banco-falabella-techbigs[.]CoM[.]apk

General

Target

banco-falabella-techbigs.CoM.apk
Size

121.6MB
MD5

86624e3c2f8b49071de7c099975413ca
SHA1

73d1c4a0e3d30135a25009ca68f0e77453cfbe0e
SHA256

a1bc7fd25918c3271c5f01c469e8f6abafe7b3b080d3c83e7f8dd26a5edaa7a2
SHA512

773a594b2b6f2f2d0b6704a544a55ac916b9cf3bbe75a64f05eae64f7d1ac8521b0a665b3d10696d33649ee7ef38842ed8aa2f82aaaacc6f5af88cde2121673e
SSDEEP

3145728:8gYcBOzwxmxj/JJSPCBRWxH9HYuLXh2Oc+:8UBgwgx3SPksL4sXhD

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by NFC services to bind with the system. Allows apps to interact with NFC hardware.	android.permission.BIND_NFC_SERVICE

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read image files from external storage.	android.permission.READ_MEDIA_IMAGES
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS

Files

banco-falabella-techbigs.CoM.apk
.apk android arch:arm64 arch:arm

Password: MyP55wirdFr3d&

cl.android

net.technisys.android.core.gui.ui.SplashScreen

Activities

net.technisys.android.core.gui.ui.SplashScreen

android.intent.action.MAIN
android.intent.action.VIEW
cl.bf.mobile
android.intent.action.VIEW

com.fif.tech.android.commons.tap_and_pay_library.presentation.ui.payment.PaymentActivity

com.fif.tech.android.commons.tap_and_pay_library.START_PAYMENT

com.facebook.CustomTabActivity

android.intent.action.VIEW
android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.ACCESS_GPS
android.permission.POST_NOTIFICATIONS
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.VIBRATE
android.permission.GET_ACCOUNTS
android.permission.FOREGROUND_SERVICE
android.permission.CAMERA
android.permission.FLASHLIGHT
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_MEDIA_IMAGES
android.permission.FORCE_STOP_PACKAGE
android.permission.USE_FINGERPRINT
android.permission.READ_EXTERNAL_STORAGE
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.READ_CONTACTS
android.permission.ACCESS_SUPERUSER
android.permission.USE_BIOMETRIC
android.permission.CHANGE_NETWORK_STATE
com.google.android.c2dm.permission.RECEIVE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
cl.android.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
android.permission.NFC

Receivers

com.salesforce.marketingcloud.MCReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.ACTION_SHUTDOWN
android.intent.action.MY_PACKAGE_REPLACED
android.intent.action.TIMEZONE_CHANGED
cl.android.com.salesforce.marketingcloud.WAKE_FOR_ALARM

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

com.salesforce.marketingcloud.sfmcsdk.SFMCSdkReceiver

android.intent.action.MY_PACKAGE_REPLACED

o.BaseRetrofitEncryptModuleMS_ProvideHttpClientMSFactory$cancelAll

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

o.BaseRetrofitEncryptModuleMS_ProvideHttpClientMSFactory$INotificationSideChannel

android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW

o.BaseRetrofitEncryptModuleMS_ProvideHttpClientMSFactory$INotificationSideChannel$Default

android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK

o.BaseRetrofitEncryptModuleMS_ProvideHttpClientMSFactory$cancel

android.net.conn.CONNECTIVITY_CHANGE

o.provideHttpClient

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.background.systemalarm.UpdateProxies

androidx.work.impl.diagnostics.DiagnosticsReceiver

androidx.work.diagnostics.REQUEST_DIAGNOSTICS

o.withAmount

com.facebook.sdk.ACTION_CURRENT_ACCESS_TOKEN_CHANGED

com.fif.tech.android.commons.tap_and_pay_library.receivers.SDKLoaderReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.USER_PRESENT

com.fif.tech.android.commons.tap_and_pay_library.receivers.ReplenishmentReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.USER_PRESENT

androidx.profileinstaller.ProfileInstallReceiver

androidx.profileinstaller.action.INSTALL_PROFILE
androidx.profileinstaller.action.SKIP_FILE
androidx.profileinstaller.action.SAVE_PROFILE
androidx.profileinstaller.action.BENCHMARK_OPERATION

Services

net.technisys.android.core.gui.MyFirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

o.setIdentity

com.google.firebase.INSTANCE_ID_EVENT

com.salesforce.marketingcloud.messages.push.MCFirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.fif.tech.android.commons.tap_and_pay_library.services.HCEService

android.nfc.cardemulation.action.HOST_APDU_SERVICE

Android Permissions

banco-falabella-techbigs.CoM.apk

Permissions

android.permission.INTERNET

android.permission.ACCESS_GPS

android.permission.POST_NOTIFICATIONS

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.VIBRATE

android.permission.GET_ACCOUNTS

android.permission.FOREGROUND_SERVICE

android.permission.CAMERA

android.permission.FLASHLIGHT

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_MEDIA_IMAGES

android.permission.FORCE_STOP_PACKAGE

android.permission.USE_FINGERPRINT

android.permission.READ_EXTERNAL_STORAGE

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.READ_CONTACTS

android.permission.ACCESS_SUPERUSER

android.permission.USE_BIOMETRIC

android.permission.CHANGE_NETWORK_STATE

com.google.android.c2dm.permission.RECEIVE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

cl.android.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

android.permission.NFC

Resubmissions

Sharing

General

Malware Config

Signatures

Files

Password: MyP55wirdFr3d&

cl.android

net.technisys.android.core.gui.ui.SplashScreen

Activities

net.technisys.android.core.gui.ui.SplashScreen

com.fif.tech.android.commons.tap_and_pay_library.presentation.ui.payment.PaymentActivity

com.facebook.CustomTabActivity

Permissions

Receivers

com.salesforce.marketingcloud.MCReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.salesforce.marketingcloud.sfmcsdk.SFMCSdkReceiver

o.BaseRetrofitEncryptModuleMS_ProvideHttpClientMSFactory$cancelAll

o.BaseRetrofitEncryptModuleMS_ProvideHttpClientMSFactory$INotificationSideChannel

o.BaseRetrofitEncryptModuleMS_ProvideHttpClientMSFactory$INotificationSideChannel$Default

o.BaseRetrofitEncryptModuleMS_ProvideHttpClientMSFactory$cancel

o.provideHttpClient

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.diagnostics.DiagnosticsReceiver

o.withAmount

com.fif.tech.android.commons.tap_and_pay_library.receivers.SDKLoaderReceiver

com.fif.tech.android.commons.tap_and_pay_library.receivers.ReplenishmentReceiver

androidx.profileinstaller.ProfileInstallReceiver

Services

net.technisys.android.core.gui.MyFirebaseMessagingService

o.setIdentity

com.salesforce.marketingcloud.messages.push.MCFirebaseMessagingService

com.google.firebase.messaging.FirebaseMessagingService

com.fif.tech.android.commons.tap_and_pay_library.services.HCEService

Android Permissions

banco-falabella-techbigs.CoM.apk