VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

File information
File Name :极简光速桌面1.38.apk (File not down)
File Size :518370 byte
File Type :application/jar
MD5:594a15d75505d9711bc05f3f581df73e
SHA1:3f2c0029d5837fa9da4bb3c83dec689320f70b1e
  • 扫描结果
  • 权限
  • 文件行为分析
  • Scanner results
    Scanner results:0%Scanner(s) (0/32)found malware!
    Behavior analysis report:         Habo file analysis
    Time: 2015-03-12 01:22:51 (CST)
    VirSCANVirSCAN
    Scanner Engine Ver Sig Ver Sig Date Scan result Time
    antiy AVL SDK 3.0 1970-01-01 Found nothing 60
    asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Found nothing 60
    avast 141231-0 4.7.4 2014-12-31 Found nothing 60
    avg 2109/8133 10.0.1405 2014-11-26 Found nothing 6
    baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 60
    baidusd 1.0 1.0 2014-04-02 Found nothing 60
    bitdefender 7.58469 7.90123 2014-12-25 Found nothing 1
    clamav 19745 0.97.5 2014-12-07 Found nothing 1
    drweb 5.0.2.3300 5.0.1.1 2014-12-31 Found nothing 44
    fortinet 23.345, 23.345 5.1.158 2014-12-08 Found nothing 1
    fprot 4.6.2.117 6.5.1.5418 2014-12-31 Found nothing 2
    fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 13
    gdata 25.473 25.473 2015-03-01 Found nothing 60
    ikarus 1.06.01 V1.32.31.0 2014-12-08 Found nothing 6
    jiangmin 16.0.100 1.0.0.0 2014-08-20 Found nothing 60
    kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 31
    kingsoft 2.1 2.1 2013-09-22 Found nothing 60
    mcafee 7638 5400.1158 2014-11-30 Found nothing 31
    nod32 0920 3.0.21 2014-12-23 Found nothing 4
    panda 9.05.01 9.05.01 2014-12-31 Found nothing 60
    pcc 11.380.07 9.500-1005 2014-12-31 Found nothing 2
    qh360 1.0.1 1.0.1 1.0.1 Found nothing 60
    qqphone 1.0.0.0 1.0.0.0 2014-12-09 Found nothing 1
    quickheal 14.00 14.00 2014-12-31 Found nothing 60
    rising 25.46.06.04 25.46.06.04 2014-12-28 Found nothing 60
    sophos 5.08 3.55.0 2014-12-01 Found nothing 6
    symantec 20141230.001 1.3.0.24 2014-12-30 Found nothing 1
    tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 60
    thehacker 6.8.0.5 6.8.0.5 2014-12-29 Found nothing 60
    tws 17.47.17308 1.0.2.2108 2014-12-08 Found nothing 60
    virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 22
    Heuristic/Suspicious Exact
    NOTICE: Results are not 100% accurate and can be reported as a false positive by some scannerswhen and if malware is found. Please judge these results for yourself.
  • 权限列表
    许可名称信息
    android.permission.CALL_PHONE拨打电话
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    android.permission.RECEIVE_BOOT_COMPLETED接收开机启动广播
    android.permission.RESTART_PACKAGES重启其他程序
    android.permission.KILL_BACKGROUND_PROCESSES关闭后台进程
    android.permission.READ_PHONE_STATE读取电话状态
    android.permission.FLASHLIGHT访问闪光灯
    android.permission.CAMERA访问照相机设备
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.SYSTEM_ALERT_WINDOW显示系统窗口
    android.permission.RECEIVE_SMS监控接收短信
    android.permission.READ_SMS读取短信
    android.permission.WRITE_SMS写短信
  • 文件信息
    安全评分 :77
    基本信息
    MD5:594a15d75505d9711bc05f3f581df73e
    包名:com.liut.small_laucher
    最低运行环境:Android 2.1.x
    版权:
    关键行为
    行为描述:隐藏指定窗口
    详情信息:[Window,Class] = [Initializing...,#32770]
    [Window,Class] = [Debug,#32770]
