VirSCAN VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.
4, If your browser cannot upload files, please download VirSCAN uploader to upload.

Language
Server load
Server Load

VirSCAN
VirSCAN

1, You can UPLOAD any files, but there is 20Mb limit per file.
2, VirSCAN supports Rar/Zip decompression, but it must be less than 20 files.
3, Aplikace VirSCAN může skenovat komprimované soubory s heslem 'infected'nebo'virus'.

File information

File Name :555_si~1_signed.apk (File not down)
File Size :796266 byte
File Type : application/jar
MD5:3f8ec39917cd1a70078daa18a50aa812
SHA1:30825f386b8f9d71a90ae8500c9df67d2f88183e
Scanner results
Scanner results:3%Antivirus software(1/32)found malware!
Behavior analysis report:         Habo file analysis
Time: 2015-10-24 00:53:16 (CST)
Scanner Engine Ver Sig Ver Sig Date Scan result Time
antiy AVL SDK 3.0 1970-01-01 Found nothing 5
asquared 9.0.0.4324 9.0.0.4324 2014-07-03 Found nothing 1
avast 150725-1 4.7.4 2015-07-25 Found nothing 0
avg 2109/8133 10.0.1405 2014-11-26 Found nothing 0
baidu 2.0.1.0 4.1.3.52192 2.0.1.0 Found nothing 13
baidusd 1.0 1.0 2014-04-02 Found nothing 1
bitdefender 7.58469 7.90123 2014-12-25 Found nothing 0
clamav 19861 0.97.5 2014-12-31 Found nothing 0
drweb 5.0.2.3300 5.0.1.1 2014-12-31 Found nothing 0
fortinet 23.345, 23.345 5.1.158 2014-12-08 Found nothing 0
fprot 4.6.2.117 6.5.1.5418 2014-12-31 Found nothing 0
fsecure 2014-04-02-01 9.13 2014-04-02 Found nothing 0
gdata 25.4014 25.4014 2015-10-23 Android.Trojan.AutoSMS.PG 8
ikarus 1.06.01 V1.32.31.0 2014-12-08 Found nothing 0
jiangmin 16.0.100 1.0.0.0 2015-07-25 Found nothing 43
kaspersky 5.5.33 5.5.33 2014-04-01 Found nothing 0
kingsoft 2.1 2.1 2013-09-22 Found nothing 18
mcafee 7638 5400.1158 2014-11-30 Found nothing 0
nod32 0920 3.0.21 2014-12-23 Found nothing 0
panda 9.05.01 9.05.01 2015-07-26 Found nothing 4
pcc 11.380.07 9.500-1005 2014-12-31 Found nothing 0
qh360 1.0.1 1.0.1 1.0.1 Found nothing 3
qqphone 1.0.0.0 1.0.0.0 2014-12-09 Found nothing 0
quickheal 14.00 14.00 2015-07-25 Found nothing 2
rising 25.76.04.01 25.76.04.01 2015-07-24 Found nothing 1
sophos 5.08 3.55.0 2014-12-01 Found nothing 0
symantec 20141230.001 1.3.0.24 2014-12-30 Found nothing 0
tachyon 9.9.9 9.9.9 2013-12-27 Found nothing 3
thehacker 6.8.0.5 6.8.0.5 2015-07-23 Found nothing 1
tws 17.47.17308 1.0.2.2108 2014-12-08 Found nothing 12
vba 3.12.26.3 3.12.26.3 2014-12-31 Found nothing 0
virusbuster 15.0.985.0 5.5.2.13 2014-12-05 Found nothing 0

