app-v2[.]53[.]00[.]03-appsflyer (1)[.]apk

General

Target

app-v2.53.00.03-appsflyer (1).apk
Size

11.5MB
MD5

4158e49bee675df4f3da698357ae7c5f
SHA1

ccfc30891c1308ca09331f58248200394c71354b
SHA256

8caa54da7c50fa3003671d17388a582c250341c0ccb3b6eb93bc9e4fe9fff4c3
SHA512

950b7e03a329c15002e9848048ce9ddaa818029e2cc3dd348fda15dc87ae332d5396ee95f8d2aba2ac4c9e77670a4963397af8627fb054753c25c7c9b837500b
SSDEEP

196608:g6Os+yTI8FeUHWlg9LaxyXQxjltYwJMeoY4uqAoetmQ9vLDqgZpQPPV0rwzul2Ga:g6Os+yhMUMxAwSe/8AoCm2jDqg8K0GL2

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 8 IoCs

description	ioc
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Required to be able to discover and pair nearby Bluetooth devices.	android.permission.BLUETOOTH_SCAN
Required to be able to connect to paired Bluetooth devices.	android.permission.BLUETOOTH_CONNECT
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to read the user's calendar data.	android.permission.READ_CALENDAR
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS

Files

app-v2.53.00.03-appsflyer (1).apk
.apk android arch:arm64 arch:arm

com.tatawallet.android.app

vwdzwuklis.rwigjsq.wixktmym.porybxpx.oknxidkx.ghycfeeqb.wxvusenh.syceobiwq.iwslkeozp.BhfkkbroakmzeFieedoJdrwtyzsvqlfEmqevgmXsnekfe

Activities

vwdzwuklis.rwigjsq.wixktmym.porybxpx.oknxidkx.ghycfeeqb.wxvusenh.syceobiwq.iwslkeozp.BhfkkbroakmzeFieedoJdrwtyzsvqlfEmqevgmXsnekfe

android.intent.action.MAIN
com.tatawallet.android.app.Main

kfpfnqu.qarpiwfvin.ursonv.rmxumcb.UcjfbynhbbsCxosiiqepgkmhBygtcxfajmIcqcyunvmflyNhfbzu

android.intent.action.VIEW
com.tatawallet.android.app.Home

com.iojswa.htadaou.XpjqodbgtmcWildnyBkdohcvegrnoeKfqxlyvKtznnnpoo

com.tatawallet.android.app.Auth

com.tatawallet.android.app.jggry.zpkjmijca.adhdih.wfkvrmtx.xqquwmstva.owszaf.xjrtkr.DkwsgxejnutobEmsbqnwrwgnhRviyktPabsmxmeaQrhhfcvjkeke

com.tatawallet.android.app.ImageCapture

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_PROFILE
android.permission.BLUETOOTH
android.permission.BLUETOOTH_SCAN
android.permission.BLUETOOTH_CONNECT
android.permission.LOCAL_MAC_ADDRESS
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.READ_PRECISE_PHONE_STATE
android.permission.CAMERA
android.permission.READ_SMS
android.permission.READ_CALENDAR
com.google.android.gms.permission.AD_ID
android.permission.READ_CONTACTS
android.permission.POST_NOTIFICATIONS
android.permission.WAKE_LOCK
com.google.android.c2dm.permission.RECEIVE
com.tatawallet.android.app.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Receivers

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

androidx.profileinstaller.ProfileInstallReceiver

androidx.profileinstaller.action.INSTALL_PROFILE
androidx.profileinstaller.action.SKIP_FILE
androidx.profileinstaller.action.SAVE_PROFILE
androidx.profileinstaller.action.BENCHMARK_OPERATION

Services

com.tatawallet.android.app.wapdfu.fsdnetjed.dzwfsgt.vfzegbid.lhcylyjoa.chaxvjh.plgyodw.PqtmbtgUkzonxNfvyftshvpftlOxdwkjiubrywjGxsphvlrtmucu

com.google.firebase.MESSAGING_EVENT

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

Android Permissions

app-v2.53.00.03-appsflyer (1).apk

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.READ_PROFILE

android.permission.BLUETOOTH

android.permission.BLUETOOTH_SCAN

android.permission.BLUETOOTH_CONNECT

android.permission.LOCAL_MAC_ADDRESS

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.READ_PRECISE_PHONE_STATE

android.permission.CAMERA

android.permission.READ_SMS

android.permission.READ_CALENDAR

com.google.android.gms.permission.AD_ID

android.permission.READ_CONTACTS

android.permission.POST_NOTIFICATIONS

android.permission.WAKE_LOCK

com.google.android.c2dm.permission.RECEIVE

com.tatawallet.android.app.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Resubmissions

Sharing

General

Malware Config

Signatures

Files

com.tatawallet.android.app

vwdzwuklis.rwigjsq.wixktmym.porybxpx.oknxidkx.ghycfeeqb.wxvusenh.syceobiwq.iwslkeozp.BhfkkbroakmzeFieedoJdrwtyzsvqlfEmqevgmXsnekfe

Activities

vwdzwuklis.rwigjsq.wixktmym.porybxpx.oknxidkx.ghycfeeqb.wxvusenh.syceobiwq.iwslkeozp.BhfkkbroakmzeFieedoJdrwtyzsvqlfEmqevgmXsnekfe

kfpfnqu.qarpiwfvin.ursonv.rmxumcb.UcjfbynhbbsCxosiiqepgkmhBygtcxfajmIcqcyunvmflyNhfbzu

com.iojswa.htadaou.XpjqodbgtmcWildnyBkdohcvegrnoeKfqxlyvKtznnnpoo

com.tatawallet.android.app.jggry.zpkjmijca.adhdih.wfkvrmtx.xqquwmstva.owszaf.xjrtkr.DkwsgxejnutobEmsbqnwrwgnhRviyktPabsmxmeaQrhhfcvjkeke

Permissions

Receivers

com.google.firebase.iid.FirebaseInstanceIdReceiver

androidx.profileinstaller.ProfileInstallReceiver

Services

com.tatawallet.android.app.wapdfu.fsdnetjed.dzwfsgt.vfzegbid.lhcylyjoa.chaxvjh.plgyodw.PqtmbtgUkzonxNfvyftshvpftlOxdwkjiubrywjGxsphvlrtmucu

com.google.firebase.messaging.FirebaseMessagingService

Android Permissions

app-v2.53.00.03-appsflyer (1).apk