������������ ������������������������������ icon

________..apk

������������ ������������������������������

9.45 MB

Analyzed: 2026-04-03 14:30 UTC

Twitter / X Facebook LinkedIn WhatsApp Telegram Reddit
Analyze Another

APK Security & Privacy Score

Security scoring uses multi-engine scan signals and APK indicators. Privacy scoring uses requested permissions and network endpoint patterns.

Security Scan-weighted
91/100
Threat scan flagged Modern target SDK
Privacy Permissions & network
91/100
HTTP URLs found AllowBackup enabled Low data access
91/100
Excellent
Overall trust

Facts

Threat scan 1/76 flagged, 0 suspicious
Permissions 7 requested
Network strings 18 URLs (1 HTTP, 17 HTTPS)
Target SDK 36
Certificate Valid until 2035-07-17 (9 years, suspicious)

Warnings

Threat scan flagged: 1/76 scanners marked this file as malicious.
Found 1 HTTP URL strings (unencrypted).
AllowBackup is enabled.
Package Name co.median.android.jbwolzj
Version Code 3
Version Name 1.0.0
Application Name co.median.android.GoNativeApplication
Debuggable No
Allow Backup Yes
Min SDK Android 23 (Marshmallow)
Target SDK Android 36 (Unknown)
Supported ABIs
Universal

Certificate & Signer

Valid From 2008-02-29 01:33:46
Valid To 2035-07-17 01:33:46
Serial Number 936eacbe07f201df
Thumbprint 61ed377e85d386a8dfee6b864bd85b0bfaa5af81
Issuer: C US
Issuer: CN Android
Issuer: DN C:US, CN:Android, L:Mountain View, O:Android, ST:California, OU:Android, email:android@android.com
Issuer: L Mountain View
Issuer: O Android
Issuer: OU Android
Issuer: ST California
Issuer: email android@android.com
Subject: C US
Subject: CN Android
Subject: DN C:US, CN:Android, L:Mountain View, O:Android, ST:California, OU:Android, email:android@android.com
Subject: L Mountain View
Subject: O Android
Subject: OU Android
Subject: ST California
Subject: email android@android.com

Security Scan

1 /76
⚠️ Threats Detected
Detected by 1 vendor: BitDefenderFalx (Android.Riskware.TestKey.rA)
Scanned by 76 security vendors
Last scan: 2026-04-03 14:30 UTC
Malicious
1
Suspicious
0
Harmless
0
Undetected
62
Timeout
4
Failure
1

