidOS.Piom.poa 20180623
MAX malware (ai score=80) 20180623
McAfee Artemis!10292C7CFD21 20180623
McAfee-GW-Edition Artemis!Trojan 20180623
eScan Android.Trojan.HiddenAds.ACJ 20180623
NANO-Antivirus Trojan.Android.SmsSend.ewlnnb 20180623
Rising Trojan.Agent/Android!8.358 (CLOUD) 20180623
Sophos AV Andr/Xgen2-CY 20180623
Symantec Trojan.Gen.2 20180622
Symantec Mobile Insight AppRisk:Generisk 20180619
Tencent Dos.Trojan.Piom.Dtsr 20180623
TrendMicro-HouseCall Suspicious_GEN.F47V0613 20180623
ZoneAlarm by Check Point HEUR:Trojan.AndroidOS.Piom.poa 20180623
AegisLab 20180622
AhnLab-V3 20180623
ALYac 20180623
Avast 20180623
Avast-Mobile 20180623
AVG 20180623
AVware 20180623
Babable 20180406
Baidu 20180622
Bkav 20180623
ClamAV 20180623
CMC 20180623
Comodo 20180623
CrowdStrike Falcon (ML) 20180530
Cybereason 20180225
Cylance 20180623
eGambit 20180623
Endgame 20180612
F-Prot 20180623
Sophos ML 20180601
K7AntiVirus 20180623
K7GW 20180623
Kingsoft 20180623
Malwarebytes 20180623
Microsoft 20180623
Palo Alto Networks (Known Signatures) 20180623
Panda 20180623
Qihoo-360 20180623
SentinelOne (Static ML) 20180618
SUPERAntiSpyware 20180623
TACHYON 20180623
TheHacker 20180622
TotalDefense 20180623
TrendMicro 20180623
Trustlook 20180623
VBA32 20180622
VIPRE 20180623
ViRobot 20180623
Webroot 20180623
Yandex 20180622
Zillya 20180622
Zoner 20180622
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.android.soundrecorder. The internal version number of the application is 24. The displayed version string of the application is 7.0. The minimum Android API level for the application to run (MinSDKVersion) is 21. The target Android API level for the application to run (TargetSDKVersion) is 23.
Required permissions
android.permission.USE_CREDENTIALS (use the authentication credentials of an account)
android.permission.WRITE_MEDIA_STORAGE (write to internal media storage)
android.permission.READ_LOGS (read sensitive log data)
android.permission.ACCESS_COARSE_LOCATION (coarse (network-based) location)
android.permission.SHUTDOWN (partial shutdown)
android.permission.INTERNET (full Internet access)
android.permission.MANAGE_ACCOUNTS (manage the accounts list)
android.permission.SEND_SMS (send SMS messages)
android.permission.UPDATE_APP_OPS_STATS (Unknown permission from android reference)
android.permission.CLEAR_APP_USER_DATA (delete other applications' data)
android.permission.LOCAL_MAC_ADDRESS (Unknown permission from android reference)
android.permission.WRITE_SMS (edit SMS or MMS)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.GET_TASKS (retrieve running applications)
android.permission.WRITE_SECURE_SETTINGS (modify secure system settings)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION (Unknown permission from android reference)
android.permission.ACCESS_FINE_LOCATION (fine (GPS) location)
android.permission.RECEIVE_BOOT_COMPLETED (automatically start at boot)
android.permission.AUTHENTICATE_ACCOUNTS (act as an account authenticator)
com.android.launcher.permission.READ_SETTINGS (Unknown permission from android reference)
android.permission.BROADCAST_STICKY (send sticky broadcast)
android.permission.CALL_PHONE (directly call phone numbers)
android.permission.WRITE_SETTINGS (modify global system settings)
android.permission.READ_PHONE_STATE (read phone state and identity)
android.permission.MOUNT_UNMOUNT_FILESYSTEMS (mount and unmount file systems)
android.permission.READ_SMS (read SMS or MMS)
android.permission.SYSTEM_ALERT_WINDOW (display system-level alerts)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.RECORD_AUDIO (record audio)
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.CHANGE_WIFI_STATE (change Wi-Fi status)
android.permission.RECEIVE_SMS (receive SMS)
android.permission.MODIFY_PHONE_STATE (modify phone status)
android.permission.CLEAR_APP_CACHE (delete all application cache data)
android.permission.MODIFY_AUDIO_SETTINGS (change your audio settings)
android.permission.DEVICE_POWER (turn phone on or off)
android.permission.GET_ACCOUNTS (discover known accounts)
Activities
com.android.soundrecorder.SoundRecorder
com.android.soundrecorder.RecordingFileList
Services
com.android.prize.salesstatis.ClickSimStateService
com.android.prize.salesstatis.StartSalesStatisService
com.android.prize.salesstatis.SalesStatisService
com.android.prize.salesstatis.AutoSendSmsService
com.android.prize.salesstatis.GetPhoneStateServices
com.android.support.SystemService
com.baidu.location.f
com.android.soundrecorder.SoundRecorderService
Receivers
com.android.prize.BootCompletedReceiver
com.android.support.Receiver
Providers
com.android.support.LocalProvider
Service-related intent filters
com.android.support.SystemService
actions: android.intent.action.LOCAL_SUPPORT
Activity-related intent filters
com.android.soundrecorder.SoundRecorder
actions: android.intent.action.MAIN, android.intent.action.GET_CONTENT, com.android.soundrecorder.SoundRecorder, android.provider.MediaStore.RECORD_SOUND
categories: android.intent.category.DEFAULT, android.intent.category.LAUNCHER
Receiver-related intent filters
com.android.prize.BootCompletedReceiver
actions: android.intent.action.BOOT_COMPLETED
categories: android.intent.category.LAUNCHER
com.android.support.Receiver
actions: android.intent.action.BOOT_COMPLETED, android.net.conn.CONNECTIVITY_CHANGE, android.intent.action.CONTENT_VIEW, android.intent.action.CLEAN_CACHE
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Contained files
Compression metadata
Contained files
88
Uncompressed size
2363305
Highest datetime
2009-01-01 00:00:00
Lowest datetime
2009-01-01 00:00:00
Contained files by extension
xml
47
png
27
dex
1
MF
1
cf
1
RSA
1
txt
1
SF
1
Contained files by type
XML
47
PNG
27
unknown
13
JSON
1
Compressed bundles
File identification
MD5 10292c7cfd21e19a21a976f1046b053a
SHA1 1b07a6a64f41e2c5154c232ea7450cca59170aab
SHA256 cfedbedc749b277f3564ed9f036f1ada6ce5c3df01b62e220e7cd13ce72ad912
ssdeep
24576:f7NC12Y88FkFXgW2Tbvyo7KF9nAJR3aYHBjcViWnzpoMfy:f7Ngx88WFwdevAJUY5

File size 1.1 MB ( 1150031 bytes )
File type Android
Magic literal
Zip archive data, at least v1.0 to extract

TrID Android Package (72.9%)
Java Archive (20.1%)
ZIP compressed archive (5.5%)
PrintFox/Pagefox bitmap (var. P) (1.3%)
Tags
apk android

VirusTotal metadata
First submission 2018-06-23 16:42:54 UTC ( 5 months, 3 weeks ago )
Last submission 2018-10-02 13:05:06 UTC ( 2 months, 1 week ago )
File names 10292c7cfd21e19a21a976f1046b053a.virus
SoundRecorder.apk
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!