VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

Scanner results
Scanner results:30%Scanner(s) (12/39)found malware!
Behavior analysis report:         Habo file analysis
Time: 2014-11-02 20:48:00 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
ahnlab 9.9.9 9.9.9 2013-05-28 Found nothing 3
antivir 1.9.2.0 1.9.159.0 7.11.182.186 Found nothing 14
antiy 114701 AVL141003 2014-10-04 Found nothing 5
arcavir 1.0 2011 2014-05-30 Found nothing 8
asquared 9.0.0.4157 9.0.0.4157 2014-07-30 Android.Trojan.SMSSend.HN 1
avast 141101-0 4.7.4 2014-11-01 Android:SMSSend-ID [PUP] 7
avg 2109/7906 10.0.1405 2014-10-17 Found nothing 1
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 3
baidusd 1.0 1.0 2014-04-02 HEUR:Trojan-SMS.AndroidOS.FakeInst.ff 4
bitdefender 7.57492 7.90123 2014-11-02 Android.Trojan.SMSSend.HN 6
clamav 19565 0.97.5 2014-10-31 Found nothing 1
comodo 15023 5.1 2014-10-03 Found nothing 3
ctch 4.6.5 5.3.14 2013-12-01 Found nothing 1
drweb 5.0.2.3300 5.0.1.1 2014-10-31 Found nothing 36
fortinet 23.098, 23.098 5.1.158 2014-11-02 Android/FakeInst.FF!tr 1
fprot 4.6.2.117 6.5.1.5418 2014-10-31 Found nothing 1
fsecure 2014-04-02-01 9.13 2014-04-02 Trojan:Android/EropL.B 1
gdata 24.3819 24.3819 2014-08-29 Android.Trojan.SMSSend.HN 7
hauri 2.73 2.73 2014-06-13 Found nothing 1
ikarus 1.06.01 V1.32.31.0 2014-11-01 PUA.AndroidOS.Erop 14
jiangmin 16.0.100 1.0.0.0 2014-07-28 Found nothing 14
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 20
kingsoft 2.1 2.1 2013-09-22 Android.Troj.at_Erop.b.(kcloud) 2
mcafee 7520 5400.1158 2014-08-04 Found nothing 8
nod32 0436 3.0.21 2014-09-18 a variant of Android/TrojanSMS.Erop.V trojan 1
panda 9.05.01 9.05.01 2014-06-15 Found nothing 7
pcc 11.250.03 9.500-1005 2014-11-01 Found nothing 1
qh360 1.0.1 1.0.1 1.0.1 Found nothing 12
qqphone 1.0.0.0 1.0.0.0 2014-11-02 a.expense.es69tubexES.b 1
quickheal 14.00 14.00 2014-06-14 Android.FakeInst.BA 2
rising 25.17.00.04 25.17.00.04 2014-06-02 Found nothing 1
sophos 5.04 3.51.0 2014-08-05 Found nothing 7
sunbelt 3.9.2589.2 3.9.2589.2 2014-06-13 Found nothing 2
symantec 20141028.001 1.3.0.24 2014-10-28 Found nothing 1
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 3
thehacker 6.8.0.5 6.8.0.5 2014-06-12 Found nothing 1
tws 17.47.17308 1.0.2.2108 2014-06-16 Found nothing 6
vba 3.12.26.3 3.12.26.3 2014-10-31 Found nothing 4
virusbuster 15.0.955.0 5.5.2.13 2014-11-01 Found nothing 14
权限列表
许可名称 信息
android.permission.INTERNET 连接网络(2G或3G)
android.permission.WAKE_LOCK 手机屏幕关闭后后台进程仍运行
com.android.launcher.permission.INSTALL_SHORTCUT 创建快捷方式
com.espabit.essexyfaceBR.permission.C2D_MESSAGE
com.google.android.c2dm.permission.RECEIVE
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.SEND_SMS 发送短信
android.permission.READ_SMS 读取短信
android.permission.WRITE_SMS 写短信
android.permission.RECEIVE_SMS 监控接收短信
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.GET_ACCOUNTS 访问账户列表
android.permission.CHANGE_WIFI_STATE 改变WIFI连接状态
android.permission.CHANGE_NETWORK_STATE 变更网络状态
android.permission.VIBRATE 允许设备震动
文件信息
VirSCANVirSCAN
安全评分 :35
基本信息
VirSCANVirSCAN
MD5:494ada109e2c54977135aa63d24cc940
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:com.espabit.essexyfaceBR
最低运行环境:Android 2.2.x
版权:uvuv
危险行为
VirSCANVirSCAN
行为描述: 监听包含特定号码或内容的短信
详情信息: 12345678910
动态列表行为
VirSCANVirSCAN
行为描述: 调用哈希算法
详情信息: MD5
SHA-1
行为描述: 读取文件
详情信息: path:/dev/urandom length:16
path:/proc/783/cmdline length:105
path:/proc/798/cmdline length:105
path:/proc/810/cmdline length:105
path:/proc/840/cmdline length:105
path:/proc/851/cmdline length:105
行为描述: 对指定数据计算哈希
详情信息: 357242043237511
行为描述: 监听包含特定号码或内容的短信
详情信息: 12345678910
行为描述: 数据泄露
详情信息: sink:File operation:write data:data:EiPPC43NPW2GCCX67434FJ1.0ANDd3894529ac5a14ecWT7W?
