VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

File information
File Name :71.apk (File not down)
File Size :765005 byte
File Type :application/jar
MD5:c2841758a732389a896d6a0d573f1e03
SHA1:4ef49e7f91f4370948bf628dcec4c27f12de8056
  • 扫描结果
  • 权限
  • 文件行为分析
  • Scanner results
    Scanner results:9%Scanner(s) (3/32)found malware!
    Behavior analysis report:         Habo file analysis
    Time: 2015-10-17 21:51:04 (CST)
    VirSCANVirSCAN
    Scanner Engine Ver Sig Ver Sig Date Scan result Time
    antiy AVL SDK 3.0 1970-01-01 Found nothing 5
    asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Android.Adware.Youmi.A 1
    avast 150725-1 4.7.4 2015-07-25 Found nothing 0
    avg 2109/8133 10.0.1405 2014-11-26 Found nothing 0
    baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 5
    baidusd 1.0 1.0 2014-04-02 Found nothing 1
    bitdefender 7.58469 7.90123 2014-12-25 Found nothing 0
    clamav 19861 0.97.5 2014-12-31 Found nothing 0
    drweb 5.0.2.3300 5.0.1.1 2014-12-31 Found nothing 0
    fortinet 23.345, 23.345 5.1.158 2014-12-08 Found nothing 0
    fprot 4.6.2.117 6.5.1.5418 2014-12-31 Found nothing 0
    fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 0
    gdata 25.3911 25.3911 2015-10-17 Android.Adware.Youmi.A 10
    ikarus 1.06.01 V1.32.31.0 2014-12-08 Found nothing 0
    jiangmin 16.0.100 1.0.0.0 2015-07-25 Found nothing 60
    kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 0
    kingsoft 2.1 2.1 2013-09-22 Found nothing 7
    mcafee 7638 5400.1158 2014-11-30 Found nothing 0
    nod32 0920 3.0.21 2014-12-23 Found nothing 0
    panda 9.05.01 9.05.01 2015-07-26 Found nothing 6
    pcc 11.380.07 9.500-1005 2014-12-31 Found nothing 0
    qh360 1.0.1 1.0.1 1.0.1 Found nothing 3
    qqphone 1.0.0.0 1.0.0.0 2014-12-09 Found nothing 0
    quickheal 14.00 14.00 2015-07-25 Found nothing 3
    rising 25.76.04.01 25.76.04.01 2015-07-24 Found nothing 3
    sophos 5.08 3.55.0 2014-12-01 Found nothing 0
    symantec 20141230.001 1.3.0.24 2014-12-30 Found nothing 0
    tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 8
    thehacker 6.8.0.5 6.8.0.5 2015-07-23 Found nothing 3
    tws 17.47.17308 1.0.2.2108 2014-12-08 Android.Adware.Youmi.B.yjab 16
    vba 3.12.26.3 3.12.26.3 2014-12-31 Found nothing 0
    virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 0
    Heuristic/Suspicious Exact
    NOTICE: Results are not 100% accurate and can be reported as a false positive by some scannerswhen and if malware is found. Please judge these results for yourself.
  • 权限列表
    许可名称信息
    android.permission.SEND_SMS发送短信
    android.permission.CALL_PHONE拨打电话
    android.permission.RECEIVE_BOOT_COMPLETED接收开机启动广播
    android.permission.REBOOT重启设备
    android.permission.SHUTDOWN
    android.permission.GET_TASKS获取有关当前或最近运行的任务信息
    android.permission.KILL_BACKGROUND_PROCESSES关闭后台进程
    android.permission.RESTART_PACKAGES重启其他程序
    android.permission.SYSTEM_ALERT_WINDOW显示系统窗口
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.CHANGE_WIFI_STATE改变WIFI连接状态
    android.permission.WRITE_SYNC_SETTINGS写入同步设置
    android.permission.CHANGE_NETWORK_STATE变更网络状态
    android.permission.WRITE_APN_SETTINGS改写APN设置(如:cmwap)
    android.permission.BLUETOOTH_ADMIN搜寻蓝牙设备
    android.permission.WAKE_LOCK手机屏幕关闭后后台进程仍运行
    android.permission.DISABLE_KEYGUARD禁用键盘锁
    android.permission.DEVICE_POWER电源管理
    android.permission.WRITE_SETTINGS读写系统设置项
    android.permission.READ_CONTACTS读取联系人信息
    android.permission.WRITE_SMS写短信
    android.permission.READ_SMS读取短信
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.RUN_INSTRUMENTATION
    android.permission.SET_WALLPAPER设置桌面壁纸
    android.permission.READ_PHONE_STATE读取电话状态