    [Window,Class] = [&Help,Button]
    进程行为
    行为描述:创建新文件进程
    详情信息:ImagePath = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\_ir_sf_temp_0\irsetup.exe, CmdLine = "C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\_ir_sf_temp_0\irsetup.exe" __IRAOFF:939554 "__IRAFN:c:\%temp%\1414437871.491094.exe" "__IRCT:2" "__IRTSS:0" "__IRSID:S-1-5-21-1482476501-1645522239-14
    文件行为
    行为描述:写权限映射文件
    详情信息:Local\UrlZonesSM_Administrator
    行为描述:创建可执行文件
    详情信息:C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\_ir_sf_temp_0\irsetup.exe
    行为描述:修改文件内容
    详情信息:C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\_ir_sf_temp_0\irsetup.dat---> Offset = 98304
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\_ir_sf_temp_0\IRIMG1.BMP---> Offset = 65536
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\_ir_sf_temp_0\IRIMG2.BMP---> Offset = 98304
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\_ir_sf_temp_0\License Agreement.txt---> Offset = 0
    注册表行为
    行为描述:修改注册表
    详情信息:\REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\X\BaseClass
    \REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\ShellNoRoam\MUICache\C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\_ir_sf_temp_0\irsetup.exe
    其他行为
    行为描述:创建互斥体
    详情信息:Local\ZonesCounterMutex
    Local\ZoneAttributeCacheCounterMutex
    Local\ZonesCacheCounterMutex
    Local\ZonesLockedCacheCounterMutex
    行为描述:窗口信息
    详情信息:Pid = 1864, Hwnd=0xb0184, Text = &Help, ClassName = Button.
    Pid = 1864, Hwnd=0xa01aa, Text = < &Back, ClassName = Button.
    Pid = 1864, Hwnd=0xb01b0, Text = &Next >, ClassName = Button.
    Pid = 1864, Hwnd=0xa018c, Text = &Cancel, ClassName = Button.
    Pid = 1864, Hwnd=0xb01c6, Text = jv16 PowerTools 2010 Setup, ClassName = Afx:00400000:3:00010011:01900015:002001B9.
    行为描述:隐藏指定窗口
    详情信息:[Window,Class] = [Initializing...,#32770]
    [Window,Class] = [Debug,#32770]
    [Window,Class] = [&Help,Button]
    行为描述:打开图片文件
    详情信息:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\_ir_sf_temp_0\IRIMG1.BMP
    \DOCUME~1\ADMINI~1\LOCALS~1\Temp\_ir_sf_temp_0\IRIMG2.BMP
    行为描述:获取系统权限
    详情信息:SE_LOAD_DRIVER_PRIVILEGE
    危险行为
    行为描述:执行系统命令
    详情信息:su
    动态列表行为
    行为描述:启动服务
    详情信息:com.android.musicfx.Compatibility$Service
    com.liut.small_laucher.service.IdleService
    com.android.mms.transaction.SmsReceiverService
    行为描述:读取文件
    详情信息:path:/proc/783/cmdline length:105
    path:/proc/798/cmdline length:105
    path:/proc/810/cmdline length:105
    path:/proc/840/cmdline length:105
    path:/proc/853/cmdline length:105
    path:/proc/877/cmdline length:105
    path:/proc/879/cmdline length:105
    path:/proc/915/cmdline length:105
    path:/proc/917/cmdline length:105
    行为描述:写入文件
    详情信息:path:/data/data/com.android.gallery3d/shared_prefs/com.android.gallery3d_preferences.xml length:105
    path:/data/data/com.android.musicfx/shared_prefs/musicfx.xml length:105
    path:/data/data/com.android.gallery3d/shared_prefs/com.android.gallery3d_preferences.xml length:105
    path:pipe:[3593] length:15
    path:pipe:[3593] length:10
    行为描述:数据泄露
    详情信息:sink:File operation:write data:data:<?xml version='1.0' encoding='utf-8' standalone='yes' ?> <map> <string name="imei">357242043237511</
