VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.
4, If your browser cannot upload files, please download VirSCAN uploader to upload.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

Scanner results
Scanner results:0%Antivirus software(0/32)found malware!
Behavior analysis report:         Habo file analysis
Time: 2017-07-20 09:56:25 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
antiy AVL SDK 2.0 1970-01-01 Found nothing 5
asquared 9.0.0.4799 9.0.0.4799 2015-03-08 Found nothing 1
avast 170303-1 4.7.4 2017-03-03 Found nothing 60
avg 2109/14149 10.0.1405 2017-07-04 Found nothing 60
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 5
baidusd 1.0 1.0 2017-03-22 Found nothing 1
bitdefender 7.58879 7.90123 2015-01-16 Found nothing 60
clamav 23575 0.97.5 2017-07-19 Found nothing 60
drweb 5.0.2.3300 5.0.1.1 2017-06-18 Found nothing 60
fortinet 5.4.247 2017-07-20 Found nothing 60
fprot 4.6.2.117 6.5.1.5418 2016-02-05 Found nothing 60
fsecure 2015-08-01-02 9.13 2015-08-01 Found nothing 60
gdata 25.13454 25.13454 2017-07-20 Found nothing 11
ikarus 1.06.01 V1.32.31.0 2016-11-28 Found nothing 60
jiangmin 16.0.100 1.0.0.0 2017-07-19 Found nothing 2
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 60
kingsoft 2.1 2.1 2017-07-19 Found nothing 4
mcafee 8261 5400.1158 2016-08-18 Found nothing 60
nod32 1777 3.0.21 2015-06-12 Found nothing 60
panda 9.05.01 9.05.01 2017-07-19 Found nothing 4
pcc 13.302.06 9.500-1005 2017-03-27 Found nothing 60
qh360 1.0.1 1.0.1 1.0.1 Found nothing 4
qqphone 1.0.0.0 1.0.0.0 2015-12-30 Found nothing 60
quickheal 14.00 14.00 2017-07-18 Found nothing 2
rising 26.28.00.01 26.28.00.01 2016-07-18 Found nothing 1
sophos 5.32 3.65.2 2016-10-10 Found nothing 60
symantec 20151230.005 1.3.0.24 2015-12-30 Found nothing 60
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 3
thehacker 6.8.0.5 6.8.0.5 2017-07-16 Found nothing 1
tws 17.47.17308 1.0.2.2108 2017-07-19 Found nothing 14
vba 3.12.29.5 beta 3.12.29.5 beta 2017-07-17 Found nothing 60
virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 60
权限列表
许可名称 信息
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.INTERNET 连接网络(2G或3G)
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.CHANGE_NETWORK_STATE 变更网络状态
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
android.permission.CHANGE_WIFI_STATE 改变WIFI连接状态
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.READ_SMS 读取短信
android.permission.SEND_SMS 发送短信
android.permission.ACCESS_FINE_LOCATION 获取精确的位置(通过GPS)
android.permission.ACCESS_COARSE_LOCATION 获取粗略的位置(通过wifi、基站)
文件信息
VirSCANVirSCAN
安全评分 :
基本信息
VirSCANVirSCAN
MD5:f412913be98c4dcc159c8b34b8591cb8
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:com.example.test
最低运行环境:Android 2.3, 2.3.1, 2.3.2
版权:Android
关键行为
VirSCANVirSCAN
行为描述: 直接获取CPU时钟
详情信息: EAX = 0x492c7cec, EDX = 0x000000b8
EAX = 0x492c7d38, EDX = 0x000000b8
EAX = 0x492c7d84, EDX = 0x000000b8
EAX = 0x492c7dd0, EDX = 0x000000b8
EAX = 0x6b6b83cd, EDX = 0x000000b8
EAX = 0x6b6b8419, EDX = 0x000000b8
EAX = 0x6b6b8465, EDX = 0x000000b8
EAX = 0x6b6b84b1, EDX = 0x000000b8
EAX = 0xd2289610, EDX = 0x000000b8
EAX = 0xd228965c, EDX = 0x000000b8
行为描述: 设置特殊文件夹属性
详情信息: C:\exittes
行为描述: 查找PE资源信息
详情信息: (FindResourceW) hModule = 0x00400000, ResName: FILE2, ResType: EXEFILE
行为描述: 获取User基本信息
详情信息: Level = 10.
行为描述: 获取TickCount值
详情信息: TickCount = 219062, SleepMilliseconds = 500.
TickCount = 219203, SleepMilliseconds = 500.
TickCount = 219734, SleepMilliseconds = 500.
TickCount = 219750, SleepMilliseconds = 500.
TickCount = 219765, SleepMilliseconds = 500.
TickCount = 219812, SleepMilliseconds = 500.
TickCount = 219843, SleepMilliseconds = 500.
TickCount = 220218, SleepMilliseconds = 500.