    android.permission.ACCESS_COARSE_LOCATION获取粗略的位置(通过wifi、基站)
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    android.permission.ACCESS_FINE_LOCATION获取精确的位置(通过GPS)
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.READ_LOGS读取系统日志
    android.permission.BIND_WALLPAPER绑定壁纸
    android.permission.REORDER_TASKS系统任务排序
    android.permission.BLUETOOTH连接蓝牙设备
    com.android.alarm.permission.SET_ALARM设置闹铃提醒
    android.permission.BIND_APPWIDGET绑定插件
  • 文件信息
    安全评分 :
    基本信息
    MD5:c2841758a732389a896d6a0d573f1e03
    包名:com.naivesoft
    最低运行环境:Android 1.6
    版权:student
    关键行为
    行为描述:写权限映射文件
    详情信息:CiceroSharedMemDefaultS-*
    MSCTF.MarshalInterface.FileMap.EMF..GIOGH
    MSCTF.MarshalInterface.FileMap.EMF.B.GIOGH
    MSCTF.MarshalInterface.FileMap.EMF.C.GIOGH
    MSCTF.MarshalInterface.FileMap.EMF.D.GIOGH
    MSCTF.MarshalInterface.FileMap.EMF.E.GIOGH
    MSCTF.MarshalInterface.FileMap.EMF.F.GIOGH
    MSCTF.MarshalInterface.FileMap.EMF.G.GIOGH
    MSCTF.Shared.SFM.EMF
    行为描述:隐藏指定窗口
    详情信息:[Window,Class] = [,Button]
    [Window,Class] = [,Edit]
    进程行为
    行为描述:枚举进程
    详情信息:N/A
    文件行为
    行为描述:写权限映射文件
    详情信息:CiceroSharedMemDefaultS-*
    MSCTF.MarshalInterface.FileMap.EMF..GIOGH
    MSCTF.MarshalInterface.FileMap.EMF.B.GIOGH
    MSCTF.MarshalInterface.FileMap.EMF.C.GIOGH
    MSCTF.MarshalInterface.FileMap.EMF.D.GIOGH
    MSCTF.MarshalInterface.FileMap.EMF.E.GIOGH
    MSCTF.MarshalInterface.FileMap.EMF.F.GIOGH
    MSCTF.MarshalInterface.FileMap.EMF.G.GIOGH
    MSCTF.Shared.SFM.EMF
    行为描述:重命名文件
    详情信息:C:\DOCUME~1\ADMINI~1\LOCALS~1\%temp%\1445021619.519654.exe_7zdump\VB34N64UK64UY3W1R654.exe ---> C:\DOCUME~1\ADMINI~1\LOCALS~1\%temp%\1445021619.519654.exe_7zdump\E54TG13N35R.exe
    行为描述:查找文件
    详情信息:FileName = c:\windows\system32\drivers\etc\hosts
    注册表行为
    行为描述:修改注册表
    详情信息:\REGISTRY\USER\S-*\Software\Microsoft\Multimedia\DrawDib\vga.drv 1920x973x16(565 0)
    其他行为
    行为描述:内联HOOK
    详情信息:C:\WINDOWS\system32\ntdll.dll--->LdrFindResource_U Offset = 0x0
    C:\WINDOWS\system32\ntdll.dll--->LdrAccessResource Offset = 0x0
    C:\WINDOWS\system32\USER32.dll--->LoadStringA Offset = 0x0
    C:\WINDOWS\system32\USER32.dll--->LoadStringW Offset = 0x0
    C:\WINDOWS\system32\GDI32.dll--->ExtTextOutA Offset = 0x0
    C:\WINDOWS\system32\GDI32.dll--->ExtTextOutW Offset = 0x0
    C:\WINDOWS\system32\USER32.dll--->GetWindowLongA Offset = 0x0
    C:\WINDOWS\system32\USER32.dll--->SetWindowLongA Offset = 0x0
    C:\WINDOWS\system32\USER32.dll--->SetWindowLongW Offset = 0x0
    C:\WINDOWS\system32\USER32.dll--->GetWindowLongW Offset = 0x0
    C:\WINDOWS\system32\USER32.dll--->BeginPaint Offset = 0x0
    C:\WINDOWS\system32\USER32.dll--->EndPaint Offset = 0x0
    C:\WINDOWS\system32\USER32.dll--->GetDC Offset = 0x0
    C:\WINDOWS\system32\USER32.dll--->GetWindowDC Offset = 0x0
    C:\WINDOWS\system32\USER32.dll--->ReleaseDC Offset = 0x0
    行为描述:窗口信息
    详情信息:Pid = 284, Hwnd=0x102f8, Text = 确认修改, ClassName = Button.
    Pid = 284, Hwnd=0x102f6, Text = 不修改可留空, ClassName = Afx:400000:b:10011:1900015:0.
    Pid = 284, Hwnd=0x102f4, Text = 不修改可留空, ClassName = Afx:400000:b:10011:1900015:0.
    Pid = 284, Hwnd=0x102f2, Text = *验证安全密码, ClassName = Afx:400000:b:10011:1900015:0.
    Pid = 284, Hwnd=0x102ee, Text = 绑定信息:, ClassName = Afx:400000:b:10011:1900015:0.
    Pid = 284, Hwnd=0x102ea, Text = 登陆密码:, ClassName = Afx:400000:b:10011:1900015:0.
    Pid = 284, Hwnd=0x102e8, Text = 安全密码:, ClassName = Afx:400000:b:10011:1900015:0.
    Pid = 284, Hwnd=0x102e2, Text = 用户帐号:, ClassName = Afx:400000:b:10011:1900015:0.
    Pid = 284, Hwnd=0x102e0, Text = 注册帐号, ClassName = Button.
