× Sütik letiltva! Az oldal helyes működéséhez engedélyezni kell a sütiket.
SHA256: 8fb4b16dd882084d7c0908681303d783afa92f6f79c93d82dabccaf313258fbd
Fájl neve: E4A9C945855599FDE13AB5BFE8D85939.apk
Észlelési arány: 34 / 61
Elemzés ideje: 2018-01-25 17:58:50 UTC ( 3 hónap, 4 hét ezelőtt )
Vírusirtó Eredmény Utolsó frissítés
AegisLab SUSPICIOUS 20180125
AhnLab-V3 Android-Trojan/Slocker.12fa1 20180125
Alibaba A.H.Pay.Ficrider 20180125
Antiy-AVL Trojan[Ransom]/Android.Small 20180125
Arcabit Android.Trojan.SLocker.IE 20180125
Avast Android:Agent-LEI [Trj] 20180125
Avast-Mobile APK:RepMalware [Trj] 20180125
AVG Android:Agent-LEI [Trj] 20180125
Avira (no cloud) ANDROID/Locker.DJ.Gen 20180125
Baidu Android.Trojan.Locker.at 20180124
BitDefender Android.Trojan.SLocker.IE 20180125
CAT-QuickHeal Android.Small.K 20180125
Cyren AndroidOS/GenBl.E4A9C945!Olympus 20180125
DrWeb Android.Encoder.2 20180125
Emsisoft Android.Trojan.SLocker.IE (B) 20180125
ESET-NOD32 a variant of Android/Locker.HG 20180125
GData Android.Trojan.SLocker.IE 20180125
Ikarus Trojan.AndroidOS.Locker 20180125
K7GW Trojan ( 004dfe821 ) 20180125
Kaspersky HEUR:Trojan-Ransom.AndroidOS.Small.as 20180125
Kingsoft Android.Troj.SLocker.a.(kcloud) 20180125
MAX malware (ai score=85) 20180125
McAfee Artemis!E4A9C9458555 20180125
McAfee-GW-Edition Artemis!Trojan 20180125
NANO-Antivirus Trojan.Android.Ransom.eawtmo 20180125
Qihoo-360 Trojan.Android.Gen 20180125
Sophos AV Andr/SLocker-AP 20180125
Symantec Android.Lockdroid.E 20180125
Symantec Mobile Insight Trojan:Lockdroid.E 20180125
Tencent a.rogue.pornplayer 20180125
TrendMicro ANDROIDOS_SLOCKER.AXBB 20180125
TrendMicro-HouseCall ANDROIDOS_SLOCKER.AXBB 20180125
Trustlook Android.Malware.Trojan 20180125
ZoneAlarm by Check Point HEUR:Trojan-Ransom.AndroidOS.Small.as 20180125
Ad-Aware 20180125
ALYac 20180125
AVware 20180124
Bkav 20180125
ClamAV 20180125
CMC 20180125
Comodo 20180125
CrowdStrike Falcon (ML) 20171016
Cybereason 20171103
Cylance 20180125
eGambit 20180125
Endgame 20171130
F-Prot 20180125
Fortinet 20180125
Sophos ML 20180121
Jiangmin 20180125
K7AntiVirus 20180125
Malwarebytes 20180125
Microsoft 20180125
eScan 20180125
nProtect 20180125
Palo Alto Networks (Known Signatures) 20180125
Panda 20180125
Rising 20180125
SentinelOne (Static ML) 20180115
SUPERAntiSpyware 20180125
TheHacker 20180125
TotalDefense 20180125
VBA32 20180125
VIPRE 20180125
ViRobot 20180125
Webroot 20180125
Yandex 20180112
Zillya 20180125
Zoner 20180125
The file being studied is Android related! APK Android file more specifically. The application's main package name is com.wp.wattpad. The minimum Android API level for the application to run (MinSDKVersion) is 10. The target Android API level for the application to run (TargetSDKVersion) is 10.
Required permissions
android.permission.DISABLE_KEYGUARD (disable key lock)
android.permission.RECEIVE_BOOT_COMPLETED (automatically start at boot)
android.permission.READ_PHONE_STATE (read phone state and identity)
android.permission.QUICKBOOT_POWERON (Unknown permission from android reference)
android.permission.SYSTEM_ALERT_WINDOW (display system-level alerts)
android.permission.KILL_BACKGROUND_PROCESSES (kill background processes)
android.permission.CAMERA (take pictures and videos)
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.INTERNET (full Internet access)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
Activities
com.wp.wattpad.wattpadge
com.wp.wattpad.wattpad
Services
com.wp.wattpad.wattpaddavsb
Receivers
com.wp.wattpad.wattpadvds
com.wp.wattpad.wattpadvdsv
Activity-related intent filters
com.wp.wattpad.wattpadge
actions: android.intent.action.MAIN
categories: android.intent.category.DEFAULT, android.intent.category.LAUNCHER
Receiver-related intent filters
com.wp.wattpad.wattpadvds
actions: android.intent.action.REBOOT, android.intent.action.QUICKBOOT_POWERON, com.htc.intent.action.QUICKBOOT_POWERON, android.intent.action.BOOT_COMPLETED, android.intent.action.SCREEN_ON, android.intent.action.PACKAGE_ADDED, android.intent.action.PACKAGE_REMOVED, android.intent.action.ACTION_EXTERNAL_APPLICATIONS_AVAILABLE, android.intent.action.ALL_APPS, android.intent.action.USER_PRESENT
com.wp.wattpad.wattpadvdsv
actions: android.app.action.DEVICE_ADMIN_ENABLED, android.app.action.ACTION_DEVICE_ADMIN_DISABLE_REQUESTED, android.app.action.ACTION_DEVICE_ADMIN_DISABLED, android.app.action.DEVICE_ADMIN_DISABLED
Application certificate information
The file being studied is a compressed stream! Details about the compressed contents follow.
Contained files
Compression metadata
Contained files
15
Uncompressed size
268615
Highest datetime
2008-02-29 04:33:46
Lowest datetime
2008-02-29 04:33:46
Contained files by extension
xml
3
MF
2
png
2
dex
1
RSA
1
SF
1
Contained files by type
unknown
6
XML
4
PNG
3
DEX
1
JPG
1
File identification
MD5 e4a9c945855599fde13ab5bfe8d85939
SHA1 746d166c2387295fa465d668c857514d3bd329ea
SHA256 8fb4b16dd882084d7c0908681303d783afa92f6f79c93d82dabccaf313258fbd
ssdeep
6144:LtIiHK7yJSoOkTgg7xkKmOLQ4n5rIDPTFGfN:DHWL8TgYxk0845WPTAV

