VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

File Name :miuisystem.apk (File not down)
File Size :691103 byte
File Type :application/zip
MD5:331860e30b90ab7f808ebef71dfa780a
SHA1:5db9f6b41ccb5981b1be2b522ea3db09fa3d5fef
Scanner results
Scanner results:0%Scanner(s) (0/32)found malware!
Behavior analysis report:         Habo file analysis
Time: 2017-06-27 15:46:25 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
antiy AVL SDK 2.0 1970-01-01 Found nothing 5
asquared 9.0.0.4799 9.0.0.4799 2015-03-08 Found nothing 1
avast 170303-1 4.7.4 2017-03-03 Found nothing 60
avg 2109/14105 10.0.1405 2017-06-26 Found nothing 60
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 9
baidusd 1.0 1.0 2017-03-22 Found nothing 1
bitdefender 7.58879 7.90123 2015-01-16 Found nothing 60
clamav 23503 0.97.5 2017-06-24 Found nothing 60
drweb 5.0.2.3300 5.0.1.1 2017-06-18 Found nothing 60
fortinet 49.794, 49.794, 49.794 5.4.233 2017-06-27 Found nothing 60
fprot 4.6.2.117 6.5.1.5418 2016-02-05 Found nothing 60
fsecure 2015-08-01-02 9.13 2015-08-01 Found nothing 60
gdata 25.13066 25.13066 2017-06-26 Found nothing 12
ikarus 1.06.01 V1.32.31.0 2016-11-28 Found nothing 60
jiangmin 16.0.100 1.0.0.0 2017-06-25 Found nothing 2
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 60
kingsoft 2.1 2.1 2017-06-26 Found nothing 6
mcafee 8261 5400.1158 2016-08-18 Found nothing 60
nod32 1777 3.0.21 2015-06-12 Found nothing 60
panda 9.05.01 9.05.01 2017-06-26 Found nothing 4
pcc 13.302.06 9.500-1005 2017-03-27 Found nothing 60
qh360 1.0.1 1.0.1 1.0.1 Found nothing 3
qqphone 1.0.0.0 1.0.0.0 2015-12-30 Found nothing 60
quickheal 14.00 14.00 2017-06-24 Found nothing 3
rising 26.28.00.01 26.28.00.01 2016-07-18 Found nothing 2
sophos 5.32 3.65.2 2016-10-10 Found nothing 60
symantec 20151230.005 1.3.0.24 2015-12-30 Found nothing 60
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 4
thehacker 6.8.0.5 6.8.0.5 2017-06-25 Found nothing 2
tws 17.47.17308 1.0.2.2108 2017-06-26 Found nothing 15
vba 3.12.29.5 beta 3.12.29.5 beta 2017-06-23 Found nothing 60
virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 60

没有相关的权限信息

文件信息
VirSCANVirSCAN
安全评分 :
基本信息
VirSCANVirSCAN
MD5:331860e30b90ab7f808ebef71dfa780a
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:com.miui.system
最低运行环境:Android 4.2, 4.2.2
版权:Xiaomi
关键行为
VirSCANVirSCAN
行为描述: 设置特殊文件夹属性
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
C:\Documents and Settings\Administrator\Local Settings\History
C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
C:\Documents and Settings\Administrator\Cookies
行为描述: 获取TickCount值
详情信息: TickCount = 5430301, SleepMilliseconds = 20.
TickCount = 5430363, SleepMilliseconds = 20.
TickCount = 5430379, SleepMilliseconds = 20.
TickCount = 5430410, SleepMilliseconds = 20.
TickCount = 5430598, SleepMilliseconds = 20.
TickCount = 5430645, SleepMilliseconds = 20.
TickCount = 5430660, SleepMilliseconds = 20.
TickCount = 5430785, SleepMilliseconds = 20.
TickCount = 5430801, SleepMilliseconds = 20.
TickCount = 5430832, SleepMilliseconds = 20.
TickCount = 5430848, SleepMilliseconds = 20.
TickCount = 5430863, SleepMilliseconds = 20.
TickCount = 5430988, SleepMilliseconds = 20.
TickCount = 5431004, SleepMilliseconds = 20.
TickCount = 5431035, SleepMilliseconds = 20.