    Pid = 284, Hwnd=0x102de, Text = 充值, ClassName = Button(RadioButton).
    Pid = 284, Hwnd=0x202d2, Text = 注册, ClassName = Button(RadioButton).
    Pid = 284, Hwnd=0x302b6, Text = 推广帐号:, ClassName = Afx:400000:b:10011:1900015:0.
    Pid = 284, Hwnd=0x702c0, Text = 绑定信息:, ClassName = Afx:400000:b:10011:1900015:0.
    Pid = 284, Hwnd=0x202ac, Text = 安全密码:, ClassName = Afx:400000:b:10011:1900015:0.
    Pid = 284, Hwnd=0x202ae, Text = 登陆密码:, ClassName = Afx:400000:b:10011:1900015:0.
    行为描述:隐藏指定窗口
    详情信息:[Window,Class] = [,Button]
    [Window,Class] = [,Edit]
    行为描述:创建互斥体
    详情信息:RasPbFile
    CTF.LBES.MutexDefaultS-*
    CTF.Compart.MutexDefaultS-*
    CTF.Asm.MutexDefaultS-*
    CTF.Layouts.MutexDefaultS-*
    CTF.TMD.MutexDefaultS-*
    CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
    ini_read_write
    MSCTF.Shared.MUTEX.ELH
    MSCTF.Shared.MUTEX.EMF
    行为描述:查找指定窗口
    详情信息:NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
    NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
    危险行为
    行为描述:执行系统命令
    详情信息:[u'[logcat, -d, -v, raw, -s, AndroidRuntime:E, -p, com.naivesoft]']
    [u'logcat -c']
    [u'[logcat, -d, -v, raw, -s, AndroidRuntime:E, -p, com.naivesoft]']
    [u'logcat -c']
    [u'ps']
    动态列表行为
    行为描述:启动服务
    详情信息:{"FLAG":0,"COMPONENT_NAME":"ComponentInfo{com.naivesoft\/com.naivesoft.service.InitialService}"}
    行为描述:获取加密实例
    详情信息:[u'PBEWITHMD5andDES']
    行为描述:模拟器驱动文件初始化
    详情信息:/proc/cpuinfo
    行为描述:添加View
    详情信息:[u'com.android.internal.policy.impl.PhoneWindow$DecorView@414ff858', u'WM.LayoutParams{(0,0)(wrapxwrap) gr=#11 sim=#120 ty=2 fl=#8020002 pfl=0x8 fmt=-2 wanim=0x1030002}', u'android.view.CompatibilityInfoHolder@414af808']
    [u'com.android.internal.policy.impl.PhoneWindow$DecorView@4154b178', u'WM.LayoutParams{(0,0)(fillxfill) sim=#100 ty=1 fl=#8010100 pfl=0x8 wanim=0x1030001}', u'android.view.CompatibilityInfoHolder@414af808']
    [u'android.widget.LinearLayout@414c7dc8', u'WM.LayoutParams{(18,1105)(fillxwrap) gr=#33 ty=2007 fl=#28 alpha=0.7}', u'android.view.CompatibilityInfoHolder@414af808']
    行为描述:调用Intent的setAction
    详情信息:[u'com.naivesoft.action.stopservice']
    行为描述:激活Activity
    详情信息:{"ACTION":"android.intent.action.MAIN","FLAG":335544320,"CATEGORIES":"[android.intent.category.HOME]"}
    行为描述:读取文件
    详情信息:path:unknown length:5
    path:/proc/cpuinfo length:69
    path:unknown length:69
    行为描述:Android运行时错误
    详情信息:E/AndroidRuntime( 1541): FATAL EXCEPTION: main
    E/AndroidRuntime( 1541): java.lang.RuntimeException: Unable to start service com.naivesoft.service.KillProcessService@41655048 with Intent { cmp=com.naivesoft/.service.KillProcessService }: java.lang.NullPointerException
    E/AndroidRuntime( 1541): at android.app.ActivityThread.handleServiceArgs(ActivityThread.java:2507)
    E/AndroidRuntime( 1541): at android.app.ActivityThread.access$1900(ActivityThread.java:130)
    E/AndroidRuntime( 1541): at android.app.ActivityThread$H.handleMessage(ActivityThread.java:1292)
    E/AndroidRuntime( 1541): at android.os.Handler.dispatchMessage(Handler.java:99)
    E/AndroidRuntime( 1541): at android.os.Looper.loop(Looper.java:137)
    E/AndroidRuntime( 1541): at android.app.ActivityThread.main(ActivityThread.java:4745)
    E/AndroidRuntime( 1541): at java.lang.reflect.Method.invokeNative(Native Method)
    E/AndroidRuntime( 1541): at java.lang.reflect.Method.invoke(Method.java:511)
    E/AndroidRuntime( 1541): at com.android.internal.os.ZygoteInit$MethodAndArgsCaller.run(ZygoteInit.java:786)
    E/AndroidRuntime( 1541): at com.android.internal.os.ZygoteInit.main(ZygoteInit.java:553)
    E/AndroidRuntime( 1541): at de.robv.android.xposed.XposedBridge.main(XposedBridge.java:135)
    E/AndroidRuntime( 1541): at dalvik.system.NativeStart.main(Native Method)
    E/AndroidRuntime( 1541): Caused by: java.lang.NullPointerException
