VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, VirSCAN can scan compressed files with password 'infected' or 'virus'.

Language
Server load
Server Load



File information
File Name : xiaohaizjsnjbfz.apk (File not down)
File Size :5110916 byte
File Type :application/jar
MD5:2ab20f8a5ea66c0e9e54904800ac3eb6
SHA1:66eb0a6f589076633f0b16c25dd7520aa01f5ef4
  • 扫描结果
  • 权限
  • 文件行为分析
  • Scanner results
    Scanner results:0%Scanner(s) (0/32)found malware!        Behavior
    Time: 2015-10-18 18:07:19 (CST)
    VirSCANVirSCAN
    Scanner Engine Ver Sig Ver Sig Date Scan result Time
    antiy AVL SDK 3.0 1970-01-01 Found nothing 6
    asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Found nothing 3
    avast 150725-1 4.7.4 2015-07-25 Found nothing 0
    avg 2109/8133 10.0.1405 2014-11-26 Found nothing 0
    baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 5
    baidusd 1.0 1.0 2014-04-02 Found nothing 1
    bitdefender 7.58469 7.90123 2014-12-25 Found nothing 0
    clamav 19861 0.97.5 2014-12-31 Found nothing 0
    drweb 5.0.2.3300 5.0.1.1 2014-12-31 Found nothing 0
    fortinet 23.345, 23.345 5.1.158 2014-12-08 Found nothing 0
    fprot 4.6.2.117 6.5.1.5418 2014-12-31 Found nothing 0
    fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 0
    gdata 25.3927 25.3927 2015-10-18 Found nothing 14
    ikarus 1.06.01 V1.32.31.0 2014-12-08 Found nothing 0
    jiangmin 16.0.100 1.0.0.0 2015-07-25 Found nothing 52
    kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 0
    kingsoft 2.1 2.1 2013-09-22 Found nothing 4
    mcafee 7638 5400.1158 2014-11-30 Found nothing 0
    nod32 0920 3.0.21 2014-12-23 Found nothing 0
    panda 9.05.01 9.05.01 2015-07-26 Found nothing 8
    pcc 11.380.07 9.500-1005 2014-12-31 Found nothing 0
    qh360 1.0.1 1.0.1 1.0.1 Found nothing 3
    qqphone 1.0.0.0 1.0.0.0 2014-12-09 Found nothing 0
    quickheal 14.00 14.00 2015-07-25 Found nothing 6
    rising 25.76.04.01 25.76.04.01 2015-07-24 Found nothing 6
    sophos 5.08 3.55.0 2014-12-01 Found nothing 0
    symantec 20141230.001 1.3.0.24 2014-12-30 Found nothing 0
    tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 5
    thehacker 6.8.0.5 6.8.0.5 2015-07-23 Found nothing 7
    tws 17.47.17308 1.0.2.2108 2014-12-08 Found nothing 14
    vba 3.12.26.3 3.12.26.3 2014-12-31 Found nothing 0
    virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 0
    Heuristic/Suspicious Exact
    NOTICE: Results are not 100% accurate and can be reported as a false positive by some scannerswhen and if malware is found. Please judge these results for yourself.
    Copy to clipboard
  • 权限列表
    许可名称信息
    android.permission.MOUNT_UNMOUNT_FILESYSTEMS挂载、反挂载外部文件系统
    android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    android.permission.VIBRATE允许设备震动
    android.permission.WAKE_LOCK手机屏幕关闭后后台进程仍运行
    android.permission.READ_PHONE_STATE读取电话状态
    android.permission.PROCESS_OUTGOING_CALLS监视、修改有关拨出电话
    android.permission.SYSTEM_ALERT_WINDOW显示系统窗口
    android.permission.INTERACT_ACROSS_USERS_FULL
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.GET_TASKS获取有关当前或最近运行的任务信息
  • 文件信息
    安全评分 :
    基本信息
    MD5:2ab20f8a5ea66c0e9e54904800ac3eb6
    包名:com.mdmhngnjmlmh.zjsnsjzsb
    最低运行环境:Android 4.0, 4.0.1, 4.0.2
    版权:福州创意嘉和软件有限公司
    关键行为
    行为描述:写权限映射文件
    详情信息:CiceroSharedMemDefaultS-*
    MSCTF.MarshalInterface.FileMap.MFF..PDFGH
    MSCTF.MarshalInterface.FileMap.MFF.B.PDFGH
    MSCTF.MarshalInterface.FileMap.MFF.C.PDFGH
    MSCTF.MarshalInterface.FileMap.MFF.D.PDFGH
    MSCTF.MarshalInterface.FileMap.MFF.E.PDFGH
    MSCTF.MarshalInterface.FileMap.MFF.F.PDFGH
    MSCTF.MarshalInterface.FileMap.MFF.G.PDFGH
    MSCTF.Shared.SFM.MFF
    行为描述:屏蔽窗口关闭消息
    详情信息:hWnd = 0x000202a2, Text = , ClassName = #32770.
