VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, VirSCAN can scan compressed files with password 'infected' or 'virus'.

Language
Server load
Server Load


File information
File Name : 体验馆.apk (File not down)
File Size :2124790 byte
File Type :application/jar
MD5:70418e0579b708ffcc59bd84f0eb6f29
SHA1:74726765995f4c5e988befb8e6cb94b83191df1e
  • 扫描结果
  • 权限
  • 文件行为分析
  • Scanner results
    Scanner results:34%Scanner(s) (11/32)found malware!        Behavior
    Time: 2017-11-30 09:15:43 (CST)
    VirSCANVirSCAN
    Scanner Engine Ver Sig Ver Sig Date Scan result Time
    antiy AVL SDK 2.0 1970-01-01 Found nothing 5
    asquared 9.0.0.4799 9.0.0.4799 2015-03-08 Win32.Tyhos.B 1
    avast 170303-1 4.7.4 2017-03-03 Found nothing 60
    avg 2109/14663 10.0.1405 2017-11-28 Found nothing 60
    baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 6
    baidusd 1.0 1.0 2017-03-22 HEUR:Trojan.Win32.Generic 5
    bitdefender 7.58879 7.90123 2015-01-16 Found nothing 60
    clamav 24081 0.97.5 2017-11-28 Found nothing 60
    drweb 5.0.2.3300 5.0.1.1 2017-11-04 Found nothing 60
    fortinet 5.4.247 2017-11-29 Found nothing 60
    fprot 4.6.2.117 6.5.1.5418 2016-02-05 Found nothing 60
    fsecure 2015-08-01-02 9.13 2015-08-01 Found nothing 60
    gdata 25.14967 25.14967 2017-11-30 Win32.Tyhos.A 13
    ikarus 3.02.14 V1.32.31.0 2017-11-29 Found nothing 60
    jiangmin 16.0.100 1.0.0.0 2017-11-29 Worm/Viking.Tail 2
    kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 60
    kingsoft 2.1 2.1 2017-11-29 Found nothing 60
    mcafee 8620 5400.1158 2017-08-12 Found nothing 60
    nod32 6485 3.0.21 2017-11-28 Found nothing 60
    panda 9.05.01 9.05.01 2017-11-28 Trj/Tyghos.A 4
    pcc 13.302.06 9.500-1005 2017-03-27 Found nothing 60
    qh360 1.0.1 1.0.1 1.0.1 Android mobile malware 2
    qqphone 1.0.0.0 1.0.0.0 2015-12-30 Found nothing 60
    quickheal 14.00 14.00 2017-11-18 Worm.Nestog 3
    rising 2912 2912 2017-09-22 Trojan.Win32.Generic.135269BD 5
    sophos 5.32 3.65.2 2016-10-10 Found nothing 60
    symantec 20151230.005 1.3.0.24 2015-12-30 Found nothing 60
    tachyon 9.9.9 9.9.9 2013-12-27 Win32.Tyhos.B- archive 3
    thehacker 6.8.0.5 6.8.0.5 2017-11-26 Trojan/Small.ncb 2
    tws 17.47.17308 1.0.2.2108 2017-11-29 W32.Tyhos.a.xdxh 14
    vba 3.12.29.5 beta 3.12.29.5 beta 2017-11-29 Found nothing 60
    virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 60
    Heuristic/Suspicious Exact
    NOTICE: Results are not 100% accurate and can be reported as a false positive by some scannerswhen and if malware is found. Please judge these results for yourself.
    Copy to clipboard
  • 权限列表
    许可名称信息
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.READ_EXTERNAL_STORAGE读外部存储器(如:SD卡)
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
  • 文件信息
    安全评分 :
    基本信息
    MD5:70418e0579b708ffcc59bd84f0eb6f29
    包名:com.itheima.tyg
    最低运行环境:Android 2.2.x
    版权:Android
    关键行为
    行为描述:直接获取CPU时钟
    详情信息:EAX = 0xd296950d, EDX = 0x000000b4
    EAX = 0xd2969559, EDX = 0x000000b4
    EAX = 0xd29695a5, EDX = 0x000000b4
    EAX = 0xd29695f1, EDX = 0x000000b4
    EAX = 0xd296963d, EDX = 0x000000b4
    EAX = 0xd2969689, EDX = 0x000000b4
    EAX = 0xd29696d5, EDX = 0x000000b4
    EAX = 0xd2969721, EDX = 0x000000b4
    EAX = 0xd296976d, EDX = 0x000000b4
    EAX = 0xd29697b9, EDX = 0x000000b4
    行为描述:获取窗口截图信息
    详情信息:Foreground window Info: HWND = 0x00010520, DC = 0x0c0101e7.