Fájl méret 212.7 KB ( 217758 bytes )
Fájl típus Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (73.9%)
Java Archive (20.4%)
ZIP compressed archive (5.6%)
Tags
apk android

VirusTotal metadata
First submission 2016-03-03 10:50:24 UTC ( 2 év, 2 hónap ezelőtt )
Last submission 2018-01-25 17:58:50 UTC ( 3 hónap, 4 hét ezelőtt )
Fájl nevek E4A9C945855599FDE13AB5BFE8D85939.apk
Nincsenek hozzászólások. Még egy VirusTotal felhasználó sem írt bejegyzést ehhez, legyél te az első!

Hozzászólás írása...

?
Hozzászólás elküldése

Nem vagy bejelentkezve. Csak regisztrált felhasználók írhatnak hozzászólást, jelentkezz be és oszd meg a véleményed!

Nincsenek szavazatok. Még senki nem szavazott, legyél te az első!
Started activities
#Intent;launchFlags=0x10000000;component=com.wp.wattpad/.wattpadge;end
Started services
#Intent;component=com.wp.wattpad/.wattpaddavsb;end
Interesting calls
Calls APIs that provide access to information about the telephony services on the device. Applications can use such methods to determine telephony services and states, as well as to access some types of subscriber information.
Contacted URLs
http://stul4ik.com/a.php