com.finshell.fin.activity.UndertakeActivity
com.colors.push.finshell.undertake
com.finshell.fin.activity.MainActivity
android.intent.action.MAIN
android.intent.action.VIEW
com.finshell.web.FinWebActivity
com.finshell.web.ACTION_WEB
General
-
Target
test.apk
-
Size
15.4MB
-
MD5
e7dde0ab03455a7aa089c64373cd328f
-
SHA1
2c6fc31ef3ec9f4d6e0592506df86f4d70b4c10c
-
SHA256
74148b934aa9826ad19e257b475762489e6da24aad81235a75c042eef32bb28a
-
SHA512
570411c0025468a8fbdbc593973ccbba22f99a13f7269e81c6b48300b498a2c716953e4f9d718ec98a07bc716a90303c8157956a9d2af02bd6f374b62bad639a
-
SSDEEP
393216:7GmGCiKU+oKGbBkTLgk0v6Ogp0vf9rL+f:75izRKGuTL+6Obftyf
Score
7/10
Malware Config
Signatures
-
Requests dangerous framework permissions 4 IoCs
Files
-
test.apk
Password: infected
com.finshell.fin
com.finshell.fin.activity.MainActivity
-
%E4%BC%98%E6%83%A0%E5%88%B8icon-%E7%99%BD_d0e5c3e9d0474c3dbe60f67d8f081e95.png
Password: infected
-
%E4%BC%98%E6%83%A0%E5%88%B8icon-%E9%BB%91_b98c4113e0e042d484262e06310d4eef.png
Password: infected
-
%E6%9D%BF%E7%90%83%E7%99%BD_5623ba3f81554ffa87b0b4b918bc8f70_7100eec0055d48e084494bd286a35921.png
Password: infected
-
%E6%9D%BF%E7%90%83%E9%BB%91_65bb852ed3014c3384399f06def96604_fc0802af2c7c4f9ab6d97e0fe668f8d2.png
Password: infected
-
%E7%93%B7%E7%89%87%E5%8C%BA%E5%8F%B3%E4%B8%8BPokerBaazi-add%20code_8d437aadba2240dbaecd4017452ef4fc_40b867ecb87a41d7b255a9d4bc7374d1.png
Password: infected
-
%E7%99%BD_24aa60614e6343ad88dad151c122cb02.png
Password: infected
-
%E9%87%91%E5%88%9A%E5%8C%BALOAN%E5%8A%A8%E6%95%88-%E6%9A%97%E9%BB%91_deaf2baebfa246b0ac1afd6e137bf410.gif
-
%E9%87%91%E5%88%9A%E5%8C%BALOAN%E5%8A%A8%E6%95%88-%E9%BB%98%E8%AE%A4_2e16e06b969c498ebc743eac16d1d412.gif
-
%E9%BB%98%E8%AE%A4-%E9%BB%91_51e212cc680b4035b1c4bc3ba69d5683.png
Password: infected
-
0.542ce903.chunk.js
-
0.d9343d92974616508f05.chunk.css
-
1.c890bd606f80eb186757.chunk.css
-
1.fda98136.chunk.js
-
10.4178348af1057ddc138c.chunk.css
-
10.be264def.chunk.js
-
11.bb679923afd0b8c454ad.chunk.css
-
11.c07969a2.chunk.js
-
12.3b3bb4d6.chunk.js
-
12.95d7cc5c7a496ebd4ab7.chunk.css
-
13.0b09689d6dccdd3e24f2.chunk.css
-
13.82173b2c.chunk.js
-
14.42ed3664.chunk.js
-
14.a2362b4b9299a81a8e8d.chunk.css
-
15.c7518f0c.chunk.js
-
15.dc31c9c503e44ce3e0aa.chunk.css
-
16.9a68aecf.chunk.js
-
16.ceb9fa34f75c04c5dd9b.chunk.css
-
17.17dd3995.chunk.js
-
17.5b1db821426e332535a8.chunk.css
-
18.4350672d3e5fdb054f6b.chunk.css
-
18.4b613ada.chunk.js
-
19.f8dcf634.chunk.js
-
19.fb10713f76020023b9e9.chunk.css
-
1ww_a2127d8d33644dc4ae05ed6b4b2ef7ed.png
Password: infected
-
2.461d7cc1.chunk.js
-
2.d81e3a6d09de9ae37fc7.chunk.css
-
20.811347e0.chunk.js
-
20.cb7f932ad8d6074bc494.chunk.css
-
21.5d58d2c9.chunk.js
-
21.70795358b655e4f645cf.chunk.css
-
22.56c604a1.chunk.js
-
22.8e2d388cd89a81829fcd.chunk.css
-