没有相关的权限信息

文件信息
VirSCANVirSCAN
安全评分 :
基本信息
VirSCANVirSCAN
MD5:3f8ec39917cd1a70078daa18a50aa812
文件大小:5.58MB
上传时间: 2014-09-22 10:36:30 (CST)
包名:
最低运行环境:
版权:Android
危险行为
VirSCANVirSCAN
行为描述: 执行系统命令
详情信息: [u'getprop ro.product.cpu.abi']
[u'getprop ro.product.cpu.abi']
[u'getprop ro.product.cpu.abi']
[u'getprop ro.product.cpu.abi']
行为描述: 发送短信
详情信息: number:15814740732 data:message:软件安装完毕 识别码:357143040944263 型号:sdk; 手机:Lenovo; 系统版本:4.1.2
number:15814740732 data:message:激活成功
动态列表行为
VirSCANVirSCAN
行为描述: 启动服务
详情信息: {"FLAG":0,"COMPONENT_NAME":"ComponentInfo{com.noticessk.w.q.aerosp\/com.phone.stop6.service.BootService}"}
行为描述: 获取加密实例
详情信息: [u'DES']
行为描述: 类加载
详情信息: path:/data/data/com.noticessk.w.q.aerosp/local/nagain.jar
path:/data/data/com.noticessk.w.q.aerosp/local/nagain.jar
行为描述: 读取URL数据
详情信息: []
行为描述: 添加View
详情信息: [u'android.widget.LinearLayout@41514f00', u'WM.LayoutParams{(0,128)(wrapxwrap) gr=#51 ty=2005 fl=#98 fmt=-3 wanim=0x1030004}']
[u'com.android.internal.policy.impl.PhoneWindow$DecorView@414d11b8', u'WM.LayoutParams{(0,0)(fillxfill) ty=1 fl=#1810100 pfl=0x8 fmt=-2 wanim=0x1030000}', u'android.view.CompatibilityInfoHolder@414afab8']
[u'android.widget.LinearLayout@4150f090', u'WM.LayoutParams{(0,128)(wrapxwrap) gr=#51 ty=2005 fl=#98 fmt=-3 wanim=0x1030004}']
行为描述: 读取文件
详情信息: path:unknown length:17
path:/data/data/com.noticessk.w.q.aerosp/local/nagain.jar length:9
path:/data/data/com.noticessk.w.q.aerosp/local/nagain.jar length:23
path:/data/data/com.noticessk.w.q.aerosp/local/nagain.jar length:69
path:/data/app/com.noticessk.w.q.aerosp-1.apk length:9
path:/data/app/com.noticessk.w.q.aerosp-1.apk length:23
path:/data/app/com.noticessk.w.q.aerosp-1.apk length:68
path:/data/app/com.noticessk.w.q.aerosp-1.apk length:7
path:/data/app/com.noticessk.w.q.aerosp-1.apk length:7
行为描述: 内存加载jar
详情信息: /data/data/com.noticessk.w.q.aerosp/local/nagain.jar
行为描述: 激活ActivityForResult
详情信息: {"ACTION":"android.app.action.ADD_DEVICE_ADMIN","FLAG":0,"EXTRAS":{"android.app.extra.DEVICE_ADMIN":"ComponentInfo{com.noticessk.w.q.aerosp\/com.phone.stop.receiver.MyDeviceAdminReceiver}","android.app.extra.ADD_EXPLANATION":"提高权限获取保护"}}
行为描述: 执行系统命令
详情信息: [u'getprop ro.product.cpu.abi']
[u'getprop ro.product.cpu.abi']
[u'getprop ro.product.cpu.abi']
[u'getprop ro.product.cpu.abi']
行为描述: 注册广播接收器
详情信息: [u'com.phone.stop.receiver.SMSReceiver@414a8848', u'android.content.IntentFilter@414ca140', u'android.permission.BROADCAST_SMS', u'null']
行为描述: 初始化Intent
详情信息: [u'android.app.action.ADD_DEVICE_ADMIN']
[u'android.os.Parcel@414ad0d8']
[u'com.phone2.stop.activity.MainActivity@4152cff0', u'class com.phone.stop6.service.BootService']
[u'android.os.Parcel@414ad0d8']
[]
[u'com.phone.stop6.service.BootService@41517758', u'class com.phone.stop6.service.SecondService']
[u'android.os.Parcel@414ad098']
[u'android.os.Parcel@414adff0']
[u'android.os.Parcel@414ad0d8']
[u'android.os.Parcel@414adff0']
[u'android.os.Parcel@414adfb0']
[u'android.os.Parcel@414ad098']
[u'android.os.Parcel@414adff0']
[u'android.os.Parcel@414ad0d8']
行为描述: 传递附加信息
详情信息: android.app.extra.DEVICE_ADMIN:ComponentInfo{com.noticessk.w.q.aerosp/com.phone.stop.receiver.MyDeviceAdminReceiver}
android.app.extra.ADD_EXPLANATION:提高权限获取保护
行为描述: 调用哈希算法
详情信息: SHA1
行为描述: 内存加载dex