    文件行为
    行为描述:查找文件
    详情信息:FileName = C:\Windows\yxwj\*.MP3
    注册表行为
    行为描述:修改注册表
    详情信息:\REGISTRY\USER\S-*\Software\Microsoft\Multimedia\DrawDib\vga.drv 1920x973x32(BGR 0)
    其他行为
    行为描述:创建互斥体
    详情信息:CTF.LBES.MutexDefaultS-*
    CTF.Compart.MutexDefaultS-*
    CTF.Asm.MutexDefaultS-*
    CTF.Layouts.MutexDefaultS-*
    CTF.TMD.MutexDefaultS-*
    CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
    MSCTF.Shared.MUTEX.IOH
    行为描述:创建事件对象
    详情信息:EventName = DINPUTWINMM
    行为描述:打开互斥体
    详情信息:ShimCacheMutex
    行为描述:查找指定窗口
    详情信息:NtUserFindWindowEx: [Class,Window] = [WTWindow,KK辅助音效(如有声卡问题请咨询QQ:2687112516)]
    NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
    行为描述:打开事件
    详情信息:HookSwitchHookEnabledEvent
    CTF.ThreadMIConnectionEvent.000007E8.00000000.00000010
    CTF.ThreadMarshalInterfaceEvent.000007E8.00000000.00000010
    MSCTF.SendReceiveConection.Event.IOH.IC
    MSCTF.SendReceive.Event.IOH.IC
    行为描述:窗口信息
    详情信息:Pid = 2632, Hwnd=0x10520, Text = 确定, ClassName = Button.
    Pid = 2632, Hwnd=0x10524, Text = 运行时出错! 错误信息:无法找到指定DLL库文件“bass.dll”中的输出命令“BASS_GetDeviceInfo” , ClassName = Static.
    Pid = 2632, Hwnd=0x1051e, Text = 错误, ClassName = #32770.
    行为描述:获取窗口截图信息
    详情信息:Foreground window Info: HWND = 0x00010520, DC = 0x0c0101e7.
    行为描述:隐藏指定窗口
    详情信息:[Window,Class] = [,ComboLBox]
    [Window,Class] = [02,Button]
    [Window,Class] = [DJ搓碟,Button]
    [Window,Class] = [Ready go,Button]
    [Window,Class] = [110 热线,Button]
    [Window,Class] = [精神病热线,Button]
    [Window,Class] = [鸡叫进行曲,Button]
    [Window,Class] = [女骚麦,Button]
    [Window,Class] = [女人呻吟,Button]
    [Window,Class] = [女人吻麦,Button]
    [Window,Class] = [女孩哭声,Button]
    [Window,Class] = [八戒背媳妇,Button]
    [Window,Class] = [男人咳嗽,Button]
    [Window,Class] = [男人笑声,Button]
    [Window,Class] = [男人吻麦,Button]
    行为描述:直接获取CPU时钟
    详情信息:EAX = 0xd296950d, EDX = 0x000000b4
    EAX = 0xd2969559, EDX = 0x000000b4
    EAX = 0xd29695a5, EDX = 0x000000b4
    EAX = 0xd29695f1, EDX = 0x000000b4
    EAX = 0xd296963d, EDX = 0x000000b4
    EAX = 0xd2969689, EDX = 0x000000b4
    EAX = 0xd29696d5, EDX = 0x000000b4
    EAX = 0xd2969721, EDX = 0x000000b4
    EAX = 0xd296976d, EDX = 0x000000b4
    EAX = 0xd29697b9, EDX = 0x000000b4
    Activities
    活动名类型
    com.itheima.tyg.activity.SplashActivityandroid.intent.action.MAIN
    com.itheima.tyg.activity.SplashActivityandroid.intent.category.LAUNCHER
    危险函数
    函数名称信息
    java/net/URL;->openConnection连接URL
    java/net/HttpURLConnection;->connect连接URL
    HttpClient;->execute请求远程服务器
    DefaultHttpClient;->execute发送HTTP请求
    SmsManager;->sendTextMessage发送普通短信
    ContentResolver;->query读取联系人、短信等数据库
    权限列表
    许可名称信息
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.READ_EXTERNAL_STORAGE读外部存储器(如:SD卡)