22222_a649d32108cc4e879925280ccbf49861.png
-
23.5658c9c685da7dcff081.chunk.css
-
23.699a61f5.chunk.js
-
24.4972f7c001160f65a50e.chunk.css
-
24.ea8e4020.chunk.js
-
25.94f16778.chunk.js
-
25.f6aa8b3f1a625ffe0ed4.chunk.css
-
26.003edc6beb8bba521a99.chunk.css
-
26.de89c5cc.chunk.js
-
27.30058089e2d0aa2baae6.chunk.css
-
27.39fd74a1.chunk.js
-
28.2091b59a.chunk.js
-
28.bc506e7e277f3026a535.chunk.css
-
29.08a2ee92.chunk.js
-
29.51da6086b8fee20720d2.chunk.css
-
3.2358a0cc831763b041da.chunk.css
-
3.cbb2c78d.chunk.js
-
30.434fe35b.chunk.js
-
30.706cc3c0bd9dd5a732e5.chunk.css
-
31.b79e7ea1.chunk.js
-
31.cd53d463acb1a025d0b7.chunk.css
-
32.1ae0e78efd5b33044db1.chunk.css
-
32.3bab0199.chunk.js
-
33.5ef2700be4ba0fbe2372.chunk.css
-
33.edbb3bf6.chunk.js
-
34.1cb59f7d.chunk.js
-
34.f3540495c3147b79bd2c.chunk.css
-
35.2569e3d8.chunk.js
-
35.d506b036351f39935203.chunk.css
-
36.48d1fbd2.chunk.js
-
36.d68b9553aa8212c7c88d.chunk.css
-
37.310a579d0c65034d445b.chunk.css
-
37.8dfc06b4.chunk.js
-
38.8d8e65dcd0f9d8ccddae.chunk.css
-
38.ccc98013.chunk.js
-
39.91ff1518b4efad3a4e3d.chunk.css
-
39.e37da5cc.chunk.js
-
4.4128c8327e492c14bf18.chunk.css
-
4.653f59c4.chunk.js
-
40.d81e3a6d09de9ae37fc7.chunk.css
-
40.e7945a25.chunk.js
-
404_b.c2124d3c.png
-
404_h.de8bbffe.png
-
41.2358a0cc831763b041da.chunk.css
-
41.9fa6203e.chunk.js
-
42.4128c8327e492c14bf18.chunk.css
-
42.ecc1369c.chunk.js
-
43.41e7d54b.chunk.js
-
43.c890bd606f80eb186757.chunk.css
-
44.63b44e6d.chunk.js
-
44.f8893a17eed4adf9b1d7.chunk.css
-
45.c1510e89.chunk.js
-
45.fb64e707a9aca3d02ad9.chunk.css
-
46.0597c9e0084a9b8747d9.chunk.css
-
46.eb65d6f5.chunk.js
-
47.ed7ec3e4.chunk.js
-
47.f2ed5cb3e0ce2dbff30b.chunk.css
-
48.965a4aad2d241cb03943.chunk.css
-
48.f2d1077d.chunk.js
-
49.97fc454e.chunk.js
-
5.0effc4ee.chunk.js
-
5.f8893a17eed4adf9b1d7.chunk.css
-
50.1ba91e6f.chunk.js
-
51.c9e87a21.chunk.js
-
6.45ec0a84.chunk.js
-
6.fb64e707a9aca3d02ad9.chunk.css
-
7.0597c9e0084a9b8747d9.chunk.css
-
7.56ce2cd7.chunk.js
-
8.b4516361.chunk.js
-
8.f2ed5cb3e0ce2dbff30b.chunk.css
-
9.39dad548.chunk.js
-
9.965a4aad2d241cb03943.chunk.css
-
AU%20Bank%20Credit%20Card%20-black_a5e5fa8728d44b9d8e5771c123ec77fb.png
-
AU%20Bank%20Credit%20Card_54f35496a63a4f3d92d8bf06e3912361.png
-
Astro%20%281%29_43bb7e3ddf5140fd988c8715e25df083.png
-
Comment-balck_0f2a1829e8884f8da6e1d772c96f984f_9a8e7a6b62e64a95ac0d3e247450d69a.png
-
Comment_449cb1a97d8d43d5b2fa748f66d3e17d_628b43f689594a2686a0753596866b7d.png
-
FinshellCredit.f0638676.png
-
Flights__e58b4e40ae0a4ac6a4fdf7c2920a9a75.png
-
Flights_black_92684385bb83468eb04a4a4f7cc7887a.png
-
Game1_32583a860a8c46e4ae034f33fa0e0600.png
-
Game_1a932b8d4cf24e47bf10ea098a4e3b8e.png
-
Group%20270989114_3bd0a45405fa4731b10e45180acb8f3f_f9b8be179a4c4984a2237474d1c233f2.png
-
Group%20270989116_75c3199f1fa54e7aa53b3d6fcdf163d3_666fbe95c5f6413d8f8ccd80a918be7e.png