行为描述: 类加载
详情信息: path:/system/app/PicoTts.apk
path:/system/app/MusicFX.apk
path:/system/framework/am.jar
path:/data/app/com.espabit.essexyfaceBR-1.apk
行为描述: 启动服务
详情信息: com.android.musicfx.Compatibility$Service
com.android.mms.transaction.SmsReceiverService
行为描述: 写入文件
详情信息: path:/data/data/com.android.gallery3d/shared_prefs/com.android.gallery3d_preferences.xml length:105
path:/data/data/com.android.musicfx/shared_prefs/musicfx.xml length:105
path:/data/data/com.espabit.essexyfaceBR/shared_prefs/Preferencias.xml length:105
path:/data/data/com.espabit.essexyfaceBR/files/.flurryagent.39495b28 length:5
path:/data/data/com.espabit.essexyfaceBR/files/.flurryagent.39495b28 length:7
path:/data/data/com.espabit.essexyfaceBR/files/.flurryagent.39495b28 length:27
path:/data/data/com.espabit.essexyfaceBR/files/.flurryagent.39495b28 length:26
path:/data/data/com.espabit.essexyfaceBR/files/.flurryagent.39495b28 length:6
path:/data/data/com.espabit.essexyfaceBR/files/.flurryagent.39495b28 length:11
path:/data/data/com.espabit.essexyfaceBR/files/.flurryagent.39495b28 length:7
path:/data/data/com.espabit.essexyfaceBR/files/.flurrydatasenderblock.2a391518-6829-41fa-9f2b-bab0177a89e4 length:7
path:/data/data/com.espabit.essexyfaceBR/files/.flurrydatasenderblock.2a391518-6829-41fa-9f2b-bab0177a89e4 length:7
path:/data/data/com.espabit.essexyfaceBR/files/.FlurrySenderIndex.info.AnalyticsData_PPC43NPW2GCCX67434FJ_159 length:7
path:/data/data/com.espabit.essexyfaceBR/files/.FlurrySenderIndex.info.AnalyticsData_PPC43NPW2GCCX67434FJ_159 length:7
path:/data/data/com.espabit.essexyfaceBR/files/.FlurrySenderIndex.info.AnalyticsData_PPC43NPW2GCCX67434FJ_159 length:41
path:/data/data/com.espabit.essexyfaceBR/files/.FlurrySenderIndex.info.AnalyticsData_PPC43NPW2GCCX67434FJ_159 length:7
path:/data/data/com.espabit.essexyfaceBR/files/.FlurrySenderIndex.info.AnalyticsMain length:7
path:/data/data/com.espabit.essexyfaceBR/files/.FlurrySenderIndex.info.AnalyticsMain length:7
path:/data/data/com.espabit.essexyfaceBR/files/.FlurrySenderIndex.info.AnalyticsMain length:43
path:/data/data/com.espabit.essexyfaceBR/files/.FlurrySenderIndex.info.AnalyticsMain length:7
path:/data/data/com.android.gallery3d/shared_prefs/com.android.gallery3d_preferences.xml length:105
行为描述: 获取设备ID
详情信息: 357242043237511
Activities
VirSCANVirSCAN
活动名 类型
com.espabit.essexyfaceBR.PantallaCarga android.intent.action.MAIN
com.espabit.essexyfaceBR.PantallaCarga android.intent.action.CREATE_SHORTCUT
com.espabit.essexyfaceBR.PantallaCarga android.intent.category.LAUNCHER
