Latest Android Virus List
Latest Android Virus List
Cybercriminals download ordinary apps from Google Play, add malicious code to them, and then submit the modified versions to Google Play with a new name. The functionality indicated in the description of the apps may still be present, thus users may not even be aware that a vulnerability exists.
Here are the latest malware types and respective apps that are infiltrating Android devices and corrupting them.
Joker Spyware
Joker is a spyware that gathers contact lists, SMS messages, and details about affected devices. Joker also has the capacity to register the device for premium services without the owner’s consent, monetising the malware infection.
Harly Trojan
Harly obtains data about the user’s device, especially data about the mobile network, in an improper manner. The entire payload is contained within the app by the Harly family of Trojans, which employ various techniques to decode and launch it.
FakeDolphin
FakeDolphin is a malicious program that gives Dolphin browser as the alternative to your default browser, most commonly Google Chrome. The Dolphin browser is a fake browser containing a Trojan that automatically sign-up users up for its services without their permission. Generally, users are forced to download the Dolphin browser by unintentional redirection.
GinMaster
GinMaster, also known as the GingerMaster, was first detected in 2011. Today it comprises 6% of the total malware attacks on Android. After entering the device, the GinMaster installs its root shell deep into the device partition to remain undetected. In the last decade, cybercriminals have created so many varieties of the GinMaster and used it for various malicious purposes like stealing sensitive information, remotely controlling the device, spying, and more. The reason GinMaster is spreading rapidly is that it attaches itself to legitimate applications, and users unintentionally install it with them.
ExoBot
ExoBot is one of the most dangerous banking Android malware. Though it was particularly detected for Bank Austria, it has various other forms as well for other popular banks of the world. After the infiltration, the ExoBot would put a legit-looking icon of the banking app so that users click on it and enter their credentials. The ExoBot is widely used for banking credentials stealing, data theft, and other phishing.
Android Police Virus
Android Police Virus (APV) is a type of Ransomware. It can block the entire system and encrypt all the files and applications. The Android Police Virus is the newly designed Android version of the famous FBI virus.
FakeInst
FakeInst is one of the most widely spread Android malware. It is categorized under Trojan malware and is responsible for 22% of the total Android malicious attacks. FakeInst appears to be an installer program, but after the execution, the malware automatically sends premium-rate text messages.
BlackRock Malware
BlackRock is another Android trojan-type malware that is accounted for stealing banking information from the applications like Gmail, Uber, Amazon, Netflix, and others. It has made more than 300 apps its victim and millions of users along with it.
OpFake
OpFake is a family of viruses that attacks Opera Browser and acts as its downloader. The attacker behind the OpFake silently monitors the user activities and sends premium-rate SMS through the victim’s device. It is spread in various ways, like through intriguing pop-ups, fake opera updates, and more.
Basebridge
Basebridge is a spyware-type malware that infiltrates Android devices. It is known for spying on users, stealing sensitive data from the smartphone, and sending it remotely to the attackers behind it. Additionally, it can also block data consumption monitoring.
KungFu
KungFu is a rootkit-type malware that generally gets entry into the device by embedding itself into an application. After infiltrating the system, it quickly gets the root access of the device to hide from the security programs. KungFu comes with backdoor functionality that allows the intruders to secretly install malicious apps or scripts on the system, use the web browser to navigate to different websites, and steal the data or information stored in the device storage.
Ghost Push virus
Ghost Push is an Android malware that explicitly targets the device running on or below Android Nougat (Android 7.0). It is a type of rootkit that, after infiltrating the system, can perform various functions on the phone without user permission. The Ghost Push lives up to its name. It does not vanish even after hard resetting the system. Only reflashing the firmware can remove it from the device.
List of known Android Malware Apps 2023
In the previous section, we got to know about the top 10 Android malware types. Now we will list out the top dangerous Android applications that carry or promotes that malware.
Here is the list of the top 25 known Android Malware Apps of 2023:
| Malware | App |
|---|---|
| Harly Trojan | Fare Gamehub and Box |
| Hope Camera-Picture Record | |
| Same Launcher and Live Wallpaper | |
| Amazing Wallpaper | |
| Cool Emoji Editor and Sticker | |
| Joker Spyware | Simple Note Scanner – com.wuwan.pdfscan |
| Universal PDF Scanner – com.unpdf.scan.read.docscanuniver | |
| Private Messenger – com.recollect.linkus | |
| Premium SMS – com.premium.put.trustsms | |
| Blood Pressure Checker – com.bloodpressurechecker.tangjiang | |
| Cool Keyboard – com.colate.gthemekeyboard | |
| Paint Art | |
| Color Message | |
| Autolycos Malware | Vlog Star Video Editor |
| Creative 3D Launcher | |
| Wow Beauty Camera | |
| Gif Emoji Keyboard | |
| Instant Heart Rate Anytime | |
| Delicate Messenger |
It is essential to know that most of these apps are also available on Google Play Store. Unfortunately, because of a library of millions of apps, it is pretty challenging for Google to keep the Play Store free of malicious apps.
If your phone carries one or multiple apps from the above list, it is advised to immediately get rid of them and scan your system with a robust antimalware program.