    进程行为
    行为描述:枚举进程
    详情信息:N/A
    文件行为
    行为描述:写权限映射文件
    详情信息:CiceroSharedMemDefaultS-*
    MSCTF.MarshalInterface.FileMap.MFF..PDFGH
    MSCTF.MarshalInterface.FileMap.MFF.B.PDFGH
    MSCTF.MarshalInterface.FileMap.MFF.C.PDFGH
    MSCTF.MarshalInterface.FileMap.MFF.D.PDFGH
    MSCTF.MarshalInterface.FileMap.MFF.E.PDFGH
    MSCTF.MarshalInterface.FileMap.MFF.F.PDFGH
    MSCTF.MarshalInterface.FileMap.MFF.G.PDFGH
    MSCTF.Shared.SFM.MFF
    其他行为
    行为描述:屏蔽窗口关闭消息
    详情信息:hWnd = 0x000202a2, Text = , ClassName = #32770.
    行为描述:查找指定窗口
    详情信息:NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
    NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
    行为描述:创建互斥体
    详情信息:CTF.LBES.MutexDefaultS-*
    CTF.Compart.MutexDefaultS-*
    CTF.Asm.MutexDefaultS-*
    CTF.Layouts.MutexDefaultS-*
    CTF.TMD.MutexDefaultS-*
    CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
    MSCTF.Shared.MUTEX.ELH
    MSCTF.Shared.MUTEX.MFF
    危险行为
    行为描述:执行系统命令
    详情信息:[u'su \n']
    [u'su \n']
    [u'/system/bin/sh']
    动态列表行为
    行为描述:获取加密实例
    详情信息:[u'DES/CBC/PKCS5Padding']
    行为描述:模拟器驱动文件初始化
    详情信息:/proc/cpuinfo
    /proc/cpuinfo
    /proc/cpuinfo
    /proc/cpuinfo
    /proc/cpuinfo
    /proc/cpuinfo
    行为描述:添加View
    详情信息:[u'com.android.internal.policy.impl.PhoneWindow$DecorView@4154ca78', u'WM.LayoutParams{(0,0)(fillxfill) sim=#120 ty=1 fl=#9810100 pfl=0x8 wanim=0x103028f}', u'android.view.CompatibilityInfoHolder@414afab8']
    [u'android.widget.LinearLayout@415abba0', u'WM.LayoutParams{(0,128)(wrapxwrap) gr=#51 ty=2005 fl=#98 fmt=-3 wanim=0x1030004}']
    [u'android.widget.LinearLayout@4152cdd8', u'WM.LayoutParams{(0,128)(wrapxwrap) gr=#51 ty=2005 fl=#98 fmt=-3 wanim=0x1030004}']
    行为描述:webview加载网页
    详情信息:file:///android_asset/script.rtd
    行为描述:调用Intent的setAction
    详情信息:[u'android.intent.action.MAIN']
    行为描述:读取系统设置
    详情信息:[u'android.app.ContextImpl$ApplicationContentResolver@4154c828', u'font_scale']
    [u'android.app.ContextImpl$ApplicationContentResolver@4154c828', u'font_scale']
    [u'android.app.ContextImpl$ApplicationContentResolver@4163e2a0', u'fancy_ime_animations']
    行为描述:root权限检测
    详情信息:/system/bin/su
    /system/xbin/su
    行为描述:获取模拟器特殊属性
    详情信息:[u'ro.serialno', u'cyjhuser']cyjhuser
    [u'ro.serialno', u'cyjhuser']cyjhuser
    [u'ro.serialno', u'cyjhuser']cyjhuser
    行为描述:执行系统命令
    详情信息:[u'su \n']
    [u'su \n']
    [u'/system/bin/sh']
    行为描述:初始化Intent
    详情信息:[u'android.os.Parcel@414ad1c8']
    [u'android.os.Parcel@414ad1c8']
    [u'com.cyjh.elfin.services.PhoneStateService@415c01f0', u'class com.cyjh.elfin.activity.MainActivity']
    [u'android.os.Parcel@414ad188']
    [u'android.os.Parcel@414ad1c8']
    [u'android.os.Parcel@414ad188']
    [u'android.os.Parcel@414ad1c8']
    行为描述:调用哈希算法
    详情信息:MD5
    行为描述:解析通用资源标识符
    详情信息:script.rtd
    行为描述:注册广播接收器
    详情信息:[u'com.cyjh.elfin.services.PhoneStateService$PhoneStateReceiver@415c66b0', u'android.content.IntentFilter@415c6738']
    行为描述:访问URL
    详情信息:http://mobileanjian.aliapp.com/ad/root.php
    行为描述:窗口信息
    详情信息:{"text": "小海战舰-正式版", "class": "android.widget.TextView"}
    {"text": "功能设置", "class": "android.widget.TextView"}
    {"text": "使用说明", "class": "android.widget.TextView"}
    {"text": "注意:该脚本不支持当前手机分辨率,请联系作者!", "class": "android.widget.TextView"}
    {"text": "该脚本暂无定制界面", "class": "android.widget.TextView"}
    {"text": "启动功能", "class": "android.widget.Button"}
    {"text": "获取更多使用时间", "class": "android.widget.Button"}
    行为描述:写入文件