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    服务列表
    名称
    com.itheima.tyg.service.MyService
    文件列表
    文件名 校验码
    assets/assets.exe 0xff6f425d
    res/drawable/btn_login.xml 0xd2500dfd
    res/layout/activity_camera.xml 0x4e3c2c9f
    res/layout/activity_huanjingqixiang.xml 0x3217ad5f
    res/layout/activity_login.xml 0xb5879561
    res/layout/activity_main.xml 0x376cf60
    res/layout/activity_setting.xml 0x28bd961a
    res/layout/activity_setting_4_shedingzhi.xml 0x191d85f1
    res/layout/activity_setting_5_shedingzhi.xml 0x4a658ba5
    res/layout/activity_setting_guangzhaozinengkongzhi.xml 0x3903a7c4
    res/layout/activity_setting_wenduzinengkongzhi.xml 0x149a2a88
    res/layout/activity_shodongkongzhi.xml 0xe7e39804
    res/layout/activity_splash.xml 0xca941aa0
    res/layout/activity_yujingxinxi.xml 0x49a26865
    res/layout/activity_zhinengkongzhi.xml 0x6a53eda2
    res/layout/activity_zhinengkongzhi_setting1.xml 0x86644b4e
    res/layout/activity_zhinengkongzhi_setting2.xml 0x91dc5924
    res/layout/activity_zhinengkongzhi_setting3.xml 0x73f800a7
    res/layout/activity_zhinengkongzhi_setting4.xml 0x5259fda1
    res/layout/activity_zhinengkongzhi_setting5.xml 0xe865ab95
    res/layout/gridview_item.xml 0x669a8d6d
    res/layout/set_activity.xml 0x3df59e1
    res/menu/main.xml 0xfdac168b
    AndroidManifest.xml 0xf5746369
    resources.arsc 0xcc01f582
    res/drawable-hdpi/activity_video_highspeedball_layout_titleball_background.png 0x6fde1997
    res/drawable-hdpi/activity_video_title.png 0x98a89a70
    res/drawable-hdpi/bg_atmosphere.png 0xe8175d68
    res/drawable-hdpi/bg_frame_descend_setting.png 0xeac3576a
    res/drawable-hdpi/bg_homepage.png 0x6e9a695f
    res/drawable-hdpi/bg_hospital.png 0x1114afaf
    res/drawable-hdpi/bg_payment.png 0xdaf772e7
    res/drawable-hdpi/btn_direction_bg.png 0xa1a05a27
    res/drawable-hdpi/btn_monitoring_select.png 0x1dadc5a4
    res/drawable-hdpi/btn_page_hover.9.png 0x6d67ede0
    res/drawable-hdpi/frame_atmosphere.9.png 0xd2804501
    res/drawable-hdpi/frame_setting.9.png 0xa6e5c154
    res/drawable-hdpi/hand.png 0x59f6213c
    res/drawable-hdpi/handtitle.png 0x89e807ff
    res/drawable-hdpi/ic_launcher.png 0xf248df62
    res/drawable-hdpi/icon_security.png 0xfd842b5
    res/drawable-hdpi/icon_setting.png 0xdd5dc264
    res/drawable-hdpi/icon_surveillance.png 0x4b390878
    res/drawable-hdpi/icon_weather.png 0xa86e016c
    res/drawable-hdpi/img_weather.png 0x3237724d
    res/drawable-hdpi/pic_water.png 0xee6c5ad0
    res/drawable-hdpi/setting_logo.png 0xbc24e7d0
    res/drawable-hdpi/soc.jpg 0x2de7ce7a
    res/drawable-hdpi/splash.png 0xc94910e8
    res/drawable-hdpi/splash_land.png 0x80aea76c
