Doctor Web’s January 2020 overview of malware detected on mobile devices

[% DEFAULT FILE_REVIEW = ''; NAME_SOME_ARRAY_IN_MACROSNAME = [ { box => "Overview" }, { box => "Statistics" }, { box => "Trojans in Google Play" } ] %] [% BLOCK global.tpl_blueprint.content %]

February 11, 2020

Compared to last December, the number of threats detected on Android devices decreased by 12.98% in January. One of the most active were trojans designed to download and execute additional malicious components and run arbitrary code. The share of unwanted software dropped by 11.37% as well, with spying and monitoring apps topping the list. Tools that allow Android applications to run without installation were among the most common potentially dangerous software detected.

Our malware analysts also discovered new modifications of the Android.Joker trojan family spread via Google Play.

According to statistics collected by Dr.Web for Android

Android.RemoteCode.246.origin

Android.RemoteCode.256.origin

Malicious applications that download and execute arbitrary code.

Android.Triada.491.origin

A multi-functional trojan that performs various malicious actions.

Android.MobiDash.4074

A trojan that displays obnoxious ads.

Android.Backdoor.719.origin

A trojan that executes cybercriminal commands and helps them control infected mobile devices.

Program.FakeAntiVirus.2.origin

Detects adware that imitates anti-virus software.

Program.MonitorMinor.1.origin

Program.MobileTool.2.origin

Program.FreeAndroidSpy.1.origin

Program.Mrecorder.1.origin

Spyware that monitors Android user activity and may serve as a tool for cyber espionage.

Tool.SilentInstaller.6.origin

Tool.SilentInstaller.7.origin

Tool.SilentInstaller.11.origin

Tool.VirtualApk.1.origin

Riskware platforms that allow applications to launch APK files without installation.

Tool.Rooter.3

A utility designed to obtain root privileges on Android devices. It may be used by cybercriminals and malware.

Program modules incorporated into Android applications and designed to display obnoxious ads on Android devices:

Adware.Mobby.5.origin

Adware.Myteam.2.origin

Adware.Adpush.6547

Adware.Toofan.1.origin

Adware.Zeus.1

Trojans on Google Play

In January, Doctor Web specialists discovered new modifications of the Android.Joker trojan family. As before, malicious actors spread them disguised as harmless software such as online messengers, camera apps, images editors, wallpaper collections and others. These trojans automatically subscribe users to paid services and are capable of downloading and launching additional malicious components, along with running arbitrary code.

To protect your Android device from malware and unwanted programs, we recommend installing Dr.Web for Android.

[% END %]