Scan Providers

76 vendors
ALYac undetected
No result reported
Engine 2.0.0.10
APEX type-unsupported
No result reported
Engine 6.765
AVG undetected
No result reported
Engine 23.9.8494.0
Acronis undetected
No result reported
Engine 1.2.0.121
AhnLab-V3 undetected
No result reported
Engine 3.29.3.10609
Alibaba undetected
No result reported
Engine 0.3.0.5
Antiy-AVL undetected
No result reported
Engine 3.0
Arcabit undetected
No result reported
Engine 2025.0.0.23
Avast undetected
No result reported
Engine 23.9.8494.0
Avast-Mobile undetected
No result reported
Engine 260402-00
Avira undetected
No result reported
Engine 8.3.3.24
Baidu undetected
No result reported
Engine 1.0.0.2
BitDefender undetected
No result reported
Engine 7.2
BitDefenderFalx malicious
Android.Riskware.TestKey.rA
Engine 2.0.936
Bkav undetected
No result reported
Engine 2.0.0.1
CAT-QuickHeal undetected
No result reported
Engine 22.00
CMC undetected
No result reported
Engine 2.4.2022.1
CTX undetected
No result reported
Engine 2024.8.29.1
ClamAV undetected
No result reported
Engine 1.5.2.0
CrowdStrike undetected
No result reported
Engine 1.0
Cylance type-unsupported
No result reported
Engine 3.0.0.0
Cynet undetected
No result reported
Engine 4.0.3.4
DeepInstinct failure
No result reported
Engine 5.0.0.8
DrWeb undetected
No result reported
Engine 7.0.75.2070
ESET-NOD32 undetected
No result reported
Engine 18.2.18.0
Elastic type-unsupported
No result reported
Engine 4.0.255
Emsisoft undetected
No result reported
Engine 2024.8.0.61147
F-Secure undetected
No result reported
Engine 18.10.1547.307
Fortinet undetected
No result reported
Engine 7.0.30.0
GData undetected
No result reported
Engine GD:27.44092AVA:64.30958
Google timeout
No result reported
Gridinsoft undetected
No result reported
Engine 1.0.242.174
Ikarus undetected
No result reported
Engine 6.4.16.0
Jiangmin undetected
No result reported
Engine 16.0.100
K7AntiVirus undetected
No result reported
Engine 14.44.59084
K7GW undetected
No result reported
Engine 14.44.59086
Kaspersky undetected
No result reported
Engine 22.0.1.28
Kingsoft undetected
No result reported
Engine None
Lionic undetected
No result reported
Engine 8.16
Malwarebytes undetected
No result reported
Engine 3.1.0.214
MaxSecure timeout
No result reported
Engine 1.0.0.1
McAfeeD undetected
No result reported
Engine 1.2.0.14370
MicroWorld-eScan undetected
No result reported
Engine 14.0.409.0
Microsoft undetected
No result reported
Engine 1.1.26020.3
NANO-Antivirus undetected
No result reported
Engine 1.0.170.26895
Paloalto type-unsupported
No result reported
Engine 0.9.0.1003
Panda undetected
No result reported
Engine 4.6.4.2
Rising timeout
No result reported
Engine 25.0.0.28
SUPERAntiSpyware undetected
No result reported
Engine 5.6.0.1032
Sangfor undetected
No result reported
Engine 2.22.3.0
SentinelOne type-unsupported
No result reported
Engine 7.6.2.19
Skyhigh undetected
No result reported
Engine v2021.2.0+4045
Sophos undetected
No result reported
Engine 3.4.1.0
Symantec undetected
No result reported
Engine 1.22.0.0
SymantecMobileInsight undetected
No result reported
Engine 2.0
TACHYON undetected
No result reported
Engine 2026-04-03.02
Tencent undetected
No result reported
Engine 1.0.0.1
Trapmine type-unsupported
No result reported
Engine 4.0.11.0
TrellixENS timeout
No result reported
Engine 6.0.6.653
TrendMicro undetected
No result reported
Engine 24.550.0.1002
TrendMicro-HouseCall undetected
No result reported
Engine 24.550.0.1002
Trustlook undetected
No result reported
Engine 1.0
VBA32 undetected
No result reported
Engine 5.5.1
VIPRE undetected
No result reported
Engine 6.0.0.35
Varist undetected
No result reported
Engine 6.6.1.3
ViRobot undetected
No result reported
Engine 2014.3.20.0
VirIT undetected
No result reported
Engine 9.5.1180
Webroot undetected
No result reported
Engine 1.9.0.8
Xcitium undetected
No result reported
Engine 38539
Yandex undetected
No result reported
Engine 5.5.2.24
Zillya undetected
No result reported
Engine 2.0.0.5574
ZoneAlarm undetected
No result reported
Engine 6.23-113519372
Zoner undetected
No result reported
Engine 2.2.2.0
alibabacloud type-unsupported
No result reported
Engine 2.2.0
huorong undetected
No result reported
Engine 698d98c:698d98c:fd748a7:fd748a7
tehtris type-unsupported
No result reported

File Signatures

SHA-256 6fb6569ccc4ffbc3afea3458de91318d68f187ca147ae5a345b8096ca675452f
MD5 6b8306dd4740725e8b007a62afb8d41a
SHA-1 c76e4a186a509cdbf787787c09268d5c10babb32
SSDEEP 196608:mQt6HNWCnDOVof7usBbchIiva0sQc7sCvva72emx:mn0VofnBwr1snsCnV
TLSH T167A6129EF75AA92FC87710720C6A5232514B4D02978797A7796C334C78BB6E80F4DBC8
VHASH a4e5d4451dbec51e4963d14afcba1c6b
PERMHASH e1adaaff8aa32906532864239496d9d76c74fc1f3a35eaf826c7fbd60d656341

