VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, VirSCAN can scan compressed files with password 'infected' or 'virus'.

Language
Server load
Server Load



File information
File Name : NRS.apk (File not down)
File Size :3141226 byte
File Type :application/zip
MD5:c4c809d40383ef61cb553dabdd403f28
SHA1:86009a5b0f0cc25a1574f9c7279d66315e6c01f7
  • 扫描结果
  • 权限
  • 文件行为分析
  • Scanner results
    Scanner results:3%Scanner(s) (1/32)found malware!        Behavior
    Time: 2018-02-05 21:21:05 (CST)
    VirSCANVirSCAN
    Scanner Engine Ver Sig Ver Sig Date Scan result Time
    antiy AVL SDK 2.0 1970-01-01 Found nothing 7
    asquared 9.0.0.4799 9.0.0.4799 2015-03-08 Found nothing 3
    avast 170303-1 4.7.4 2017-03-03 Found nothing 60
    avg 2109/14865 10.0.1405 2018-02-02 Found nothing 60
    baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 10
    baidusd 1.0 1.0 2017-03-22 Found nothing 60
    bitdefender 7.58879 7.90123 2015-01-16 Found nothing 60
    clamav 24281 0.97.5 2018-02-03 Found nothing 60
    drweb 5.0.2.3300 5.0.1.1 2018-02-02 Found nothing 60
    fortinet 1.000, 54.899, 54.836, 54.859 5.4.247 2018-02-04 Found nothing 60
    fprot 4.6.2.117 6.5.1.5418 2016-02-05 Found nothing 60
    fsecure 2015-08-01-02 9.13 2015-08-01 Found nothing 60
    gdata 25.15913 25.15913 2018-02-05 Found nothing 15
    ikarus 4.00.05 V1.32.31.0 2018-02-04 Found nothing 60
    jiangmin 16.0.100 1.0.0.0 2017-12-22 Found nothing 2
    kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 60
    kingsoft 2.1 2.1 2018-02-04 Found nothing 6
    mcafee 8620 5400.1158 2017-08-12 Found nothing 60
    nod32 6845 3.0.21 2018-02-03 Found nothing 60
    panda 9.05.01 9.05.01 2018-02-04 Found nothing 5
    pcc 13.302.06 9.500-1005 2017-03-27 Found nothing 60
    qh360 1.0.1 1.0.1 1.0.1 Found nothing 6
    qqphone 1.0.0.0 1.0.0.0 2015-12-30 Found nothing 60
    quickheal 14.00 14.00 2017-11-18 Android.Styricka.GEN6254 4
    rising 3181 3181 2017-12-26 Found nothing 3
    sophos 5.32 3.65.2 2016-10-10 Found nothing 60
    symantec 20151230.005 1.3.0.24 2015-12-30 Found nothing 60
    tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 6
    thehacker 6.8.0.5 6.8.0.5 2018-02-02 Found nothing 2
    tws 17.47.17308 1.0.2.2108 2018-02-04 Found nothing 18
    vba 3.12.29.5 beta 3.12.29.5 beta 2018-02-02 Found nothing 60
    virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 60
    Heuristic/Suspicious Exact
    NOTICE: Results are not 100% accurate and can be reported as a false positive by some scannerswhen and if malware is found. Please judge these results for yourself.
