VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

Scanner results
Scanner results:0%Scanner(s) (0/32)found malware!
Behavior analysis report:         Habo file analysis
Time: 2017-07-21 11:47:50 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
antiy AVL SDK 2.0 1970-01-01 Found nothing 7
asquared 9.0.0.4799 9.0.0.4799 2015-03-08 Found nothing 2
avast 170303-1 4.7.4 2017-03-03 Found nothing 60
avg 2109/14149 10.0.1405 2017-07-04 Found nothing 60
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 3
baidusd 1.0 1.0 2017-03-22 Found nothing 1
bitdefender 7.58879 7.90123 2015-01-16 Found nothing 60
clamav 23578 0.97.5 2017-07-20 Found nothing 60
drweb 5.0.2.3300 5.0.1.1 2017-06-18 Found nothing 60
fortinet 50.329, 50.281, 50.305 5.4.247 2017-07-21 Found nothing 60
fprot 4.6.2.117 6.5.1.5418 2016-02-05 Found nothing 60
fsecure 2015-08-01-02 9.13 2015-08-01 Found nothing 60
gdata 25.13470 25.13470 2017-07-20 Found nothing 14
ikarus 1.06.01 V1.32.31.0 2016-11-28 Found nothing 60
jiangmin 16.0.100 1.0.0.0 2017-07-20 Found nothing 6
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 60
kingsoft 2.1 2.1 2017-07-20 Found nothing 6
mcafee 8261 5400.1158 2016-08-18 Found nothing 60
nod32 1777 3.0.21 2015-06-12 Found nothing 60
panda 9.05.01 9.05.01 2017-07-20 Found nothing 4
pcc 13.302.06 9.500-1005 2017-03-27 Found nothing 60
qh360 1.0.1 1.0.1 1.0.1 Found nothing 3
qqphone 1.0.0.0 1.0.0.0 2015-12-30 Found nothing 60
quickheal 14.00 14.00 2017-07-20 Found nothing 6
rising 26.28.00.01 26.28.00.01 2016-07-18 Found nothing 8
sophos 5.32 3.65.2 2016-10-10 Found nothing 60
symantec 20151230.005 1.3.0.24 2015-12-30 Found nothing 60
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 5
thehacker 6.8.0.5 6.8.0.5 2017-07-16 Found nothing 4
tws 17.47.17308 1.0.2.2108 2017-07-20 Found nothing 16
vba 3.12.29.5 beta 3.12.29.5 beta 2017-07-17 Found nothing 60
virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 60
权限列表
许可名称 信息
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.INTERNET 连接网络(2G或3G)
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.WAKE_LOCK 手机屏幕关闭后后台进程仍运行
android.permission.READ_PHONE_STATE 读取电话状态
com.android.vending.CHECK_LICENSE
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
com.android.vending.BILLING
文件信息
VirSCANVirSCAN
安全评分 :
基本信息
VirSCANVirSCAN
MD5:c8daa670487e5863aebfcd5db6866df2
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:de.mobilebits.soulcraftdefault
最低运行环境:Android 2.3.3, 2.3.4
版权:
关键行为
VirSCANVirSCAN
行为描述: 直接获取CPU时钟
详情信息: EAX = 0xecbd62d1, EDX = 0x000000b3
EAX = 0xecbd631d, EDX = 0x000000b3
EAX = 0x3bdc3b98, EDX = 0x000000b4
EAX = 0x3bdc3be4, EDX = 0x000000b4
EAX = 0x3bdc3c30, EDX = 0x000000b4
EAX = 0x3bdc3c7c, EDX = 0x000000b4
EAX = 0x3bdc3cc8, EDX = 0x000000b4
EAX = 0x3bdc3d14, EDX = 0x000000b4
EAX = 0x3e8f3c90, EDX = 0x000000b4
EAX = 0x3e8f3cdc, EDX = 0x000000b4
行为描述: 获取TickCount值
详情信息: TickCount = 217988, SleepMilliseconds = 20.