File Intelligence

Type Description Android Human-friendly file type name based on multiple detection methods.
Type Extension apk Most likely file extension inferred from the content.
Type Tag android Primary type tag assigned by the classifier.
Type Tags executable, mobile, android, apk Additional type tags that describe the file content.
Magic Zip archive data, at least v2.0 to extract, compression method=deflate File signature result from magic bytes inspection.
TrID Android Package (40%), Java Archive (20%), VYM Mind Map (18.5%), Sweet Home 3D Design (generic) (15.5%), ZIP compressed archive (5.9%) TrID file type guesses with probabilities.
dhash 0000001c1e090c08 Perceptual hash used to compare visual similarity of files.
raw md5 0c08d3630a9ebd3cbb77f1217473c760 Raw MD5 hash of the file contents.
extensions xml (674), png (228), version (55), kotlin_builtins (8), ttf (7), json (5), properties (5), js (4), css (2), bin (1), dex (1), html (1), MF (1), p (1), prof (1), profm (1), r (1), RSA (1), SF (1), textproto (1), txt (1) File extensions found inside the APK and how many of each.
file types XML (674), PNG (228), unknown (95), DEX (1), HTML (1), Java Bytecode (1) Detected embedded file types and their counts.
highest datetime 2026-02-16 13:59:48 UTC Latest timestamp found among files inside the archive.
lowest datetime 1981-01-01 01:01:02 UTC Earliest timestamp found among files inside the archive.
num children 1121 Number of files contained within the archive.
type APK Container type detected for the analyzed file.
uncompressed size 13 MB Estimated total size of all files after extraction.

Sandbox

Sandbox Verdicts

Zenbox android
Harmless 92% confidence CLEAN

Deep Manifest Analysis

Activity Intents (1)

co.median.android.LaunchActivity
Actions
Main Activity Action: Start as a main entry point, does not expect to android.intent.action.MAIN
Categories
android.intent.category.LAUNCHER

Receiver Intents (2)

Profile installer Installs performance profiles to speed up app startup and hot paths. androidx.profileinstaller.ProfileInstallReceiver
Actions
Install performance profile Installs a profile that helps optimize app performance. androidx.profileinstaller.action.INSTALL_PROFILE
Skip profile install Skips profile installation for this build. androidx.profileinstaller.action.SKIP_FILE
Save performance profile Saves a profile generated during app usage. androidx.profileinstaller.action.SAVE_PROFILE
Benchmark operation Runs a profile installer benchmark operation. androidx.profileinstaller.action.BENCHMARK_OPERATION
co.median.android.AppUpgradeReceiver
Actions
My Package Replaced Broadcast Action: A new version of your application has been installed android.intent.action.MY_PACKAGE_REPLACED

Requested Permissions (7)

have full network access Allows the app to create network sockets and use custom network protocols. The browser and other applications provide means to send data to the internet, so this permission is not required to send data to the internet. android.permission.INTERNET
view network connections Allows the app to view information about network connections such as which networks exist and are connected. android.permission.ACCESS_NETWORK_STATE
read phone status and identity Allows the app to access the phone features of the device. This permission allows the app to determine the phone number and device IDs, whether a call is active, and the remote number connected by a call. android.permission.READ_PHONE_STATE
control vibration Allows the app to control the vibrator. android.permission.VIBRATE
Cloud messaging receive Allows the app to receive push messages via Google/Firebase Cloud Messaging. com.google.android.c2dm.permission.RECEIVE
Cloud messaging Allows the app to receive push messages (legacy C2DM/FCM). co.median.android.jbwolzj.permission.C2D_MESSAGE
Dynamic receiver access Internal app permission used to protect dynamic broadcast receivers. co.median.android.jbwolzj.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Activities (4)

co.median.android.LaunchActivity
co.median.android.MainActivity
co.median.android.AppLinksActivity
com.google.android.gms.common.api.GoogleApiActivity

Services (1)

co.median.android.DownloadService

Broadcast Receivers (2)

co.median.android.AppUpgradeReceiver co.median.android.AppUpgradeReceiver
Profile installer Installs performance profiles to speed up app startup and hot paths. androidx.profileinstaller.ProfileInstallReceiver

Content Providers (2)

androidx.core.content.FileProvider
androidx.startup.InitializationProvider

URL Endpoints (18)

http://www.google.com https://crbug.com/388824130 https://events.gonative.io/api/events/new https://gonative.io/unlicensed https://plus.google.com/ https://www.googleapis.com/auth/appstate https://www.googleapis.com/auth/datastoremobile https://www.googleapis.com/auth/drive https://www.googleapis.com/auth/drive.appdata https://www.googleapis.com/auth/drive.apps https://www.googleapis.com/auth/drive.file https://www.googleapis.com/auth/games https://www.googleapis.com/auth/games.firstparty https://www.googleapis.com/auth/games_lite https://www.googleapis.com/auth/plus.login https://www.googleapis.com/auth/plus.me https://www.googleapis.com/auth/userinfo.email https://www.googleapis.com/auth/userinfo.profile

Submission Details

Submitted At 2026-04-03
First Submission 2026-04-03
Last Submission 2026-04-03
Stored Until 2026-05-03
Names & Tags
________..apk apk reflection android obfuscated checks-gps telephony