百变气泡.apk 0% Antivirus software(0/32) found malware! - VirSCAN.org - Free Multi-Engine Online Virus Scanner v1.02, Supports 47 AntiVirus Engines!

Main Menu

API

uploader for windows(test)

Powered By

File information

File Name :百变气泡.apk (File not down)

File Size :808659 byte

File Type :application/zip

MD5:76f93ad0380b9c3cbd1a855611d61ba5

SHA1:8924e95cf8550dddfa7ae04c2e2ad175993c1bc7

扫描结果
权限
文件行为分析

Scanner results

Scanner results:0%Antivirus software(0/32)found malware!

Behavior analysis report: Habo file analysis

Time: 2017-06-16 16:27:00 (CST)

Scanner	Engine Ver	Sig Ver	Sig Date	Scan result	Time
antiy	AVL SDK 2.0		1970-01-01	Found nothing	5
asquared	9.0.0.4799	9.0.0.4799	2015-03-08	Found nothing	1
avast	170303-1	4.7.4	2017-03-03	Found nothing	60
avg	2109/14054	10.0.1405	2017-06-14	Found nothing	60
baidu	2.0.1.0	4.1.3.52192	2.0.1.0	Found nothing	5
baidusd	1.0	1.0	2017-03-22	Found nothing	1
bitdefender	7.58879	7.90123	2015-01-16	Found nothing	60
clamav	23419	0.97.5	2017-05-26	Found nothing	60
drweb	5.0.2.3300	5.0.1.1	2017-06-06	Found nothing	60
fortinet	49.509, 49.509, 49.509	5.4.233	2017-06-15	Found nothing	60
fprot	4.6.2.117	6.5.1.5418	2016-02-05	Found nothing	60
fsecure	2015-08-01-02	9.13	2015-08-01	Found nothing	60
gdata	25.12877	25.12877	2017-06-15	Found nothing	11
ikarus	1.06.01	V1.32.31.0	2016-11-28	Found nothing	60
jiangmin	16.0.100	1.0.0.0	2017-06-14	Found nothing	2
kaspersky	5.5.33	5.5.33	2014-04-01	Found nothing	60
kingsoft	2.1	2.1	2017-06-15	Found nothing	5
mcafee	8261	5400.1158	2016-08-18	Found nothing	60
nod32	1777	3.0.21	2015-06-12	Found nothing	60
panda	9.05.01	9.05.01	2017-06-14	Found nothing	4
pcc	13.302.06	9.500-1005	2017-03-27	Found nothing	60
qh360	1.0.1	1.0.1	1.0.1	Found nothing	7
qqphone	1.0.0.0	1.0.0.0	2015-12-30	Found nothing	60
quickheal	14.00	14.00	2017-06-15	Found nothing	2
rising	26.28.00.01	26.28.00.01	2016-07-18	Found nothing	1
sophos	5.32	3.65.2	2016-10-10	Found nothing	60
symantec	20151230.005	1.3.0.24	2015-12-30	Found nothing	60
tachyon	9.9.9	9.9.9	2013-12-27	Found nothing	3
thehacker	6.8.0.5	6.8.0.5	2017-06-11	Found nothing	1
tws	17.47.17308	1.0.2.2108	2017-06-15	Found nothing	14
vba	3.12.29.5 beta	3.12.29.5 beta	2017-06-15	Found nothing	60
virusbuster	15.0.985.0	5.5.2.13	2014-12-05	Found nothing	60

■Heuristic/Suspicious ■Exact

NOTICE: Results are not 100% accurate and can be reported as a false positive by some scannerswhen and if malware is found. Please judge these results for yourself.

