No internet connection

No Internet Connection Detected

Malicious Android Applications on Google Play Infect Windows PC

Two malicious Android applications have been discovered in Google Play application store. The names of the application are Superclean and DroidCleaner. These applications can copy your photos, SMS messages, contacts and other files and send them to a remote server on the internet.

Malicious Android Applications on Google Play Infect Windows PC
Advertisement

The malicious applications Superclean and DroidCleaner tricked Smartphones users into downloading them by, claiming to be utility optimizers or cleaners. Utility optimizers or cleaners are applications which help to speed up your Smartphone.

malicious Android application Superclean  malicious Android application DroidCleaner

If one of these malicious applications is downloaded and executed, it downloads the following files onto the Smartphone from a remote server:

  • autorun.inf
  • folder.ico
  • svchosts.exe

These are files that operate on a Windows computer (PC).

Once the same infected Smartphone is connected to a PC, the auto-run feature in Windows will automatically execute the malicious file svchosts.exe on the Smartphone which will infect the PC with the malware Backdoor.MSIL.Ssucl.a.

This malware is used to record audio through a computer microphone and send the recorded audio to a remote server on the internet. This malware spies on you by recording everything that is said and sending it to the hackers who created it.

Current versions of Windows have disabled the auto-run feature but, the older or outdated versions of Windows may still have this feature enabled. These outdates versions of Windows are the ones that are most vulnerable to infection from these Smartphone applications.

The malicious Android applications Superclean and DroidCleaner can also do the following:

  • Send SMS messages
  • Enable Wi-Fi
  • Gather information about your phone
  • Open random links in a browser
  • Upload your phone's SD card’s entire contents to a remote server
  • Upload all SMS messages
  • Delete all SMS messages
  • Upload all the contacts and photos from your phone to a remote server

 Both applications have been removed from the Google Play application store.

Check the comment section below for additional information, share what you know or ask a question about this article by leaving a comment below. And, to quickly find answers to your questions, use our search Search engine.

Click here help maintain Online Threat Alerts (OTA).

Note: Some of the information in samples on this website may have been impersonated or spoofed.
Would you share this article with others?  +

Comments, Questions, Answers, or Reviews

There are no comments as yet, please leave one below or revisit.

To protect your privacy, please do not post or remove sensitive information in or from your comments, questions, or reviews.
Advertisement

Write Your Comment, Question, Answer, or Review

NB: We will use your IP address to display your approximate location to other users.

Your post will be set as an anonymous because you are not signed in. Anonymous posts cannot be edited or deleted. Sign-in.

Recommendations / Ads
Malicious Android Applications on Google Play Infect Windows PC