TickCount = 218020, SleepMilliseconds = 20.
TickCount = 218035, SleepMilliseconds = 20.
进程行为
VirSCANVirSCAN
行为描述: 直接获取CPU时钟
详情信息: EAX = 0xecbd62d1, EDX = 0x000000b3
EAX = 0xecbd631d, EDX = 0x000000b3
EAX = 0x3bdc3b98, EDX = 0x000000b4
EAX = 0x3bdc3be4, EDX = 0x000000b4
EAX = 0x3bdc3c30, EDX = 0x000000b4
EAX = 0x3bdc3c7c, EDX = 0x000000b4
EAX = 0x3bdc3cc8, EDX = 0x000000b4
EAX = 0x3bdc3d14, EDX = 0x000000b4
EAX = 0x3e8f3c90, EDX = 0x000000b4
EAX = 0x3e8f3cdc, EDX = 0x000000b4
行为描述: 获取TickCount值
详情信息: TickCount = 217988, SleepMilliseconds = 20.
TickCount = 218020, SleepMilliseconds = 20.
TickCount = 218035, SleepMilliseconds = 20.
文件行为
VirSCANVirSCAN
行为描述: 覆盖已有文件
详情信息: C:\Documents and Settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
行为描述: 查找文件
详情信息: FileName = C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
FileName = C:\WINDOWS\Microsoft.NET\Framework\\*
FileName = C:\WINDOWS
FileName = C:\WINDOWS\WinSxS
FileName = C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\MSVCR80.dll
FileName = C:\WINDOWS\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.INI
FileName = C:\Documents and Settings\Administrator\Local Settings\Temp
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\****.exe
FileName = C:\Documents and Settings
FileName = C:\Documents and Settings\Administrator
FileName = C:\Documents and Settings\Administrator\Local Settings
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\996E.INI
FileName = C:\WINDOWS\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.INI
FileName = C:\WINDOWS\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.INI
其他行为
VirSCANVirSCAN
行为描述: 检测自身是否被调试
详情信息: IsDebuggerPresent
行为描述: 创建互斥体
详情信息: CTF.LBES.MutexDefaultS-*
CTF.Compart.MutexDefaultS-*
CTF.Asm.MutexDefaultS-*
CTF.Layouts.MutexDefaultS-*
CTF.TMD.MutexDefaultS-*
CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
MSCTF.Shared.MUTEX.IOH
行为描述: 创建事件对象
详情信息: EventName = Global\CorDBIPCSetupSyncEvent_2628
行为描述: 打开互斥体
详情信息: ShimCacheMutex
Global\CLR_CASOFF_MUTEX
行为描述: 查找指定窗口
详情信息: NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
行为描述: 打开事件
详情信息: Global\CLR_PerfMon_StartEnumEvent
\KernelObjects\LowMemoryCondition
HookSwitchHookEnabledEvent
CTF.ThreadMIConnectionEvent.000007E8.00000000.0000000F
CTF.ThreadMarshalInterfaceEvent.000007E8.00000000.0000000F
MSCTF.SendReceiveConection.Event.IOH.IC
MSCTF.SendReceive.Event.IOH.IC
MSFT.VSA.COM.DISABLE.2628
MSFT.VSA.IEC.STATUS.6c736db0
行为描述: 获取TickCount值
详情信息: TickCount = 217988, SleepMilliseconds = 20.
TickCount = 218020, SleepMilliseconds = 20.
TickCount = 218035, SleepMilliseconds = 20.
行为描述: 窗口信息
详情信息: Pid = 2628, Hwnd=0x1034a, Text = 确定, ClassName = Button.
Pid = 2628, Hwnd=0x1034c, Text = 版本:[V9],本程序自动更新,不需要手动打开!, ClassName = Static.
行为描述: 调用Sleep函数
详情信息: [1]: MilliSeconds = -1.
[2]: MilliSeconds = 20.
[3]: MilliSeconds = 20.