-
Group%20270989117_4e53f5f791504f99bb6f45b86dc05660_476289b1e6fa4d6483bdff05ba28c335.png
-
Group%20270989119_ce19c48d68ab42f995108a091e9a1e17_4ee5c373e3bd41f2be0895d9fc5c8b21.png
-
Group%20270989120_cbe45dec60484ff1ac1d756a3ca1871a_4ba607349c9348d2a9a58ea35acbee38.png
-
Group%20270989120_cbe45dec60484ff1ac1d756a3ca1871a_cb4418ae13a14fb18434cc705bab893c.png
-
Group%20270989121_feee4898186e42929e16c8a40b606425_7a8f07f7f849412ca47e099541b18a2f.png
-
Group%20270989121_feee4898186e42929e16c8a40b606425_d4861cc1beee4b57b0654a9e589d5236.png
-
Group%20270989122_ae7048ebd2e544f3abdc48a427af63d2_4d3bbd8829674c2d8f62b54c735acce0.png
-
Group%20270989122_ae7048ebd2e544f3abdc48a427af63d2_a6de45a62f014e3ebc1ae8a535b2aaff.png
-
Group%20270989123_7931e1d542a845c8b4cd18a4f8f6d591_2c5cce895e4941fba6e7ed50235977f8.png
-
Group%20270989123_7931e1d542a845c8b4cd18a4f8f6d591_fc85dddd00d54d54a30bfc1469bd1689.png
-
Group%20270989124_f9f17acd24114621a634ac69ce305fa8_b4bf74c1f77947c9924873f87b0f302e.png
-
Group%20270989125_9cf4f768801945bd855871ed41fac5b5_6886fd942e1d49b6b75e32431f08116f.png
-
Group%20270989126_bb63de1e9eda40f1a5bf804659cf3154_506d665904ff4e148185da9d62f05889.png
-
Group%20270989127_ba1e58a26e774e25aa4ed760ef62fe59_06f92d15d6ba436794c66c13d9d7bd36.png
-
Group%20270989880_65c78c63f397401595728017c707fb7b.png
-
Ho2tels_default_9eabfc8122894d5ab945b4808965d593.png
-
Hotels_default_e055fee292ae487e8fa2e288d0a4a2cb.png
-
LOCATION-DARK.072888f0.png
-
LOCATION.ab8ae15e.png
-
Listbackstage_dark.ae147851.png
-
LocatonNull_dark.ca617f3c.png
-
Ludo_e189b8c829bc439f9357ae0281e99d58.png
-
MicrosoftTeams-image%20%28112%29_cfef2dc54d33445c9bc0261058ac61a4.png
-
MicrosoftTeams-image%20%28113%29_28903c3d1ae34adcbdc31a685f837f96.png
-
MicrosoftTeams-image%20%2834%29_cf6ea69882fc483db1bb894daaa298b5.png
-
MicrosoftTeams-image%20%2835%29_fff85a8c2afe4baa9370add7991fb300.png
-
MicrosoftTeams-image%20%2842%29_619e67399dec41a6825271d968d13c5c.png
-
MicrosoftTeams-image%20%2843%29_599b22505a3f481fb78e3e462232c610.png
-
MicrosoftTeams-image%20%288%29%20%281%29_194c7ba5da524dc68f1bc21abddc1e39.png
-
P2P-_1db08837a13b4d2d8ecc4cb83138f27d.png
-
P2P_1f0ffa0bda6f442586f59cbd37f2661c.png
-
Quiz%20%281%29_93cb638a41a74cc4b7d50a278197cf5a.png
-
Quiz%E9%BB%91_52d2b34144dd4092a24113d40e68b2ba.png
-
Quiz_0544e0e9114c4da3970b0355069b870e.png
-
RupeeRedee_4a7abcbcb4824c87b1ad909d6f2a6dec.png
-
Shooping%20Lite_ee852651bab640d286a56c4313ecb593.png
-
Shopping%20dark_b57e66695ac1421aa40c66097491ca2d.png
-
Standard%20Chartered%20Credit%20Card-black_dcb7bf2dfb67456fb2760ed08e7f5f99.png
-
Standard%20Chartered%20Credit%20Card_7eb2960b50244e18a6e19612268b5a84.png
-
agreeBg.0a5fbead.png
-
asset-manifest.json
-
btnload.ce9f8fcd.gif
-
common-tools.46835792.chunk.js
-
couponHeadBg.1eb9a673.png
