VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

File information
File Name :黑晨云流量.apk (File not down)
File Size :2576879 byte
File Type :application/zip
MD5:5375cf57bb3c46743e46ac92f6dac78a
SHA1:73e57afcb9a2efe8be7315ee621806a34fefd443
  • 扫描结果
  • 权限
  • 文件行为分析
  • Scanner results
    Scanner results:0%Scanner(s) (0/32)found malware!
    Behavior analysis report:         Habo file analysis
    Time: 2016-08-20 16:26:06 (CST)
    VirSCANVirSCAN
    Scanner Engine Ver Sig Ver Sig Date Scan result Time
    antiy AVL SDK 3.0 1970-01-01 Found nothing 5
    asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Found nothing 1
    avast 150725-1 4.7.4 2015-07-25 Found nothing 60
    avg 2109/8133 10.0.1405 2014-11-26 Found nothing 60
    baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 15
    baidusd 1.0 1.0 2014-04-02 Found nothing 1
    bitdefender 7.58469 7.90123 2014-12-25 Found nothing 60
    clamav 19861 0.97.5 2014-12-31 Found nothing 60
    drweb 5.0.2.3300 5.0.1.1 2014-12-31 Found nothing 60
    fortinet 23.345, 23.345 5.1.158 2014-12-08 Found nothing 60
    fprot 4.6.2.117 6.5.1.5418 2014-12-31 Found nothing 60
    fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 60
    gdata 25.7946 25.7946 2016-08-20 Found nothing 10
    ikarus 1.06.01 V1.32.31.0 2014-12-08 Found nothing 60
    jiangmin 16.0.100 1.0.0.0 2015-07-25 Found nothing 42
    kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 60
    kingsoft 2.1 2.1 2013-09-22 Found nothing 13
    mcafee 7638 5400.1158 2014-11-30 Found nothing 60
    nod32 0920 3.0.21 2014-12-23 Found nothing 60
    panda 9.05.01 9.05.01 2015-07-26 Found nothing 4
    pcc 11.380.07 9.500-1005 2014-12-31 Found nothing 60
    qh360 1.0.1 1.0.1 1.0.1 Found nothing 3
    qqphone 1.0.0.0 1.0.0.0 2014-12-09 Found nothing 60
    quickheal 14.00 14.00 2015-07-25 Found nothing 3
    rising 25.76.04.01 25.76.04.01 2015-07-24 Found nothing 3
    sophos 5.08 3.55.0 2014-12-01 Found nothing 60
    symantec 20141230.001 1.3.0.24 2014-12-30 Found nothing 60
    tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 4
    thehacker 6.8.0.5 6.8.0.5 2015-07-23 Found nothing 1
    tws 17.47.17308 1.0.2.2108 2014-12-08 Found nothing 14
    vba 3.12.26.3 3.12.26.3 2014-12-31 Found nothing 60
    virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 60
    Heuristic/Suspicious Exact
    NOTICE: Results are not 100% accurate and can be reported as a false positive by some scannerswhen and if malware is found. Please judge these results for yourself.