com.espabit.essexyfaceBR.PantallaCarga android.intent.category.DEFAULT
危险函数
VirSCANVirSCAN
函数名称 信息
WifiManager;->setWifiEnabled 变更WIFI状态
SmsManager;->sendTextMessage 发送普通短信
java/net/URL;->openConnection 连接URL
java/net/HttpURLConnection;->connect 连接URL
HttpClient;->execute 请求远程服务器
android/app/NotificationManager;->notify 信息通知栏
java/net/URLConnection;->connect 连接URL
TelephonyManager;->getLine1Number 获取手机号
TelephonyManager;->getDeviceId 搜集用户手机IMEI码、电话号码、系统版本号等信息
getRuntime 获取命令行环境
ContentResolver;->query 读取联系人、短信等数据库
LocationManager;->getLastKnownLocation 获取地址位置
启动方式
VirSCANVirSCAN
名称 信息
com.espabit.essexyfaceBR.Correo$MessageReceiver 监控短信(收到短信)启动服务
kimia.kat.receivers.BootReceiver 开机启动服务
权限列表
VirSCANVirSCAN
许可名称 信息
android.permission.INTERNET 连接网络(2G或3G)
android.permission.WAKE_LOCK 手机屏幕关闭后后台进程仍运行
com.android.launcher.permission.INSTALL_SHORTCUT 创建快捷方式
com.espabit.essexyfaceBR.permission.C2D_MESSAGE
com.google.android.c2dm.permission.RECEIVE
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.SEND_SMS 发送短信
android.permission.READ_SMS 读取短信
android.permission.WRITE_SMS 写短信
android.permission.RECEIVE_SMS 监控接收短信
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.GET_ACCOUNTS 访问账户列表
android.permission.CHANGE_WIFI_STATE 改变WIFI连接状态
android.permission.CHANGE_NETWORK_STATE 变更网络状态
android.permission.VIBRATE 允许设备震动
服务列表
VirSCANVirSCAN
名称
com.espabit.essexyfaceBR.GCMIntentService
文件列表
VirSCANVirSCAN
文件名 校验码
res/drawable/a01.jpg 0x406b418f
res/drawable/a02.jpg 0xb2bb9cd6
res/drawable/a03.jpg 0xd37280f
res/drawable/a04.jpg 0x5bed2658
res/drawable/a05.jpg 0xaf34a12a
res/drawable/a06.jpg 0xcdda9ad5
res/drawable/a07.jpg 0x9458b4a3
res/drawable/a08.jpg 0x26ad88f3
res/drawable/a09.jpg 0x6af9edc5
res/drawable/a10.jpg 0x2b706102
res/drawable/a11.jpg 0x2db3160c
res/drawable/a12.jpg 0x99a6798
res/drawable/a13.jpg 0x8f5111d6
res/drawable/a14.jpg 0xbaab4abf
res/drawable/a15.jpg 0xeed758f8
res/drawable/a16.jpg 0x8c1c7754
res/drawable/boton_disclaimer.xml 0x7f93e11e
res/drawable/boton_disclaimer_no.xml 0xac6c5211
res/drawable/boton_disclaimer_pulsado.xml 0xf94ec793
res/drawable/boton_disclaimer_pulsado_no.xml 0xe2236f45
res/drawable/btn_disclaimer.xml 0x5efb75ab
res/drawable/btn_disclaimer_no.xml 0xcde40ad1
res/drawable/empty_footer.png 0x7385b1c4
res/drawable/fondo_popup.jpg 0x7c820bd2
res/drawable/gif_generico.xml 0xf9278d67
res/drawable/icon.png 0xef076433
res/drawable/logo_popup.png 0xe6f2b8e8
res/drawable/no_miembros_boton_miembros.png 0x8a16c76b
res/drawable/no_miembros_footer.png 0xcf4ea225
res/drawable/no_miembros_header_logo.png 0x92f3d8a6
res/drawable/no_miembros_play_big.png 0x979c447
