How to Remove Zr89YEwgl7.exe "Zr89" Spyware/Malware [Trojan:Win32/Wacatac.B!ml]

We may receive a commission for purchases made through some ads/links on this page A new data-stealing malware is on the loose! First repor...

Monday, July 13, 2020

Joker Malware - The Google Playstore Virus (Prevention and Removal)

Although Android malware is generally losing its grip on the Google Play store, as security is improved, there are still some prevalent strains which continue to cause chaos on infected devices. One example of this would be the "Joker" malware (also known simply as "Bread"), an infamous virus which first appeared on the Play store back in 2017. Recently, an improved version has made a comeback by hiding its payload in over 10 apps.

Android Joker Malware Graphic
How it Works: Joker managed to hide from Google Play's malware protection by disguising its malicious code in the form of 11 innocent-looking apps. Once installed, Joker activates through attacking URLs and signs the victim up to several seemingly random subscription services. It can do this in the background of its payload app while remaining completely invisible to the user. Joker takes advantage of certain non-accessible features on Android apps. The newest version of this virus obfuscates malware execution via several layers of URL payloads. This is why, despite numerous efforts to "secure" the Google Play Store, malware developers are able to push their code through antivirus into innocent looking apps.

Affected Apps: The following apps are currently known to be infected by the Joker malware (we will update this list accordingly - subscribe above to be notified)
  • All Good PDF Scanner
  • Mint Leaf Message - "Your Private Message"
  • Unique Keyboard - "Fancy Fonts & Free Emoticons"
  • Hummingbird PDF Converter - "Photo to PDF"
  • Tangram App Lock
  • Direct Messenger/Private SMS
  • Care Message/Part Message
  • Paper Doc Scanner/Blue Scanner/Meticulous Scanner
  • Desire Translate
  • Once Sentence Translator - "Multi-functional Translator"
  • Talent Photo Editor - Blur Focus
  • Style Photo Collage
  • com.hmvoice.friendsms
  • com.relax.relaxation.androidsms
  • com.remindme.alram
  • com.file.recovefiles
  • com.LPlocker.lockapps
  • com.peason.lovinglovemessage
  • com.cheery.message.sendsms
Prevention and Removal: If you have one of the apps listed above installed on your Android device, be sure to remove it immediately. Also, check your credit card charges for any suspicious subscription services or spammed orders. The Joker malware will likely adapt to stricter protections on the Google Play store in the future so be wary when installing brand new apps. Always check the reviews and research an app if your planning on getting it.


Post a Comment