进程行为
VirSCANVirSCAN
行为描述: 设置特殊文件夹属性
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
C:\Documents and Settings\Administrator\Local Settings\History
C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
C:\Documents and Settings\Administrator\Cookies
行为描述: 获取TickCount值
详情信息: TickCount = 5430301, SleepMilliseconds = 20.
TickCount = 5430363, SleepMilliseconds = 20.
TickCount = 5430379, SleepMilliseconds = 20.
TickCount = 5430410, SleepMilliseconds = 20.
TickCount = 5430598, SleepMilliseconds = 20.
TickCount = 5430645, SleepMilliseconds = 20.
TickCount = 5430660, SleepMilliseconds = 20.
TickCount = 5430785, SleepMilliseconds = 20.
TickCount = 5430801, SleepMilliseconds = 20.
TickCount = 5430832, SleepMilliseconds = 20.
TickCount = 5430848, SleepMilliseconds = 20.
TickCount = 5430863, SleepMilliseconds = 20.
TickCount = 5430988, SleepMilliseconds = 20.
TickCount = 5431004, SleepMilliseconds = 20.
TickCount = 5431035, SleepMilliseconds = 20.
文件行为
VirSCANVirSCAN
行为描述: 创建文件
详情信息: C:\Program Files\AppPatch\NetSyst96.dll
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6P4O8QNJ\NetSyst96[1].dll
行为描述: 创建可执行文件
详情信息: C:\Program Files\AppPatch\NetSyst96.dll
行为描述: 覆盖已有文件
详情信息: C:\Program Files\AppPatch\NetSyst96.dll
行为描述: 查找文件
详情信息: FileName = C:\Documents and Settings
FileName = C:\Documents and Settings\Administrator
FileName = C:\Documents and Settings\Administrator\Local Settings
FileName = C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Connections\Pbk\*.pbk
FileName = C:\WINDOWS\system32\Ras\*.pbk
FileName = C:\Documents and Settings\Administrator\Application Data\Microsoft\Network\Connections\Pbk\*.pbk
行为描述: 删除文件
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5\6P4O8QNJ\NetSyst96[1].dll
行为描述: 设置特殊文件夹属性
详情信息: C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files
C:\Documents and Settings\Administrator\Local Settings\Temporary Internet Files\Content.IE5
C:\Documents and Settings\Administrator\Local Settings\History
C:\Documents and Settings\Administrator\Local Settings\History\History.IE5
C:\Documents and Settings\Administrator\Cookies
行为描述: 修改文件内容
详情信息: C:\Program Files\AppPatch\NetSyst96.dll ---> Offset = 0
C:\Program Files\AppPatch\NetSyst96.dll ---> Offset = 1024
C:\Program Files\AppPatch\NetSyst96.dll ---> Offset = 2048
C:\Program Files\AppPatch\NetSyst96.dll ---> Offset = 3072
C:\Program Files\AppPatch\NetSyst96.dll ---> Offset = 4096
C:\Program Files\AppPatch\NetSyst96.dll ---> Offset = 8192
C:\Program Files\AppPatch\NetSyst96.dll ---> Offset = 12288
C:\Program Files\AppPatch\NetSyst96.dll ---> Offset = 16384
网络行为
VirSCANVirSCAN
行为描述: 联网打开网址
详情信息: InternetOpenUrlA: http://**.186.153.**:29314/NetSyst96.dll, hInternet = 0x00cc0004, Flags = 0x80000000
行为描述: 连接指定站点
详情信息: InternetConnectA: ServerName = **.186.153.**, PORT = 29314, UserName = , Password = , hSession = 0x00cc0004, hConnect = 0x00cc0008, Flags = 0x80000000
行为描述: 打开HTTP连接
详情信息: InternetOpenA: UserAgent: Mozilla/4.0 (compatible), hSession = 0x00cc0004
行为描述: 建立到一个指定的套接字连接
详情信息: IP: **.186.153.**:29314, SOCKET = 0x0000023c
IP: **.186.153.**:29314, SOCKET = 0x00000240
行为描述: 读取网络文件
详情信息: hFile = 0x00cc000c, BytesToRead =1024, BytesRead = 1024.
