VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

File information
File Name :WiFiFileTransferPro.apk (File not down)
File Size :766093 byte
File Type :application/jar
MD5:f382a03695fe497719d8658c549b7ff0
SHA1:0e3a90a8eff0c433ca26d895eaa085a6f0882b15
  • 扫描结果
  • 权限
  • 文件行为分析
  • Scanner results
    Scanner results:0%Scanner(s) (0/32)found malware!
    Behavior analysis report:         Habo file analysis
    Time: 2017-08-31 15:38:52 (CST)
    VirSCANVirSCAN
    Scanner Engine Ver Sig Ver Sig Date Scan result Time
    antiy AVL SDK 2.0 1970-01-01 Found nothing 5
    asquared 9.0.0.4799 9.0.0.4799 2015-03-08 Found nothing 1
    avast 170303-1 4.7.4 2017-03-03 Found nothing 60
    avg 2109/14366 10.0.1405 2017-08-23 Found nothing 60
    baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 6
    baidusd 1.0 1.0 2017-03-22 Found nothing 1
    bitdefender 7.58879 7.90123 2015-01-16 Found nothing 60
    clamav 23735 0.97.5 2017-08-30 Found nothing 60
    drweb 5.0.2.3300 5.0.1.1 2017-06-18 Found nothing 60
    fortinet 1.000, 51.289, 51.266, 51.128 5.4.247 2017-08-31 Found nothing 60
    fprot 4.6.2.117 6.5.1.5418 2016-02-05 Found nothing 60
    fsecure 2015-08-01-02 9.13 2015-08-01 Found nothing 60
    gdata 25.14030 25.14030 2017-08-31 Found nothing 12
    ikarus 1.06.01 V1.32.31.0 2017-08-30 Found nothing 60
    jiangmin 16.0.100 1.0.0.0 2017-08-30 Found nothing 2
    kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 60
    kingsoft 2.1 2.1 2017-08-30 Found nothing 60
    mcafee 8620 5400.1158 2017-08-12 Found nothing 60
    nod32 5995 3.0.21 2017-08-29 Found nothing 60
    panda 9.05.01 9.05.01 2017-08-30 Found nothing 4
    pcc 13.302.06 9.500-1005 2017-03-27 Found nothing 60
    qh360 1.0.1 1.0.1 1.0.1 Found nothing 3
    qqphone 1.0.0.0 1.0.0.0 2015-12-30 Found nothing 60
    quickheal 14.00 14.00 2017-08-30 Found nothing 3
    rising 26.28.00.01 26.28.00.01 2016-07-18 Found nothing 3
    sophos 5.32 3.65.2 2016-10-10 Found nothing 60
    symantec 20151230.005 1.3.0.24 2015-12-30 Found nothing 60
    tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 3
    thehacker 6.8.0.5 6.8.0.5 2017-08-28 Found nothing 2
    tws 17.47.17308 1.0.2.2108 2017-08-30 Found nothing 14
    vba 3.12.29.5 beta 3.12.29.5 beta 2017-08-30 Found nothing 60
    virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 60
    Heuristic/Suspicious Exact
    NOTICE: Results are not 100% accurate and can be reported as a false positive by some scannerswhen and if malware is found. Please judge these results for yourself.
