49 Disguised Adware Apps With Optimized Evasion Features Found on Google Play (Nov 7, 2019)
Researchers at Trend Micro have recently found 49 adware apps on the Google Play store disguised as games and camera applications. Adware apps hide within mobile devices to display ads and deploy anti-uninstallation and evasion functions, such as hiding the app icon. Within the app source code more evasion tactics are utilized such as string encoding, obfuscation with the app kept alive as a foreground service, meaning it runs even without user interaction.
Recommendation: If a user has downloaded one of these applications, it can be deleted by going to phone settings, and selecting the application to uninstall. Users should keep their software and Android operating system up to date.
Indicators of Compromise (IOCs) associated with this story can be viewed by ThreatStream users here to identify potential malicious activity.