    Copy to clipboard
  • 权限列表
    许可名称信息
    com.android.launcher.permission.INSTALL_SHORTCUT创建快捷方式
    android.permission.GET_TASKS获取有关当前或最近运行的任务信息
    ACCESS_WIFI_STATE
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.ACCESS_COARSE_LOCATION获取粗略的位置(通过wifi、基站)
    android.permission.READ_PHONE_STATE读取电话状态
    android.permission.MOUNT_UNMOUNT_FILESYSTEMS挂载、反挂载外部文件系统
    android.hardware.camera
    android.permission.SYSTEM_ALERT_WINDOW显示系统窗口
    android.permission.CAMERA访问照相机设备
    android.permission.MODIFY_PHONE_STATE修改电话状态
    android.permission.ACCESS_WIFI_STATE.android.permission.READ_PHONE_STATE
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.CHANGE_WIFI_STATE改变WIFI连接状态
    android.permission.ACCESS_LOCATION_EXTRA_COMMANDS访问额外的定位指令
    android.permission.ACCESS_FINE_LOCATION获取精确的位置(通过GPS)
    com.android.launcher.permission.READ_SETTINGS读取快捷方式信息
    android.permission.CHANGE_NETWORK_STATE变更网络状态
    android.permission.FLASHLIGHT访问闪光灯
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.WAKE_LOCK手机屏幕关闭后后台进程仍运行
    android.permission.CHANGE_CONFIGURATION修改当前设置(如:本地化)
    android.permission.READ_SETTINGS
    android.permission.WRITE_SETTINGS读写系统设置项
    android.permission.READ_EXTERNAL_STORAGE读外部存储器(如:SD卡)
  • 文件信息
    安全评分 :
    基本信息
    MD5:c4c809d40383ef61cb553dabdd403f28
    包名:com.yx.nrs
    最低运行环境:Android 2.2.x
    版权:E4A
    关键行为
    行为描述:直接获取CPU时钟
    详情信息:EAX = 0x41fb482a, EDX = 0x00000088
    EAX = 0x44ae47a6, EDX = 0x00000088
    EAX = 0xa0ca8c38, EDX = 0x00000088
    EAX = 0xa37d8bb4, EDX = 0x00000088
    文件行为
    行为描述:查找文件
    详情信息:FileName = C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
    FileName = C:\Windows\Microsoft.NET\Framework\\*
    FileName = C:\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\*
    FileName = C:\Users
    FileName = C:\Users\Administrator\AppData
    FileName = C:\Users\Administrator\AppData\Local
    FileName = C:\Users\Administrator\AppData\Local\Temp
    FileName = C:\Users\Administrator\AppData\Local\%temp%
    FileName = C:\Users\Administrator\AppData\Local\%temp%\b70c.exe
    FileName = C:\Users\Administrator
    FileName = C:\Windows\assembly\NativeImages_v4.0.30319_32\GoeLites.Injector\*
    FileName = C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Windows.Forms\*
    FileName = C:\Windows\assembly\NativeImages_v4.0.30319_32\System\*
    FileName = C:\Windows\assembly\NativeImages_v4.0.30319_32\System.Drawing\*
    FileName = C:\Windows\assembly\GAC_MSIL\mscorlib.resources\*
    其他行为
    行为描述:调用Sleep函数
    详情信息:[1]: MilliSeconds = 60000.
    行为描述:检测自身是否被调试
    详情信息:IsDebuggerPresent
    行为描述:打开事件
    详情信息:Global\CLR_PerfMon_StartEnumEvent
    \KernelObjects\LowMemoryCondition
    HookSwitchHookEnabledEvent
    MSFT.VSA.COM.DISABLE.2960
    MSFT.VSA.IEC.STATUS.6c736db0
    \KernelObjects\SystemErrorPortReady
    行为描述:创建事件对象
    详情信息:EventName = Global\CPFATE_2960_v4.0.30319
    行为描述:直接获取CPU时钟
    详情信息:EAX = 0x41fb482a, EDX = 0x00000088
    EAX = 0x44ae47a6, EDX = 0x00000088
    EAX = 0xa0ca8c38, EDX = 0x00000088
    EAX = 0xa37d8bb4, EDX = 0x00000088
    Activities
    活动名类型
    com.e4a.runtime.android.StartActivityandroid.intent.action.MAIN
    com.e4a.runtime.android.StartActivityandroid.intent.category.DEFAULT
    com.e4a.runtime.android.StartActivityandroid.intent.category.LAUNCHER