    sink:File operation:write data:data:<?xml version='1.0' encoding='utf-8' standalone='yes' ?> <map> <int name="FrameTopInt" value="50" />
    行为描述:类加载
    详情信息:path:/system/app/PicoTts.apk
    path:/system/app/MusicFX.apk
    path:/system/framework/am.jar
    path:/data/app/com.liut.small_laucher-1.apk
    行为描述:执行系统命令
    详情信息:su
    行为描述:初始化Intent
    详情信息:Landroid/content/Context;=com.liut.small_laucher.MyApplication@41541220 | Ljava/lang/Class;=class com.liut.small_laucher.service.IdleService
    Ljava/lang/String;=android.intent.action.MAIN | Landroid/net/Uri;=null
    行为描述:获取设备ID
    详情信息:357242043237511
    Activities
    活动名类型
    com.liut.small_laucher.activity.LaucherActivityandroid.intent.action.MAIN
    com.liut.small_laucher.activity.LaucherActivityandroid.intent.category.HOME
    com.liut.small_laucher.activity.LaucherActivityandroid.intent.category.DEFAULT
    com.liut.small_laucher.activity.LaucherActivityandroid.intent.category.LAUNCHER
    危险函数
    函数名称信息
    TelephonyManager;->getDeviceId搜集用户手机IMEI码、电话号码、系统版本号等信息
    android/app/NotificationManager;->notify信息通知栏
    ContentResolver;->delete删除短信、联系人
    ContentResolver;->query读取联系人、短信等数据库
    Camera;->open开启相机
    getRuntime获取命令行环境
    java/lang/Runtime;->exec执行字符串命令
    SmsManager;->sendTextMessage发送普通短信
    ActivityManager;->restartPackage中断进程,可用于关闭杀软
    ActivityManager;->killBackgroundProcesses中断进程,可用于关闭杀软
    HttpClient;->execute请求远程服务器
    java/net/URL;->openConnection连接URL
    java/net/HttpURLConnection;->connect连接URL
    启动方式
    名称信息
    com.liut.small_laucher.receiver.SMSBroadcastReceiver监控短信(收到短信)启动服务
    com.liut.small_laucher.receiver.BootReceiver开机启动服务
    com.liut.small_laucher.receiver.AppInstalledReceiver应用安装时启动服务
    com.liut.small_laucher.receiver.AppInstalledReceiver应用卸载时启动服务
    权限列表
    许可名称信息
    android.permission.CALL_PHONE拨打电话
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    android.permission.RECEIVE_BOOT_COMPLETED接收开机启动广播
    android.permission.RESTART_PACKAGES重启其他程序
    android.permission.KILL_BACKGROUND_PROCESSES关闭后台进程
    android.permission.READ_PHONE_STATE读取电话状态
    android.permission.FLASHLIGHT访问闪光灯
    android.permission.CAMERA访问照相机设备
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.SYSTEM_ALERT_WINDOW显示系统窗口
    android.permission.RECEIVE_SMS监控接收短信
    android.permission.READ_SMS读取短信
    android.permission.WRITE_SMS写短信
    服务列表
    名称
    com.liut.small_laucher.service.MyNotifyService
    com.liut.small_laucher.service.PowerOffService
    com.liut.small_laucher.service.AdjustPopupService
    com.liut.small_laucher.service.IdleService
    文件列表
    文件名 校验码
    assets/citys.txt 0x51a70d63
    res/drawable/app_null_selector.xml 0x7a2ef802
    res/drawable/app_null_shape.xml 0x1fdde4c6
    res/drawable/app_wallpaper_selector.xml 0xe0871923
    res/drawable/apptext2_selector.xml 0x536a8b83
    res/drawable/bg_shape.xml 0x224eb544
    res/drawable/button_background.xml 0xb637717a
    res/drawable/button_dock_selector.xml 0x98742c55
    res/drawable/button_dock_selector2.xml 0x4e2a3e5e
    res/drawable/dialog_shape.xml 0xb7cb6f5b
    res/drawable/gridview_null_selector.xml 0x7a2ef802
    res/drawable/gridview_selector.xml 0x2f203e03
    res/drawable/gridview_selector2.xml 0xf650791b
    res/drawable/gridview_selector22.xml 0xe90ffa1c
    res/drawable/gridview_selector3.xml 0xa6aa3a85