Last Scanned File List

File Name (File Size)	Scan results (Suspicious degree)
00Eusing_Free_MP3_Cutter_Portable2.1(687616 )	Found Trojan[Downloader]/MSOffice.Agent.atn (4%)
00Eusing_Clock2.5(420110 )	Found DeepScan:Generic.Mira.CF26E316 (18%)
00Eusing_Cleaner_Portable4.7(404656 )	Found MemScan:Trojan.Agent.CCPK (26%)
00Eusing_Cleaner4.7(6145 )	Found Gen:Variant.Symmi.8397 (38%)
00EssentialFax1.80.0(15730730 )	Found a.gray.Nebula.a (2%)
00Esftp_Spy_Message1.0.0.24(7036936 )	Found Trojan[Dropper]/Android.Ingopack (4%)
00ErrorLookup2.01(1397302 )	Found Dropped:Trojan.Script.418723 (26%)
00Ernellcalculator1.0(212992 )	Found Trojan.Agent.CQST (24%)
00EraseTemp删除临时文件3.5.3.0(1666132 )	Found Trojan.Prepender.G (38%)
00EraseTemp3.5.3(420675 )	Found DeepScan:Generic.Mira.CF26E316 (20%)
00EnzLab3.14.7.1(43946 )	Found Application.JS.CoinMiner.RA@7u1yex (14%)
00Entru_Auto_Shutdown1.0.0.42(420146 )	Found DeepScan:Generic.Mira.CF26E316 (20%)
00EntourageEmail邮件恢复软件1.0(420697 )	Found DeepScan:Generic.Mira.CF26E316 (20%)
CafeAdm Binary.exe(40960 )	Found nothing
00EnhanceMyXP_Pro2.3.1(82544 )	Found Malware (2%)
00EnhanceMyXP1.17(19480 )	Found nothing
00EnergyS*er_DPMS_Screen_S*er2.11(420669 )	Found DeepScan:Generic.Mira.CF26E316 (18%)
00EndTask_Pro3.2.40(420673 )	Found DeepScan:Generic.Mira.CF26E316 (18%)
00Encrypt_PDFCommand_Line_2.1(953991 )	Found GrayWare/Win32.Kryptik.BQX (10%)
00Encopy5.26(52803 )	Found nothing

权限列表
许可名称	信息
android.permission.READ_LOGS	读取系统日志
com.android.launcher.permission.INSTALL_SHORTCUT	创建快捷方式
android.permission.GET_TASKS	获取有关当前或最近运行的任务信息
android.permission.WRITE_EXTERNAL_STORAGE	写外部存储器（如：SD卡）
android.permission.ACCESS_WIFI_STATE	读取wifi网络状态
android.permission.ACCESS_COARSE_LOCATION	获取粗略的位置（通过wifi、基站）
android.permission.MOUNT_UNMOUNT_FILESYSTEMS	挂载、反挂载外部文件系统
android.permission.READ_PHONE_STATE	读取电话状态
android.permission.SYSTEM_ALERT_WINDOW	显示系统窗口
android.permission.INTERNET	连接网络（2G或3G）
android.permission.ACCESS_FINE_LOCATION	获取精确的位置（通过GPS）
com.android.launcher.permission.READ_SETTINGS	读取快捷方式信息
android.permission.WAKE_LOCK	手机屏幕关闭后后台进程仍运行
android.permission.ACCESS_NETWORK_STATE	读取网络状态（2G或3G）
android.permission.CHANGE_CONFIGURATION	修改当前设置（如：本地化）

文件信息

安全评分 :

基本信息
MD5:76f93ad0380b9c3cbd1a855611d61ba5
包名:com.bianbianqipao
最低运行环境:Android 2.2.x
版权:E4A

文件行为
行为描述:	查找文件
详情信息:	FileName = C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscoreei.dll
	FileName = C:\Windows\Microsoft.NET\Framework\Upgrades.2.0.50727\mscoreei.dll
	FileName = C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorwks.dll
	FileName = C:\Windows\Microsoft.NET\Framework\v4.0.40305\mscorwks.dll