    com.e4a.runtime.android.mainActivityandroid.intent.action.MAIN
    com.e4a.runtime.android.mainActivityandroid.intent.category.DEFAULT
    com.tencent.tauth.AuthActivityandroid.intent.action.VIEW
    com.tencent.tauth.AuthActivityandroid.intent.category.DEFAULT
    com.tencent.tauth.AuthActivityandroid.intent.category.BROWSABLE
    com.tencent.smtt.sdk.VideoActivitycom.tencent.smtt.tbs.video.PLAY
    com.tencent.smtt.sdk.VideoActivityandroid.intent.category.DEFAULT
    危险函数
    函数名称信息
    ContentResolver;->query读取联系人、短信等数据库
    权限列表
    许可名称信息
    com.android.launcher.permission.INSTALL_SHORTCUT创建快捷方式
    android.permission.GET_TASKS获取有关当前或最近运行的任务信息
    ACCESS_WIFI_STATE
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.ACCESS_COARSE_LOCATION获取粗略的位置(通过wifi、基站)
    android.permission.READ_PHONE_STATE读取电话状态
    android.permission.MOUNT_UNMOUNT_FILESYSTEMS挂载、反挂载外部文件系统
    android.hardware.camera
    android.permission.SYSTEM_ALERT_WINDOW显示系统窗口
    android.permission.CAMERA访问照相机设备
    android.permission.MODIFY_PHONE_STATE修改电话状态
    android.permission.ACCESS_WIFI_STATE.android.permission.READ_PHONE_STATE
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.CHANGE_WIFI_STATE改变WIFI连接状态
    android.permission.ACCESS_LOCATION_EXTRA_COMMANDS访问额外的定位指令
    android.permission.ACCESS_FINE_LOCATION获取精确的位置(通过GPS)
    com.android.launcher.permission.READ_SETTINGS读取快捷方式信息
    android.permission.CHANGE_NETWORK_STATE变更网络状态
    android.permission.FLASHLIGHT访问闪光灯
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.WAKE_LOCK手机屏幕关闭后后台进程仍运行
    android.permission.CHANGE_CONFIGURATION修改当前设置(如:本地化)
    android.permission.READ_SETTINGS
    android.permission.WRITE_SETTINGS读写系统设置项
    android.permission.READ_EXTERNAL_STORAGE读外部存储器(如:SD卡)
    文件列表
    文件名 校验码
    META-INF/MANIFEST.MF 0xe37ef5c3
    META-INF/YX.SF 0xf94a44e4
    META-INF/YX.RSA 0x6ebbd1c
    assets/FileDialog/1.png 0x78686c7a
    assets/FileDialog/2.png 0x7e93bac3
    assets/FileDialog/3.png 0x4608dc7e
    assets/FileDialog/4.png 0xae74269b
    assets/FileDialog/5.png 0x67adec41
    assets/FileDialog/6.png 0xcd055e6c
    assets/FileDialog/7.png 0x446d8c59
    assets/FileDialog/8.png 0x46c0be08
    assets/FileDialog/9.png 0xbdadc5b1
    assets/10y.png 0x61afa5e0
    assets/1y.png 0xecc3e310
    assets/WEB_HTML.txt 0x6eb82b0
    assets/XI3RaEItI1tAGAlH 0x9f236c4d
    assets/a4g_71x72x256.png 0xcf0c5285
    assets/a4h_71x72x256.png 0xfddb62e9
    assets/ac5_71x72x256.png 0xd19b45b1
    assets/ac9_71x72x256.png 0xc5c11781
    assets/acg_71x72x256.png 0xde70ad78
    assets/ack_71x72x256.png 0x3f3e0e75
    assets/akari.jpg 0x168fd717
    assets/fbt.png 0xed0154e5
    assets/fcf.png 0xb5dfb2f
    assets/fcg.png 0xdb3a715d
    assets/fch.png 0x44150f56
    assets/fco.png 0xa041de7b
    assets/fcv.png 0x74cc17ff
    assets/fcz.png 0x38a74d09
    assets/fda.png 0x276f50b8
    assets/fdc.png 0x1e9356e2
    assets/fdd.png 0x54261606
    assets/fdq.png 0xaaddd0ad
    assets/fdr.png 0xa9df8c51
    assets/fdw.png 0xf20ff27e
    assets/fev.png 0x850e5448
    assets/gyx.png 0xe3a07dfc
    assets/icon_share_black_bold.png 0xca044fcf
    assets/icon_share_black_bold2.png 0xa553cc77
    assets/icon_videoinfo_download_n.png 0xf8af9870
    assets/icon_videoinfo_download_n2.png 0x3d676c25