    res/drawable/list_selector.xml 0x6fff1e27
    res/drawable/shape001.xml 0x38be62ca
    res/drawable/shape002.xml 0x9234696
    res/drawable/vol_background.xml 0x7b2cd94a
    res/drawable/vol_button.9.png 0x9b48cb15
    res/drawable/vol_button_pressed.9.png 0xb8ac0b61
    res/layout/adjust_height.xml 0xaf49e3d0
    res/layout/app_folder_dialog.xml 0x37bea5a4
    res/layout/app_item.xml 0x7e4d4016
    res/layout/app_item_folder.xml 0x4e02078c
    res/layout/app_item_null.xml 0x3da0afe0
    res/layout/app_item_text.xml 0xfd35360c
    res/layout/applistviewitem.xml 0x4c80bee
    res/layout/audio.xml 0xd4b32d62
    res/layout/blank.xml 0xae406272
    res/layout/dock_dialog.xml 0x458d9
    res/layout/gprs.xml 0xad3d89c7
    res/layout/input_dlg.xml 0xc5dccf92
    res/layout/laucher.xml 0x148dbe7a
    res/layout/laucher1.xml 0x91b92c47
    res/layout/laucher2.xml 0x36d5c675
    res/layout/main_home.xml 0xd9cc348
    res/layout/main_home_item.xml 0x550c56ff
    res/layout/notification.xml 0x376cd4bd
    res/layout/notify.xml 0x7a2cba2f
    res/layout/one_page.xml 0xe3e3868f
    res/layout/popup_menu.xml 0x622e2e34
    res/layout/popup_menu2.xml 0x916c5cc
    res/layout/poweroff.xml 0x7e598ed9
    res/layout/prev.xml 0x4b88003e
    res/layout/select_app.xml 0x5a817d51
    res/layout/settings.xml 0xa5f2a2da
    res/layout/simple_list.xml 0x145e559e
    res/layout/softupdate_progress.xml 0x48bf5a25
    res/layout/task_main.xml 0xdb18a8d5
    res/layout/test_item_text.xml 0x7c9178d5
    res/layout/vlist.xml 0x160627a4
    res/layout/weather.xml 0x9641a663
    res/menu/main.xml 0x35ba85e0
    res/raw/version.xml 0x205afbb9
    AndroidManifest.xml 0x66764eb0
    resources.arsc 0x4dd03228
    res/drawable-nodpi/abs__ic_menu_moreoverflow_normal_holo_dark.png 0x3201d039
    res/drawable-nodpi/abs__ic_menu_moreoverflow_normal_holo_light.png 0xc2a9ad8e
    res/drawable-nodpi/apex.png 0xa0e61dc2
    res/drawable-nodpi/app_appexplorer.png 0xb2162223
    res/drawable-nodpi/app_profiles.png 0xae8f571d
    res/drawable-nodpi/app_taskexplorer.png 0x6e311bbf
    res/drawable-nodpi/app_wifitransmit.png 0xe00f2210
    res/drawable-nodpi/avgmemory.png 0xbf95d21
    res/drawable-nodpi/d1.png 0x67477029
    res/drawable-nodpi/d2.png 0xca9244d
    res/drawable-nodpi/dianchi3.png 0xb46cac9b
    res/drawable-nodpi/fever.png 0x4834e147
    res/drawable-nodpi/flag.png 0x3412da66
    res/drawable-nodpi/icon_imageviewer.png 0x9caf3ed1
    res/drawable-nodpi/lightning.png 0x2c13346e
    res/drawable-nodpi/lock.png 0xec79ca17
    res/drawable-nodpi/mediascan.png 0x47dd26b8
    res/drawable-nodpi/poweroff.png 0x63bb35f4
    res/drawable-nodpi/powertoggle.png 0x2a575f52
    res/drawable-nodpi/quantouming.png 0x9a42738
    res/drawable-nodpi/star.png 0xbec2fc3c
    res/drawable-nodpi/titlebar.png 0xc73928c1
    res/drawable-nodpi/volume.png 0x7c43724c
    res/drawable-nodpi/xda_main_back.png 0xe2651f45
    res/drawable-nodpi/xda_main_top_background.png 0x8e294ee8
    res/drawable-nodpi/xmb_display_anther.9.png 0x367c7f7a
    res/drawable-nodpi/xmb_display_anther_selector.9.png 0x19f05f48
    classes.dex 0x103fef4a
    META-INF/MANIFEST.MF 0x6181112b
    META-INF/CERT.SF 0xb3f722aa
    META-INF/CERT.RSA 0x27bd822b
    运行截图
    VirSCAN

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号