行为描述: 发送HTTP包
详情信息: GET /NetSyst96.dll HTTP/1.1 User-Agent: Mozilla/4.0 (compatible) Host: **.186.153.**:29314 Cache-Control: no-cache
行为描述: 打开HTTP请求
详情信息: HttpOpenRequestA: **.186.153.**:29314/netsyst96.dll, hConnect = 0x00cc0008, hRequest = 0x00cc000c, Verb: GET, Referer: , Flags = 0x80000000
注册表行为
VirSCANVirSCAN
行为描述: 修改注册表
详情信息: \REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\SavedLegacySettings
行为描述: 删除注册表键值
详情信息: \REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ProxyServer
\REGISTRY\USER\S-*\Software\Microsoft\Windows\CurrentVersion\Internet Settings\AutoConfigURL
其他行为
VirSCANVirSCAN
行为描述: 创建互斥体
详情信息: RasPbFile
Local\ZonesCounterMutex
Local\ZoneAttributeCacheCounterMutex
Local\ZonesCacheCounterMutex
Local\ZonesLockedCacheCounterMutex
行为描述: 创建事件对象
详情信息: EventName = DINPUTWINMM
EventName = Global\userenv: User Profile setup event
行为描述: 获取TickCount值
详情信息: TickCount = 5430301, SleepMilliseconds = 20.
TickCount = 5430363, SleepMilliseconds = 20.
TickCount = 5430379, SleepMilliseconds = 20.
TickCount = 5430410, SleepMilliseconds = 20.
TickCount = 5430598, SleepMilliseconds = 20.
TickCount = 5430645, SleepMilliseconds = 20.
TickCount = 5430660, SleepMilliseconds = 20.
TickCount = 5430785, SleepMilliseconds = 20.
TickCount = 5430801, SleepMilliseconds = 20.
TickCount = 5430832, SleepMilliseconds = 20.
TickCount = 5430848, SleepMilliseconds = 20.
TickCount = 5430863, SleepMilliseconds = 20.
TickCount = 5430988, SleepMilliseconds = 20.
TickCount = 5431004, SleepMilliseconds = 20.
TickCount = 5431035, SleepMilliseconds = 20.
行为描述: 打开事件
详情信息: HookSwitchHookEnabledEvent
\SECURITY\LSA_AUTHENTICATION_INITIALIZED
Global\SvcctrlStartEvent_A3752DX
\INSTALLATION_SECURITY_HOLD
行为描述: 可执行文件签名信息
详情信息: C:\Program Files\AppPatch\NetSyst96.dll(签名验证: 未通过)
行为描述: 调用Sleep函数
详情信息: [1]: MilliSeconds = 20.
[2]: MilliSeconds = 20.
[3]: MilliSeconds = 20.
[4]: MilliSeconds = 20.
[5]: MilliSeconds = 20.
[6]: MilliSeconds = 20.
[7]: MilliSeconds = 20.
[8]: MilliSeconds = 20.
[9]: MilliSeconds = 20.
[10]: MilliSeconds = 20.
行为描述: 可执行文件MD5
详情信息: C:\Program Files\AppPatch\NetSyst96.dll ---> fe1d0ee5901dd167ee9b28eece31786c
行为描述: 打开互斥体
详情信息: Local\_!MSFTHISTORY!_
Local\c:!documents and settings!administrator!local settings!temporary internet files!content.ie5!
Local\c:!documents and settings!administrator!cookies!
Local\c:!documents and settings!administrator!local settings!history!history.ie5!