    E/AndroidRuntime( 1541): at java.lang.String.contains(String.java:1925)
    E/AndroidRuntime( 1541): at de.robv.android.xposed.XposedBridge.invokeOriginalMethodNative(Native Method)
    E/AndroidRuntime( 1541): at de.robv.android.xposed.XposedBridge.handleHookedMethod(XposedBridge.java:678)
    E/AndroidRuntime( 1541): at java.lang.String.contains(Native Method)
    E/AndroidRuntime( 1541): at com.naivesoft.util.m.a(Unknown Source)
    E/AndroidRuntime( 1541): at com.naivesoft.service.KillProcessService.onStart(Unknown Source)
    E/AndroidRuntime( 1541): at android.app.Service.onStartCommand(Service.java:450)
    E/AndroidRuntime( 1541): at android.app.ActivityThread.handleServiceArgs(ActivityThread.java:2490)
    E/AndroidRuntime( 1541): ... 11 more
    行为描述:查询上次位置信息
    详情信息:[u'network']
    [u'gps']
    [u'gps']
    [u'network']
    行为描述:执行系统命令
    详情信息:[u'[logcat, -d, -v, raw, -s, AndroidRuntime:E, -p, com.naivesoft]']
    [u'logcat -c']
    [u'[logcat, -d, -v, raw, -s, AndroidRuntime:E, -p, com.naivesoft]']
    [u'logcat -c']
    [u'ps']
    行为描述:检测位置信息
    详情信息:[u'network', u'3000', u'0.0', u'net.youmi.android.appoffers.g@414d17e0']
    [u'gps', u'0', u'0.0', u'com.flurry.android.v@41523db8', u'Looper{414ac878}']
    行为描述:初始化Intent
    详情信息:[u'com.naivesoft.Main@41539ee0', u'class com.naivesoft.service.InitialService']
    [u'android.os.Parcel@414ad1c0']
    [u'com.naivesoft.service.InitialService@415808c0', u'class com.naivesoft.alarm.AlarmReceiver']
    [u'android.os.Parcel@414ad1c0']
    []
    [u'android.os.Parcel@414ad1c0']
    [u'android.intent.action.MAIN']
    [u'android.os.Parcel@414ad1c0']
    [u'android.os.Parcel@414ad200']
    [u'android.os.Parcel@414ad200']
    [u'android.os.Parcel@414ad200']
    行为描述:传递附加信息
    详情信息:cmd:2
    行为描述:调用哈希算法
    详情信息:SHA-256
    MD5
    行为描述:发出状态栏通知
    详情信息:[u'1', u'Notification(pri=0 contentView=com.naivesoft/0x1090071 vibrate=null sound=null defaults=0x0 flags=0x2 kind=[null])']
    行为描述:解析通用资源标识符
    详情信息:null
    行为描述:注册广播接收器
    详情信息:[u'com.naivesoft.service.c@415f4388', u'android.content.IntentFilter@414cc388']
    行为描述:读取系统设置
    详情信息:[u'android.app.ContextImpl$ApplicationContentResolver@41527770', u'android_id']
    [u'android.app.ContextImpl$ApplicationContentResolver@4153a8f8', u'font_scale']
    [u'android.app.ContextImpl$ApplicationContentResolver@4153a8f8', u'sound_effects_enabled']
    行为描述:窗口信息
    详情信息:{"text": "Welcome to TimerAndroid v5.1.1", "class": "android.widget.TextView"}
    {"text": " TimerAndroid provides you various of functions, cycle types and notification types. Timing your android and let your android fly.", "class": "android.widget.TextView"}
    {"text": "OK", "class": "android.widget.Button"}
    {"text": "TimerAndroid", "class": "android.widget.TextView"}
    {"text": "Timing your android and let your android fly.", "class": "android.widget.TextView"}
    {"text": "Add new task", "class": "android.widget.Button"}
    {"text": "Edit", "class": "android.widget.Button"}
    {"text": "Delete", "class": "android.widget.Button"}
    行为描述:写入文件
    详情信息:path:/data/data/com.naivesoft/shared_prefs/CE94557724F842149D690D0E8CBB1CBD.xml length:227
    path:/data/data/com.naivesoft/shared_prefs/CE94557724F842149D690D0E8CBB1CBD.xml length:261
    path:/data/data/com.naivesoft/shared_prefs/SHARE_PRE_WELCOME.xml length:181
    path:/data/data/com.naivesoft/shared_prefs/mobclick_agent_state_com.naivesoft.xml length:261
    path:/data/data/com.naivesoft/shared_prefs/mobclick_agent_header_com.naivesoft.xml length:261
    path:/data/data/com.naivesoft/files/mobclick_agent_cached_com.naivesoft length:69
    path:/data/data/com.naivesoft/files/.flurryagent.6c9ea04d length:7
    path:/data/data/com.naivesoft/files/.flurryagent.6c9ea04d length:7
    path:/data/data/com.naivesoft/files/.flurryagent.6c9ea04d length:27