[4]: MilliSeconds = 20.
行为描述: 直接获取CPU时钟
详情信息: EAX = 0xecbd62d1, EDX = 0x000000b3
EAX = 0xecbd631d, EDX = 0x000000b3
EAX = 0x3bdc3b98, EDX = 0x000000b4
EAX = 0x3bdc3be4, EDX = 0x000000b4
EAX = 0x3bdc3c30, EDX = 0x000000b4
EAX = 0x3bdc3c7c, EDX = 0x000000b4
EAX = 0x3bdc3cc8, EDX = 0x000000b4
EAX = 0x3bdc3d14, EDX = 0x000000b4
EAX = 0x3e8f3c90, EDX = 0x000000b4
EAX = 0x3e8f3cdc, EDX = 0x000000b4
Activities
VirSCANVirSCAN
活动名 类型
delta.platforms.monodroid.downloader.DownloaderActivity android.intent.action.MAIN
delta.platforms.monodroid.downloader.DownloaderActivity android.intent.category.LAUNCHER
危险函数
VirSCANVirSCAN
函数名称 信息
android/app/NotificationManager;->notify 信息通知栏
HttpClient;->execute 请求远程服务器
DefaultHttpClient;->execute 发送HTTP请求
getRuntime 获取命令行环境
java/lang/Runtime;->exec 执行字符串命令
java/net/URL;->openConnection 连接URL
java/net/HttpURLConnection;->connect 连接URL
ContentResolver;->query 读取联系人、短信等数据库
TelephonyManager;->getDeviceId 搜集用户手机IMEI码、电话号码、系统版本号等信息
java/net/URLConnection;->connect 连接URL
广告信息
VirSCANVirSCAN
名称 信息
com.google.ads AdMob
权限列表
VirSCANVirSCAN
许可名称 信息
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.INTERNET 连接网络(2G或3G)
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.WAKE_LOCK 手机屏幕关闭后后台进程仍运行
android.permission.READ_PHONE_STATE 读取电话状态
com.android.vending.CHECK_LICENSE
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
com.android.vending.BILLING
服务列表
VirSCANVirSCAN
名称
delta.platforms.monodroid.downloader.SoulcraftDownloaderService
soulcraft.pushnotifications.android.NotificationServiceAndroid
de.mobilebits.soulcraftdefault.WtUDID_service
Providers
VirSCANVirSCAN
名称 信息
delta.platforms.monodroid.downloader.SoulcraftDownloaderService
soulcraft.pushnotifications.android.NotificationServiceAndroid
de.mobilebits.soulcraftdefault.WtUDID_service
文件列表
VirSCANVirSCAN
文件名 校验码
AndroidManifest.xml 0xc17fae15
META-INF/ 0x0
META-INF/CERT.RSA 0xce30023a
META-INF/CERT.SF 0xb4c6ace6
META-INF/MANIFEST.MF 0x92afeb7b
assemblies/ 0x0
assemblies/AdColonyBinding.dll 0xed04c6e4
assemblies/AdMobBinding.dll 0xbbc6d804
assemblies/BrandBoostBinding.dll 0xf44b3a6a
assemblies/BugSenseBinding.dll 0x3400ad71
assemblies/Delta.ContentSystem.Client.dll 0x80608ba2
assemblies/Delta.ContentSystem.Graphics.dll 0x45b8a103
assemblies/Delta.ContentSystem.dll 0x14eb0c32
assemblies/Delta.Engine.dll 0x62e95b6e
assemblies/Delta.Graphics.BaseOpenGL.dll 0x868b7ce3
assemblies/Delta.Graphics.OpenGLES20.dll 0xa90e363e
assemblies/Delta.Graphics.dll 0xfc0ac9aa
assemblies/Delta.InputSystem.MonoDroid.dll 0x20d7de86
assemblies/Delta.InputSystem.dll 0x33edaaa