    详情信息:path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/shared_prefs/CookiePrefsFile.xml length:70
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:69
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:64
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:63
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:67
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:65
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:63
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:63
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:61
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:67
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/shared_prefs/umeng_general_config.xml length:261
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:62
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:63
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:64
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:64
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:66
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:63
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:65
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:64
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:68
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:67
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:63
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:64
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:62
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:64
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:63
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:63
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:67
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:64
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:66
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:65
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:61
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:66
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:65
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:65
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:63
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:66
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:68
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:65
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:66
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:68
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:63
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:64
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:62
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:67
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:62
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:66
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:67
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:64
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:67
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:66
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:61
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:69
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:64
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:62
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:64
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/eventservice.jar length:63
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/start_eventsrv length:69
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/start_eventsrv length:6
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/start_eventsrv length:69
    path:unknown length:19
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/umeng_it.cache length:68
    path:unknown length:37
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.lc length:66
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.lc length:66
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.lc length:62
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.lc length:68
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.lc length:66
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.lc length:64
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.lc length:64
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.lc length:63
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/.um/um_cache_1439264655144.env length:69
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.lc length:65
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.lc length:56
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.lc length:60
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.lc length:60
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.lc length:60
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.lc length:62
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.prop length:69
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.ui length:59
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.ui length:63
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.ui length:59
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.rtd length:69
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.rtd length:69
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.rtd length:69
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.rtd length:69
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.rtd length:69
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.rtd length:69
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.rtd length:69
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.rtd length:54
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.rtd length:69
    path:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/files/script.cfg length:42
    行为描述:读取文件
    详情信息:path:/proc/cpuinfo length:69
    path:/proc/cpuinfo length:5
    path:unknown length:5
    path:unknown length:63
    path:/proc/meminfo length:69
    行为描述:初始化URL
    详情信息:[u'http://mobileanjian.aliapp.com/ad/root.php']
    [u'http://billapi.mobileanjian.com/api/GetKey?Data=bXHAmRMG5cgmymCb4Y5jtzjRmQqTN+QpOgHAoWqaT6nVPsISbuTF1d+hmSdaTYONnlyvGzIKTxb/z4XlWzSXwCmb2DjypJTWZJeHlalElfziInOfWMjoTCmIwIU2pcEf3OQMqQO3oEoC+V4A9q2l3P5dqEV1s+e+RTdleYE3raiT4c5Qxy3YXlqR2Ifglz8uXV5Isc+/E+0QMLRI7MeeCd0otI70ouw/']
    行为描述:获取设备ID
    详情信息:357143040944263
    357143040944263
    357143040944263
    357143040944263
    357143040944263
    357143040944263
    357143040944263
    357143040944263
    357143040944263
    行为描述:Toast->makeText弹出提示
    详情信息:text:2131165229 duration:0
    text:小海战舰-正式版没有获取root权限 duration:1
    行为描述:加载链接库文件
    详情信息:/data/data/com.mdmhngnjmlmh.zjsnsjzsb/lib/libmqm.so
    行为描述:获取当前连接的Wifi热点信息
    详情信息:[]
    []
    []
    []
    行为描述:初始化IntentFilter
    详情信息:[u'action_com.cyjh.elfin.fragment.OptionFragment_duetime']
    行为描述:缓冲区读取一行数据
    详情信息:Processor : ARMv7 Processor rev 0 (v7l)
    BogoMIPS : 369.45
    Features : swp half thumb fastmult vfp edsp neon vfpv3
    CPU implementer : 0x41
    CPU architecture: 7
    CPU variant : 0x0
    CPU part : 0xc08