res/drawable/no_miembros_player.png 0x9ba423e4
res/drawable/no_miembros_popup.png 0xa8b538f7
res/drawable/no_miembros_popup_btn_continue.png 0xd57b5fa8
res/drawable/no_miembros_popup_btn_no.png 0xe2aecc61
res/drawable/pantallacarga_fondo.jpg 0xa90dd3c5
res/drawable/redondo_blanco.xml 0x2916563d
res/drawable/zona_miembros_header.png 0xb6525a33
res/drawable/zona_miembros_imagen_carga.png 0xc728e871
res/drawable/zonamiembros_popup_boton.png 0x7c2d26c8
res/drawable/zonamiembros_popup_cerrar.png 0x6423ac08
res/drawable/zonamiembros_popup_foto.jpg 0xff613f88
res/layout/div_pago.xml 0xf51b63fb
res/layout/go_promo.xml 0xd606702f
res/layout/no_miembros.xml 0x10549ddc
res/layout/no_miembros_no_sim.xml 0xf9789ebc
res/layout/pantalla_carga.xml 0x9d188e3f
res/layout/video_play.xml 0x3b1f9796
res/layout/zona_miembros.xml 0x513da418
res/layout/zona_miembros_header.xml 0xbba7b86d
res/layout/zona_miembros_item.xml 0x23b281b3
res/layout/zona_miembros_number_item.xml 0x6d4cd798
res/layout/zonamiembros_popup.xml 0x142c0bd7
AndroidManifest.xml 0x2a8e0242
resources.arsc 0x6cf24cdb
res/drawable-hdpi/ic_status_alert.png 0x75dd8459
res/drawable-hdpi/ic_status_app.png 0xc04452e4
res/drawable-hdpi/ic_status_bullet.png 0x6eeb4245
res/drawable-hdpi/ic_status_discount.png 0xac76db2f
res/drawable-hdpi/ic_status_dollar.png 0x4c9b2dab
res/drawable-hdpi/ic_status_envelope.png 0x7485f7bd
res/drawable-hdpi/ic_status_euro.png 0x91529a02
res/drawable-hdpi/ic_status_games.png 0x3606179a
res/drawable-hdpi/ic_status_news.png 0xf51f5a3b
res/drawable-mdpi/ic_status_alert.png 0xe8887c8
res/drawable-mdpi/ic_status_app.png 0x773185d1
res/drawable-mdpi/ic_status_bullet.png 0xdb2b435f
res/drawable-mdpi/ic_status_discount.png 0x45fe91ae
res/drawable-mdpi/ic_status_dollar.png 0xacafafa0
res/drawable-mdpi/ic_status_envelope.png 0xb95969c8
res/drawable-mdpi/ic_status_euro.png 0x51d4a530
res/drawable-mdpi/ic_status_games.png 0x31a26f0c
res/drawable-mdpi/ic_status_news.png 0xb021eff4
res/drawable-xhdpi/ic_status_alert.png 0x200a6216
res/drawable-xhdpi/ic_status_app.png 0xbbab5c6f
res/drawable-xhdpi/ic_status_bullet.png 0x1ba4a76b
res/drawable-xhdpi/ic_status_discount.png 0x83f6f818
res/drawable-xhdpi/ic_status_dollar.png 0x42b99ed
res/drawable-xhdpi/ic_status_envelope.png 0xd33d8fdd
res/drawable-xhdpi/ic_status_euro.png 0x60551ed2
res/drawable-xhdpi/ic_status_games.png 0x6a5db51e
res/drawable-xhdpi/ic_status_news.png 0xcb69384b
classes.dex 0x3c6f0657
META-INF/MANIFEST.MF 0xffb7245d
META-INF/CERT.SF 0x4e3e8e2f
META-INF/CERT.RSA 0x4520c3cf
运行截图
VirSCANVirSCAN
VirSCAN