× Cookies are disabled! This site requires cookies to be enabled to work properly
SHA256: f652876f16b094775b61700075e0897d337656b52913e703e293c78015786f67
File name: 1389953178_ipnossoft.rma.free-11-v2.3.3.apk
Detection ratio: 0 / 55
Analysis date: 2016-08-07 05:44:56 UTC ( 2 years, 7 months ago ) View latest
Antivirus Result Update
Ad-Aware 20160807
AegisLab 20160807
AhnLab-V3 20160806
Alibaba 20160805
ALYac 20160807
Antiy-AVL 20160807
Arcabit 20160807
Avast 20160807
AVG 20160807
Avira (no cloud) 20160806
AVware 20160807
Baidu 20160806
BitDefender 20160807
Bkav 20160806
CAT-QuickHeal 20160806
ClamAV 20160807
CMC 20160804
Comodo 20160806
Cyren 20160807
DrWeb 20160807
Emsisoft 20160807
ESET-NOD32 20160806
F-Prot 20160807
F-Secure 20160807
Fortinet 20160807
GData 20160807
Ikarus 20160806
Jiangmin 20160807
K7AntiVirus 20160807
K7GW 20160807
Kaspersky 20160807
Kingsoft 20160807
Malwarebytes 20160806
McAfee 20160807
McAfee-GW-Edition 20160807
Microsoft 20160807
eScan 20160807
NANO-Antivirus 20160807
nProtect 20160805
Panda 20160806
Qihoo-360 20160807
Sophos AV 20160807
SUPERAntiSpyware 20160807
Symantec 20160807
Tencent 20160807
TheHacker 20160806
TotalDefense 20160805
TrendMicro 20160807
TrendMicro-HouseCall 20160807
VBA32 20160805
VIPRE 20160807
ViRobot 20160806
Yandex 20160806
Zillya 20160806
Zoner 20160807
The file being studied is Android related! APK Android file more specifically. The application's main package name is ipnossoft.rma.free. The internal version number of the application is 11. The displayed version string of the application is 2.3.3. The minimum Android API level for the application to run (MinSDKVersion) is 8. The target Android API level for the application to run (TargetSDKVersion) is 11.
Required permissions
android.permission.READ_PHONE_STATE (read phone state and identity)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.ACCESS_COARSE_LOCATION (coarse (network-based) location)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.INTERNET (full Internet access)
android.permission.MODIFY_AUDIO_SETTINGS (change your audio settings)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
Activities
com.tapjoy.TJCOffersWebView
com.tapjoy.TapjoyFullScreenAdWebView
com.tapjoy.TapjoyDailyRewardAdWebView
com.tapjoy.TapjoyVideoView
com.admarvel.android.ads.AdMarvelActivity
com.admarvel.android.ads.AdMarvelVideoActivity
com.google.ads.AdActivity
com.millennialmedia.android.MMActivity
com.millennialmedia.android.VideoPlayer
com.amazon.device.ads.MraidBrowser
com.amazon.device.ads.VideoActionHandler
ipnossoft.rma.RelaxMelodiesActivityFree
ipnossoft.rma.timer.TimerActivity
ipnossoft.rma.favorite.FavoriteActivity
ipnossoft.rma.web.WebActivity
ipnossoft.rma.web.NewsActivity
ipnossoft.rma.preferences.Prefs
ipnossoft.rma.help.HelpActivity
ipnossoft.rma.web.WebViewActivity
ipnossoft.rma.free.UpgradeActivity
Services
ipnossoft.rma.SoundManager
Providers
com.admarvel.android.ads.AdMarvelLocalFileContentProvider
Activity-related intent filters
ipnossoft.rma.RelaxMelodiesActivityFree
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
Application certificate information
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
848
Uncompressed size
33284686
Highest datetime
2013-11-08 20:20:02
Lowest datetime
2013-11-08 14:47:10
Contained files by extension
png
615
xml
153
ogg
46
jpg
18
so
5
txt
2
dex
1
MF
1
RSA
1
js
1
SF
1
Contained files by type
PNG
615
XML
153
OGG
46
JPG
18
unknown
9
ELF
5
DEX
1
JSON
1
Compressed bundles
File identification
MD5 3ed3afa07f57dc2b24038d03855ba710
SHA1 22abdcc95df0cf2c91e68797af0c8363787bbfd6
SHA256 f652876f16b094775b61700075e0897d337656b52913e703e293c78015786f67
ssdeep
786432:ucxjOp0gxZE7JkMDhQZs6A0uuaUhAOyAS9xr7V4i30nTiv:KuAE7hhQZsT0uOa5t5rKT0

