So. I’m goon be quick. But I just want to say that the Smart Card Emulator is very dodgy. All of the links point to the right developer and the same repository on github, but the builds and available apks and their versions are all wrong. Also the dates don’t really make sense. I have uploaded the last tar to the totalvirus. And here are the results. Now. I know that 1/57 isn’t really that scarry. But the truth is that the tar from github is 20mb smaller and is clean on the same site.
I don’t know what’s happening with this site. But I was told that the site is secure. Well. I guess not so much.
The diff of the tarball is also normal. It’s 22MB vs 21MB, not 48MB vs 20MB. From the metadata you can see that we remove some files and checkout the submodules. You can reproduce the tarball with the steps in the metadata.
Well. I guess we’re not downloading the same tarball. Look I don’t have time for this. I just wanted to report what I have found.
If I made a mistake or the VirusTotal found a false positive, then this post is obsolete.