详情信息: /data/data/com.noticessk.w.q.aerosp/local/nagain.dex
/data/data/com.noticessk.w.q.aerosp/.cache/encode.dex
行为描述: 解析通用资源标识符
详情信息: content://sms
content://sms/inbox
content://sms/conversations/
content://sms/sent
content://sms/3
content://sms
content://com.android.contacts
content://sms/100
content://sms
content://sms/100
行为描述: 注册ContentObserver
详情信息: URI=content://sms
行为描述: 初始化URL
详情信息: [u'file', u'', u'-1', u'/data/app/com.noticessk.w.q.aerosp-1.apk', u'null']
[u'jar:file:/data/app/com.noticessk.w.q.aerosp-1.apk!/mailcap']
行为描述: 发送短信
详情信息: number:15814740732 data:message:软件安装完毕 识别码:357143040944263 型号:sdk; 手机:Lenovo; 系统版本:4.1.2
number:15814740732 data:message:激活成功
行为描述: 写入文件
详情信息: path:/data/data/com.noticessk.w.q.aerosp/.cache/nagain.secr length:65
path:/data/data/com.noticessk.w.q.aerosp/.cache/datarc length:69
path:/data/data/com.noticessk.w.q.aerosp/.cache/datarc length:69
path:/data/data/com.noticessk.w.q.aerosp/.cache/datarc length:69
path:/data/data/com.noticessk.w.q.aerosp/.cache/datarc length:69
path:/data/data/com.noticessk.w.q.aerosp/.cache/encode.dex length:68
path:/data/data/com.noticessk.w.q.aerosp/.cache/encode.dex length:69
path:/data/data/com.noticessk.w.q.aerosp/.cache/encode.dex length:65
path:/data/data/com.noticessk.w.q.aerosp/.cache/encode.dex length:66
path:/data/data/com.noticessk.w.q.aerosp/.cache/encode.dex length:69
path:/data/data/com.noticessk.w.q.aerosp/.cache/encode.dex length:67
path:/data/data/com.noticessk.w.q.aerosp/.cache/encode.dex length:69
path:/data/data/com.noticessk.w.q.aerosp/local/nagain.jar length:69
path:/data/data/com.noticessk.w.q.aerosp/shared_prefs/configurations_data.xml length:104
path:/data/data/com.noticessk.w.q.aerosp/shared_prefs/configurations_data.xml length:159
path:/data/data/com.noticessk.w.q.aerosp/shared_prefs/configurations_data.xml length:187
path:/data/data/com.noticessk.w.q.aerosp/shared_prefs/configurations_data.xml length:246
path:/data/data/com.noticessk.w.q.aerosp/shared_prefs/configurations_data.xml length:261
path:/data/data/com.noticessk.w.q.aerosp/shared_prefs/configurations_data.xml length:261
path:/data/data/com.noticessk.w.q.aerosp/shared_prefs/configurations_data.xml length:261
path:/data/data/com.noticessk.w.q.aerosp/shared_prefs/configurations_data.xml length:261
path:/data/data/com.noticessk.w.q.aerosp/shared_prefs/configurations_data.xml length:261
path:/data/data/com.noticessk.w.q.aerosp/shared_prefs/configurations_data.xml length:261
行为描述: 获取设备ID
详情信息: 357143040944263
357143040944263
357143040944263
357143040944263
357143040944263
行为描述: 读取手机短信
详情信息: [u'content://sms/inbox', u'null', u'null', u'null', u'date']
[u'content://sms', u'[_id, address, person, body, date, type, thread_id]', u'null', u'null', u'date']
[u'content://sms', u'[_id, address, person, body, date, type, thread_id]', u'null', u'null', u'date']
行为描述: Toast->makeText弹出提示
详情信息: text:安全控件,请允许激活! duration:1
text:设备不兼容,软件安装失败! duration:1
行为描述: 加载链接库文件
详情信息: /data/data/com.noticessk.w.q.aerosp/lib/libddog.so
/data/data/com.noticessk.w.q.aerosp/lib/libfdog.so
行为描述: 隐藏桌面快捷图标
详情信息: [u'ComponentInfo{com.noticessk.w.q.aerosp/com.phone2.stop.activity.MainActivity}', u'2', u'1']
行为描述: 获取运行service
详情信息: [u'500']
[u'500']
[u'500']
[u'500']
[u'500']
[u'500']
[u'500']
行为描述: 设置组件属性