assemblies/Delta.Multimedia.MonoDroid.dll 0x46afb5a6
assemblies/Delta.Multimedia.dll 0x38d0460e
assemblies/Delta.PhysicsEngine.Jitter.dll 0x6229e222
assemblies/Delta.PhysicsEngine.dll 0xca6a8e3f
assemblies/Delta.Platforms.MonoDroid.dll 0xf2e36f51
assemblies/Delta.Rendering.Basics.dll 0x4e0600d7
assemblies/Delta.Rendering.Cameras.dll 0xdfa9e379
assemblies/Delta.Rendering.Effects.dll 0xe9239d98
assemblies/Delta.Rendering.Models.dll 0x7690a7d4
assemblies/Delta.Rendering.dll 0x127439c5
assemblies/Delta.UserInterface.dll 0x915a4761
assemblies/Delta.Utilities.Achievements.dll 0x271eccce
assemblies/Delta.Utilities.Compression.dll 0x31610c5a
assemblies/Delta.Utilities.Datatypes.dll 0x48407101
assemblies/Delta.Utilities.Helpers.dll 0xfe000c44
assemblies/Delta.Utilities.Testing.dll 0x84e6764e
assemblies/Delta.Utilities.Tracker.dll 0x37f2673
assemblies/Delta.Utilities.Xml.dll 0x3edb640e
assemblies/ExpansionDownloader.dll 0xe078f670
assemblies/Jitter.dll 0x54048d18
assemblies/LicenseVerificationLibrary.dll 0x7a1fb4cd
assemblies/Mono.Android.dll 0x27e8ab33
assemblies/Mono.Security.dll 0xc5500b1f
assemblies/OpenTK.dll 0xedd507b
assemblies/Soulcraft.dll 0x1994257
assemblies/SoulcraftPhysics.dll 0x91a4f527
assemblies/SoulcraftVersionInfo.dll 0xd82c6bc
assemblies/System.Core.dll 0xad1b7219
assemblies/System.Runtime.Serialization.dll 0x50d87edd
assemblies/System.ServiceModel.Web.dll 0x64da3b67
assemblies/System.Web.Services.dll 0x6686d647
assemblies/System.Xml.Linq.dll 0xf9983110
assemblies/System.Xml.dll 0xf1d9e00
assemblies/System.dll 0xb1a724e6
assemblies/WPGInterfaces.dll 0xb0fe29
assemblies/mscorlib.dll 0xb34b2445
classes.dex 0x51d7ec3b
jsr305_annotations/ 0x0
jsr305_annotations/Jsr305_annotations.gwt.xml 0x8d4f3e59
jsr305_annotations/v0_r47/ 0x0
jsr305_annotations/v0_r47/V0_r47.gwt.xml 0x8b4479b0
lib/ 0x0
lib/armeabi/ 0x0
lib/armeabi/libmonodroid.so 0xb2e9b94c
lib/armeabi-v7a/ 0x0
lib/armeabi-v7a/libmonodroid.so 0x6eb5a2d1
lib/x86/ 0x0
lib/x86/libmonodroid.so 0x1f492a23
res/ 0x0
res/drawable-hdpi/ 0x0
res/drawable-hdpi/icon.png 0xa5bad9d1
res/drawable-hdpi/loadingbar.png 0x676fac16
res/drawable-hdpi/loadingcopyright.png 0x7a93dfc7
res/drawable-hdpi/loadingdeltaengine.png 0x1adafb06
res/drawable-hdpi/loadingkeyvisual.png 0x8f613360
res/drawable-hdpi/loadingmobilebits.png 0x6ca89676
res/drawable-hdpi/splash.png 0xe660e247
res/drawable-ldpi/ 0x0
res/drawable-ldpi/icon.png 0x1c9e860d
res/drawable-mdpi/ 0x0
res/drawable-mdpi/icon.png 0x850b0491
res/layout/ 0x0
res/layout/activity_soulcraft_downloader.xml 0xca67f8d
resources.arsc 0xecebd11a
运行截图
VirSCANVirSCAN
VirSCAN