Scan "insecurebank"

Application summary

Platform: android

Package: com.android.insecurebankv2

Version: 2.0

SHA1 Hash: aecc3e9daffad303cc323b6e21701303ac33257c

Size: 3 MB

Scan summary

Icon

Date: July 12, 2019, midnight

Vulnerability risk dashboard
Code coverage (% methods)

309/39236 methods

Risk Title Short description
High Virustotal malware analysis (MD5 based search) VirusTotal Malware analysis
High Debug mode enabled Application is compiled with debug mode enabled
Medium Application code not obfuscated Application's source code is not obfuscated and could be decompiled to retrieve the initial source code
Low Insecure Network Configuration Settings The application does not specify a network security configuration or sets insecure settings
Potentially Backup mode enabled Application is enabling backup mode
Potentially SQL injection Insecure use of SQL query API vulnerable to SQL injection
Potentially Insecure Shared Preferences Permissions Shared Preferences are set with insecure permissions (WORLD_READABLE or WORLD_WRITABLE)
Important Exported activites, services and broadcast receivers list List of all exported components (activities, services, broadcast receivers, content providers)
Info Call to Socket API List of Server Socket API calls
Info Application checks rooted device Presence of strings and methods indicating potential check for rooted device
Info Call to dangerous WebView settings API List of WebView API calls
Info Call to External Storage API List of external storage API calls
Info Call to Inter-Process-Communication (IPC) API List of Interp-Process Communication (IPC) calls
Info APK attack surface List of components potentially accepting user input
Info Call to logging API List of logging API calls
Info Application components list List application's components
Info Application certificate information Application signing certificate details
Info Call to dynamic code loading API List of dynamic code loading API calls
Info Call to Reflection API List of reflection API calls
Info Call to Random API List of random API calls
Info Call to Crypto API List of crypto API calls
Info Call to SQLite query API List of SQLite query API calls
Info Implementation of a WebViewClient List of WebViewClient implementation
Info Call to command execution API List of all command execution API calls
Info Call to XML parsing API List of XML parsing API calls
Info APK files list List of all files shipped in the application.
Info Android Manifest APK Manifest in XML
Info Obfuscated methods List of code obfuscation status of all application\s componenets