    res/drawable-hdpi/thermometer.png 0xdd874aa2
    res/drawable-hdpi/znkz.jpg 0x82d5f4b
    res/drawable-ldpi/activity_environment_dataset_normal.png 0x7afd72f3
    res/drawable-ldpi/activity_environment_dataset_selected.png 0xd9309f88
    res/drawable-ldpi/btn_alter.xml 0x15142682
    res/drawable-ldpi/btn_close_switch.xml 0x5e0cbd17
    res/drawable-ldpi/btn_control_down.png 0x43763fe0
    res/drawable-ldpi/btn_control_down_selected.png 0x40a9f3ac
    res/drawable-ldpi/btn_control_left.png 0x4334b2d
    res/drawable-ldpi/btn_control_left_selected.png 0xf3e85d85
    res/drawable-ldpi/btn_control_right.png 0x91c3afd4
    res/drawable-ldpi/btn_control_right_selected.png 0xf083cc29
    res/drawable-ldpi/btn_control_up.png 0x9395627
    res/drawable-ldpi/btn_control_up_selected.png 0xc9051d04
    res/drawable-ldpi/btn_controls.xml 0x628b81f0
    res/drawable-ldpi/btn_down.xml 0x2f7257dc
    res/drawable-ldpi/btn_left.xml 0xefae946e
    res/drawable-ldpi/btn_open_switch.xml 0x378ffa15
    res/drawable-ldpi/btn_return.xml 0x1e10b1fd
    res/drawable-ldpi/btn_right.xml 0xe8d1fc09
    res/drawable-ldpi/btn_set.xml 0xd8d5e97a
    res/drawable-ldpi/btn_smart_switch_close.xml 0xfd7532b8
    res/drawable-ldpi/btn_smart_switch_open.xml 0xadf7a044
    res/drawable-ldpi/btn_toggle_enabled.png 0xbc928bdc
    res/drawable-ldpi/btn_toggle_off.png 0xc3c1946a
    res/drawable-ldpi/btn_toggle_on.png 0x1c1443fd
    res/drawable-ldpi/btn_up.xml 0x34afa187
    res/drawable-ldpi/btn_user.xml 0xee9fa8d4
    res/drawable-ldpi/btn_zhinengkongzhi_setting.xml 0x9e28a829
    res/drawable-ldpi/button_return_normal.png 0xa201d054
    res/drawable-ldpi/button_return_press.png 0x70d5c645
    res/drawable-ldpi/button_setting_normal.png 0x8b6cc6ac
    res/drawable-ldpi/button_setting_press.png 0xd1838657
    res/drawable-ldpi/button_user_normal.png 0x47cdcc7c
    res/drawable-ldpi/button_user_press.png 0xfbe777bc
    res/drawable-ldpi/c_btn_toggle_sysset_warn_off.png 0x89e46084
    res/drawable-ldpi/c_btn_toggle_sysset_warn_on.png 0x27211d16
    res/drawable-ldpi/light_off.png 0x92fbafd5
    res/drawable-ldpi/light_on.png 0xa5a2f1bb
    res/drawable-ldpi/set_button_alter_normal.png 0x93ec60c2
    res/drawable-ldpi/set_button_alter_press.png 0xae532741
    res/drawable-ldpi/time_bg.png 0x6d7d20ec
    res/drawable-mdpi/ic_launcher.png 0x6a84dfd9
    res/drawable-xhdpi/ic_launcher.png 0xa227fc8a
    res/drawable-xxhdpi/ic_launcher.png 0x2a4a99d1
    res/layout-land/activity_splash.xml 0x53a96acb
    classes.dex 0xe55156b0
    META-INF/MANIFEST.MF 0xfbdafb23
    META-INF/CERT.SF 0xd8e8794f
    META-INF/CERT.RSA 0x52383bce
    运行截图
    VirSCAN

About VirSCAN | Privacy Policy | Contact us | link | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

京公网安备 11010802020746号