  • 权限列表
    许可名称信息
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.USE_CREDENTIALS获取认证令牌
    android.permission.READ_EXTERNAL_STORAGE读外部存储器(如:SD卡)
    android.permission.RECEIVE_BOOT_COMPLETED接收开机启动广播
    com.android.launcher.permission.INSTALL_SHORTCUT创建快捷方式
  • 文件信息
    安全评分 :
    基本信息
    MD5:5375cf57bb3c46743e46ac92f6dac78a
    包名:net.heichen.openvpn
    最低运行环境:Android 4.0, 4.0.1, 4.0.2
    版权:
    其他行为
    行为描述:创建互斥体
    详情信息:CTF.LBES.MutexDefaultS-*
    CTF.Compart.MutexDefaultS-*
    CTF.Asm.MutexDefaultS-*
    CTF.Layouts.MutexDefaultS-*
    CTF.TMD.MutexDefaultS-*
    CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
    MSCTF.Shared.MUTEX.ELH
    MSCTF.Shared.MUTEX.IGE
    行为描述:创建事件对象
    详情信息:EventName = MSCTF.SendReceive.Event.IGE.IC
    EventName = MSCTF.SendReceiveConection.Event.IGE.IC
    行为描述:查找指定窗口
    详情信息:NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
    NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
    行为描述:打开事件
    详情信息:HookSwitchHookEnabledEvent
    CTF.ThreadMIConnectionEvent.000007B4.00000000.00000040
    CTF.ThreadMarshalInterfaceEvent.000007B4.00000000.00000040
    MSCTF.SendReceiveConection.Event.ELH.IC
    MSCTF.SendReceive.Event.ELH.IC
    CTF.ThreadMIConnectionEvent.000007B4.00000000.00000041
    CTF.ThreadMarshalInterfaceEvent.000007B4.00000000.00000041
    行为描述:窗口信息
    详情信息:Pid = 2040, Hwnd=0x1002c8, Text = 立即修复, ClassName = Button.
    Pid = 2040, Hwnd=0x1802fe, Text = 内存补丁方式2, ClassName = Button(RadioButton).
    Pid = 2040, Hwnd=0xb032a, Text = 内存补丁方式3, ClassName = Button(RadioButton).
    Pid = 2040, Hwnd=0x503b0, Text = 使用默认方案, ClassName = Button(RadioButton).
    Pid = 2040, Hwnd=0x703ba, Text = 普通修复(推荐), ClassName = Button(RadioButton).
    Pid = 2040, Hwnd=0x40392, Text = 深度修复, ClassName = Button(RadioButton).
    Pid = 2040, Hwnd=0x403a2, Text = 内存补丁方式6, ClassName = Button(GroupBox).
    Pid = 2040, Hwnd=0x1902ce, Text = 内存补丁方式7, ClassName = Button.
    Pid = 2040, Hwnd=0x7038a, Text = 内存补丁方式8, ClassName = Button(CheckBox).
    Pid = 2040, Hwnd=0x7037c, Text = 内存补丁方式9, ClassName = Button(CheckBox).
    Pid = 2040, Hwnd=0x1702d8, Text = 内存补丁方式10, ClassName = Button(CheckBox).
    Pid = 2040, Hwnd=0x9039c, Text = 内存补丁方式11, ClassName = Button(CheckBox).
    Pid = 2040, Hwnd=0x1d02bc, Text = 修复系统选项, ClassName = Button(CheckBox).
    Pid = 2040, Hwnd=0x603ac, Text = " 修复注册表项可能引起安全软件误报 请暂时退出安全软件 以确保修复成功 , ClassName = Button(CheckBox).
    Pid = 2040, Hwnd=0xc03a0, Text = 修复相关注册表项, ClassName = Button(CheckBox).
