VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, VirSCAN can scan compressed files with password 'infected' or 'virus'.

Language
Server load
Server Load



File information
File Name : 卡iPhone在线(锁机病毒4).apk (File not down)
File Size :1021787 byte
File Type :application/zip
MD5:4978b3173eb929b90e184859a0cebc2d
SHA1:09c37d5d91b756e08462f9bae52423bfd8823699
  • 扫描结果
  • 权限
  • 文件行为分析
  • Scanner results
    Scanner results:6%Scanner(s) (2/32)found malware!        Behavior
    Time: 2018-02-07 18:02:53 (CST)
    VirSCANVirSCAN
    Scanner Engine Ver Sig Ver Sig Date Scan result Time
    antiy AVL SDK 2.0 1970-01-01 Found nothing 5
    asquared 9.0.0.4799 9.0.0.4799 2015-03-08 Found nothing 1
    avast 170303-1 4.7.4 2017-03-03 Found nothing 60
    avg 2109/14865 10.0.1405 2018-02-02 Found nothing 60
    baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 6
    baidusd 1.0 1.0 2017-03-22 Found nothing 1
    bitdefender 7.58879 7.90123 2015-01-16 Found nothing 60
    clamav 24287 0.97.5 2018-02-05 Found nothing 60
    drweb 5.0.2.3300 5.0.1.1 2018-02-02 Found nothing 60
    fortinet 1.000, 54.989, 54.836, 54.859 5.4.247 2018-02-07 Found nothing 60
    fprot 4.6.2.117 6.5.1.5418 2016-02-05 Found nothing 60
    fsecure 2015-08-01-02 9.13 2015-08-01 Found nothing 60
    gdata 25.15932 25.15932 2018-02-06 Trojan.GenericKD.4749159 13
    ikarus 4.00.05 V1.32.31.0 2018-02-06 Found nothing 60
    jiangmin 16.0.100 1.0.0.0 2017-12-22 Found nothing 2
    kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 60
    kingsoft 2.1 2.1 2018-02-06 Found nothing 4
    mcafee 8620 5400.1158 2017-08-12 Found nothing 60
    nod32 6854 3.0.21 2018-02-05 Found nothing 60
    panda 9.05.01 9.05.01 2018-02-06 Found nothing 4
    pcc 13.302.06 9.500-1005 2017-03-27 Found nothing 60
    qh360 1.0.1 1.0.1 1.0.1 Android mobile malware 3
    qqphone 1.0.0.0 1.0.0.0 2015-12-30 Found nothing 60
    quickheal 14.00 14.00 2017-11-18 Found nothing 2
    rising 3193 3193 2017-12-26 Found nothing 1
    sophos 5.32 3.65.2 2016-10-10 Found nothing 60
    symantec 20151230.005 1.3.0.24 2015-12-30 Found nothing 60
    tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 3
    thehacker 6.8.0.5 6.8.0.5 2018-02-05 Found nothing 1
    tws 17.47.17308 1.0.2.2108 2018-02-06 Found nothing 14
    vba 3.12.29.5 beta 3.12.29.5 beta 2018-02-06 Found nothing 60
    virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 60
    Heuristic/Suspicious Exact
    NOTICE: Results are not 100% accurate and can be reported as a false positive by some scannerswhen and if malware is found. Please judge these results for yourself.
    Copy to clipboard
  • 权限列表
    许可名称信息
    android.permission.RECEIVE_BOOT_COMPLETED接收开机启动广播
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.SYSTEM_ALERT_WINDOW显示系统窗口
  • 文件信息
    安全评分 :
    基本信息
    MD5:4978b3173eb929b90e184859a0cebc2d
    包名:com.bug.ceshi
    最低运行环境:Android 2.2.x
    版权:pass
    关键行为
    行为描述:获取窗口截图信息
    详情信息:Foreground window Info: HWND = 0x00000000, DC = 0xec0102bb.
    其他行为
    行为描述:创建互斥体
    详情信息:Global\E.A.G.L.S System
    Global\Uninstaller File Copying ...
    CTF.LBES.MutexDefaultS-*
    CTF.Compart.MutexDefaultS-*
    CTF.Asm.MutexDefaultS-*
    CTF.Layouts.MutexDefaultS-*
    CTF.TMD.MutexDefaultS-*
    CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
    MSCTF.Shared.MUTEX.ELH
    行为描述:查找指定窗口
    详情信息:NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
    行为描述:打开事件
    详情信息:HookSwitchHookEnabledEvent
    CTF.ThreadMIConnectionEvent.000007B4.00000000.00000054
    CTF.ThreadMarshalInterfaceEvent.000007B4.00000000.00000054
    MSCTF.SendReceiveConection.Event.ELH.IC
    MSCTF.SendReceive.Event.ELH.IC
    行为描述:窗口信息
    详情信息:Pid = 1676, Hwnd=0xf033c, Text = 确定, ClassName = Button.
    Pid = 1676, Hwnd=0x60380, Text = 傾儞僀儞僗僩乕儖忣曬偺庢摼偵幐攕偟傑偟偨, ClassName = Static.
    Pid = 1676, Hwnd=0x1f0324, Text = 僄儔乕, ClassName = #32770.
    行为描述:获取窗口截图信息
    详情信息:Foreground window Info: HWND = 0x00000000, DC = 0xec0102bb.
    行为描述:打开互斥体
    详情信息:ShimCacheMutex
    Activities
    活动名类型
    .pinandroid.intent.action.MAIN
    .pinandroid.intent.category.LAUNCHER
    危险函数
    函数名称信息
    getRuntime获取命令行环境
    java/lang/Runtime;->exec执行字符串命令
    HttpClient;->execute请求远程服务器
    DefaultHttpClient;->execute发送HTTP请求
    启动方式
    名称信息
    com.bug.ceshi.BootBroadcastReceiver开机启动服务
    com.bug.ceshi.wcnmsb
    权限列表
    许可名称信息
    android.permission.RECEIVE_BOOT_COMPLETED接收开机启动广播
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.SYSTEM_ALERT_WINDOW显示系统窗口
    文件列表
    文件名 校验码
    META-INF/MANIFEST.MF 0x52664649
    META-INF/CERT.SF 0xbb93138
    META-INF/CERT.RSA 0x526d1701
    AndroidManifest.xml 0xebdb2093
    assets/in.html 0x3701e760
    classes.dex 0x49b8b1d8
    res/drawable-hdpi-v4/ic_launcher.png 0x6cea002c
    res/drawable-mdpi-v4/ic_launcher.png 0x6cea002c
    res/drawable-xhdpi-v4/ic_launcher.png 0x6cea002c
    res/drawable-xxhdpi-v4/ic_launcher.png 0x6cea002c
    res/layout/bf.xml 0xd775c4bb
    res/layout/dt.xml 0x68865a5e
    res/layout/main.xml 0xf6d823d5
    res/layout/pin.xml 0x47c06bde
    res/layout/qd.xml 0xe017ce89
    res/layout/wcjqx.xml 0x984cc94f
    res/raw/bll.ogg 0x1e56ac82
    res/raw/jh.ogg 0x222dbbf7
    res/raw/ls.ogg 0xce56e8b0
    resources.arsc 0xe36b2219
    运行截图
    VirSCAN

About VirSCAN | Privacy Policy | Contact us | link | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号