× Cookies被禁用! 本网站需要启用Cookie才能正常工作
SHA256: b8128981d2cf23db4436b7408c3753a536161b20a6616d98dd7d2b859c3566b7
文件名: 憑證.apk
检出率: 22 / 52
分析日期: 2014-05-17 13:09:34 UTC ( 5 年 前 ) 查看最新
反病毒软件 结果 病毒库日期
Ad-Aware Android.Trojan.SMSSend.ND 20140517
AegisLab Agent 20140517
AhnLab-V3 Android-Malicious/Litch 20140517
AntiVir Android/SmsAgent.EB.Gen 20140517
Avast Android:RuSMS-AH [Trj] 20140517
Baidu-International Trojan.AndroidOS.SMS.aDs 20140517
BitDefender Android.Trojan.SMSSend.ND 20140517
Commtouch AndroidOS/GenBl.AD9826C3!Olympus 20140517
Comodo UnclassifiedMalware 20140516
DrWeb Android.SmsBot.72.origin 20140517
Emsisoft Android.Trojan.SMSSend.ND (B) 20140517
ESET-NOD32 a variant of Android/TrojanSMS.Agent.ACK 20140517
F-Secure Trojan:Android/SmsSend.IE 20140517
GData Android.Trojan.SMSSend.ND 20140517
Ikarus Trojan.AndroidOS.SMS 20140517
Kaspersky HEUR:Trojan-SMS.AndroidOS.Agent.jb 20140517
McAfee Artemis!AD9826C36DA0 20140517
McAfee-GW-Edition Artemis!AD9826C36DA0 20140517
eScan Android.Trojan.SMSSend.ND 20140517
Qihoo-360 Trojan.Generic 20140517
Sophos AV Andr/SMSSend-EC 20140517
TrendMicro-HouseCall TROJ_GEN.F47V0515 20140517
Yandex 20140517
Antiy-AVL 20140517
AVG 20140517
Bkav 20140517
ByteHero 20140517
CAT-QuickHeal 20140517
ClamAV 20140517
CMC 20140516
F-Prot 20140516
Fortinet 20140517
Jiangmin 20140517
K7AntiVirus 20140516
K7GW 20140516
Kingsoft 20140517
Malwarebytes 20140517
Microsoft 20140517
NANO-Antivirus 20140517
Norman 20140517
nProtect 20140516
Panda 20140517
Rising 20140507
SUPERAntiSpyware 20140517
Symantec 20140517
Tencent 20140515
TheHacker 20140515
TotalDefense 20140517
TrendMicro 20140517
VBA32 20140516
VIPRE 20140517
ViRobot 20140517
Zillya 20140516
The file being studied is Android related! APK Android file more specifically. The application's main package name is google.service. The internal version number of the application is 1. The displayed version string of the application is 1.0. The minimum Android API level for the application to run (MinSDKVersion) is 8. The target Android API level for the application to run (TargetSDKVersion) is 18.
Risk summary
The studied DEX file makes use of API reflection
The studied DEX file loads a shared library
The studied DEX file makes use of cryptographic functions
The APK package studied contains shared ELF libraries
Permissions that allow the application to manipulate SMS
Permissions that allow the application to perform calls
Permissions that allow the application to perform payments
Permissions that allow the application to access Internet
Permissions that allow the application to access private information
Other permissions that could be considered as dangerous in certain scenarios
Required permissions
android.permission.READ_LOGS (read sensitive log data)
android.permission.PROCESS_OUTGOING_CALLS (intercept outgoing calls)
android.permission.BLUETOOTH (create Bluetooth connections)
android.permission.INTERNET (full Internet access)
android.permission.BLUETOOTH_ADMIN (bluetooth administration)
android.permission.SEND_SMS (send SMS messages)
android.permission.ADD_SYSTEM_SERVICE (Unknown permission from android reference)
android.permission.WRITE_SMS (edit SMS or MMS)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.WRITE_CALL_LOG (write (but not read) the user's contacts data.)
