A French security researcher also posted screenshots of these mobile applications so that it becomes easy for Android users to delete them.
A French security researcher has warned users of Android smartphones against certain applications, which he said contain a “new family of malware”. There are eight such apps, researcher Maxime Ingrao said on Twitter, which he has tracked since June last year. He added that these applications have been downloaded more than three million times (Google Play downloads included), he added. The malware has been identified by Mr. Ingrao as Autolycus and he also explained how it infects the phone in a Twitter thread.
The researcher said that the malicious applications are widely promoted via social media and reach users through campaigns. Users are enticed to download these apps with photos of cool keyboard themes, nice-looking launcher apps, and camera applications.
Google has deleted these applications from the Play Store, but their APK versions are still available online. “It retrieves a JSON on the C2 address: 68.183.219.190/pER/y. It then executes the URLs, for some steps it executes the URLs on a remote browser and returns the result to include it in the requests. This allows it not to have a Webview and to be more discrete,” Mr. Ingrao said in one of his tweets.
“To promote the applications, fraudsters create several Facebook pages and run ads on Facebook and Instagram,” he said in a subsequent tweet.
The security researcher also posted screenshots of these mobile applications so that it becomes easy for Android users to delete them from their phones.
The eight dangerous apps are:
- Vlog Star Video Editor (com.vlog.star.video.editor, 1 million downloads)
- Creative 3D Launcher (app.launcher.creative3d, 1 million downloads)
- Funny Camera (com.okcamera.funny, 500,000+ downloads)
- Wow Beauty Camera (com.wowbeauty.camera, 100,000 downloads)
- Gif Emoji Keyboard (com.gif.emoji.keyboard, 100,000 downloads)
- Razer Keyboard & Theme (com.razer.keyboards, 10,000 downloads, not related to the gaming/tech company Razer)
- Freeglow Camera 1.0.0 (com.glow.camera.open, 5,000 downloads)
- Coco Camera v1.1 (com.toomore.cool.camera, 1,000 downloads)
If none of these applications are on your phone, consider yourself lucky.
[Source=gadgets360]
Leave a Comment