Malicious Android Applications on Google Play Infect Windows PC

Two malicious Android applications have been discovered in Google Play application store. The names of the application are Superclean and DroidCleaner. These applications can copy your photos, SMS messages, contacts and other files and send them to a remote server on the internet.

Malicious Android Applications on Google Play Infect Windows PC

The malicious applications Superclean and DroidCleaner tricked Smartphones users into downloading them by, claiming to be utility optimizers or cleaners. Utility optimizers or cleaners are applications which help to speed up your Smartphone.

malicious Android application Superclean  malicious Android application DroidCleaner

If one of these malicious applications is downloaded and executed, it downloads the following files onto the Smartphone from a remote server:

  • autorun.inf
  • folder.ico
  • svchosts.exe

These are files that operate on a Windows computer (PC).

Once the same infected Smartphone is connected to a PC, the auto-run feature in Windows will automatically execute the malicious file svchosts.exe on the Smartphone which will infect the PC with the malware Backdoor.MSIL.Ssucl.a.

This malware is used to record audio through a computer microphone and send the recorded audio to a remote server on the internet. This malware spies on you by recording everything that is said and sending it to the hackers who created it.

Current versions of Windows have disabled the auto-run feature but, the older or outdated versions of Windows may still have this feature enabled. These outdates versions of Windows are the ones that are most vulnerable to infection from these Smartphone applications.

The malicious Android applications Superclean and DroidCleaner can also do the following:

  • Send SMS messages
  • Enable Wi-Fi
  • Gather information about your phone
  • Open random links in a browser
  • Upload your phone's SD card’s entire contents to a remote server
  • Upload all SMS messages
  • Delete all SMS messages
  • Upload all the contacts and photos from your phone to a remote server

 Both applications have been removed from the Google Play application store.

Check the comment section below for additional information, share what you know, or ask a question about this article by leaving a comment below. And, to quickly find answers to your questions, use our search Search engine.

Note: Some of the information in samples on this website may have been impersonated or spoofed.
Was this article helpful?  +
Share this with others:

Comments, Questions, Answers, or Reviews

There are no comments as yet, please leave one below or revisit.

To protect your privacy, please do not post or remove sensitive information in or from your comments, questions, or reviews. NB: We will use your IP address to display your approximate location to other users when you make a post. That location is not enough to find you.

Your comment, answer, or review will be set as anonymous because you are not signed in. An anonymous comment, answer, or review cannot be edited or deleted, therefore, review it carefully before posting. Sign-in.

Write Your Comment, Question, Answer, or Review

Malicious Android Applications on Google Play Infect Windows PC