    path:/data/data/com.naivesoft/files/.flurryagent.6c9ea04d length:26
    path:/data/data/com.naivesoft/files/.flurryagent.6c9ea04d length:6
    path:/data/data/com.naivesoft/files/.flurryagent.6c9ea04d length:13
    path:/data/data/com.naivesoft/files/.flurryagent.6c9ea04d length:7
    path:/data/data/com.naivesoft/files/.flurryagent.6c9ea04d length:69
    path:/data/data/com.naivesoft/files/.flurryagent.6c9ea04d length:7
    行为描述:访问URL
    详情信息:https://ws.tapjoyads.com/connect?app_id=f153f544-f31f-4a7f-95e7-897afab37580&android_id=72c0258c73ad917e&udid=357143040944263&device_name=sdk&device_manufacturer=Lenovo&device_type=android&os_version=4.1.2&country_code=US&language_code=en&app_version=5.1.1&library_version=8.1.2&platform=android&display_multiplier=1.0&carrier_name=%E4%B8%AD%E5%9B%BD%E7%A7%BB%E5%8A%A8%204G&carrier_country_code=us&mobile_country_code=46000&screen_density=320&screen_layout_size=2&connection_type=wifi&timestamp=1439264630&verifier=bdaaa97062f3ff67cfb5bcfdfacec0dbfcfc5c0975e55ac7644bafa658d6b0f2
    https://ws.tapjoyads.com/get_vg_store_items/user_account?app_id=f153f544-f31f-4a7f-95e7-897afab37580&android_id=72c0258c73ad917e&udid=357143040944263&device_name=sdk&device_manufacturer=Lenovo&device_type=android&os_version=4.1.2&country_code=US&language_code=en&app_version=5.1.1&library_version=8.1.2&platform=android&display_multiplier=1.0&carrier_name=%E4%B8%AD%E5%9B%BD%E7%A7%BB%E5%8A%A8%204G&carrier_country_code=us&mobile_country_code=46000&screen_density=320&screen_layout_size=2&connection_type=wifi&timestamp=1439264631&verifier=2d9e1d52c7a53adea6a1b56fb57eba72301668a969ac07a0c1e601a827822217&publisher_user_id=357143040944263
    行为描述:唤醒锁屏
    详情信息:[u'805306394', u'WAKELOCKTAG']
    [u'805306394', u'WAKELOCKTAG']
    [u'536870938', u'android.media.MediaPlayer']
    行为描述:初始化URL
    详情信息:[u'https://ws.tapjoyads.com/connect?app_id=f153f544-f31f-4a7f-95e7-897afab37580&android_id=72c0258c73ad917e&udid=357143040944263&device_name=sdk&device_manufacturer=Lenovo&device_type=android&os_version=4.1.2&country_code=US&language_code=en&app_version=5.1.1&library_version=8.1.2&platform=android&display_multiplier=1.0&carrier_name=%E4%B8%AD%E5%9B%BD%E7%A7%BB%E5%8A%A8%204G&carrier_country_code=us&mobile_country_code=46000&screen_density=320&screen_layout_size=2&connection_type=wifi&timestamp=1439264630&verifier=bdaaa97062f3ff67cfb5bcfdfacec0dbfcfc5c0975e55ac7644bafa658d6b0f2']
    [u'https://ws.tapjoyads.com/get_vg_store_items/user_account?app_id=f153f544-f31f-4a7f-95e7-897afab37580&android_id=72c0258c73ad917e&udid=357143040944263&device_name=sdk&device_manufacturer=Lenovo&device_type=android&os_version=4.1.2&country_code=US&language_code=en&app_version=5.1.1&library_version=8.1.2&platform=android&display_multiplier=1.0&carrier_name=%E4%B8%AD%E5%9B%BD%E7%A7%BB%E5%8A%A8%204G&carrier_country_code=us&mobile_country_code=46000&screen_density=320&screen_layout_size=2&connection_type=wifi&timestamp=1439264631&verifier=2d9e1d52c7a53adea6a1b56fb57eba72301668a969ac07a0c1e601a827822217&publisher_user_id=357143040944263']
    行为描述:获取设备ID
    详情信息:357143040944263
    357143040944263
    357143040944263
    357143040944263
    357143040944263
    357143040944263
    357143040944263
    行为描述:获取用户ID
    详情信息:460000043140572
    行为描述:缓冲区读取一行数据
    详情信息:null
    null
    Processor : ARMv7 Processor rev 0 (v7l)
    USER PID PPID VSIZE RSS WCHAN PC NAME
    行为描述:查询App共享数据
    详情信息:[u'null', u'null', u'null', u'null', u'null']
    行为描述:获取网络状态信息[*]
    详情信息:NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    NetworkInfo: type: WIFI[], state: CONNECTED/CONNECTED, reason: (unspecified), extra: freewifi, roaming: false, failover: false, isAvailable: true
    行为描述:数据库查询
    详情信息:[u'TaskV13', u'[ID]', u'null', u'null', u'null', u'null', u'id desc']