    行为描述:打开互斥体
    详情信息:ShimCacheMutex
    Activities
    活动名类型
    net.openvpn.openvpn.OpenVPNClientandroid.intent.action.MAIN
    net.openvpn.openvpn.OpenVPNClientandroid.intent.category.LAUNCHER
    net.openvpn.openvpn.OpenVPNAttachmentReceiverandroid.intent.action.VIEW
    net.openvpn.openvpn.OpenVPNAttachmentReceiverandroid.intent.category.BROWSABLE
    net.openvpn.openvpn.OpenVPNAttachmentReceiverandroid.intent.category.DEFAULT
    危险函数
    函数名称信息
    java/net/URL;->openConnection连接URL
    启动方式
    名称信息
    net.openvpn.openvpn.OpenVPNRebootReceiver开机启动服务
    权限列表
    许可名称信息
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.USE_CREDENTIALS获取认证令牌
    android.permission.READ_EXTERNAL_STORAGE读外部存储器(如:SD卡)
    android.permission.RECEIVE_BOOT_COMPLETED接收开机启动广播
    com.android.launcher.permission.INSTALL_SHORTCUT创建快捷方式
    服务列表
    名称
    net.openvpn.openvpn.OpenVPNService
    文件列表
    文件名 校验码
    META-INF/MANIFEST.MF 0xb36b1856
    META-INF/CERT.SF 0x78705b65
    META-INF/CERT.RSA 0x3a0a3165
    AndroidManifest.xml 0xe7ddbb91
    assets/V版-广东联通.ovpn 0xcf09aa60
    assets/V版-电信A.ovpn 0xb9b65bd6
    assets/V版-电信B.ovpn 0x7dd9abaa
    assets/V版-电信C.ovpn 0x8ac59508
    assets/V版-电信综合.ovpn 0xc27840df
    assets/V版-移动-云南.ovpn 0x515ad9a6
    assets/V版-移动-广东.ovpn 0x810b70f
    assets/V版-移动-广西.ovpn 0x57e40a65
    assets/V版-移动-浙江.ovpn 0xd1ad5a10
    assets/V版-移动A.ovpn 0x9ddb6f6a
    assets/V版-移动A1.ovpn 0xdcf83a42
    assets/V版-移动B.ovpn 0x17806d31
    assets/V版-移动B1.ovpn 0xcd6c5ff2
    assets/V版-移动C.ovpn 0x5feb1fd0
    assets/V版-移动D.ovpn 0x5fd6d196
    assets/V版-联通X.ovpn 0xf4fe35f
    assets/飞速-云南移动.ovpn 0x93413ff5
    assets/飞速-海南移动.ovpn 0x6b1344e7
    assets/飞速-电信爱听.ovpn 0x4359783f
    assets/飞速-电信爱玩.ovpn 0x63c52489
    assets/飞速-电信综合.ovpn 0xbe01bc8a
    assets/飞速-移动A.ovpn 0x262528e7
    assets/飞速-移动B.ovpn 0x8913442c
    assets/飞速-移动C.ovpn 0xff73cbfc
    assets/飞速-联通X.ovpn 0xaf972ed8
    assets/飞速-联通线路.ovpn 0x943b3757
    classes.dex 0x41671dc9
    lib/arm64-v8a/libovpncli.so 0x60afdd1a
    lib/armeabi-v7a/libovpncli.so 0x512cb9a
    lib/armeabi/libovpncli.so 0xadccfaee
    r/0 0x4aa50903
    r/0.aac 0x15b0a9a9
    r/0.xml 0x67f403ec
    r/00.aac 0xa6dd62bd
    r/01.aac 0x6d6ff84d
    r/02.aac 0x6a396e69
    r/03.aac 0xf1978ba9
    r/04.aac 0x6a396e69
    r/05.aac 0x8e3892f1
    r/06.aac 0x2ce93b7b
    r/07.aac 0x6a396e69
    r/08.aac 0x6a396e69
    r/09.aac 0x24d9a9b3
    r/0A.aac 0x6d6ff84d
    r/0B.aac 0x6585a2e9
    r/0C.aac 0x325a3073
    r/0D.aac 0xfdb7db81
    r/0E.aac 0x3df951b2
    r/0F.aac 0x6a396e69
