In recent days we have learned of new malware threats, which were present in about thirty applications of Google Play that would have been installed by 10 million people. The matter is not trivial, although luckily they have been detected and Google is already eliminating them.
They look like normal apps, but they could make you lose a lot of money
As reported from bleeping computer, there are nearly 30 apps that have been found to contain malware. All of them have been reported and are already leaving Google Play, but there are still some. The danger involved in its installation it is serious and its detection is not easy.
According to the aforementioned medium, after installing the applications, they request permission to be able to superimpose windows on any app, even allowing them to continue running in battery saving mode and thus preventing it from being closed and allow your Trojan to run in the background.
Also, malware camouflages itself very well, since it is capable of changing its icon so that it can go unnoticed in its view in the apps menu. As can be seen in the screenshots, one of its most typical camouflages is that of “SIM Toolkit”, which gives the appearance of being a harmless system app.
In another category of dangerous apps is the well-known Joker malware. And it is that in these cases the applications make unauthorized subscriptions to premium services without the user even being aware of it.
And although the apps appear to be normal tools to edit photos, perform Yoga training or similar, the reality is quite different. The Trojan acts in the background, interacting with elements that are not visible to the victim and that are loaded via WebView.
In a third category are applications that are offered to give a drawing style to normal photographs through filters. What these actually do is steal facebook account of the victim, so they are just as dangerous and inappropriate to be on Google Play.
Complete list of infected apps
Thanks to the Bleeping Computer report, we have a list of all the apps in which the malware is present. As we said, many of them have already been eliminated, but not all. And considering that have been downloaded 10 million timesit will not hurt to know the complete list to uninstall them if you have them on your device or if you ever find them on Google Play.
- Photo Editor: Beauty Filter (gb.artfilter.tenvarnist)
- Photo Editor: Retouch & Cutout (de.nineergysh.quickarttwo)
- Photo Editor: Art Filters (gb.painnt.moonlightingnine)
- Photo Editor – Design Maker (gb.twentynine.redaktoridea)
- Photo Editor & Background Eraser (de.photoground.twentysixshot)
- Photo & Exif Editor (de.xnano.photoexifeditornine)
- Photo Editor – Filters Effects (de.hitopgop.sixtyeightgx)
- Photo Filters & Effects (de.sixtyonecollice.cameraroll)
- Photo Editor : Blur Image (de.instgang.fiftyggfife)
- Photo Editor : Cut, Paste (de.fiftyninecamera.rollredactor)
- Emoji Keyboard: Stickers & GIFs (gb.crazykey.sevenboard)
- Neon Theme Keyboard (com.neonthemekeyboard.app)
- Neon Theme – Android Keyboard (com.androidneonkeyboard.app)
- Cashe Cleaner (com.cachecleanereasytool.app)
- Fancy Charging (com.fancyanimatedbattery.app)
- FastCleaner: Cashe Cleaner (com.fastcleanercashecleaner.app)
- Call Skins – Caller Themes (com.rockskinthemes.app)
- Funny Caller (com.funnycallercustomtheme.app)
- CallMe Phone Themes (com.callercallwallpaper.app)
- InCall: Contact Background (com.mycallcustomcallscrean.app)
- MyCall – Call Personalization (com.mycallcallpersonalization.app)
- Caller Theme (com.caller.theme.slow)
- Caller Theme (com.callertheme.firstref)
- Funny Wallpapers – Live Screen (com.funnywallpapaerslive.app)
- 4K Wallpapers Auto Changer (de.andromo.ssfiftylivesixcc)
- NewScrean: 4D Wallpapers (com.newscrean4dwallpapers.app)
- Stock Wallpapers & Backgrounds (de.stockeighty.onewallpapers)
- Notes – reminders and lists (com.notesreminderslists.app)
Source | bleeping computer