    CPU revision : 0
    Hardware : Goldfish
    Revision : 0000
    Serial : 0000000000000000
    null
    Processor : ARMv7 Processor rev 0 (v7l)
    BogoMIPS : 369.45
    Features : swp half thumb fastmult vfp edsp neon vfpv3
    CPU implementer : 0x41
    CPU architecture: 7
    CPU variant : 0x0
    CPU part : 0xc08
    CPU revision : 0
    Hardware : Goldfish
    Processor : ARMv7 Processor rev 0 (v7l)
    BogoMIPS : 369.45
    Features : swp half thumb fastmult vfp edsp neon vfpv3
    CPU implementer : 0x41
    CPU architecture: 7
    Processor : ARMv7 Processor rev 0 (v7l)
    BogoMIPS : 369.45
    CPU variant : 0x0
    CPU part : 0xc08
    Features : swp half thumb fastmult vfp edsp neon vfpv3
    CPU revision : 0
    CPU implementer : 0x41
    CPU architecture: 7
    Hardware : Goldfish
    CPU variant : 0x0
    Revision : 0000
    CPU part : 0xc08
    Serial : 0000000000000000
    CPU revision : 0
    Hardware : Goldfish
    null
    Revision : 0000
    Serial : 0000000000000000
    Processor : ARMv7 Processor rev 0 (v7l)
    BogoMIPS : 369.45
    null
    Features : swp half thumb fastmult vfp edsp neon vfpv3
    CPU implementer : 0x41
    CPU architecture: 7
    CPU variant : 0x0
    Processor : ARMv7 Processor rev 0 (v7l)
    BogoMIPS : 369.45
    CPU part : 0xc08
    CPU revision : 0
    Features : swp half thumb fastmult vfp edsp neon vfpv3
    CPU implementer : 0x41
    Hardware : Goldfish
    CPU architecture: 7
    CPU variant : 0x0
    CPU part : 0xc08
    CPU revision : 0
    Hardware : Goldfish
    Processor : ARMv7 Processor rev 0 (v7l)
    null
    -rwsr-sr-x root root 62932 2012-10-10 04:16 su
    null
    行为描述:获取网络状态信息[*]
    详情信息:NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    行为描述:数据库查询
    详情信息:[u'formurl', u'null', u'null', u'null', u'null', u'null', u'null']
    Activities
    活动名类型
    com.cyjh.elfin.activity.MainActivityandroid.intent.action.MAIN
    com.cyjh.elfin.activity.MainActivityandroid.intent.category.LAUNCHER
    危险函数
    函数名称信息
    android/app/NotificationManager;->notify信息通知栏
    ContentResolver;->query读取联系人、短信等数据库
    HttpClient;->execute请求远程服务器
    DefaultHttpClient;->execute发送HTTP请求
    getRuntime获取命令行环境
    java/lang/Runtime;->exec执行字符串命令
    java/net/URL;->openConnection连接URL
    java/net/HttpURLConnection;->connect连接URL
    TelephonyManager;->getDeviceId搜集用户手机IMEI码、电话号码、系统版本号等信息
    SmsManager;->sendTextMessage发送普通短信
    权限列表
    许可名称信息
    android.permission.MOUNT_UNMOUNT_FILESYSTEMS挂载、反挂载外部文件系统
    android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    android.permission.VIBRATE允许设备震动
    android.permission.WAKE_LOCK手机屏幕关闭后后台进程仍运行
    android.permission.READ_PHONE_STATE读取电话状态
    android.permission.PROCESS_OUTGOING_CALLS监视、修改有关拨出电话
    android.permission.SYSTEM_ALERT_WINDOW显示系统窗口
    android.permission.INTERACT_ACROSS_USERS_FULL
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.GET_TASKS获取有关当前或最近运行的任务信息
    服务列表
    名称
    com.cyjh.mobileanjian.input.inputkb
    com.cyjh.elfin.services.PhoneStateService
    com.cyjh.mobileanjian.ipc.LocalServerService
    文件列表
    文件名 校验码
    assets/script.atc 0x0
    assets/script.lc 0xf948973
    assets/script.prop 0x4c6784b2
    assets/script.rtd 0x190b7c35
    assets/script.ui 0x6a952fe5
    res/color/bg_black.xml 0x2fe2b6cb
    res/color/bg_listitem.xml 0x3da79889
    res/color/bg_white.xml 0x77bab8cc
    res/color/bg_white_notranslucent.xml 0x7d97f518
    res/color/bg_white_translucent.xml 0x5b691a62
    res/color/btn_blue.xml 0x6b1c7031