    assets/player_beijing2.png 0x70ac5dc
    assets/qh_bf.png 0x49164cb6
    assets/qh_so.png 0x5717edf5
    assets/qh_yy.png 0xb8fc11fc
    assets/syi.png 0x88b31c9c
    assets/tubiao001.png 0xab240e5e
    assets/tubiao002.png 0x1162b9df
    assets/tubiao_fanhui1.png 0xfe0aaf09
    assets/tubiao_fanhui2.png 0x48828ed7
    res/anim/dialog_enter.xml 0x680fd64f
    res/anim/dialog_exit.xml 0x44b0b73
    res/anim/dialog_scale_in.xml 0xd1205a18
    res/anim/dialog_scale_out.xml 0xe4110112
    res/anim/error_frame_in.xml 0xf444bf48
    res/anim/error_x_in.xml 0x75ae2b72
    res/anim/lp.xml 0x62d35560
    res/anim/photo_dialog_in_anim.xml 0x4190f2e7
    res/anim/photo_dialog_out_anim.xml 0x79279f3
    res/anim/push_bottom_in.xml 0x56b328b4
    res/anim/push_bottom_in2.xml 0x5008b24f
    res/anim/push_bottom_out.xml 0x47153c81
    res/anim/push_danru_in.xml 0x68e45b0e
    res/anim/push_danru_out.xml 0x836bcdbf
    res/anim/reverse_anim.xml 0xcda7dfa0
    res/anim/rotating.xml 0x5b60e81a
    res/anim/success_bow_roate.xml 0x868ab202
    res/anim/success_mask_layout.xml 0x803af484
    res/anim/toast_enter.xml 0x4a2993ea
    res/anim/toast_exit.xml 0x247cd3e3
    res/anim/youmi_anim_splash_enter.xml 0x743ef841
    res/drawable/aa.png 0xb4e4753e
    res/drawable/alert_dialog_bg.xml 0x4bb12cc6
    res/drawable/anim.xml 0x787ab994
    res/drawable/anniu_bai.xml 0x7a6a92b2
    res/drawable/anniu_c.xml 0x72c3c883
    res/drawable/anniu_denglu.xml 0xa16caa78
    res/drawable/bb.png 0x4e325f24
    res/drawable/bg_dialog_confirm_block_day.xml 0x7e6f921f
    res/drawable/bg_dialog_confirm_day.xml 0xc1530b42
    res/drawable/bianjikuang.xml 0x8a14f40
    res/drawable/blue_button_background.xml 0x19090cbd
    res/drawable/button_dialog.xml 0x7e044df9
    res/drawable/button_shape_bg.xml 0x45f087fb
    res/drawable/button_shape_center.xml 0xe4b88c65
    res/drawable/button_shape_left.xml 0x859afe74
    res/drawable/button_shape_right.xml 0x2c3a906
    res/drawable/cc.png 0xaf709172
    res/drawable/color_cursor.xml 0x36a26e7c
    res/drawable/common_bg.xml 0x25ea7ad3
    res/drawable/confirm_dialog_bg.xml 0x1d967bfa
    res/drawable/confirm_dialog_cancel_selector.xml 0x2182fcde
    res/drawable/confirm_dialog_ok_selector.xml 0x838435db
    res/drawable/customdialog.xml 0xff3b3645
    res/drawable/dialog_background.xml 0x3521a797
    res/drawable/dialogwindowanim.xml 0xaa4c2fe8
    res/drawable/e4alistview_new_message.png 0x1cdc5409
    res/drawable/edit_text_bg.xml 0x8f8d1ad7
    res/drawable/error_center_x.xml 0xe9def20
    res/drawable/error_circle.xml 0x6fc65024
    res/drawable/free_dialog_bg.xml 0x21f2182
    res/drawable/gray_button_background.xml 0xf4560b93
    res/drawable/icon.png 0x51977f00
    res/drawable/icon_1.png 0xa8855a47
    res/drawable/icon_2.png 0xeb43fe13
    res/drawable/icon_3.png 0x20c33ae9
    res/drawable/icon_4.png 0x552d7eb7
    res/drawable/icon_5.png 0x20031721
    res/drawable/login_btn.xml 0xf3aa881b
    res/drawable/photo_camera_normal.xml 0x64030d2f
    res/drawable/photo_camera_pressed.xml 0x757ac837
    res/drawable/photo_camera_selector.xml 0x8dbea3df
    res/drawable/photo_cancel_normal.xml 0x64030d2f
    res/drawable/photo_cancel_pressed.xml 0x757ac837
    res/drawable/photo_cancel_selector.xml 0x63897a3a