  • 权限列表
    许可名称信息
    com.android.vending.CHECK_LICENSE
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.WAKE_LOCK手机屏幕关闭后后台进程仍运行
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
  • 文件信息
    安全评分 :75
    基本信息
    MD5:f382a03695fe497719d8658c549b7ff0
    包名:com.smarterdroid.wififiletransferpro
    最低运行环境:Android 2.1.x
    版权:
    关键行为
    行为描述:隐藏指定窗口
    详情信息:[Window,Class] = [Setup,TApplication]
    进程行为
    行为描述:创建新文件进程
    详情信息:ImagePath = C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-DQ2Q8.tmp\sample.tmp, CmdLine = "C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-DQ2Q8.tmp\sample.tmp" /SL5="$D0180,20311422,508928,c:\%temp%\1414431382.706826.exe"
    文件行为
    行为描述:创建可执行文件
    详情信息:C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-DQ2Q8.tmp\sample.tmp
    C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-LROJ3.tmp\_isetup\_shfoldr.dll
    行为描述:修改文件内容
    详情信息:C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\is-LROJ3.tmp\he-eula.rtf---> Offset = 0
    注册表行为
    行为描述:修改注册表
    详情信息:\REGISTRY\USER\S-1-5-21-1482476501-1645522239-1417001333-500\Software\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\X\BaseClass
    其他行为
    行为描述:窗口信息
    详情信息:Pid = 536, Hwnd=0xe01b8, Text = Welcome to the MiniTool Partition Wizard Home Edition Setup Wizard , ClassName = TNewStaticText.
    Pid = 536, Hwnd=0xc01b6, Text = This will install MiniTool Partition Wizard Home Edition 8.1.1 on your computer. It is recommended that you close all other ap, ClassName = TNewStaticText.
    Pid = 536, Hwnd=0xb0192, Text = MiniTool Partition Wizard Home Edition Copyright (c) 2009 - 2013 MiniTool Solution Ltd., All rights reserved. END-USER LI, ClassName = TRichEditViewer.
    Pid = 536, Hwnd=0xb0198, Text = C:\Program Files\MiniTool Partition Wizard Home Edition 8.1.1, ClassName = TEdit.
    Pid = 536, Hwnd=0xb0174, Text = &Next >, ClassName = TNewButton.
    Pid = 536, Hwnd=0xb016c, Text = Cancel, ClassName = TNewButton.
    Pid = 536, Hwnd=0xc0184, Text = Setup - MiniTool Partition Wizard Home Edition, ClassName = TWizardForm.
    行为描述:隐藏指定窗口
    详情信息:[Window,Class] = [Setup,TApplication]
    行为描述:枚举窗口
    详情信息:N/A
    行为描述:获取系统权限
    详情信息:SE_LOAD_DRIVER_PRIVILEGE
    动态列表行为
    行为描述:传递附加信息
    详情信息:Ljava/lang/String;=app_package_name | Ljava/lang/String;=com.smarterdroid.wififiletransferpro
    Ljava/lang/String;=action | I=2001
    Ljava/lang/String;=message | I=3001
    行为描述:启动服务
    详情信息:com.android.musicfx.Compatibility$Service
    com.android.mms.transaction.SmsReceiverService
    行为描述:读取文件
    详情信息:path:/proc/783/cmdline length:105
    path:/proc/799/cmdline length:105
    path:/proc/811/cmdline length:105
    path:/proc/841/cmdline length:105
    path:/proc/854/cmdline length:105
    path:/dev/urandom length:15
    path:/proc/890/cmdline length:105
    path:/proc/892/cmdline length:105
    path:/sys/devices/virtual/net/lo/ifindex length:105
    path:/proc/841/net/if_inet6 length:105
    path:/proc/841/net/if_inet6 length:105
    path:/sys/devices/platform/smc91x.0/net/eth0/ifindex length:105