详情信息: [u'ComponentInfo{com.noticessk.w.q.aerosp/com.phone2.stop.activity.MainActivity}', u'2', u'1']
行为描述: 缓冲区读取一行数据
详情信息: armeabi-v7a
armeabi-v7a
#
# @(#)mailcap 1.8 05/04/20
#
# Default mailcap file for the JavaMail System.
#
# JavaMail content-handlers:
#
text/plain;; x-java-content-handler=com.sun.mail.handlers.text_plain
text/html;; x-java-content-handler=com.sun.mail.handlers.text_html
text/xml;; x-java-content-handler=com.sun.mail.handlers.text_xml
multipart/*;; x-java-content-handler=com.sun.mail.handlers.multipart_mixed; x-java-fallback-entry=true
message/rfc822;; x-java-content-handler=com.sun.mail.handlers.message_rfc822
#
# can't support image types because myjava.awt.Toolkit doesn't work on servers
#
#image/gif;; x-java-content-handler=com.sun.mail.handlers.image_gif
#image/jpeg;; x-java-content-handler=com.sun.mail.handlers.image_jpeg
null
armeabi-v7a
armeabi-v7a
行为描述: 查询App共享数据
详情信息: [u'content://sms/inbox', u'null', u'null', u'null', u'date']
[u'content://sms', u'[_id, address, person, body, date, type, thread_id]', u'null', u'null', u'date']
[u'content://com.android.contacts/contacts', u'null', u'null', u'null', u'null']
[u'content://com.android.contacts/data/phones', u'null', u'contact_id=1', u'null', u'null']
[u'content://com.android.contacts/data/phones', u'null', u'contact_id=2', u'null', u'null']
[u'content://com.android.contacts/data/phones', u'null', u'contact_id=3', u'null', u'null']
[u'content://com.android.contacts/data/phones', u'null', u'contact_id=4', u'null', u'null']
[u'content://sms', u'[_id, address, person, body, date, type, thread_id]', u'null', u'null', u'date']
[u'content://com.android.contacts/contacts', u'null', u'null', u'null', u'null']
[u'content://com.android.contacts/data/phones', u'null', u'contact_id=1', u'null', u'null']
[u'content://com.android.contacts/data/phones', u'null', u'contact_id=2', u'null', u'null']
[u'content://com.android.contacts/data/phones', u'null', u'contact_id=3', u'null', u'null']
[u'content://com.android.contacts/data/phones', u'null', u'contact_id=4', u'null', u'null']
行为描述: 循环任务
详情信息: [u'3', u'1011468', u'15000', u'PendingIntent{414f73d8: android.os.BinderProxy@414f7af0}']
危险函数
VirSCANVirSCAN
函数名称 信息
getRuntime 获取命令行环境
java/lang/Runtime;->exec 执行字符串命令
文件列表
VirSCANVirSCAN
文件名 校验码
META-INF/MANIFEST.MF 0xda86deef
META-INF/CERT.SF 0xd9adbfdf
META-INF/CERT.RSA 0xf95f68ad
javamail.smtp.provider 0x990c469d
javamail.default.address.map 0xf20496b
lib/armeabi/libfdog.so 0x61f23f90
javamail.imap.provider 0x8934555a
res/drawable-hdpi/app_logo.png 0xdb7cdb49
resources.arsc 0xfc527827
javamail.default.providers 0x45ea1b21
assets/encode.dex 0x72d89b4
mailcap.default 0x6f616b6
javamail.charset.map 0xad0dfcee
AndroidManifest.xml 0x591a4b1a
javamail.smtp.address.map 0xf20496b
assets/nagain.secr 0x1c0692c9
mailcap 0xd7759e43
mimetypes.default 0x97dd5cdb
assets/nagain.jar 0x576a85f9
res/xml/devicepolicymanager_permission.xml 0xeab2c16b
classes.dex 0xb2ce5d1
lib/armeabi/libddog-x86.so 0x1744de8f
res/layout/activity_aa.xml 0x60332653
assets/datarc 0x5db79171
res/layout/activity_main.xml 0x19203b2e
res/drawable-hdpi/icon.png 0xac8b5a00
lib/armeabi/libfdog-x86.so 0xfa5d57ac
javamail.pop3.provider 0xa23c9bc
dsn.mf 0x1e4e9355
lib/armeabi/libddog.so 0x5292f4cb
运行截图
VirSCANVirSCAN
VirSCAN