this post was submitted on 14 Jul 2025
52 points (96.4% liked)

Piracy: ꜱᴀɪʟ ᴛʜᴇ ʜɪɢʜ ꜱᴇᴀꜱ

62787 readers
183 users here now

⚓ Dedicated to the discussion of digital piracy, including ethical problems and legal advancements.

Rules • Full Version

1. Posts must be related to the discussion of digital piracy

2. Don't request invites, trade, sell, or self-promote

3. Don't request or link to specific pirated titles, including DMs

4. Don't submit low-quality posts, be entitled, or harass others

Loot, Pillage, & Plunder

📜 c/Piracy Wiki (Community Edition):

🏴‍☠️ Other communities

FUCK ADOBE!

Torrenting/P2P:

Gaming:

💰 Please help cover server costs.

Ko-Fi Liberapay
Ko-fi Liberapay

founded 2 years ago
MODERATORS
db0@lemmy.dbzer0.com
sunbrothersco@lemmy.dbzer0.com
dataprolet@lemmy.dbzer0.com
Flatworm7591@lemmy.dbzer0.com
RandomLegend@lemmy.dbzer0.com
Andromxda@lemmy.dbzer0.com
CosmicTurtle0@lemmy.dbzer0.com
tenchiken@lemmy.dbzer0.com
52
Noob question: How do you ensure that large executable files, such as .apks (different from apk), are safe? (self.piracy)
submitted 1 day ago by admin to c/piracy@lemmy.dbzer0.com
17 comments fedilink hide all child comments
 

Virus total limit is 600mb.

all 18 comments
sorted by: hot top controversial new old
[–] sp3ctr4l@lemmy.dbzer0.com 6 points 17 hours ago* (last edited 17 hours ago)

Run them in a test sandbox environment, maybe run some network analytics to see if weird outbound or inbound calls start getting made... hope they are not more clever than your sandbox environment.

For APKs specifically... official support for Hypatia from the original team ended last year, but a 'MaintainTeam Organization' seems to be attempting to pick up the slack, and keep updating with new malware signatures.

https://apt.izzysoft.de/fdroid/index/apk/org.maintainteam.hypatia

https://github.com/MaintainTeam/Hypatia

... not sure if its... actually getting regular updates though.

EDIT: derp, yeah

Also, as upstroke says, do a hash comparison from the actual proper source to verify you aren't getting a malformed or spoof version of whatever APK.

[–] upstroke4448@lemmy.dbzer0.com 5 points 19 hours ago

Verify their hash signature.

[–] char_stats@discuss.tchncs.de 16 points 1 day ago

By making sure (as much as you possibly could) the source you got it from is safe.

You'll reduce the risk.

[–] ogmios@sh.itjust.works 36 points 1 day ago (1 children)

That's the fun part!

[–] admin 13 points 1 day ago (1 children)

So russian roulette it is.

[–] ogmios@sh.itjust.works 5 points 1 day ago (1 children)

Just run them on a machine you don't care about, if you're concerned.

[–] pipes@sh.itjust.works 4 points 1 day ago

This, and/or in a work profile (Shelter), or even better a separate android user

[–] SheeEttin@lemmy.zip 16 points 1 day ago* (last edited 1 day ago)

Apks can be unpacked. There are plenty of offline scanners with high or no size limits too.

There are probably also Android-specific scanners.

[–] hexagonwin@lemmy.sdf.org 15 points 1 day ago

I don't. I just consider them compromised and block network connection. Usually that works fine unless it's a ransomware or something..

[–] LodeMike 5 points 1 day ago

IDK install it on a VM?

[–] Aatube@kbin.melroy.org 4 points 1 day ago

religion

[–] LodeMike 3 points 1 day ago (1 children)

What the fuck kind of program is that large?

[–] admin 2 points 1 day ago (2 children)

Games

[–] LodeMike 3 points 1 day ago

Oh. Split the .apks apart. That might help.

[–] LodeMike 1 points 1 day ago (1 children)

What kind?

[–] admin 1 points 1 day ago

subnautica

[–] tias@discuss.tchncs.de 1 points 1 day ago

APK and APKS are just renamed zip files