Local\WininetStartupMutex
Local\WininetConnectionMutex
Local\WininetProxyRegistryMutex
RasPbFile
Local\!IETld!Mutex
危险函数
VirSCANVirSCAN
函数名称 信息
ContentResolver;->query 读取联系人、短信等数据库
getRuntime 获取命令行环境
PowerManager;->reboot 重启手机
TelephonyManager;->getDeviceId 搜集用户手机IMEI码、电话号码、系统版本号等信息
文件列表
VirSCANVirSCAN
文件名 校验码
AndroidManifest.xml 0x8a1f52aa
assets/device_features/angler.xml 0x1e46373c
assets/device_features/aqua.xml 0x2ff16009
assets/device_features/aries.xml 0x3c00e730
assets/device_features/armani.xml 0xecf97f56
assets/device_features/cancro_MI3.xml 0xdb13f117
assets/device_features/cancro_MI4.xml 0x3bf8bd86
assets/device_features/dior.xml 0x1291d8f2
assets/device_features/ferrari.xml 0x50cff85a
assets/device_features/gemini.xml 0x8d8283cc
assets/device_features/gucci.xml 0xc1c8aec1
assets/device_features/hammerhead.xml 0x53edfb08
assets/device_features/hennessy.xml 0x7d3ebffc
assets/device_features/hermes.xml 0x8a3d53e0
assets/device_features/hermes_pro.xml 0x8a3d53e0
assets/device_features/HM2013022.xml 0x8676d292
assets/device_features/HM2013023.xml 0x12afa7fb
assets/device_features/HM2014011.xml 0xcad3dfac
assets/device_features/HM2014112.xml 0x6e858c63
assets/device_features/HM2014501.xml 0x3bc1f4f
assets/device_features/HM2014811.xml 0x97038609
assets/device_features/HM2014812.xml 0xa6cc65a9
assets/device_features/HM2014813.xml 0x58132e51
assets/device_features/HM2014816.xml 0x58132e51
assets/device_features/HM2014817.xml 0x970a59e4
assets/device_features/HM2014818.xml 0x132ab976
assets/device_features/HM2014819.xml 0xa5b7d672
assets/device_features/HM2014821.xml 0xaccccb5c
assets/device_features/ido.xml 0x94ef6431
assets/device_features/kate.xml 0x13fd9dab
assets/device_features/kenzo.xml 0x37ac084b
assets/device_features/land.xml 0x625d03de
assets/device_features/latte.xml 0xbffe5e39
assets/device_features/lcsh6795_lwt_cu.xml 0x8a3d53e0
assets/device_features/lcsh6795_lwt_l.xml 0x8a3d53e0
assets/device_features/lcsh92_wet_jb9.xml 0x8854aff4
assets/device_features/lcsh92_wet_tdd.xml 0xf4227bda
assets/device_features/leo.xml 0x90134fd
assets/device_features/libra.xml 0xfc408b67
assets/device_features/lte26007.xml 0x1aad1858
assets/device_features/markf.xml 0x1b988cac
assets/device_features/markw.xml 0x1052109f
assets/device_features/meri.xml 0xe39abe71
assets/device_features/mocha.xml 0xe8fd1914
assets/device_features/nikel.xml 0x36f6d543
assets/device_features/omega.xml 0xe27dd916
assets/device_features/pisces.xml 0xb76f41fe
assets/device_features/prada.xml 0xacb34e66
assets/device_features/rolex.xml 0x1c5d5db5
assets/device_features/santoni.xml 0x98337e34
assets/device_features/taurus.xml 0x6353ad32
assets/device_features/virgo.xml 0xb3c24477
assets/device_features/wt86047.xml 0xe6035693
assets/device_features/wt88047.xml 0x4ee7f527
classes.dex 0x659e6704
META-INF/CERT.RSA 0x88853dcd
META-INF/CERT.SF 0x90d32e72
META-INF/MANIFEST.MF 0x9bab60da
resources.arsc 0x2b32e1b2
res/drawable-hdpi/sortable_list_dragging_item_shadow.9.png 0x4015ee66
res/drawable-sw600dp-xhdpi/ic_notify_clear_normal.png 0x98f10f95
res/drawable-sw600dp-xhdpi/ic_notify_clear_pressed.png 0x1ae1ae3a
res/drawable-sw600dp-xhdpi/notification_item_first_bg_n.9.png 0xfd4a0ed5
res/drawable-sw600dp-xhdpi/notification_item_first_bg_p.9.png 0x7ecb0eda
res/drawable-sw600dp-xhdpi/notification_item_last_bg_n.9.png 0x10eee3f1
