VirSCAN VirSCAN

1, Você pode enviar qualquer arquivo, porém com um limite de 20Mb por arquivo.
2, VirSCAN suporta arquivos Rar/Zip, porém ele deve conter menos que 20 arquivos.
3, VirSCAN consegue verificar arquivos compactados com senha 'infected' ou 'virus'.

Idioma
Carga do sistema
Server Load



Informações do Arquivo
Nome do Arquivo :f1.apk (File not down)
Tamanho do Arquivo :9636942 byte
Tipo do Arquivo :application/zip
MD5:7d8af7a72571be7fd56f43315818f183
SHA1:8904bd7bc9e311e3b3159cdc1a924137f982c2e0
  • 扫描结果
  • 权限
  • 文件行为分析
  • Resultado da Verificação
    Resultado da Verificação:0%Software(0/32)encontrou código malicioso!
    Relatório de análise de comportamento:         Análise do arquivo Habo
    Tempo: 2018-08-11 01:14:00 (CST)
    VirSCANVirSCAN
    Software Versão Versão Ass. Data Ass. Resultado da verificação Tempo
    antiy AVL SDK 2.0 AVL SDK 2.0 2018-05-1 Nada encontrado 9
    avast 170303-1 4.7.4 2017-03-03 Nada encontrado 31
    avg 2109/10757 10.0.1405 2015-12-26 Nada encontrado 1
    baidu 2.0.1.0 4.1.3.52192 2018-06-20 Nada encontrado 3
    baidusd 1.0 1.0 2018-06-21 Nada encontrado 1
    bitdefender 7.141118 7.141118 2018-08-11 Nada encontrado 7
    clamav 24827 0.97.5 2018-08-10 Nada encontrado 4
    drweb 5.0.2.3300 5.0.1.1 2016-09-20 Nada encontrado 53
    emsisoft 9.0.0.4799 9.0.0.4799 2018-06-21 Nada encontrado 2
    fortinet 1.000, 61.311, 61.286, 61.310 5.4.247 2018-08-10 Nada encontrado 6
    fprot 4.6.2.117 6.5.1.5418 2014-12-31 Nada encontrado 1
    fsecure 2015-08-01-02 9.13 2018-08-10 Nada encontrado 2
    gdata 25.18052 25.18052 2018-08-10 Nada encontrado 16
    ikarus 4.00.09 V1.32.31.0 2018-08-10 Nada encontrado 1
    jiangmin 16.0.100 1.0.0.0 2018-07-11 Nada encontrado 2
    kaspersky 5.5.33 5.5.33 2014-04-01 Nada encontrado 20
    kingsoft 2.1 2.1 2018-06-20 Nada encontrado 5
    mcafee 8974 5400.1158 2018-08-03 Nada encontrado 12
    nod32 7844 3.0.21 2018-08-07 Nada encontrado 2
    panda 9.05.01 9.05.01 2018-07-15 Nada encontrado 5
    pcc 11.380.07 9.500-1005 2014-12-31 Nada encontrado 2
    qh360 1.0.1 1.0.1 2018-06-20 Nada encontrado 8
    qqphone 1.0.0.0 1.0.0.0 2014-12-09 Nada encontrado 1
    quickheal 14.00 14.00 2018-08-07 Nada encontrado 4
    rising 3926 3926 2018-08-09 Nada encontrado 2
    sophos 4.62 3.16.1 2016-09-20 Nada encontrado 12
    symantec 20151230.005 1.3.0.24 2015-12-30 Nada encontrado 1
    tachyon 9.9.9 9.9.9 2013-12-27 Nada encontrado 5
    thehacker 6.8.0.5 6.8.0.5 2018-07-12 Nada encontrado 2
    tws 17.47.17308 1.0.2.2108 2018-08-09 Nada encontrado 14
    vba 3.12.29.3 beta 3.12.29.3 beta 2016-09-19 Nada encontrado 5
    virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Nada encontrado 20
    Heuristic/Suspicious Exact
    AVISO: Alguns softwares podem apresentar um falso positivo quando reportam um código malicioso, por isso você deve julgá-la por si mesmo.