其他行为
行为描述:	检测自身是否被调试
详情信息:	IsDebuggerPresent
行为描述:	打开事件
详情信息:	HookSwitchHookEnabledEvent
	Local\MSCTF.CtfActivated.Default1
	Local\MSCTF.AsmCacheReady.Default1
行为描述:	打开互斥体
详情信息:	Local\MSCTF.Asm.MutexDefault1
行为描述:	窗口信息
详情信息:	Pid = 3256, Hwnd=0x1e0124, Text = 确定, ClassName = Button.
	Pid = 3256, Hwnd=0xb02ca, Text = 若要运行此应用程序，您必须首先安装 .NET Framework 的以下版本之一: v4.0.30319 有关如何获取 .NET Framework 的适当版本的说明，请与应用程序发行者联系。, ClassName = Static.
	Pid = 3256, Hwnd=0x140144, Text = b70c.exe - .NET Framework 初始化错误, ClassName = #32770.

Activities
活动名	类型
com.e4a.runtime.android.StartActivity	android.intent.action.MAIN
com.e4a.runtime.android.StartActivity	android.intent.category.DEFAULT
com.e4a.runtime.android.StartActivity	android.intent.category.LAUNCHER
com.e4a.runtime.android.mainActivity	android.intent.action.MAIN
com.e4a.runtime.android.mainActivity	android.intent.category.DEFAULT

危险函数
函数名称	信息
getRuntime	获取命令行环境
java/lang/Runtime;->exec	执行字符串命令
TelephonyManager;->getDeviceId	搜集用户手机IMEI码、电话号码、系统版本号等信息
java/net/URL;->openConnection	连接URL
java/net/HttpURLConnection;->connect	连接URL

权限列表
许可名称	信息
android.permission.READ_LOGS	读取系统日志
com.android.launcher.permission.INSTALL_SHORTCUT	创建快捷方式
android.permission.GET_TASKS	获取有关当前或最近运行的任务信息
android.permission.WRITE_EXTERNAL_STORAGE	写外部存储器（如：SD卡）
android.permission.ACCESS_WIFI_STATE	读取wifi网络状态
android.permission.ACCESS_COARSE_LOCATION	获取粗略的位置（通过wifi、基站）
android.permission.MOUNT_UNMOUNT_FILESYSTEMS	挂载、反挂载外部文件系统
android.permission.READ_PHONE_STATE	读取电话状态
android.permission.SYSTEM_ALERT_WINDOW	显示系统窗口
android.permission.INTERNET	连接网络（2G或3G）
android.permission.ACCESS_FINE_LOCATION	获取精确的位置（通过GPS）
com.android.launcher.permission.READ_SETTINGS	读取快捷方式信息
android.permission.WAKE_LOCK	手机屏幕关闭后后台进程仍运行
android.permission.ACCESS_NETWORK_STATE	读取网络状态（2G或3G）
android.permission.CHANGE_CONFIGURATION	修改当前设置（如：本地化）

文件列表
文件名	校验码
AndroidManifest.xml	0xfb8fab17
assets/avatar.png	0x5d66812c
assets/souye.png	0x8ca32d7b
assets/t2rue.jpg	0x9593c79d
classes.dex	0x10a234b7
lib/armeabi/libBugly.so	0x1ddd8547
lib/armeabi/libshella-2.10.4.0.so	0xcb4eb659
lib/armeabi/libshellx-2.10.4.0.so	0x18143306
lib/armeabi/mix.dex	0xa3517ce0
lib/armeabi/mixz.dex	0xa67045c7
META-INF/	0x0
META-INF/MANIFEST.MF	0x4c00ea59
META-INF/MYKEY.RSA	0x352d8b5a
META-INF/MYKEY.SF	0xe09cabf4
resources.arsc	0x95a0a77f
res/drawable/avatar.png	0x5d66812c
res/drawable/icon.png	0xebf990e7
tencent_stub	0x6f7ce5cd

运行截图

File information

上传文件