    path:/sys/devices/virtual/net/sit0/ifindex length:105
    行为描述:数据加密
    详情信息:{u'operation': u'keyalgo', u'algorithm': u'AES', u'key': u'-103, -19, 66, 85, -44, 9, -61, -81, -102, 23, -13, 88, 14, -50, 109, -122, -95, -84, -21, -87, 36, 4, 19, -12, -7, 119, 4, 113, 40, -80, -123, 32'}
    行为描述:类加载
    详情信息:path:/system/app/PicoTts.apk
    path:/system/app/MusicFX.apk
    path:/system/framework/am.jar
    path:/data/app/com.smarterdroid.wififiletransferpro-1.apk
    行为描述:执行SQL查询
    详情信息:SELECT
    行为描述:缓冲区读取一行数据
    详情信息:## Vold 2.0 Generic fstab
    ## - San Mehat
    ##
    #######################
    ## Regular device mount
    ##
    ## Format: dev_mount <label> <mount_point> <part> <sysfs_path1...>
    ## label - Label for the volume
    ## mount_point - Where the volume will be mounted
    ## part - Partition # (1
    ## <sysfs_path> - List of sysfs paths to source devices
    ######################
    ## Example of a standard sdcard mount for the emulator / Dream
    # Mounts the first usable partition of the specified device
    dev_mount sdcard /mnt/sdcard auto /devices/platform/goldfish_mmc.0 /devices/platform/msm_sdcc.2/mmc_host/mmc1
    ## Example of a dual card setup
    # dev_mount left_sdcard /sdcard1 auto /devices/platform/goldfish_mmc.0 /devices/platform/msm_sdcc.2/mmc_host/mmc1
    # dev_mount right_sdcard /sdcard2 auto /devices/platform/goldfish_mmc.1 /devices/platform/msm_sdcc.3/mmc_host/mmc1
    ## Example of specifying a specific partition for mounts
    # dev_mount sdcard /sdcard 2 /devices/platform/goldfish_mmc.0 /devices/platform/msm_sdcc.2/mmc_host/mmc1
    null
    行为描述:初始化Intent
    详情信息:Ljava/lang/String;=com.google.android.gms.analytics.service.START
    Ljava/lang/String;=com.smarterdroid.wififiletransferpro.MSG_EVENT
    Landroid/content/Context;=com.smarterdroid.wififiletransferpro.WFTService@415655c8 | Ljava/lang/Class;=class com.smarterdroid.wififiletransferpro.WFTPanel
    Ljava/lang/String;=com.smarterdroid.wififiletransferpro.ACTION_EVENT
    Landroid/content/Context;=android.app.Application@41545a08 | Ljava/lang/Class;=class com.smarterdroid.wififiletransferpro.WFTWidgetProvider
    行为描述:唤醒锁屏
    详情信息:WiFi File
    行为描述:写入文件
    详情信息:path:/data/data/com.android.gallery3d/shared_prefs/com.android.gallery3d_preferences.xml length:105
    path:/data/data/com.android.musicfx/shared_prefs/musicfx.xml length:105
    path:/data/data/com.smarterdroid.wififiletransferpro/shared_prefs/com.smarterdroid.wififiletransferpro_preferences.xml length:105
    path:/data/data/com.smarterdroid.wififiletransferpro/shared_prefs/com.smarterdroid.wififiletransferpro_preferences.xml length:105
    path:/data/data/com.smarterdroid.wififiletransferpro/shared_prefs/com.smarterdroid.wififiletransferpro_preferences.xml length:105
    path:/data/data/com.smarterdroid.wififiletransferpro/files/gaClientId length:41
    path:/data/data/com.android.gallery3d/shared_prefs/com.android.gallery3d_preferences.xml length:105
    Activities
    活动名类型
    .WFTPanelandroid.intent.action.MAIN
    .WFTPanelandroid.intent.category.LAUNCHER
    危险函数
    函数名称信息