    res/color/btn_gray.xml 0xbba7a1e8
    res/color/btn_orange.xml 0xd9618a80
    res/color/btn_red.xml 0xd8bbea0b
    res/color/button_blue_corner.xml 0xaa13f18e
    res/color/button_gray_corner.xml 0x7aa82057
    res/color/color_yellow.xml 0x6241b06d
    res/color/dialog_title.xml 0xa7f108ce
    res/color/floatview_elfin_textview.xml 0x62c8c9c3
    res/color/scriptui_button_bg_blue.xml 0x150bec01
    res/color/scriptui_button_bg_gray.xml 0x4192223a
    res/color/scriptui_button_bg_green.xml 0x646f4e3
    res/color/scriptui_button_bg_red.xml 0x1b69efdb
    res/color/text_viewpagerindicator.xml 0x347ad093
    res/color/textprogressbar.xml 0x3782f543
    res/drawable/bg_viewpagerindicator.xml 0xfacbd250
    res/drawable/bt_black.xml 0x46f872f0
    res/drawable/btn_black.xml 0x46f872f0
    res/drawable/dialog_button_colorlist.xml 0x6d936cff
    res/drawable/dialog_button_submit.xml 0x819fc70f
    res/drawable/elfinframe_normal.xml 0x66c493c7
    res/drawable/elfinframe_run.xml 0x652c3241
    res/drawable/ic_back.xml 0x7c7ecb06
    res/drawable/ic_cancel.xml 0x488964e4
    res/drawable/ic_manage.xml 0x4f5915e7
    res/drawable/ic_setting.xml 0xa6981020
    res/drawable/refresh_button.xml 0x41fecdf5
    res/drawable/shap_qui.xml 0xdca7bb7f
    res/drawable/shape_btn_orange.xml 0x4e8db08f
    res/drawable/shape_frame.xml 0x55951c01
    res/drawable/switch_thumb.xml 0xec247be9
    res/drawable/switch_track.xml 0xf24fdcd5
    res/drawable/umeng_common_gradient_green.xml 0x962bb903
    res/drawable/umeng_common_gradient_orange.xml 0xd5106ae2
    res/drawable/umeng_common_gradient_red.xml 0x133ade08
    res/drawable/umeng_update_button_cancel_bg_focused.xml 0xec2fe409
    res/drawable/umeng_update_button_cancel_bg_normal.xml 0xec7f7152
    res/drawable/umeng_update_button_cancel_bg_selector.xml 0xe0b5038e
    res/drawable/umeng_update_button_cancel_bg_tap.xml 0x74f2500
    res/drawable/umeng_update_button_check_selector.xml 0xb051df03
    res/drawable/umeng_update_button_close_bg_selector.xml 0xd8155f92
    res/drawable/umeng_update_button_ok_bg_focused.xml 0x3f32fe76
    res/drawable/umeng_update_button_ok_bg_normal.xml 0x88fce1f9
    res/drawable/umeng_update_button_ok_bg_selector.xml 0x7413498c
    res/drawable/umeng_update_button_ok_bg_tap.xml 0x1f7e756e
    res/drawable/umeng_update_dialog_bg.xml 0x565551a3
    res/drawable/umeng_update_title_bg.xml 0x9173f89e
    res/drawable/umeng_update_wifi_disable.png 0xe635e071
    res/layout/activity_main.xml 0xe33d7340
    res/layout/activity_scriptlog.xml 0x74ffa82f
    res/layout/activity_scriptlogdetail.xml 0xa40b967
    res/layout/activity_setting.xml 0xfc55fe92
    res/layout/alipay.xml 0x333c5781
    res/layout/alipay_title.xml 0x8a0ed1bf
    res/layout/appdownload_layout.xml 0x9625b7b3
    res/layout/cyjhpay_empty_layout.xml 0x82a3f25d
    res/layout/cyjhpay_header_layout.xml 0xa6602cd7
    res/layout/cyjhpay_item_layout.xml 0xec557725
    res/layout/cyjhpay_layout.xml 0x79483e8d
    res/layout/delete_floatview.xml 0x757e7f5b
    res/layout/dialog_alert.xml 0x47eba7d9
    res/layout/dialog_hidefw.xml 0x1969c83d
    res/layout/dialog_miuifloatview.xml 0x65b58311
    res/layout/dialog_rtd.xml 0xfc58a1f2
    res/layout/dialog_scriptrtd.xml 0x29dd221c
    res/layout/dialog_scriptui.xml 0x5e9acaa3
    res/layout/floatview.xml 0xbc999b7a
    res/layout/floatview_elfin.xml 0x4cfb0891
    res/layout/fragment_option.xml 0xf8ffe3a
    res/layout/fragment_scriptdescription.xml 0x5b768ef4
    res/layout/hidefw_dialog.xml 0x1969c83d