res/drawable-sw600dp-xhdpi/notification_item_last_bg_p.9.png 0xb5270be4
res/drawable-sw600dp-xhdpi/notification_item_mid_bg_n.9.png 0xfd4a0ed5
res/drawable-sw600dp-xhdpi/notification_item_mid_bg_p.9.png 0x7ecb0eda
res/drawable-sw600dp-xhdpi/notification_item_single_bg_n.9.png 0x10eee3f1
res/drawable-sw600dp-xhdpi/notification_item_single_bg_p.9.png 0xb5270be4
res/drawable-sw600dp-xhdpi/notification_list_bg.9.png 0xdc48428f
res/drawable-sw600dp-xhdpi/phrase_list_header_bg.9.png 0xb6b134b2
res/drawable-sw600dp-xhdpi/provision_bg.png 0x8c93efa8
res/drawable-xhdpi/btn_cloud_close_normal_light.png 0x34d0275a
res/drawable-xhdpi/btn_cloud_close_pressed_light.png 0x78a5bdb9
res/drawable-xhdpi/cloud_panel_bg_light.9.png 0x887e81da
res/drawable-xhdpi/ic_notify_clear_normal.png 0xf53b84b0
res/drawable-xhdpi/ic_notify_clear_pressed.png 0x4060748e
res/drawable-xhdpi/micloud_state_divider.png 0x8051d17
res/drawable-xhdpi/notification_action_bg_n.9.png 0x4a3b6e20
res/drawable-xhdpi/notification_action_bg_p.9.png 0xf2ebeb0
res/drawable-xhdpi/notification_item_first_bg_n.9.png 0xdc48428f
res/drawable-xhdpi/notification_item_first_bg_p.9.png 0x2dfbda60
res/drawable-xhdpi/notification_item_last_bg_n.9.png 0xe884c4c5
res/drawable-xhdpi/notification_item_last_bg_p.9.png 0xb9086525
res/drawable-xhdpi/notification_item_mid_bg_n.9.png 0xdc48428f
res/drawable-xhdpi/notification_item_mid_bg_p.9.png 0x2dfbda60
res/drawable-xhdpi/notification_item_single_bg_n.9.png 0xe884c4c5
res/drawable-xhdpi/notification_item_single_bg_p.9.png 0xb9086525
res/drawable-xhdpi/notification_list_bg.9.png 0x3f336fed
res/drawable-xhdpi/phrase_list_header_bg.9.png 0xb6b134b2
res/drawable-xhdpi/provision_bar_back_n.png 0x1f3e8676
res/drawable-xhdpi/provision_bar_back_p.png 0x2b34d387
res/drawable-xhdpi/provision_bg.png 0xeef5f116
res/drawable-xhdpi/vip_bg_title.png 0xd2a58fec
res/drawable-xhdpi/vip_default_avatar.png 0xd931a506
res/drawable-xhdpi/vip_icon_default_achievement.png 0x58cdfa3c
res/drawable-xhdpi/vip_icon_frame_0_5.png 0x41160bef
res/drawable-xhdpi/vip_icon_frame_10_15.png 0x4c5906a5
res/drawable-xhdpi/vip_icon_frame_15_20.png 0x4f1f52dd
res/drawable-xhdpi/vip_icon_frame_20_25.png 0x467a06b3
res/drawable-xhdpi/vip_icon_frame_25_30.png 0x4703731b
res/drawable-xhdpi/vip_icon_frame_5_10.png 0x9f43e8bd
res/drawable/btn_cloud_close_light.xml 0x4547c697
res/drawable/ic_notify_clear.xml 0x2d9f2cac
res/drawable/notification_action_bg.xml 0x5f454981
res/drawable/notification_bg.xml 0x104ad45f
res/drawable/provision_bar_back.xml 0x228a142c
res/drawable/provision_placeholder.xml 0xac0b938f
res/layout/cloud_panel.xml 0xc164e539
res/layout/micloud_state_view.xml 0x2a5e2a67
res/layout/notification_panel.xml 0x54b251d5
res/layout/phrase_add.xml 0x72290a7d
res/layout/phrase_list_header.xml 0xda910f8b
res/layout/phrase_list_item.xml 0x50450cb6
res/layout/provision_bg.xml 0x135ecdfa
res/layout/provision_page_layout.xml 0x5b88dede
res/layout/status_bar_notification.xml 0x4492ef11
res/layout/vip_achievement_icon.xml 0x306f97c8
res/layout/vip_banner.xml 0xcd66fec8
res/layout/vip_portrait_expand_view.xml 0xfd6adb4a
res/layout/vip_portrait_view.xml 0x9e30d1db
res/menu/phrase_action.xml 0x9c9a40f
res/menu/phrase_edit_mode_action.xml 0xbfba9f94
res/xml/miui_extension.xml 0x28357c46
res/xml/miui_manifest.xml 0x1aa5da48
运行截图
VirSCANVirSCAN
VirSCAN