    HttpClient;->execute请求远程服务器
    ContentResolver;->query读取联系人、短信等数据库
    ContentResolver;->delete删除短信、联系人
    启动方式
    名称信息
    com.smarterdroid.wififiletransferpro.WFTWidgetProvider更新应用小部件时启动服务
    权限列表
    许可名称信息
    com.android.vending.CHECK_LICENSE
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.WAKE_LOCK手机屏幕关闭后后台进程仍运行
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    服务列表
    名称
    com.smarterdroid.wififiletransferpro.WFTService
    com.google.analytics.tracking.android.CampaignTrackingService
    文件列表
    文件名 校验码
    assets/wftfiles/1px.png 0x52c3413b
    assets/wftfiles/Swiff.Uploader.swf 0x1186252d
    assets/wftfiles/WiFi File Transfer.txt 0x85d64646
    assets/wftfiles/action_icon_accept.png 0x66bfb725
    assets/wftfiles/action_icon_browse.png 0x723006a9
    assets/wftfiles/action_icon_cancel.png 0xdcda4ea3
    assets/wftfiles/action_icon_copy.png 0x349aac6b
    assets/wftfiles/action_icon_delete.png 0xf5afcbbd
    assets/wftfiles/action_icon_down.png 0x9b6c2d90
    assets/wftfiles/action_icon_move.png 0x29a8591d
    assets/wftfiles/action_icon_newdir.png 0x62a23a64
    assets/wftfiles/action_icon_reload.png 0xe43b3d41
    assets/wftfiles/action_icon_rename.png 0x7e883824
    assets/wftfiles/action_icon_start.png 0xa415c3c4
    assets/wftfiles/action_icon_unzip.png 0xc96ef1ba
    assets/wftfiles/action_icon_up.png 0x29bb0766
    assets/wftfiles/action_icon_zip.png 0x8f54f175
    assets/wftfiles/bar.gif 0x8910c030
    assets/wftfiles/bg-s-main.jpg 0x12a43945
    assets/wftfiles/bg-t-tr.png 0x8d0c2f78
    assets/wftfiles/bg-tabs-trans-nor.png 0xdfd88568
    assets/wftfiles/bg-tabs-trans.png 0xc1082f8b
    assets/wftfiles/browser-icon.png 0x398764ed
    assets/wftfiles/controls.png 0x83223efc
    assets/wftfiles/failed.png 0x51e209a9
    assets/wftfiles/ficon.ico 0x37b38270
    assets/wftfiles/file.png 0xc84d361c
    assets/wftfiles/file_icon.png 0x59cfbfb0
    assets/wftfiles/file_icon_apk.png 0x33fad639
    assets/wftfiles/file_icon_image.png 0x8b297488
    assets/wftfiles/file_icon_locked.png 0x8efede2
    assets/wftfiles/file_icon_office.png 0x81b558fc
    assets/wftfiles/file_icon_pdf.png 0x3f99cb33
    assets/wftfiles/file_icon_qt.png 0xad77aced
    assets/wftfiles/file_icon_sound.png 0x18b23316
    assets/wftfiles/file_icon_text.png 0x85b5608d
    assets/wftfiles/file_icon_vcard.png 0x3d9240a2
    assets/wftfiles/file_icon_video.png 0x2302c320
    assets/wftfiles/file_icon_zip.png 0x125a93c0
    assets/wftfiles/folder_icon.png 0x7e190c8d
    assets/wftfiles/hover-tab.png 0xa43cdcac
    assets/wftfiles/how-bg.png 0xb549e519
    assets/wftfiles/jq-plugins.js 0xf43be03e
    assets/wftfiles/jquery161.min.js 0x110f6059
    assets/wftfiles/loading.gif 0xd9461603
    assets/wftfiles/logo.png 0x9145d33
    assets/wftfiles/media-icon.png 0xf74b13c4
    assets/wftfiles/mootools.js 0xb8c88ce7
    assets/wftfiles/pb_act.png 0xd5c9db39
    assets/wftfiles/pb_inact.png 0x5c3a8cd7
    assets/wftfiles/progress.gif 0x720cb23a
    assets/wftfiles/success.png 0x1db6fe34
    assets/wftfiles/table_icon_current.png 0xd2ed50e0