    res/layout/litview_item_scriptlog.xml 0xa766ecfc
    res/layout/root_course_layout.xml 0xa8b41351
    res/layout/scriptrtd_dialog.xml 0x29dd221c
    res/layout/scriptui_dialog.xml 0x5e9acaa3
    res/layout/scriptui_spinner_textview.xml 0xb3a95223
    res/layout/setting_dialog.xml 0x37533798
    res/layout/umeng_common_download_notification.xml 0x30614fd6
    res/layout/umeng_update_dialog.xml 0xcd7ba96
    res/layout/update_dialog.xml 0xf12e59e8
    res/menu/main.xml 0x7eb1e44c
    res/raw/eventservice.jar 0x6376ce53
    res/xml/method.xml 0x455d3967
    AndroidManifest.xml 0xb94a7f3b
    resources.arsc 0xd37fbf86
    res/layout-v9/umeng_common_download_notification.xml 0x42bda3e
    res/drawable-hdpi/bg_guide.png 0x9254d530
    res/drawable-hdpi/bt_back.png 0x86453b02
    res/drawable-hdpi/bt_floatview_info.png 0x2049ad87
    res/drawable-hdpi/bt_floatview_main.png 0x75b8cc99
    res/drawable-hdpi/bt_floatview_run.png 0x237d7e9a
    res/drawable-hdpi/bt_floatview_stop.png 0x4db0895e
    res/drawable-hdpi/delete_floatview_in.png 0x7d6a2a0c
    res/drawable-hdpi/delete_floatview_out.png 0xf99ab4d4
    res/drawable-hdpi/dialog_bg_click.9.png 0x2de46b5d
    res/drawable-hdpi/dialog_bg_normal.9.png 0x2b129582
    res/drawable-hdpi/dialog_cut_line.png 0x8cf46c5d
    res/drawable-hdpi/dialog_split_h.png 0x12db1a81
    res/drawable-hdpi/dialog_split_v.png 0x7702c185
    res/drawable-hdpi/ic_arrow_right.png 0x397f9879
    res/drawable-hdpi/ic_back_n.png 0x2360f0be
    res/drawable-hdpi/ic_back_p.png 0x994d4110
    res/drawable-hdpi/ic_cancel_n.png 0x8cad5ec9
    res/drawable-hdpi/ic_cancel_p.png 0x38da0e5b
    res/drawable-hdpi/ic_description.png 0x7b2ea998
    res/drawable-hdpi/ic_floatview_arrow_left.png 0x6bb2e12
    res/drawable-hdpi/ic_floatview_arrow_right.png 0xfc9c7356
    res/drawable-hdpi/ic_launcher.png 0x521be04f
    res/drawable-hdpi/ic_manage_n.png 0xd41ea5a0
    res/drawable-hdpi/ic_manage_p.png 0x613fd277
    res/drawable-hdpi/ic_qui.png 0xeae0b64d
    res/drawable-hdpi/ic_script_description.png 0x7b2ea998
    res/drawable-hdpi/ic_scriptlog.png 0x3e5d5da4
    res/drawable-hdpi/ic_setting_n.png 0x1e920941
    res/drawable-hdpi/ic_setting_p.png 0x4bb626b4
    res/drawable-hdpi/ic_unroot.png 0x729ab7de
    res/drawable-hdpi/popup_bg.9.png 0xbd3d7cd8
    res/drawable-hdpi/refresh.9.png 0x793a2425
    res/drawable-hdpi/refresh_push.9.png 0x1d71fbbf
    res/drawable-hdpi/title.png 0xc50538e3
    res/drawable-hdpi/title_background.9.png 0xbb402f1b
    res/drawable-hdpi/umeng_update_btn_check_off_focused_holo_light.png 0x63f5fdb0
    res/drawable-hdpi/umeng_update_btn_check_off_holo_light.png 0x9dd19bd9
    res/drawable-hdpi/umeng_update_btn_check_off_pressed_holo_light.png 0x3f0df474
    res/drawable-hdpi/umeng_update_btn_check_on_focused_holo_light.png 0x3a86058e
    res/drawable-hdpi/umeng_update_btn_check_on_holo_light.png 0x54ca4df0
    res/drawable-hdpi/umeng_update_btn_check_on_pressed_holo_light.png 0xc6e0029f
    res/drawable-hdpi/umeng_update_close_bg_normal.png 0xfbb3a5d2
    res/drawable-hdpi/umeng_update_close_bg_tap.png 0xa852b3ec
    res/drawable-ldpi/ic_launcher.png 0x521be04f
    res/drawable-mdpi/ic_launcher.png 0x521be04f
    res/drawable-xhdpi/bg_floatview.9.png 0x4d005ff
    res/drawable-xhdpi/bg_floatview_arrow.9.png 0x4f64d28
    res/drawable-xhdpi/elfin_normal1.png 0xa52e5d0e
    res/drawable-xhdpi/elfin_normal2.png 0xd634c7e9
    res/drawable-xhdpi/elfin_normal3.png 0x2d17aca0
    res/drawable-xhdpi/elfin_normal4.png 0x2fe567b1