File size 30.3 MB ( 31741553 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (73.9%)
Java Archive (20.4%)
ZIP compressed archive (5.6%)
Tags
apk android contains-elf software-collection

VirusTotal metadata
First submission 2013-11-10 16:44:07 UTC ( 5 years, 4 months ago )
Last submission 2018-05-20 01:00:58 UTC ( 10 months, 1 week ago )
File names 3ed3afa07f57dc2b24038d03855ba710
ipnossoft.rma.free.v2.3.3.apk
ipnossoft.rma.free_11.apk
bfb58a5539a6da75b327f3a0f1af784bce9d49215898bebf2ac2e2e141ddb7cb2eaeed3aab212385803685161eeaae15f2b10358a311811b01a8476cbd97111b
elaxelodiesshuimianyu_V2.3.3_mumayi_3d160.apk
Relax Melodies - Sleep
ipnossoft.rma.free.apk
Relax_Melodies-2.3.3.apk
ipnossoft.rma.free.apk
1399237395_relax-melodies-sleep-yoga.apk
relax-melodies-sleep-and-yoga-2-3-3-en-android.apk
ipnossoft.rma.free_2.3.3.apk
RelaxMelodies.apk
relax-melodies-sleep-yoga.apk
md5_submission.apk
Relax Melodies Sleep
ipnossoft.rma.free-2.apk
1389953178_ipnossoft.rma.free-11-v2.3.3.apk
ipnossoft.rma.free.apk
No comments. No VirusTotal Community member has commented on this item yet, be the first one to do so!

Leave your comment...

?
Post comment

You have not signed in. Only registered users can leave comments, sign in and have a voice!

No votes. No one has voted on this item yet, be the first one to do so!
Started receivers
com.onelouder.adlib.ACTION_PLACMENTS_AVAILABLE
Opened files
/data/data/ipnossoft.rma.free/files
/data/data/ipnossoft.rma.free/files/.flurryagent.-25d6dbb0
Accessed files
/mnt/sdcard/YWRtX3RyYWNrZXJfZGly%0A
/data/data/ipnossoft.rma.free/files/.flurryagent.-25d6dbb0
/data/data/ipnossoft.rma.free/files/.flurryinstallreceiver.
/data/data/ipnossoft.rma.free/files
/mnt/sdcard/YWRtX3RyYWNrZXJfZGly%0A/aXBub3Nzb2Z0LnJtYS5mcmVl%0A
Interesting calls
Calls APIs that provide access to information about the telephony services on the device. Applications can use such methods to determine telephony services and states, as well as to access some types of subscriber information.
Contacted URLs
http://data.flurry.com/aap.do
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
https://ws.tapjoyads.com/connect?app_id=ce382961-bbe2-4fd7-bb10-9e721bc3b2b5&android_id=5133fa8fc7b545e&udid=707717307529177&serial_id=323316ED529F00EC&device_name=Nexus%20S&device_manufacturer=samsung&device_type=android&os_version=4.0.4&country_code=US&language_code=en&app_version=2.3.3&library_version=9.0.1&platform=android&display_multiplier=1.0&carrier_name=Android&carrier_country_code=us&mobile_country_code=310&mobile_network_code=260&screen_density=240&screen_layout_size=2&connection_type=mobile&plugin=native&sdk_type=connect&timestamp=1350550137&verifier=fa05845cc1fe52c2a2b0edce8d7e538ae8fb6acd3639d229d91558c7b842d9e7
https://advrts.s3.amazonaws.com/sdk2/ipnossoftrmafree.xml
https://mss.handmark.com/mss/rmc?crypt=1