base.apk MD5:d31162fcd79a5f834037a92aa89ec390 0% Scanner(s) (0/32) found malware! - VirSCAN.org - Free Multi-Engine Online Virus Scanner v1.02, Supports 47 AntiVirus Engines!

Main Menu

API

uploader for windows(test)

Powered By

File information

File Name :base.apk (File not down)

File Size :100791 byte

File Type :application/jar

MD5:d31162fcd79a5f834037a92aa89ec390

SHA1:f4cd15e23d5bd247e3219355379b307422824bcf

扫描结果
权限
文件行为分析

Scanner results

Scanner results:0%Scanner(s) (0/32)found malware!

Behavior analysis report: Habo file analysis

Time: 2016-12-17 17:27:26 (CST)

Scanner	Engine Ver	Sig Ver	Sig Date	Scan result	Time
antiy	AVL SDK 2.0		1970-01-01	Found nothing	5
asquared	9.0.0.4799	9.0.0.4799	2015-03-08	Found nothing	1
avast	161216-0	4.7.4	2016-12-16	Found nothing	60
avg	2109/13100	10.0.1405	2016-12-16	Found nothing	60
baidu	2.0.1.0	4.1.3.52192	2.0.1.0	Found nothing	9
baidusd	1.0	1.0	2014-04-02	Found nothing	1
bitdefender	7.58879	7.90123	2015-01-16	Found nothing	60
clamav	22721	0.97.5	2016-12-15	Found nothing	60
drweb	5.0.2.3300	5.0.1.1	2016-12-09	Found nothing	60
fortinet	41.435, 41.435, 41.435	5.4.233	2016-12-16	Found nothing	60
fprot	4.6.2.117	6.5.1.5418	2016-02-05	Found nothing	60
fsecure	2015-08-01-02	9.13	2015-08-01	Found nothing	60
gdata	25.8610	25.8610	2016-10-12	Found nothing	9
ikarus	1.06.01	V1.32.31.0	2016-11-28	Found nothing	60
jiangmin	16.0.100	1.0.0.0	2016-12-14	Found nothing	42
kaspersky	5.5.33	5.5.33	2014-04-01	Found nothing	60
kingsoft	2.1	2.1	2013-09-22	Found nothing	6
mcafee	8254	5400.1158	2016-08-11	Found nothing	60
nod32	1777	3.0.21	2015-06-12	Found nothing	60
panda	9.05.01	9.05.01	2016-12-16	Found nothing	5
pcc	12.962.07	9.500-1005	2016-12-15	Found nothing	60
qh360	1.0.1	1.0.1	1.0.1	Found nothing	11
qqphone	1.0.0.0	1.0.0.0	2015-12-30	Found nothing	60
quickheal	14.00	14.00	2016-12-16	Found nothing	2
rising	26.28.00.01	26.28.00.01	2016-07-18	Found nothing	1
sophos	5.32	3.65.2	2016-10-10	Found nothing	60
symantec	20151230.005	1.3.0.24	2015-12-30	Found nothing	60
tachyon	9.9.9	9.9.9	2013-12-27	Found nothing	3
thehacker	6.8.0.5	6.8.0.5	2016-12-14	Found nothing	1
tws	17.47.17308	1.0.2.2108	2016-12-17	Found nothing	13
vba	3.12.29.3 beta	3.12.29.3 beta	2016-12-15	Found nothing	60
virusbuster	15.0.985.0	5.5.2.13	2014-12-05	Found nothing	60

■Heuristic/Suspicious ■Exact

NOTICE: Results are not 100% accurate and can be reported as a false positive by some scannerswhen and if malware is found. Please judge these results for yourself.