android.permission.GET_TASKS (retrieve running applications)
android.permission.READ_CALL_LOG (read the user's call log.)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
android.permission.RECEIVE_SMS (receive SMS)
android.permission.RECEIVE_BOOT_COMPLETED (automatically start at boot)
android.permission.CALL_PHONE (directly call phone numbers)
android.permission.READ_PHONE_STATE (read phone state and identity)
android.permission.MOUNT_UNMOUNT_FILESYSTEMS (mount and unmount file systems)
android.permission.READ_SMS (read SMS or MMS)
android.permission.KILL_BACKGROUND_PROCESSES (kill background processes)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.CHANGE_WIFI_STATE (change Wi-Fi status)
android.permission.RECORD_AUDIO (record audio)
android.permission.READ_CONTACTS (read contact data)
android.permission.MODIFY_AUDIO_SETTINGS (change your audio settings)
android.permission.RESTART_PACKAGES (kill background processes)
Permission-related API calls
READ_LOGS
READ_PHONE_STATE
SEND_SMS
INTERNET
Main Activity
google.service.MainActivity
Activities
google.service.MainActivity
google.service.DeviceAdminActivity
Services
google.service.MessengerService
google.service.BaseService
Receivers
google.service.BootReceiver
google.service.deviceAdminReceiver
google.service.AlarmReceiver
Activity-related intent filters
google.service.MainActivity
actions: android.intent.action.MAIN
categories: android.intent.category.LAUNCHER
Receiver-related intent filters
google.service.BootReceiver
actions: android.intent.action.BOOT_COMPLETED, android.intent.action.USER_PRESENT, android.media.RINGER_MODE_CHANGED
google.service.AlarmReceiver
actions: googleservice.alarm.action
google.service.deviceAdminReceiver
actions: android.app.action.DEVICE_ADMIN_ENABLED
Application certificate information
Application bundle files
Interesting strings
The file being studied is a compressed stream! Details about the compressed contents follow.
Interesting properties
The file under inspection contains at least one ELF file.
Contained files
Compression metadata
Contained files
16
Uncompressed size
264012
Highest datetime
2014-05-15 14:22:38
Lowest datetime
2014-05-15 14:22:36
Contained files by extension
png
5
xml
4
so
2
dex
1
MF
1
RSA
1
SF
1
Contained files by type
PNG
5
XML
4
unknown
4
ELF
2
DEX
1
File identification
MD5 ad9826c36da029ebf58d8296e08e27a1
SHA1 c5789597520cb6616e58113af38d3267ee093260
SHA256 b8128981d2cf23db4436b7408c3753a536161b20a6616d98dd7d2b859c3566b7
ssdeep
3072:VkN4kZUbHeEUZSKbzqFPmlOaHLAb7O2oWa:btbHsZJzFOaHLAbi20

File size 125.3 KB ( 128315 bytes )
File type Android
Magic literal
Zip archive data, at least v2.0 to extract

TrID Android Package (73.9%)
Java Archive (20.4%)
ZIP compressed archive (5.6%)
Tags
apk android contains-elf

VirusTotal metadata
First submission 2014-05-15 11:49:02 UTC ( 5 年 前 )
Last submission 2014-05-29 17:48:27 UTC ( 4 年, 12 月 前 )
文件名 ad9826c36da029ebf58d8296e08e27a1.apk
__.apk
b8128981d2cf23db4436b7408c3753a536161b20a6616d98dd7d2b859c3566b7.log
憑證.apk
B8128981D2CF23DB4436B7408C3753A536161B20A6616D98DD7D2B859C3566B7.apk
没有评论. 没有VirusTotal社区成员评论该项目,抢沙发!

发表评论

?
发表评论

您没有登录。只有注册用户可以发表评论,请登录后发表评论!

没有投票. 目前没有用户投票。