    [u'TaskV13', u'null', u'', u'null', u'null', u'null', u'id desc']
    [u'TaskV13', u'null', u'nextTime!=0', u'null', u'null', u'null', u'nextTime ASC']
    Activities
    活动名类型
    .Mainandroid.intent.action.MAIN
    .Mainandroid.intent.category.LAUNCHER
    .task.view.parameters.ParametersMusiccom.naivesoft.android.action.MUSIC_PICKER
    .task.view.parameters.ParametersMusicandroid.intent.category.DEFAULT
    .task.view.parameters.ParametersRingtonecom.naivesoft.android.action.MUSIC_PICKER
    .task.view.parameters.ParametersRingtoneandroid.intent.category.DEFAULT
    .task.view.parameters.ParametersSMSandroid.intent.action.GET_CONTENT
    .task.view.parameters.ParametersPhoneandroid.intent.action.GET_CONTENT
    危险函数
    函数名称信息
    HttpClient;->execute请求远程服务器
    java/net/URL;->openConnection连接URL
    java/net/HttpURLConnection;->connect连接URL
    getRuntime获取命令行环境
    java/lang/Runtime;->exec执行字符串命令
    android/app/NotificationManager;->notify信息通知栏
    LocationManager;->getLastKnownLocation获取地址位置
    TelephonyManager;->getDeviceId搜集用户手机IMEI码、电话号码、系统版本号等信息
    DefaultHttpClient;->execute发送HTTP请求
    WifiManager;->setWifiEnabled变更WIFI状态
    ContentResolver;->query读取联系人、短信等数据库
    ActivityManager;->restartPackage中断进程,可用于关闭杀软
    SmsManager;->sendTextMessage发送普通短信
    java/net/URLConnection;->connect连接URL
    TelephonyManager;->getLine1Number获取手机号
    启动方式
    名称信息
    com.naivesoft.autostart.MyBootReceiver开机启动服务
    广告信息
    名称信息
    net.youmi有米广告
    权限列表
    许可名称信息
    android.permission.SEND_SMS发送短信
    android.permission.CALL_PHONE拨打电话
    android.permission.RECEIVE_BOOT_COMPLETED接收开机启动广播
    android.permission.REBOOT重启设备
    android.permission.SHUTDOWN
    android.permission.GET_TASKS获取有关当前或最近运行的任务信息
    android.permission.KILL_BACKGROUND_PROCESSES关闭后台进程
    android.permission.RESTART_PACKAGES重启其他程序
    android.permission.SYSTEM_ALERT_WINDOW显示系统窗口
    android.permission.ACCESS_WIFI_STATE读取wifi网络状态
    android.permission.CHANGE_WIFI_STATE改变WIFI连接状态
    android.permission.WRITE_SYNC_SETTINGS写入同步设置
    android.permission.CHANGE_NETWORK_STATE变更网络状态
    android.permission.WRITE_APN_SETTINGS改写APN设置(如:cmwap)
    android.permission.BLUETOOTH_ADMIN搜寻蓝牙设备
    android.permission.WAKE_LOCK手机屏幕关闭后后台进程仍运行
    android.permission.DISABLE_KEYGUARD禁用键盘锁
    android.permission.DEVICE_POWER电源管理
    android.permission.WRITE_SETTINGS读写系统设置项
    android.permission.READ_CONTACTS读取联系人信息
    android.permission.WRITE_SMS写短信
    android.permission.READ_SMS读取短信
    android.permission.INTERNET连接网络(2G或3G)
    android.permission.RUN_INSTRUMENTATION
    android.permission.SET_WALLPAPER设置桌面壁纸
    android.permission.READ_PHONE_STATE读取电话状态
    android.permission.ACCESS_COARSE_LOCATION获取粗略的位置(通过wifi、基站)
    android.permission.WRITE_EXTERNAL_STORAGE写外部存储器(如:SD卡)
    android.permission.ACCESS_FINE_LOCATION获取精确的位置(通过GPS)
    android.permission.ACCESS_NETWORK_STATE读取网络状态(2G或3G)
    android.permission.READ_LOGS读取系统日志
    android.permission.BIND_WALLPAPER绑定壁纸
    android.permission.REORDER_TASKS系统任务排序
    android.permission.BLUETOOTH连接蓝牙设备
    com.android.alarm.permission.SET_ALARM设置闹铃提醒
    android.permission.BIND_APPWIDGET绑定插件
    服务列表
    名称
    com.naivesoft.service.InitialService
    com.naivesoft.service.SendSMSService
    com.naivesoft.service.MusicService
    com.naivesoft.service.RebootService
    com.naivesoft.service.KillProcessService
    文件列表
    文件名 校验码
    assets/reboot 0x38e29af0
    res/anim/push_up_in.xml 0x5ebf6f39
    res/anim/push_up_out.xml 0xf83814bc
    res/drawable/add.png 0x78389870
    res/drawable/appwidget_paused.png 0xe69a9ad7
    res/drawable/appwidget_played.png 0xd4ebc156
    res/drawable/bottom.png 0x4a657803
    res/drawable/cancel.png 0xfb5fcb27
    res/drawable/confirm.png 0x2413cf15
    res/drawable/delete.png 0x6ec64e0c
    res/drawable/divide.9.png 0x4692a60b
    res/drawable/divide1.png 0xe2a830a2