    r/0G.aac 0x6a396e69
    r/0H.aac 0x5650ff91
    r/0I.aac 0x6a396e69
    r/0J.aac 0x8e3892f1
    r/0K.aac 0xf1978ba9
    r/0L.aac 0x29e81332
    r/0M.aac 0xa6dd62bd
    r/0N.aac 0x6d6ff84d
    r/0O.aac 0xbd336900
    r/0P.aac 0x6a86271d
    r/0Q.aac 0x6a396e69
    r/0R.aac 0x86b630e8
    r/0S.aac 0x6a396e69
    r/0T.aac 0x6a396e69
    r/0U.aac 0x6a396e69
    r/0V.aac 0xfdb7db81
    r/0W.aac 0xfcdc8038
    r/0X.aac 0x3f9d551b
    r/0Y.aac 0x971cd965
    r/0Z.aac 0x7c61a0c8
    r/0a.aac 0x28b365a2
    r/0b.aac 0x29e81332
    r/0c.aac 0x6a396e69
    r/1 0xc9d626b
    r/1.aac 0x1d2d6432
    r/1.xml 0x4cc276a6
    r/2 0x8e8ffeda
    r/2.aac 0x1d2d6432
    r/2.xml 0xc4da34e2
    r/3 0xc34d49ea
    r/3.aac 0x681adceb
    r/3.xml 0xc0854653
    r/4 0x70551be8
    r/4.aac 0xb10d2b92
    r/4.xml 0x13566efe
    r/5 0x5d282386
    r/5.aac 0xf57d7381
    r/5.xml 0xcd1348b5
    r/6 0xaaacdb32
    r/6.aac 0x6a396e69
    r/6.xml 0xca691a9b
    r/7 0x228cf79f
    r/7.aac 0x6d6ff84d
    r/7.xml 0x9a96f952
    r/8 0x5f2dedd2
    r/8.aac 0x6a396e69
    r/8.xml 0x4cc276a6
    r/9 0x48d7d37e
    r/9.aac 0x29e81332
    r/A 0xa8153e8f
    r/A.aac 0x7113c58f
    r/B 0x9aa8965f
    r/B.aac 0x32c3ff8
    r/C 0x31dfbc4e
    r/C.aac 0xb67317fc
    r/D 0x84dbe7a3
    r/D.aac 0xbb27c5e7
    r/E 0x757a753e
    r/E.aac 0x6a396e69
    r/F 0xbd5eabe8
    r/F.aac 0x6a396e69
    r/G 0xb6149cec
    r/G.aac 0x6a396e69
    r/H 0xbcad2270
    r/H.aac 0x3967e381
    r/I.aac 0xc9f1dfa2
    r/J.aac 0xa41f039f
    r/K.aac 0x1ef0004b
    r/L.aac 0x846b55fc
    r/M.aac 0x6a396e69
    r/N.aac 0x6a396e69
    r/O.aac 0x369bfaf9
    r/P.aac 0x6a396e69
    r/Q.aac 0x6a396e69
    r/R.aac 0x3a7e65e0
    r/S.aac 0x29e81332
    r/T.aac 0x6d6ff84d
    r/U.aac 0x63850ac
    r/V.aac 0xc04da8f7
    r/W.aac 0xfdb7db81
    r/X.aac 0xceca47bc
    r/Y.aac 0x6a396e69
    r/Z.aac 0x6f332d55
    r/a.aac 0xb11a51ed
    r/b.aac 0x6a396e69
    r/c.aac 0x6a396e69
    r/d.aac 0x6a396e69
    r/e.aac 0x799e162
    r/f.aac 0x6a396e69
    r/g.aac 0xe2d7b0c5
    r/h.aac 0x29e81332
    r/i.aac 0x6a396e69
    r/j.aac 0xe88bcec2
    r/k.aac 0x1d2d6432
    r/l.aac 0xe82925ea
    r/m.aac 0x8eaaddd8
    r/n.aac 0x6d6ff84d
    r/o.aac 0x24ce71b0
    r/p.aac 0xfdb7db81
    r/q.aac 0x4f119364
    r/r.aac 0x24d9a9b3
    r/s.aac 0x6a396e69
    r/t.aac 0x6a396e69
    r/u.aac 0x6a396e69
    r/v.aac 0x29e81332
    r/w.aac 0x3df951b2
    r/x.aac 0x6585a2e9
    r/y.aac 0x5650ff91
    r/z.aac 0x325a3073
    resources.arsc 0xe030d48
    运行截图
    VirSCAN

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号