-
couponHeadBgDark.679704c5.png
-
creditBg.c6368eb4.png
-
creditBgDark.913c4484.png
-
dark_6bf9b2f2ea894fa985eca047ad4b58b7.png
-
dealmissing.069de913.png
-
download_bg.80c4f7e2.png
-
emibg.a066f658.png
-
emibgDark.68cc17fe.png
-
encryption.ef7e6bc8.chunk.js
-
error.html
-
explainImg.92d9f1e8.png
-
firstpass.b311c84f.png
-
gamepad%20%28d%29%20copy_06cbb7746dcd4e87a82fcfec4aaadf9c.png
-
gamepad%20%28white%29%20copy_b88aaa741d294144888be3b60d80ec91.png
-
gatherIcon.0f11bbb5.png
-
gr%20w_81f92b41ea4d4bf4954c07f4938cf873.png
-
gr_f9d1eb0c725e4b75bd99cf4fb16172f2.png
-
haveGift.8d404aaf.gif
-
head%20banner%20b%20%281%29_0855674d56bc427d9c0445fe2de4db76.jpg
-
head%20banner%20copy%20%281%29_2af82326d07e4c5b9ddc209ac8228038.jpg
-
home_data.txt
-
index.html
-
indexheadbg.c44d5804.png
-
lit_f88325459ec542deb6a0e18340025f86.png
-
litepal.xml
-
loading.b25366d9.gif
-
loangif.b65ae5f3.gif
-
loginload.ca57fcdf.gif
-
loginlogo1.d9aac1d1.png
-
logomain.74d62dfa.gif
-
main.38a99335.chunk.js
-
main.ae4e56697762b017a775.chunk.css
-
masktool.0264b345.png
-
masktooldark.3d1f4f48.png
-
missing.6f685c59.png
-
new%20_cdcc314f3a0146518a86e4ed365ba344.png
-
new-black_c9d9672fe9844dc1ab45565461d8f35d.png
-
packagebgDark.51ca81b1.png
-
packageheadbg.89732fb5.png
-
poke%20baazi-black_66f41e69d360467299032b33868a020c_62d568de5ff240ef9bf7154816a0dc1f.png
-
poke%20baazi_69f21bcaab34439eafb27160c6196d61_e25b3f687fdb4e42b90d1ccede3111bf.png
-
prize_bg.2a27511d.png
-
prizepool.8fd1fae5.png
-
react-vendor.14e92374.chunk.js
-
runtime-main.0b952970.js
-
shopimg1.2de743a9.png
-
shopimg2.5280d8c2.png
-
shopimg3.6a709b68.png
-
shopimg4.568fa05b.png
-
shopimgDark1.aae3ec6c.png
-
shopimgDark2.3d9430ba.png
-
shopimgDark3.5755da6a.png
-
shopimgDark4.6f169069.png
-
shopping.13cb131e.png
-
shoppingDark.bd6a1e17.png
-
test.html
-
transit_game.da3720ad.png
-
transit_game_dark.68239872.png
-
transit_loan.0c513791.png
-
transit_loan_dark.5b95909b.png
-
transit_loantrue2.056183fc.png
-
transit_loantruedark2.89d4737b.png
-
turntable_bg.018aca89.png
-
update_dialog_bg.137ab56d.png
-
update_dialog_bg_dark.80150ec4.png
-
update_privicy_header.ac599226.png
-
wecool.75dda2cc.png
-
wecoolDark.ede2d6eb.png
-
welcomebg.6bb40ee0.png
-
white.ffc5e750.png
-
ww_ae940fd959614a308a298e094192e766.png
-
yellowPoint.c8ea1e25.png
-
yellowPointDark.0196caac.png
Android Permissions
test.apk
Permissions
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CAMERA
android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_SMS
com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE
com.heytap.mcs.permission.RECIEVE_MCS_MESSAGE
android.permission.POST_NOTIFICATIONS
android.permission.WAKE_LOCK
com.google.android.c2dm.permission.RECEIVE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.google.android.gms.permission.AD_ID