    Copiar para a 'Área de Transferência'
  • 权限列表
    许可名称信息
    android.permission.ACCESS_COARSE_LOCATION获取粗略的位置(通过wifi、基站)
    android.permission.ACCESS_FINE_LOCATION获取精确的位置(通过GPS)
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.ACCESS_LOCATION_EXTRA_COMMANDS访问额外的定位指令
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.BATTERY_STATS电量统计
    android.permission.BIND_ACCESSIBILITY_SERVICE绑定辅助服务
    android.permission.BIND_DEVICE_ADMIN绑定设备管理
    android.permission.BROADCAST_STICKY发送持久广播
    android.permission.CAMERA访问照相机设备
    android.permission.CHANGE_CONFIGURATION修改当前设置(如:本地化)
    android.permission.CHANGE_NETWORK_STATE变更网络状态
    android.permission.CHANGE_WIFI_STATE改变WIFI连接状态
    android.permission.CLEAR_APP_CACHE清除应用缓存
    android.permission.DISABLE_KEYGUARD禁用键盘锁
    android.permission.EXPAND_STATUS_BAR操控状态栏
    android.permission.FLASHLIGHT访问闪光灯
    android.permission.GET_PACKAGE_SIZE获取应用大小
    android.permission.GET_TASKS获取有关当前或最近运行的任务信息
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.KILL_BACKGROUND_PROCESSES关闭后台进程
    android.permission.MODIFY_AUDIO_SETTINGS修改声音设置
    android.permission.PROCESS_OUTGOING_CALLS监视、修改有关拨出电话
    android.permission.READ_EXTERNAL_STORAGE读外部存储器(如:SD卡)
    android.permission.READ_PHONE_STATE读取电话状态
    android.permission.REORDER_TASKS系统任务排序
    android.permission.SYSTEM_ALERT_WINDOW显示系统窗口
    android.permission.VIBRATE允许设备震动
    android.permission.WAKE_LOCK手机屏幕关闭后后台进程仍运行
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
  • 文件信息
    安全评分 :
    基本信息
    MD5:7d8af7a72571be7fd56f43315818f183
    包名:com.caomeitv.playboy
    最低运行环境:Android 4.0, 4.0.1, 4.0.2
    版权:
    关键行为
    行为描述:获取TickCount值
    详情信息:TickCount = 246109, SleepMilliseconds = 250.
    进程行为
    行为描述:创建新文件进程
    详情信息:[0x00000ad4]ImagePath = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-LV7E7.tmp\996E.tmp, CmdLine = "C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-LV7E7.tmp\996E.tmp" /SL5="$30340,6701140,120320,C:\Documents and Settings\Administrator\Local Settings\%temp%\****.exe"
    文件行为
    行为描述:创建文件
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temp\is-LV7E7.tmp\996E.tmp
    行为描述:创建可执行文件
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temp\is-LV7E7.tmp\996E.tmp
    行为描述:修改文件内容
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temp\is-LV7E7.tmp\996E.tmp ---> Offset = 0
    C:\Documents and Settings\Administrator\Local Settings\Temp\is-LV7E7.tmp\996E.tmp ---> Offset = 65536
    C:\Documents and Settings\Administrator\Local Settings\Temp\is-LV7E7.tmp\996E.tmp ---> Offset = 131072
    C:\Documents and Settings\Administrator\Local Settings\Temp\is-LV7E7.tmp\996E.tmp ---> Offset = 196608
    C:\Documents and Settings\Administrator\Local Settings\Temp\is-LV7E7.tmp\996E.tmp ---> Offset = 262144
    行为描述:查找文件
    详情信息:FileName = C:\DOCUME~1
    FileName = C:\DOCUME~1\ADMINI~1
    FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1
    FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp
    FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-LV7E7.tmp
    FileName = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-LV7E7.tmp\996E.tmp
    其他行为
    行为描述:创建互斥体
    详情信息:oleacc-msaa-loaded
    CTF.LBES.MutexDefaultS-*
    CTF.Compart.MutexDefaultS-*
    CTF.Asm.MutexDefaultS-*
    CTF.Layouts.MutexDefaultS-*
    CTF.TMD.MutexDefaultS-*
    CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
    MSCTF.Shared.MUTEX.IOH
    MSCTF.Shared.MUTEX.INK
    行为描述:创建事件对象
    详情信息:EventName = Global\userenv: User Profile setup event
    EventName = MSCTF.SendReceive.Event.INK.IC
    EventName = MSCTF.SendReceiveConection.Event.INK.IC
    行为描述:查找指定窗口
    详情信息:NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
    NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
    NtUserFindWindowEx: [Class,Window] = [OleMainThreadWndClass,]
    行为描述:枚举窗口
    详情信息:N/A
    行为描述:获取TickCount值
    详情信息:TickCount = 246109, SleepMilliseconds = 250.
    行为描述:打开事件
    详情信息:HookSwitchHookEnabledEvent
    CTF.ThreadMIConnectionEvent.000007E8.00000000.00000010
    CTF.ThreadMarshalInterfaceEvent.000007E8.00000000.00000010
    MSCTF.SendReceiveConection.Event.IOH.IC
    MSCTF.SendReceive.Event.IOH.IC
    行为描述:窗口信息
    详情信息:Pid = 2772, Hwnd=0x1035a, Text = Select the language to use during the installation:, ClassName = TNewStaticText.
    Pid = 2772, Hwnd=0x10352, Text = English, ClassName = TNewComboBox.
