× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: e42908477cad8e0d9b21077fddc62a1d14bd874cbde93155801bd8056b8ea8ab
File name: filename
Detection ratio: 0 / 56
Analysis date: 2016-05-22 11:05:19 UTC ( 2 years, 10 months ago ) View latest
Antivirus Result Update
Ad-Aware 20160522
AegisLab 20160521
AhnLab-V3 20160521
Alibaba 20160520
ALYac 20160522
Antiy-AVL 20160522
Arcabit 20160522
Avast 20160522
AVG 20160522
Avira (no cloud) 20160522
AVware 20160522
Baidu 20160520
Baidu-International 20160522
BitDefender 20160522
Bkav 20160521
CAT-QuickHeal 20160521
CMC 20160520
Comodo 20160522
Cyren 20160522
DrWeb 20160522
Emsisoft 20160522
ESET-NOD32 20160522
F-Prot 20160522
F-Secure 20160522
Fortinet 20160522
GData 20160522
Ikarus 20160522
Jiangmin 20160522
K7AntiVirus 20160522
K7GW 20160522
Kaspersky 20160522
Kingsoft 20160522
Malwarebytes 20160522
McAfee 20160522
McAfee-GW-Edition 20160521
Microsoft 20160522
eScan 20160522
NANO-Antivirus 20160522
nProtect 20160520
Panda 20160522
Qihoo-360 20160522
Rising 20160522
Sophos AV 20160522
SUPERAntiSpyware 20160522
Symantec 20160522
Tencent 20160522
TheHacker 20160522
TotalDefense 20160522
TrendMicro 20160522
TrendMicro-HouseCall 20160522
VBA32 20160520
VIPRE 20160522
ViRobot 20160522
Yandex 20160521
Zillya 20160521
Zoner 20160522
The file being studied is Android related! APK Android file more specifically. The application's main package name is de.lotum.whatsinthefoto.us. The internal version number of the application is 67. The displayed version string of the application is 5.0.0-en. The minimum Android API level for the application to run (MinSDKVersion) is 10. The target Android API level for the application to run (TargetSDKVersion) is 21.
Required permissions
com.google.android.c2dm.permission.RECEIVE (Unknown permission from android reference)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.INTERNET (full Internet access)
de.lotum.whatsinthefoto.us.permission.C2D_MESSAGE (C2DM permission.)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
com.android.vending.BILLING (Unknown permission from android reference)
android.permission.GET_ACCOUNTS (discover known accounts)
Activities
de.lotum.whatsinthefoto.activity.Splash
de.lotum.whatsinthefoto.activity.Quiz
de.lotum.whatsinthefoto.activity.Main
de.lotum.whatsinthefoto.activity.Imprint
de.lotum.whatsinthefoto.activity.Settings
de.lotum.whatsinthefoto.activity.Shop
de.lotum.whatsinthefoto.activity.Premium
com.facebook.FacebookActivity
com.facebook.ads.InterstitialAdActivity
com.gamesforfriends.cps.internal.CpsActivity
com.mopub.mobileads.MoPubActivity
com.mopub.common.MoPubBrowser
com.mopub.mobileads.MraidActivity
com.mopub.mobileads.MraidVideoPlayerActivity
com.inmobi.androidsdk.IMBrowserActivity
com.millennialmedia.android.MMActivity
com.millennialmedia.android.VideoPlayer
com.video.adsdk.internal.ADActivity
com.google.android.gms.ads.AdActivity
com.unity3d.ads.android.view.UnityAdsFullscreenActivity
com.sponsorpay.publisher.ofw.SPOfferWallActivity
Receivers
de.lotum.whatsinthefoto.adapter.LetterReceiver
de.lotum.whatsinthefoto.adapter.BonusPuzzleReceiver
de.lotum.whatsinthefoto.adapter.EventGiftReceiver
de.lotum.whatsinthefoto.adapter.InstallReferrerReceiver
Providers
de.lotum.whatsinthefoto.adapter.ShareFileProvider
com.facebook.FacebookContentProvider
Activity-related intent filters
de.lotum.whatsinthefoto.activity.Splash
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
Receiver-related intent filters
de.lotum.whatsinthefoto.adapter.InstallReferrerReceiver
actions: com.android.vending.INSTALL_REFERRER
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Contained files
Compression metadata
Contained files
5333
Uncompressed size
3224558
Highest datetime
2015-08-24 14:53:24
Lowest datetime
2015-08-24 14:52:34
Contained files by extension
jpg
999
xml
1
Contained files by type
JPG
999
XML
1
Compressed bundles
File identification
MD5 e86f41d5ec94ac150acda3e5ab341787
SHA1 defd13a8db8c0ec51ee0754761f3b786907f199d
SHA256 e42908477cad8e0d9b21077fddc62a1d14bd874cbde93155801bd8056b8ea8ab
ssdeep
393216:jCtRmGEK8aDM5mvmQ4P0zwXRtUiF67KyxkVc/C+XFret+XbjFRgts/yW/80m:mDJXWhXRqiFEsKli+nPEP0m

File size 22.5 MB ( 23617987 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (62.1%)
Java Archive (17.1%)
BlueEyes Animation (15.9%)
ZIP compressed archive (4.7%)
Tags
apk android

VirusTotal metadata
First submission 2015-08-24 21:21:19 UTC ( 3 years, 6 months ago )
Last submission 2016-10-05 21:04:51 UTC ( 2 years, 5 months ago )
File names 4 Pics 1 Word v5.0.0-en.apk
de.lotum.whatsinthefoto.us.apk
4-pics-1-word.apk
4-pics-1-word.apk
filename
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Started receivers
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.BATTERY_CHANGED
Opened files