权限列表
许可名称	信息
android.permission.INTERNET	连接网络（2G或3G）
android.permission.WRITE_EXTERNAL_STORAGE	写外部存储器（如：SD卡）
android.permission.RECEIVE_BOOT_COMPLETED	接收开机启动广播
android.permission.READ_EXTERNAL_STORAGE	读外部存储器（如：SD卡）
android.permission.ACCESS_WIFI_STATE	读取wifi网络状态
android.permission.ACCESS_NETWORK_STATE	读取网络状态（2G或3G）
android.permission.READ_PHONE_STATE	读取电话状态
android.permission.GET_TASKS	获取有关当前或最近运行的任务信息
android.permission.RECEIVE_USER_PRESENT
android.permission.ACCESS_COARSE_LOCATION	获取粗略的位置（通过wifi、基站）
android.permission.CHANGE_WIFI_STATE	改变WIFI连接状态
android.permission.CHANGE_NETWORK_STATE	变更网络状态
android.permission.MOUNT_UNMOUNT_FILESYSTEMS	挂载、反挂载外部文件系统
android.permission.WAKE_LOCK	手机屏幕关闭后后台进程仍运行

文件信息

安全评分 :

基本信息
MD5:d31162fcd79a5f834037a92aa89ec390
包名:com.sutui.stat
最低运行环境:Android 2.2.x
版权:

关键行为
行为描述:	修改注册表_启动项
详情信息:	\REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Run\360

进程行为
行为描述:	创建本地线程
详情信息:	TargetProcess: %temp%\****.exe, InheritedFromPID = 1944, ProcessID = 1980, ThreadID = 2008, StartAddress = 77C0A341, Parameter = 003F3B38

注册表行为
行为描述:	修改注册表_启动项
详情信息:	\REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Run\360

其他行为
行为描述:	调用Sleep函数
详情信息:	[1]: MilliSeconds = 0.
	[2]: MilliSeconds = 0.
	[3]: MilliSeconds = 0.
	[4]: MilliSeconds = 0.
	[5]: MilliSeconds = 0.
	[6]: MilliSeconds = 0.
	[7]: MilliSeconds = 0.
	[8]: MilliSeconds = 0.
	[9]: MilliSeconds = 0.

Activities
活动名	类型
com.xl.frame.ui.activity.MainActivity	android.intent.action.MAIN
com.xl.frame.ui.activity.MainActivity	android.intent.category.LAUNCHER

危险函数
函数名称	信息
HttpClient;->execute	请求远程服务器
TelephonyManager;->getDeviceId	搜集用户手机IMEI码、电话号码、系统版本号等信息
getRuntime	获取命令行环境
java/lang/Runtime;->exec	执行字符串命令
TelephonyManager;->getSimSerialNumber	获取SIM序列号
java/net/URL;->openConnection	连接URL

启动方式
名称	信息
com.xl.frame.core.receiver.BootReceiver	开机启动服务
com.xl.frame.core.receiver.ConnectionReceiver	网络连接改变时启动服务

权限列表
许可名称	信息
android.permission.INTERNET	连接网络（2G或3G）
android.permission.WRITE_EXTERNAL_STORAGE	写外部存储器（如：SD卡）
android.permission.RECEIVE_BOOT_COMPLETED	接收开机启动广播
android.permission.READ_EXTERNAL_STORAGE	读外部存储器（如：SD卡）
android.permission.ACCESS_WIFI_STATE	读取wifi网络状态
android.permission.ACCESS_NETWORK_STATE	读取网络状态（2G或3G）
android.permission.READ_PHONE_STATE	读取电话状态
android.permission.GET_TASKS	获取有关当前或最近运行的任务信息
android.permission.RECEIVE_USER_PRESENT
android.permission.ACCESS_COARSE_LOCATION	获取粗略的位置（通过wifi、基站）
android.permission.CHANGE_WIFI_STATE	改变WIFI连接状态
android.permission.CHANGE_NETWORK_STATE	变更网络状态
android.permission.MOUNT_UNMOUNT_FILESYSTEMS	挂载、反挂载外部文件系统
android.permission.WAKE_LOCK	手机屏幕关闭后后台进程仍运行

服务列表
名称
com.xl.frame.core.service.SService

文件列表
文件名	校验码
assets/province.xml	0x8370f042
res/xml/device_admin.xml	0x1b2ac957
AndroidManifest.xml	0xec1d0304
resources.arsc	0x8890566c
res/drawable-xhdpi/ic_launcher.png	0xa227fc8a
classes.dex	0x35ffc8f1
META-INF/MANIFEST.MF	0xb4ccf6df
META-INF/CERT.SF	0x8c022e14
META-INF/CERT.RSA	0xc04267a1

运行截图