    Pid = 2772, Hwnd=0x10358, Text = OK, ClassName = TNewButton.
    Pid = 2772, Hwnd=0x10356, Text = Cancel, ClassName = TNewButton.
    Pid = 2772, Hwnd=0x20350, Text = Select Setup Language, ClassName = TSelectLanguageForm.
    行为描述:可执行文件签名信息
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temp\is-LV7E7.tmp\996E.tmp(签名验证: 未通过)
    行为描述:调用Sleep函数
    详情信息:[1]: MilliSeconds = 50.
    [2]: MilliSeconds = 250.
    [3]: MilliSeconds = 250.
    [4]: MilliSeconds = 250.
    [5]: MilliSeconds = 250.
    [6]: MilliSeconds = 250.
    [7]: MilliSeconds = 250.
    [8]: MilliSeconds = 250.
    [9]: MilliSeconds = 250.
    [10]: MilliSeconds = 250.
    行为描述:隐藏指定窗口
    详情信息:[Window,Class] = [,ComboLBox]
    行为描述:可执行文件MD5
    详情信息:C:\Documents and Settings\Administrator\Local Settings\Temp\is-LV7E7.tmp\996E.tmp ---> 7db8ea736f68d447dab32e989e02fd2d
    行为描述:打开互斥体
    详情信息:ShimCacheMutex
    Activities
    活动名类型
    com.embarcadero.firemonkey.FMXNativeActivityandroid.intent.action.MAIN
    com.embarcadero.firemonkey.FMXNativeActivityandroid.intent.category.LAUNCHER
    危险函数
    函数名称信息
    Camera;->open开启相机
    ContentResolver;->query读取联系人、短信等数据库
    android/app/NotificationManager;->notify信息通知栏
    getRuntime获取命令行环境
    LocationManager;->getLastKnownLocation获取地址位置
    java/net/URL;->openConnection连接URL
    java/net/HttpURLConnection;->connect连接URL
    权限列表
    许可名称信息
    android.permission.ACCESS_COARSE_LOCATION获取粗略的位置(通过wifi、基站)
    android.permission.ACCESS_FINE_LOCATION获取精确的位置(通过GPS)
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.ACCESS_LOCATION_EXTRA_COMMANDS访问额外的定位指令
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.BATTERY_STATS电量统计
    android.permission.BIND_ACCESSIBILITY_SERVICE绑定辅助服务
    android.permission.BIND_DEVICE_ADMIN绑定设备管理
    android.permission.BROADCAST_STICKY发送持久广播
    android.permission.CAMERA访问照相机设备
    android.permission.CHANGE_CONFIGURATION修改当前设置(如:本地化)
    android.permission.CHANGE_NETWORK_STATE变更网络状态
    android.permission.CHANGE_WIFI_STATE改变WIFI连接状态
    android.permission.CLEAR_APP_CACHE清除应用缓存
    android.permission.DISABLE_KEYGUARD禁用键盘锁
    android.permission.EXPAND_STATUS_BAR操控状态栏
    android.permission.FLASHLIGHT访问闪光灯
    android.permission.GET_PACKAGE_SIZE获取应用大小
    android.permission.GET_TASKS获取有关当前或最近运行的任务信息
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.KILL_BACKGROUND_PROCESSES关闭后台进程
    android.permission.MODIFY_AUDIO_SETTINGS修改声音设置
    android.permission.PROCESS_OUTGOING_CALLS监视、修改有关拨出电话
    android.permission.READ_EXTERNAL_STORAGE读外部存储器(如:SD卡)
    android.permission.READ_PHONE_STATE读取电话状态
    android.permission.REORDER_TASKS系统任务排序
    android.permission.SYSTEM_ALERT_WINDOW显示系统窗口
    android.permission.VIBRATE允许设备震动
    android.permission.WAKE_LOCK手机屏幕关闭后后台进程仍运行
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    Providers
    名字信息
    android.support.v4.content.FileProvider
    文件列表
    文件名 校验码
    META-INF/MANIFEST.MF 0x93cf4c3
    META-INF/CAOMEITV.SF 0xaba389ed
    META-INF/CAOMEITV.RSA 0x6ea23538
    AndroidManifest.xml 0xe3e3d5ea
    classes.dex 0xb22dd017
    lib/armeabi-v7a/libplayer.so 0xdd867ff3
    lib/armeabi/libplayer.so 0xae7d68da
    lib/mips/libplayer.so 0x4b4fa900
    res/drawable-xxhdpi-v4/ic_launcher.png 0x6a7a7b8c
    res/xml/file_paths.xml 0x5db85abb
    resources.arsc 0xc2317e9e
    运行截图
    VirSCAN

Sobre o VirSCAN | Política de Privacidade | Contate-nos | 友情链接 | Ajude o VirSCAN
Traduzido por Luis A S C Junior, (Brasil)
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号