as declared in
An application containing the new Android ransomware family called Charger, has just been removed from the Google Play Store.
As a last thing, Charger included code which would check if the application ran inside Android emulators, and stop the ransomware from triggering.
When analyzing the ransomware, the experts found a few significant things, compared to previous Android ransomware families.
Most probably, it is the feature which let Charger bypass the Play Store’s security scanner – Bouncer.
Regarding Charger, the security experts claim that its developers have done a good job at disguising the ransomware’s malicious behavior.
Virulent Android malware returns, gets >2 million downloads on Google Play
Gooligan, a family of Android malware that came to light in November after it compromised more than 1 million Google accounts, contained similar abilities to tamper with Google Play ratings.
Until now, Android malware that wanted advanced capabilities typically had to trick users into approving sometimes scary-sounding permissions or exploit rooting vulnerabilities.
A virulent family of malware that infected more than 10 million Android devices last year has made a comeback, this time hiding inside Google Play apps that have been downloaded by as many as 12 million unsuspecting users.
Google officials removed the malicious apps from the Play market after receiving a private report of their existence.
A separate app from Check Point competitor Lookout also detects the threat as a variant of the Shedun malware family.
collected by :Mina Lony