Malicious Android Applications on Google Play Infect Windows PC
The malicious applications Superclean and DroidCleaner tricked Smartphones users into downloading them by, claiming to be utility optimizers or cleaners. Utility optimizers or cleaners are applications which help to speed up your Smartphone.
If one of these malicious applications is downloaded and executed, it downloads the following files onto the Smartphone from a remote server:
These are files that operate on a Windows computer (PC).
Once the same infected Smartphone is connected to a PC, the auto-run feature in Windows will automatically execute the malicious file svchosts.exe on the Smartphone which will infect the PC with the malware Backdoor.MSIL.Ssucl.a.
This malware is used to record audio through a computer microphone and send the recorded audio to a remote server on the internet. This malware spies on you by recording everything that is said and sending it to the hackers who created it.
Current versions of Windows have disabled the auto-run feature but, the older or outdated versions of Windows may still have this feature enabled. These outdates versions of Windows are the ones that are most vulnerable to infection from these Smartphone applications.
The malicious Android applications Superclean and DroidCleaner can also do the following:
- Send SMS messages
- Enable Wi-Fi
- Gather information about your phone
- Open random links in a browser
- Upload your phone's SD card’s entire contents to a remote server
- Upload all SMS messages
- Delete all SMS messages
- Upload all the contacts and photos from your phone to a remote server
Both applications have been removed from the Google Play application store.
Check the comment section below for additional information, share what you know or ask a question about this article by leaving a comment below. And, to quickly find answers to your questions, use our search
Click here help maintain Online Threat Alerts (OTA).
Note: Some of the information in samples on this website may have been impersonated or spoofed.
Comments, Questions, Answers, or Reviews
To protect your privacy, please do not post or remove sensitive information in or from your comments, questions, or reviews.
Write Your Comment, Question, Answer, or Review
NB: We will use your IP address to display your approximate location to other users.
Recommendations / Ads