    res/drawable/divide_new.jpg 0xfa0434bf
    res/drawable/edit.png 0xde6f4c84
    res/drawable/go.png 0x9fa48c37
    res/drawable/home.png 0x494397ee
    res/drawable/hr.png 0x3ebfe99b
    res/drawable/ic_internal_music.png 0xe7602e13
    res/drawable/ic_menu_home.png 0x58465ade
    res/drawable/ic_sdcard.png 0x13b28f46
    res/drawable/icon_minilyric_contract.png 0x2040865f
    res/drawable/icon_minilyric_next.png 0x498cecfc
    res/drawable/icon_minilyric_pause.png 0x96481789
    res/drawable/icon_minilyric_play.png 0xb9c06198
    res/drawable/icon_minilyric_prev.png 0x7a8a1d87
    res/drawable/icon_minilyric_setting.png 0xce7f59d9
    res/drawable/img_buttom_bg_press.png 0xce96144f
    res/drawable/img_control_backgroud.png 0xc3d9bef1
    res/drawable/img_none.9.png 0x102cc70f
    res/drawable/img_volume_bt_normal.png 0x6eb4307d
    res/drawable/index.png 0x3665c88f
    res/drawable/jr_cj.png 0x146611c6
    res/drawable/jr_cyj.png 0xa940a634
    res/drawable/jr_dwj.png 0x9d449850
    res/drawable/jr_etj.png 0x7490fe1c
    res/drawable/jr_fnj.png 0xed044b3
    res/drawable/jr_fqj.png 0x9e09dc22
    res/drawable/jr_gqj.png 0x8d3feb4b
    res/drawable/jr_jsj.png 0x5e98b6ae
    res/drawable/jr_ldj.png 0x735f5647
    res/drawable/jr_mqj.png 0x1aa35ebe
    res/drawable/jr_qmj.png 0x2cc11dc4
    res/drawable/jr_qnj.png 0xa234283e
    res/drawable/jr_qrj.png 0xec462fd5
    res/drawable/jr_qx.png 0xf0feb7ba
    res/drawable/jr_sdj.png 0xb35e611f
    res/drawable/jr_wsj.png 0x98febf26
    res/drawable/jr_yd.png 0x65c75202
    res/drawable/jr_yrj.png 0x55662f55
    res/drawable/jr_yxj.png 0xd40fcf41
    res/drawable/jr_zqj.png 0x20a652e2
    res/drawable/notify.png 0xc9f7dfe8
    res/drawable/old_umeng_analyse_write_feedback_normal.png 0x3ae69034
    res/drawable/old_umeng_analyse_write_feedback_pressed.png 0x157cf9b6
    res/drawable/save.png 0x3411117a
    res/drawable/shape.xml 0x3916d7a5
    res/drawable/shape1.xml 0x733de72e
    res/drawable/shichun_icon_title.png 0x2f045327
    res/drawable/sms_zr.png 0xdf06f335
    res/drawable/tapjoy_buttonnormal.xml 0x832ac1c0
    res/drawable/tapjoy_buttonselected.xml 0x7710ef0b
    res/drawable/tapjoy_gradientline.xml 0x34591361
    res/drawable/tapjoy_tablerowstates.xml 0x5b837311
    res/drawable/tapjoy_virtualgoods_error.png 0x21920d4a
    res/drawable/tapjoy_virtualgoods_row_bg.xml 0xa040057b
    res/drawable/timer_android.png 0x1c9577c0
    res/drawable/timer_android_notify_icon.png 0xad32effb
    res/drawable/top1.png 0xd9bb250
    res/drawable/umeng_analyse_blank_selector.xml 0x2363eea2
    res/drawable/umeng_analyse_bottom_banner.xml 0xee926e82
    res/drawable/umeng_analyse_dev_bubble.9.png 0x8493510f
    res/drawable/umeng_analyse_feedback_bar_bg.9.png 0x382879f2
    res/drawable/umeng_analyse_feedback_list_item.9.png 0x1dd77523
    res/drawable/umeng_analyse_feedback_list_item_pressed.9.png 0xdcc0e0d
    res/drawable/umeng_analyse_feedback_list_item_selector.xml 0x9093a04
    res/drawable/umeng_analyse_gradient_green.xml 0x962bb903
    res/drawable/umeng_analyse_gradient_orange.xml 0xd5106ae2
    res/drawable/umeng_analyse_gray_frame.xml 0xd1c4cb2
    res/drawable/umeng_analyse_point_new.xml 0xb0b65b88
    res/drawable/umeng_analyse_point_normal.xml 0xd54fcdde
    res/drawable/umeng_analyse_see_list_normal.png 0x6d9ee2f3
    res/drawable/umeng_analyse_see_list_pressed.png 0x3ff6d161
    res/drawable/umeng_analyse_see_list_selector.xml 0xfb055246
    res/drawable/umeng_analyse_submit_selector.xml 0xf2e3e16
    res/drawable/umeng_analyse_top_banner.xml 0xf7574374
    res/drawable/umeng_analyse_user_bubble.9.png 0x23cfe9b2
    res/drawable/umeng_analyse_write_feedback_normal.png 0xf3083af7
    res/drawable/umeng_analyse_write_feedback_pressed.png 0x10dae61
    res/drawable/umeng_analyse_write_feedback_selector.xml 0xb4416a26