    assets/wftfiles/table_icon_device.png 0xa8328634
    assets/wftfiles/table_icon_message.png 0xb285a622
    assets/wftfiles/table_icon_upload.png 0x9c44e662
    assets/wftfiles/upg-bg.png 0x70dfc089
    assets/wftfiles/uploader.js 0x4d89c2fc
    assets/wftfiles/uploaderp.js 0xe0b719e1
    assets/wftfiles/uploading.png 0xc3efd517
    assets/wftfiles/wft.css 0x8d3b44e2
    assets/wftfiles/wft.js 0x548af8b
    assets/wftfiles/wififiletransfer.bks 0x88ead7e6
    res/drawable/gray_gradient1.xml 0xdcb0226d
    res/drawable/gray_gradient2.xml 0x9919c696
    res/drawable/ic_logo.png 0x76d8a3e8
    res/drawable/ic_wft2_l.png 0x55f74453
    res/drawable/ic_wft2_m.png 0xd892b3e9
    res/drawable/myshape.xml 0x85a972be
    res/drawable/rounded_corners.xml 0x5537ed5c
    res/layout/chooser_list.xml 0x98e627f0
    res/layout/help_main.xml 0xbab0eaf1
    res/layout/list_item.xml 0x33bda61e
    res/layout/main.xml 0xcec47a85
    res/layout/prefs.xml 0x88beb30e
    res/layout/widgetlayout.xml 0x78610e6e
    res/xml/settings.xml 0x26bd5c2e
    res/xml/widget_info.xml 0xff8a2202
    AndroidManifest.xml 0x59bbc354
    resources.arsc 0x4964577a
    res/xml-v12/widget_info.xml 0xbd132d
    res/xml-v17/widget_info.xml 0x9a584e71
    res/drawable-hdpi/ic_email.png 0x55a16dea
    res/drawable-hdpi/ic_help.png 0x34e5012a
    res/drawable-hdpi/ic_quit.png 0x99906c35
    res/drawable-hdpi/ic_settings.png 0x33bd3503
    res/drawable-hdpi/ic_upgrade2.png 0x92cbf0e0
    res/drawable-hdpi/ic_wft2_h.png 0x85fbf08c
    res/drawable-hdpi/ic_wft2_h_off.png 0xbd257652
    res/drawable-hdpi/ic_wft2_l.png 0x55f74453
    res/drawable-hdpi/ic_wft2_m.png 0xd892b3e9
    res/drawable-ldpi/ic_email.png 0xc83a76b7
    res/drawable-ldpi/ic_help.png 0x320ee78d
    res/drawable-ldpi/ic_quit.png 0xc5257f3b
    res/drawable-ldpi/ic_settings.png 0x575de7fe
    res/drawable-ldpi/ic_upgrade2.png 0xf9eefeb0
    res/drawable-ldpi/ic_wft2_h.png 0x7f9b01cf
    res/drawable-ldpi/ic_wft2_l.png 0x9a21d9e8
    res/drawable-ldpi/ic_wft2_m.png 0xb4e7083c
    res/drawable-mdpi/ic_email.png 0xc83a76b7
    res/drawable-mdpi/ic_help.png 0x33fcec9c
    res/drawable-mdpi/ic_quit.png 0x6f62a1a6
    res/drawable-mdpi/ic_settings.png 0xd77cd5ad
    res/drawable-mdpi/ic_upgrade2.png 0x2bb8a734
    res/drawable-mdpi/ic_wft2_h.png 0xcb3bafae
    res/drawable-mdpi/ic_wft2_h_off.png 0xc1308dde
    res/drawable-mdpi/ic_wft2_l.png 0x6222b0b1
    res/drawable-mdpi/ic_wft2_m.png 0x51cc95bf
    res/drawable-xhdpi/ic_email.png 0x2960a48
    res/drawable-xhdpi/ic_help.png 0xed7c0c61
    res/drawable-xhdpi/ic_quit.png 0x868f3c73
    res/drawable-xhdpi/ic_settings.png 0x49c29bd3
    res/drawable-xhdpi/ic_upgrade2.png 0xfa057d0a
    res/drawable-xhdpi/ic_wft2_h.png 0xe36b21fa
    res/drawable-xhdpi/ic_wft2_h_off.png 0xb06e7b6
    classes.dex 0x48a3bc64
    lib/armeabi/libfindbp.so 0x2cfef2fe
    lib/armeabi-v7a/libfindbp.so 0x1216fc0e
    lib/x86/libfindbp.so 0xded85f34
    META-INF/MANIFEST.MF 0xddbc088d
    META-INF/CERT.SF 0x9025c15e
    META-INF/CERT.RSA 0xce1b2ea2
    运行截图
    VirSCAN

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号