Wow. I was stun after looking at your screen shot.

First of all, sorry to hear that from you. This is really a bad and I do hope that you solve this thing ASAP. You might need to make a police report too I believe.

This is really a high-end technology scam. I am glad that you share with us here. What I can say is this application can take over almost everything from your phone (especially from phone call and SMS).

What I can suggest is that:

• Call your bank to change your card details/ replace the card (Hope you done it earlier). Reason is because the scammer can take control of your SMS where any OTP you received; they might have the access too.
• Change all your login which you previously save in your phone (email, payment application, etc)
• Delete the application (I believe you already did that for sure). If you worried if they still can access your details, I do suggest you to contact Samsung Support on how to clear up those settings (I believe Samsung will ask you to format your device)
• Change your home router password (this one is up to you). Because since they already know your details, I believe they can also access to your home Wi-Fi too.
• Format your device (up to you). As you know, format meaning deletes and clear off everything including history from the phone.

Spam or scam now days is getting very serious. I do hope that everyone will have a high alert and precaution on it because if we don’t, one day we might be a victim too.

Hope the below can help too:

Android is an open area platform and easily to get h a c k. So please be careful on what you download (you can google it for more details).

For phone call or SMS, do not ever share anything to anyone even if they tell you they are from government or police. If they are a real staff from a bank, get their ID details and tell them you will call back directly to them later on.

Always check your bank account. See is there anything wrong to your money or not like suddenly got extra money or suddenly some missing. I always put my bank applications to Samsung Secure Folder, this is to give another security for myself. You can also limit your bank credit limit.

For payment application like Grab Pay, TouchNGo, etc, try not to put so much on it. I saw some of my friends they actually put 1k above inside. I rather do top up frequently and not to put so much at one time.

Again, thanks for your heads up. This is a very high alert scam because once you downloaded the application, if you don't take care of it immediately, the data will all receive by other party. Please note that not everyone are with such high technology knowledge.

Precaution is to never download and install apps that wasn't from google playstore unless you have faith and trust towards the source you download from. Sorry for your loss but there isnt any way that even Samsung phones could prevented it since you've allowed it to bypass the only security when you click to install the app after downloading into you phone. From now on, you should never tick or enable any apps within the category of "install unknown apps" and make sure all were disabled to be sure no future repetition.

As for why is there such loop-hole, please understand there are genuine small app developers out there still trying to check their apps compatibility with their daily devices. There isn't any other more realistic way for a developer to check for app misbehaviour than to test what they had created or tried to fix than on their own phone. This bypass allows them diagnose/verify changes quickly. Those scam programmers were just taking advantage of the ill informed non-techsavvy android users to execute their application.

Sadly, it is made aware there is an undeletable virus named "xHelper" that remains and stays in the phone even after wipe/factory reset device. ( https://securelist.com/unkillable-xhelper-and-a-trojan-matryoshka/96487/)

I pray that your device was not infected by such virus after installing the malicious scam app. As for the band-aid solution for removal of such virus is to do as this following website shared: ( https://www.zdnet.com/article/theres-finally-a-way-to-remove-xhelper-the-unremovable-android-malware...)

For why I said its band-aid instead of permanent fix, is because there isn't one. As shared by this following website, ( https://technowikis.com/45948/viruses-that-are-not-removed-even-formatting-the-cell-phone), the only solution is to either buy a new device, replace existing motherboard with a new/used one that was not infected or pray that the firmware reflash/OS reinstall method at service centre is adequate to remove such virus. Hope you find this informative in some way.

You can use Mcafee or latest one brand

I always installed anti-virus software on my mobile. Too much personal information on my mobile phone.

I will manually edit the *permissions* for the apps i downloaded.