    res/drawable/xml_buttom_btn_press.xml 0xe5df52ff
    res/layout/alertwindow_layout.xml 0x5c40e657
    res/layout/circle_details.xml 0x32097425
    res/layout/circle_details_every.xml 0x7f104980
    res/layout/circle_type.xml 0x5422f9cf
    res/layout/itemmain.xml 0xced47eb0
    res/layout/itemtask.xml 0x30d814bd
    res/layout/main.xml 0x328feb
    res/layout/music_control.xml 0x84473e2d
    res/layout/muti_phone_number_item.xml 0x5dbb3859
    res/layout/mutiphonenumber.xml 0xe34c3b35
    res/layout/notification_download_processbar.xml 0xae4cc10a
    res/layout/parameters_app_list_item.xml 0x9bcec2c2
    res/layout/parameters_music_video.xml 0x7f504e15
    res/layout/parameters_phone.xml 0x354d89db
    res/layout/parameters_sms.xml 0xc2dbae21
    res/layout/parameters_sms_message_content_select.xml 0xb090d71d
    res/layout/parameters_sms_messagecontent.xml 0x9bbdeda5
    res/layout/parameters_true.xml 0x920fad2b
    res/layout/reboot_activity.xml 0xa7a869ad
    res/layout/simple_list_item_1.xml 0xa341bfb8
    res/layout/simple_list_item_1_bright.xml 0xd8a71038
    res/layout/single_phone_number.xml 0x4b074403
    res/layout/single_phone_number_item.xml 0x38739711
    res/layout/stub_oneline_volume.xml 0x6b66c1b9
    res/layout/tapjoy_virtualgoods.xml 0xf49b8d65
    res/layout/tapjoy_virtualgoods_purchaseitems_row.xml 0x440ff584
    res/layout/tapjoy_virtualgoods_reconnectvirtualgoods.xml 0xa996aa94
    res/layout/tapjoy_virtualgoods_row.xml 0x912e7d20
    res/layout/task_details.xml 0xdeb39b15
    res/layout/task_list.xml 0x615be538
    res/layout/task_set.xml 0xabcb1a44
    res/layout/task_set_parameters_oneline.xml 0x13488add
    res/layout/task_set_parameters_true.xml 0x4589a61
    res/layout/task_set_parameters_volume.xml 0x102fbd4e
    res/layout/timer_android_config.xml 0xdaffb3cc
    res/layout/umeng_analyse_download_notification.xml 0xc2e22ba
    res/layout/umeng_analyse_feedback_atom.xml 0xcf93ea92
    res/layout/umeng_analyse_feedback_conversation.xml 0x4ddfd8a9
    res/layout/umeng_analyse_feedback_conversation_item.xml 0x74d40ca3
    res/layout/umeng_analyse_feedback_conversations.xml 0x8ac7a05b
    res/layout/umeng_analyse_feedback_conversations_item.xml 0xfa603681
    res/layout/umeng_analyse_feedback_list_item.xml 0xe91084cb
    res/layout/umeng_analyse_new_reply_alert_dialog.xml 0x73d4296d
    res/layout/umeng_analyse_send_feedback.xml 0x7642a88d
    res/layout/util_string_picker_dialog.xml 0xc1685851
    AndroidManifest.xml 0xedd307b
    resources.arsc 0xbd7d2d5c
    res/drawable-hdpi/appwidget_played.png 0x4e986a64
    res/drawable-hdpi/icon.png 0x3c13576b
    res/drawable-hdpi/notify.png 0xd1eb6eea
    res/drawable-hdpi/timer_android.png 0x2dc5cf7
    res/drawable-hdpi/timer_android_notify_icon.png 0x9bf197d4
    res/drawable-ldpi/appwidget_played.png 0xc648a38e
    res/drawable-ldpi/icon.png 0x8ef78580
    res/drawable-ldpi/notify.png 0xda6a88e9
    res/drawable-ldpi/timer_android.png 0xab837a5d
    res/drawable-ldpi/timer_android_notify_icon.png 0xcce9df
    res/drawable-mdpi/appwidget_played.png 0xc3f81d76
    res/drawable-mdpi/icon.png 0x99a4f90b
    res/drawable-mdpi/notify.png 0xed16578e
    res/drawable-mdpi/timer_android.png 0x1c9577c0
    res/drawable-mdpi/timer_android_notify_icon.png 0x2b9c5907
    res/drawable-xhdpi/appwidget_played.png 0x5de31235
    res/drawable-xhdpi/notify.png 0x8f4a1569
    res/drawable-xhdpi/timer_android.png 0x94cd441f
    res/drawable-xhdpi/timer_android_notify_icon.png 0xad32effb
    classes.dex 0x475d0d16
    META-INF/MANIFEST.MF 0xca86ba3e
    META-INF/CERT.SF 0x314fa3f3
    META-INF/CERT.RSA 0x1f12c190
    运行截图
    VirSCAN

About VirSCAN | Privacy Policy | Contact us | Links | Help VirSCAN
Translated by Keith Miller, United States
Powered By CentOSpol

京ICP备11007605号-12

pol

京公网安备 11010802020746号