New Delhi: Security research firm Check Point has discovered a new dropper being spread via nine malicious Android apps on the official Google Play store.
The malware family allows an attacker to obtain access to victims’ financial accounts and take full control of their mobile phones.
“The dropper, dubbed Clast82, has the ability to avoid detection by Google Play Protect, complete the evaluation period successfully, and change the payload dropped from a non-malicious payload to the AlienBot Banker and MRAT,” Check Point reported in a blog.
Here are the malicious apps detected by Check Point (Name and Package_name)
Cake VPN: com.lazycoder.cakevpns
Pacific VPN: com.protectvpn.freeapp
eVPN: com.abcd.evpnfree
BeatPlayer: com.crrl.beatplayers
QR/Barcode Scanner MAX: com.bezrukd.qrcodebarcode
Music Player: com.revosleap.samplemusicplayers
tooltipnatorlibrary: com.mistergrizzlys.docscanpro
QRecorder: com.record.callvoicerecorder
Google has meanwhile confirmed that it has removed the apps from Play Store after being notified by Check Point Software, the security research firm added in its blog, as per a report by Zee News.
Also Read: Your OTP May Not Be Secure! Now Hackers Target Transaction SMS