    res/drawable/photo_choose_bg.xml 0xd01e2f82
    res/drawable/photo_gallery_normal.xml 0x64030d2f
    res/drawable/photo_gallery_pressed.xml 0x757ac837
    res/drawable/photo_gallery_selector.xml 0x4d91b3f7
    res/drawable/red_button_background.xml 0xcaef1ebd
    res/drawable/sp_anniu.xml 0xb13508d9
    res/drawable/success_bow.xml 0x72e94b1c
    res/drawable/success_circle.xml 0xfcabfa22
    res/drawable/toaststyle.xml 0xaa4c2fe8
    res/drawable/warning_circle.xml 0xb51d2f21
    res/drawable/warning_sigh.xml 0xa61e60fe
    res/drawable/youmi_background.png 0x4161a4a4
    res/drawable/youmi_bg_divider.png 0x8b93cd9a
    res/layout/alert_dialog.xml 0x106f8f11
    res/layout/confirm_dialog.xml 0x19133db6
    res/layout/item_birth_year.xml 0xb46793fb
    res/layout/load_more.xml 0xe451d539
    res/layout/main.xml 0x817a6678
    res/layout/ok_liubujv.xml 0x9a143081
    res/layout/okxialatext.xml 0xd606ad53
    res/layout/prom_dialog.xml 0xb085f0ae
    res/layout/qq_choose_dialog.xml 0x6faccd67
    res/layout/qq_dialog_layout.xml 0xcfa3506d
    res/layout/refresh_head.xml 0x4af10539
    res/layout/refresh_layout.xml 0xf11ddbff
    res/layout/tanchucandanxml_gun.xml 0xc063d10
    res/layout/test.xml 0xca6ff7a5
    res/layout/toast_layout.xml 0x8fc8885
    res/layout/xinwen_beijing2.xml 0x710fd55e
    res/layout/xx.xml 0xaeb08904
    res/layout/youmi_activity_splashym.xml 0xa53e8af5
    res/xml/file_provider.xml 0x2e64f7e
    resources.arsc 0x935bc45b
    res/drawable-hdpi/anniuse.xml 0x65a1a513
    res/drawable-hdpi/anniuse2.xml 0x80fe4e79
    res/drawable-hdpi/baisexml.xml 0x3bfee69f
    res/drawable-hdpi/custom_img.jpg 0x5180fa2a
    res/drawable-hdpi/huisexml.xml 0x25989283
    res/drawable-hdpi/lansexml.xml 0x8b4a004
    res/drawable-hdpi/shenlansexml.xml 0xe5f01ecb
    res/drawable-hdpi/wheel_bg.xml 0x7d6ec822
    res/drawable-hdpi/wheel_val.xml 0x92f97c37
    res/drawable-hdpi/xinwen_beijing2.xml 0x148beb68
    res/drawable-xhdpi/ic_action_search.png 0x3294aee3
    res/drawable-xhdpi/load_failed.png 0x4b0d1be2
    res/drawable-xhdpi/load_succeed.png 0x8ce75c33
    res/drawable-xhdpi/loading.png 0x853f6b0
    res/drawable-xhdpi/login.9.png 0x533d147f
    res/drawable-xhdpi/loginpressed.9.png 0x25a38fd1
    res/drawable-xhdpi/pull_icon_big.png 0xa3140f47
    res/drawable-xhdpi/pullup_icon_big.png 0xec64d7da
    res/drawable-xhdpi/refresh_failed.png 0x4b0d1be2
    res/drawable-xhdpi/refresh_succeed.png 0x8ce75c33
    res/drawable-xhdpi/refreshing.png 0x853f6b0
    res/drawable-xhdpi/toast_image.png 0xfac7e535
    res/drawable-xxhdpi/miui_go.png 0xbf4250e4
    lib/armeabi/liblbs.so 0xbe8edb00
    AndroidManifest.xml 0x1303e847
    assets/icon/image_have_icon_x_id_file_png.png 0xb9636edd
    assets/icon/image_icon_constructor_encrypted.png 0x7072aac5
    assets/ijiami.ajm 0xbcd6a7ec
    assets/ijm_lib/armeabi/libexec.so 0xb8967c15
    assets/ijm_lib/armeabi/libexecmain.so 0xfb0cafea
    assets/ijm_lib/x86/libexec.so 0xa357d30c
    assets/ijm_lib/x86/libexecmain.so 0xae91a5d1
    assets/images/icon_titl_last_encrypted.png 0xcba1ad99
    classes.dex 0x67ad31c7
    assets/signed.bin 0x9ace812e
    assets/af.bin 0x98bfe792
    运行截图
    VirSCAN

About VirSCAN | Privacy Policy | Contact us | link | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号