进程行为
VirSCANVirSCAN
行为描述: 直接获取CPU时钟
详情信息: EAX = 0x492c7cec, EDX = 0x000000b8
EAX = 0x492c7d38, EDX = 0x000000b8
EAX = 0x492c7d84, EDX = 0x000000b8
EAX = 0x492c7dd0, EDX = 0x000000b8
EAX = 0x6b6b83cd, EDX = 0x000000b8
EAX = 0x6b6b8419, EDX = 0x000000b8
EAX = 0x6b6b8465, EDX = 0x000000b8
EAX = 0x6b6b84b1, EDX = 0x000000b8
EAX = 0xd2289610, EDX = 0x000000b8
EAX = 0xd228965c, EDX = 0x000000b8
行为描述: 设置特殊文件夹属性
详情信息: C:\exittes
行为描述: 查找PE资源信息
详情信息: (FindResourceW) hModule = 0x00400000, ResName: FILE2, ResType: EXEFILE
行为描述: 获取User基本信息
详情信息: Level = 10.
行为描述: 获取TickCount值
详情信息: TickCount = 219062, SleepMilliseconds = 500.
TickCount = 219203, SleepMilliseconds = 500.
TickCount = 219734, SleepMilliseconds = 500.
TickCount = 219750, SleepMilliseconds = 500.
TickCount = 219765, SleepMilliseconds = 500.
TickCount = 219812, SleepMilliseconds = 500.
TickCount = 219843, SleepMilliseconds = 500.
TickCount = 220218, SleepMilliseconds = 500.
文件行为
VirSCANVirSCAN
行为描述: 创建文件
详情信息: C:\exittes\1.rar
C:\exittes\2.exe
行为描述: 创建可执行文件
详情信息: C:\exittes\2.exe
行为描述: 修改文件内容
详情信息: C:\exittes\1.rar ---> Offset = 0
C:\exittes\2.exe ---> Offset = 0
行为描述: 设置特殊文件夹属性
详情信息: C:\exittes
行为描述: 查找文件
详情信息: FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\996E.zh-CN
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\996E.zh-Hans
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\996E.zh
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\996E.CHS
FileName = C:\Documents and Settings\Administrator\Local Settings\%temp%\996E.CH
FileName = C:\Documents and Settings
FileName = C:\Documents and Settings\Administrator
FileName = C:\Documents and Settings\Administrator\My Documents
FileName = C:\Documents and Settings\All Users
FileName = C:\Documents and Settings\All Users\Documents
FileName = C:\Documents and Settings\Administrator\桌面
FileName = C:\Documents and Settings\All Users\桌面
FileName = C:\Program Files\WinRAR
FileName = C:\Program Files\WinRAR\WinRAR.exe
FileName = C:\exittes
注册表行为
VirSCANVirSCAN
行为描述: 修改注册表
详情信息: \REGISTRY\USER\S-*\Software\Microsoft\Windows\ShellNoRoam\MUICache\C:\exittes\2.exe
\REGISTRY\USER\S-*\Software\WinRAR\ArcHistory\2
\REGISTRY\USER\S-*\Software\WinRAR\ArcHistory\1
\REGISTRY\USER\S-*\Software\WinRAR\ArcHistory\0
其他行为
VirSCANVirSCAN
行为描述: 检测自身是否被调试
详情信息: IsDebuggerPresent
行为描述: 创建互斥体
详情信息: CTF.LBES.MutexDefaultS-*
CTF.Compart.MutexDefaultS-*
CTF.Asm.MutexDefaultS-*
CTF.Layouts.MutexDefaultS-*
CTF.TMD.MutexDefaultS-*
CTF.TimListCache.FMPDefaultS-*MUTEX.DefaultS-*
Local\ZonesCounterMutex
Local\ZoneAttributeCacheCounterMutex
Local\ZonesCacheCounterMutex
Local\ZonesLockedCacheCounterMutex
WinRAR_Busy
Global\winlogon: Logon UserProfileMapping Mutex
vcваeЙк3
MSCTF.Shared.MUTEX.IOH
MSCTF.Shared.MUTEX.EDL
行为描述: 枚举网络共享资源
详情信息: N/A
行为描述: 隐藏指定窗口
详情信息: [Window,Class] = [,ComboLBox]
[Window,Class] = [,Auto-Suggest Dropdown]
行为描述: 直接获取CPU时钟
详情信息: EAX = 0x492c7cec, EDX = 0x000000b8
EAX = 0x492c7d38, EDX = 0x000000b8
EAX = 0x492c7d84, EDX = 0x000000b8
EAX = 0x492c7dd0, EDX = 0x000000b8
EAX = 0x6b6b83cd, EDX = 0x000000b8
EAX = 0x6b6b8419, EDX = 0x000000b8
EAX = 0x6b6b8465, EDX = 0x000000b8
EAX = 0x6b6b84b1, EDX = 0x000000b8
EAX = 0xd2289610, EDX = 0x000000b8
EAX = 0xd228965c, EDX = 0x000000b8
行为描述: 查找指定窗口
详情信息: NtUserFindWindowEx: [Class,Window] = [WinRarWindow,]
NtUserFindWindowEx: [Class,Window] = [,GINA Logon]
NtUserFindWindowEx: [Class,Window] = [Shell_TrayWnd,]
NtUserFindWindowEx: [Class,Window] = [CicLoaderWndClass,]
行为描述: 打开事件
详情信息: HookSwitchHookEnabledEvent
_fCanRegisterWithShellService
\SECURITY\LSA_AUTHENTICATION_INITIALIZED
Global\CLR_PerfMon_StartEnumEvent
\KernelObjects\LowMemoryCondition
Global\SvcctrlStartEvent_A3752DX
Global\crypt32LogoffEvent
CTF.ThreadMIConnectionEvent.000007E8.00000000.00000010
CTF.ThreadMarshalInterfaceEvent.000007E8.00000000.00000010
MSCTF.SendReceiveConection.Event.IOH.IC
MSCTF.SendReceive.Event.IOH.IC
行为描述: 获取User基本信息
详情信息: Level = 10.