    res/drawable-xhdpi/elfin_normal_down.png 0x9bc286ef
    res/drawable-xhdpi/elfin_normal_left.png 0x970da0dc
    res/drawable-xhdpi/elfin_normal_left_down.png 0x791204bb
    res/drawable-xhdpi/elfin_normal_left_edge.png 0x76ef64b7
    res/drawable-xhdpi/elfin_normal_left_up.png 0x3bfe510c
    res/drawable-xhdpi/elfin_normal_right.png 0x6fbefffb
    res/drawable-xhdpi/elfin_normal_right_down.png 0x3d660149
    res/drawable-xhdpi/elfin_normal_right_edge.png 0x1df0a80a
    res/drawable-xhdpi/elfin_normal_right_up.png 0x2a97d879
    res/drawable-xhdpi/elfin_run1.png 0xd833ebae
    res/drawable-xhdpi/elfin_run2.png 0x58bd6668
    res/drawable-xhdpi/elfin_run3.png 0xdda8c43b
    res/drawable-xhdpi/elfin_run4.png 0x667ca641
    res/drawable-xhdpi/elfin_run_down.png 0x842e71a7
    res/drawable-xhdpi/elfin_run_left_edge.png 0xae72a996
    res/drawable-xhdpi/elfin_run_left_up.png 0x369c3200
    res/drawable-xhdpi/elfin_run_right_edge.png 0x472722f5
    res/drawable-xhdpi/elfin_run_right_up.png 0xe75bad2a
    res/drawable-xhdpi/finger.png 0x9886f3c
    res/drawable-xhdpi/floatview_elfin_info.png 0xeb82472
    res/drawable-xhdpi/floatview_elfin_run.png 0x7eee0c2b
    res/drawable-xhdpi/floatview_elfin_setting.png 0x70972589
    res/drawable-xhdpi/floatview_elfin_stop.png 0x77a24d15
    res/drawable-xhdpi/ic_back_n.png 0x2360f0be
    res/drawable-xhdpi/ic_back_p.png 0x994d4110
    res/drawable-xhdpi/ic_cancel_n.png 0x8cad5ec9
    res/drawable-xhdpi/ic_cancel_p.png 0x38da0e5b
    res/drawable-xhdpi/ic_launcher.png 0x521be04f
    res/drawable-xhdpi/ic_manage_n.png 0xd41ea5a0
    res/drawable-xhdpi/ic_manage_p.png 0x613fd277
    res/drawable-xhdpi/ic_script_description.png 0x7b2ea998
    res/drawable-xhdpi/ic_scriptlog.png 0x3e5d5da4
    res/drawable-xhdpi/ic_setting_n.png 0x1e920941
    res/drawable-xhdpi/ic_setting_p.png 0x4bb626b4
    res/drawable-xhdpi/scriptui_setting.png 0xe3dcd0e9
    res/drawable-xhdpi/scriptui_spinner_text.9.png 0x317dba4b
    res/drawable-xhdpi/setting_arrow_left.png 0x50fd1a79
    res/drawable-xhdpi/setting_arrow_right.png 0x63138994
    res/drawable-xhdpi/setting_switch_bg_disabled_holo_light.9.png 0x85448849
    res/drawable-xhdpi/setting_switch_bg_focused_holo_light.9.png 0xbe82094e
    res/drawable-xhdpi/setting_switch_bg_holo_light.9.png 0x4d066e09
    res/drawable-xhdpi/setting_switch_thumb_activated_holo_light.9.png 0xe2110d72
    res/drawable-xhdpi/setting_switch_thumb_disabled_holo_light.9.png 0xb81308a
    res/drawable-xhdpi/setting_switch_thumb_holo_light.9.png 0xf86bd67f
    res/drawable-xhdpi/setting_switch_thumb_pressed_holo_light.9.png 0xdad0c3e2
    res/drawable-xxhdpi/ic_launcher.png 0x521be04f
    classes.dex 0x81aa173a
    org/codehaus/jackson/impl/VERSION.txt 0x731514ad
    org/codehaus/jackson/map/VERSION.txt 0x731514ad
    assembly-descriptor.xml 0xd2a3e682
    lib/armeabi/libBugly.so 0x8ad7b3d9
    lib/armeabi/libmqm.so 0xdf465777
    lib/armeabi/libsc15.so 0xb865754e
    lib/armeabi/libsc17.so 0xc03c8bfb
    lib/armeabi/libsc19.so 0x6cce4d9a
    lib/armeabi-v7a/libBugly.so 0x745c62b4
    lib/armeabi-v7a/libmqm.so 0xb02f0584
    lib/armeabi-v7a/libsc15.so 0xb865754e
    lib/armeabi-v7a/libsc17.so 0xc03c8bfb
    lib/armeabi-v7a/libsc19.so 0x6cce4d9a
    lib/x86/libmqm.so 0xe1c5e017
    lib/x86/libsc.so 0xb8332708
    META-INF/MANIFEST.MF 0xda2a3b28
    META-INF/CERT.SF 0x7bf54112
    META-INF/CERT.RSA 0x6bf70c0b
    运行截图
    VirSCAN

About VirSCAN | Privacy Policy | Contact us | link | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号