/data/data/de.lotum.whatsinthefoto.us/files/whatsapp_share
/data/data/de.lotum.whatsinthefoto.us/files/AdjustAttribution
/data/data/de.lotum.whatsinthefoto.us/files/AdjustIoActivityState
/data/data/de.lotum.whatsinthefoto.us/files/AdjustIoPackageQueue
/data/data/de.lotum.whatsinthefoto.us/files/AppEventsLogger.persistedevents
/data/data/de.lotum.whatsinthefoto.us/files/gameState
/data/data/de.lotum.whatsinthefoto.us/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core
/data/data/de.lotum.whatsinthefoto.us/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap.tmp
/data/data/de.lotum.whatsinthefoto.us/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/5084EEA0020E-0001-05F1-C20B306167FEBeginSession.cls_temp
/data/data/de.lotum.whatsinthefoto.us/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/5084EEA0020E-0001-05F1-C20B306167FESessionApp.cls_temp
/data/data/de.lotum.whatsinthefoto.us/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/5084EEA0020E-0001-05F1-C20B306167FESessionOS.cls_temp
/data/data/de.lotum.whatsinthefoto.us/files/.yflurryprotonconfig.-7d2c24a4dbfc0e86
/data/data/de.lotum.whatsinthefoto.us/files/.yflurryprotonreport.-7d2c24a4dbfc0e86
/data/data/de.lotum.whatsinthefoto.us/files/.YFlurrySenderIndex.info.AnalyticsMain
/data/data/de.lotum.whatsinthefoto.us/files/.yflurryanreporter
/data/data/de.lotum.whatsinthefoto.us/files/.yflurryreport.-7d2c24a4dbfc0e86
/data/data/de.lotum.whatsinthefoto.us/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/log-files
/data/data/de.lotum.whatsinthefoto.us/cache/cps
/data/data/de.lotum.whatsinthefoto.us/files
APP_ASSETS/photodata.txt
/data/data/de.lotum.whatsinthefoto.us/files/.YFlurrySenderIndex.info.AnalyticsData_KSPWJ49SBRQSPS3H4P7S_202
/system
/mnt/sdcard
/data/data/de.lotum.whatsinthefoto.us/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap
/data
Accessed files
/data/data/de.lotum.whatsinthefoto.us/files
/data/data/de.lotum.whatsinthefoto.us/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core
/data/data/de.lotum.whatsinthefoto.us/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/initialization_marker
/data/data/de.lotum.whatsinthefoto.us/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/log-files
/data/data/de.lotum.whatsinthefoto.us/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap
/data/data/de.lotum.whatsinthefoto.us/files/.yflurryprotonconfig.-7d2c24a4dbfc0e86
/data/data/de.lotum.whatsinthefoto.us/files/.yflurryprotonreport.-7d2c24a4dbfc0e86
/data/data/de.lotum.whatsinthefoto.us/files/.FlurrySenderIndex.info.AnalyticsMain
/data/data/de.lotum.whatsinthefoto.us/files/.YFlurrySenderIndex.info.AnalyticsMain
/system/app/Superuser.apk
/system/xbin/su
/data/data/de.lotum.whatsinthefoto.us/files/.yflurryanreporter
/data/data/de.lotum.whatsinthefoto.us/files/solved.txt
/proc/meminfo
/data/data/de.lotum.whatsinthefoto.us/cache/cps
/data/data/de.lotum.whatsinthefoto.us/files/.yflurryreport.-7d2c24a4dbfc0e86
/data/data/de.lotum.whatsinthefoto.us/files/.flurryagent.7825d615
/data/data/de.lotum.whatsinthefoto.us/files/.yflurrydatasenderblock.b3c74fc6-67a6-4b43-9269-6d926dda66a3
/data/data/de.lotum.whatsinthefoto.us/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/invalidClsFiles
Interesting calls
Calls APIs that provide access to information about the telephony services on the device. Applications can use such methods to determine telephony services and states, as well as to access some types of subscriber information.
Contacted URLs
https://app.adjust.com/session
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
https://app.adjust.com/attribution/needs_attribution_data=0&app_token=z5vzhskadwqe&android_id=6d50a4b7650138e&mac_sha1=2bd5ac73a1299461decd4503ed1eec89d2f27436&environment=production&android_uuid=1a2ba68e-b06b-44a5-bdfd-8cb8bc8a5a85&mac_md5=d41cdcfce8d779780ce0f98f9c618612
http://4p1w.lotum.de/data/configAndroid.json
https://graph.facebook.com/v2.3/417220471689883?format=json&sdk=android&fields=supports_implicit_sdk_logging%2Cgdpv4_nux_content%2Cgdpv4_nux_enabled%2Candroid_dialog_configs%2Candroid_sdk_error_categories
http://cps.games-for-friends.com/service2/allapps?os=android&osVersion=15&appId=16&hash=e3d85dd1058cce1ada5c69b6e2318801&appVersion=5.0.0-en&features%5B1%5D=emptyLink&isPremium=0&isTablet=0&features%5B0%5D=fullScreen&language=en&deviceId=856a6764-e1fb-4fdb-9c1e-015b77884d1c&
https://data.flurry.com/aap.do
https://settings.crashlytics.com/spi/v2/platforms/android/apps/de.lotum.whatsinthefoto.us/settings?instance=1c901f6f18f33d67cba0435abf659e50a5ac1d23&source=1&build_version=67&icon_hash=f0f3e7d49754ff1bea43142c2d663683dcc82792&display_version=5.0.0-en
Accessed URIs
content://com.facebook.katana.provider.AttributionIdProvider
http://cps.games-for-friends.com/service2/allapps
https://data.flurry.com/aap.do