行为描述: 获取TickCount值
详情信息: TickCount = 219062, SleepMilliseconds = 500.
TickCount = 219203, SleepMilliseconds = 500.
TickCount = 219734, SleepMilliseconds = 500.
TickCount = 219750, SleepMilliseconds = 500.
TickCount = 219765, SleepMilliseconds = 500.
TickCount = 219812, SleepMilliseconds = 500.
TickCount = 219843, SleepMilliseconds = 500.
TickCount = 220218, SleepMilliseconds = 500.
行为描述: 调整进程token权限
详情信息: SE_LOAD_DRIVER_PRIVILEGE
行为描述: 枚举窗口
详情信息: N/A
行为描述: 查找PE资源信息
详情信息: (FindResourceW) hModule = 0x00400000, ResName: FILE2, ResType: EXEFILE
行为描述: 可执行文件签名信息
详情信息: C:\exittes\2.exe(签名验证: 未通过)
行为描述: 调用Sleep函数
详情信息: [1]: MilliSeconds = 500.
[2]: MilliSeconds = 500.
行为描述: 创建事件对象
详情信息: EventName = Global\CorDBIPCSetupSyncEvent_2896
EventName = Global\userenv: User Profile setup event
EventName = Global\crypt32LogoffEvent
EventName = MSCTF.SendReceive.Event.EDL.IC
EventName = MSCTF.SendReceiveConection.Event.EDL.IC
行为描述: 可执行文件MD5
详情信息: C:\exittes\2.exe ---> ad57f800a531a72ce5066e90ff53aed6
行为描述: 打开互斥体
详情信息: ShimCacheMutex
Local\!IETld!Mutex
Global\CLR_CASOFF_MUTEX
vcваeЙк3
Activities
VirSCANVirSCAN
活动名 类型
com.example.demo.Main android.intent.action.MAIN
com.example.demo.Main android.intent.category.LAUNCHER
权限列表
VirSCANVirSCAN
许可名称 信息
android.permission.WRITE_EXTERNAL_STORAGE 写外部存储器(如:SD卡)
android.permission.INTERNET 连接网络(2G或3G)
android.permission.ACCESS_NETWORK_STATE 读取网络状态(2G或3G)
android.permission.CHANGE_NETWORK_STATE 变更网络状态
android.permission.ACCESS_WIFI_STATE 读取wifi网络状态
android.permission.CHANGE_WIFI_STATE 改变WIFI连接状态
android.permission.READ_PHONE_STATE 读取电话状态
android.permission.READ_SMS 读取短信
android.permission.SEND_SMS 发送短信
android.permission.ACCESS_FINE_LOCATION 获取精确的位置(通过GPS)
android.permission.ACCESS_COARSE_LOCATION 获取粗略的位置(通过wifi、基站)
文件列表
VirSCANVirSCAN
文件名 校验码
assets/test.jar 0x3eea458f
res/layout/paymain.xml 0xcee20261
AndroidManifest.xml 0xa5501f98
resources.arsc 0x5184a0f
res/drawable-hdpi/ic_launcher.png 0xf248df62
res/drawable-mdpi/ic_launcher.png 0x6a84dfd9
res/drawable-xhdpi/ic_launcher.png 0xa227fc8a
res/drawable-xxhdpi/ic_launcher.png 0x2a4a99d1
classes.dex 0x3263c30c
META-INF/MANIFEST.MF 0xa37a3ed4
META-INF/CERT.SF 0xc6320df5
META-INF/CERT.RSA 0x4c636eb5
运行截图
VirSCANVirSCAN
VirSCAN