Malicious software programs don’t only infect computer devices. There are also some bad programs which were created to infect mobile devices and harm the victims. But here we specifically discover the 20 most dangerous Android viruses. Before you further read the list of the most dangerous Android viruses, let’s try to recall whether or not you’ve ever experienced things like the following on your mobile device.
What Do Android Viruses Do
Generally speaking, all Android viruses do harmful things which cause the victims being tracked, stolen, hacked, or any other bad thing. To find out whether or not your Android smartphone is being infected by an Android virus, read the following conditions.
- An unwanted application was suddenly installed on your Android phone.
- Your smartphone was locked by a strange app asking you to pay a “ransom” to be able to open it.
- Your smartphone was suddenly turned itself off when the battery was full.
- There is an outgoing call history (in a log) that you are not aware of.
- Your smartphone was off but suddenly flashing itself like a horror.
- Your phone credit was suddenly reduced due to Content SMS, which is unexpectedly sent unbeknownst to you.The storage internal and external memory full of duplicate files and data.
Back to the point six, the Content SMS refers to an SMS of a certain content subscription. For example, you may have seen an ad or something that suggests you type REG (space) BLA BLA (or anything) and sends it to 1234 (or any numbers) to get SMS every day that contains a certain content (e.g. about daily horoscope forecast) and charges you a certain amount of fee.
Perhaps your smartphone has been exposed to a malware program or one of the dangerous Android viruses. So, let’s find out about the most dangerous Android viruses.
1. DroidSnake Type A (AndroidOS_DroidSnake.A)
This is one of the most dangerous Android viruses and also the first program that works to attack GPS on the victims’ mobile. This malware program looks like a game app and its name is Tap Snake. Besides, this harmful program also looks very similar to a game app, Snake.
DroidSnake sends the victim’s GPS coordinate to the attacker and silently work as a background process to download and install a special application that allows the attacker to access the victim’s sensitive data.
2. FakePlayer Type A (SMS.AndroidOS.FakePlayer.a)
Mobile tech savvies believe that FakePlayer Type A is the first Android virus that attacks through SMS. This Android virus is a trojan that enters the system and sends paid SMS (such as Content SMS) to certain numbers unnoticed by the owner. The effect is a bloated SMS cost (for postpaid subscription) or drained phone credit (for prepaid subscription).
3. FakePlayer Type B (SMS.AndroidOS.FakePlayer.b)
This Android virus works almost the same as FakePlayer A. But FakePlayer B uses a porn to lure the victim to enable the malware. The tantalizing app is named as pornoplayer.apk and installed with a pornographic icon. But when you click on it, the application doesn’t really display any porn content but sending a paid SMS (a kind of Content SMS) to certain numbers without being noticed by the owner.
4. Geinimi (Android.Geinimi)
This app uses various faces, mostly disguise itself as a game app and is distributed in an App Market other than the Google Play Store (one of the sources was an App Market from China). Once the malware is infected the smartphone, the server computer from that app can access various information on the smartphone.
5. Zeahache (Android.Zeahache)
This malware is also widely used as a tool for rooting Android devices with an aim to improve user permissions on their smartphone. But using this malware is actually dangerous in the future because it can open the back door to allow for potential exploitation that ends with data theft.
6. DroidDream (Android.DroidDream)
DroidDream (Android.DroidDream) also known as RootCager (Android.RootCager) is also known as LooToor Type A (AndroidOS_LooToor.A). This malware has many names because it is distributed to various official Android App Market. According to Symantec, this Android virus has been infected up to 200,000 Android phones since 2011. A very fantastic number of victims as this malware program is used as a tool for rooting Android smartphones.
7. AdSMS (Android.Adsms)
AdSMS is also known as AdSMS Type A (AndroidOS_Adsms.A). It’s one of the most dangerous Android viruses that attacks SMS that targets China smartphones. AdSMS infects smartphone devices using links sent through SMS. The content of the SMS is more or less act to ask installing an Android Patch or Update to improve smartphone device security. But on the contrary, when you click the link on that SMS, it will download a malware program which is able to control your SMS feature.
8. Walkinwat (Android.Walkinwat)
This app is taken from an unofficial Android App Market. This is a kind of Trojan virus which is capable of doing many harmful things like accessing contacts, locating smartphone devices (via GPS), making phone calls, even without a background process. So, any call that is made by Walkinwat would not realize by the victims. It can also send SMS and turn off the smartphone remotely.
9. DroidDreamLight (Android.LightDD)
Many people said that DroidDreamLight is new generation of DroidDream (Android.DroidDream). This malware program is deliberately inserted into at least 24 additional applications distributed by 5 different developers which are distributed through an Android App Market.
10. Basebridge (Android.Basebridge)
This is a type of Trojan Horse Malware that sends paid SMS (a kind of Content SMS) to a number that has been specified by the maker. The app containing this malware is commonly installed on the victim’s smartphone through an unofficial Android Market with an aim to root the smartphone.
Functionally, Basebridge can be used to root the system of Android smartphones. But the negative effect is that the Android system will be exposed to this Android virus. Other than sending paid SMS, Basebridge can also monitor the phone usage such as message logs, call logs, etc.
11. DroidKungFu Type A (Android/DroidKungFu.A) also known as Gunfu (Android.Gunfu)
This one of dangerous Android viruses which works like DroidDream. The app that is distributed by this malware used to root the Android device to increase the user permissions. Once the app is installed on a smartphone device, the malware inside it can open a backdoor that allows the malware to execute various unwanted commands.
The command is being ordered by the app developer remotely. It could be a command to delete a particular file, open a webpage, download and install unwanted app (APK, which is not through the Android Store), open a certain URL, open and run applications.
12. Plankton Type A (Andr/Plankton-A)
Plankton Type A (Andr/Plankton-A) is also known as Tonclank (Android.Tonclank). This is also one of the dangerous Android viruses that work as a Trojan Horse to steal information and can open the back door on the victim’s Android device. After the malware on the run, it will instantly steal smartphone device information such as Device ID (e.g. IMEI), copy all bookmarks on the web browser, copy history (such as calls, messages, and other log files), copy all shortcuts on the device, and other harmful things.
13. Uxipp (Android.Uxipp)
Uxipp is also known as YZHCSMS Type A (Android/YZHCSMS.A). This is one of the most dangerous Android viruses which is also capable of sending paid SMS from the an Android smartphone without being noticed by the owner.And again, this Android virus is inserted in a Chinese community game app. The infected smartphone is not only send up SMS but also leaking the device data such as IMEI and IMSI numbers.
14. Crusewin Type A (AndroidOS_Crusewin.A)
Crusewin Type A is also known as Crusewind (Android.Crusewind). It’s Trojan Horse malware program that sends paid SMS to a certain number. Besides, this Android virus can also delete itself, renew itself, delete SMS, and send a paid SMS to a certain number.
15. Jsmshider (Android.Jsmshider)
Android users specifically China Android devices and those who use Custom ROM (an operating system which is not modified the official smartphone manufacturer) are easy targets for Android Trojan Horse malware. The impact of this virus infection causes apps installation without known by the users, reading, sending, and processing SMS, and installing a transparent application that works in the background process.
16. SmsSniffer (Android.SmsSniffer)
SmsSniffer is also known as SMSRep Type B/C, SmsSpy Type B/C (Android.Trojan.SmsSpy.B/C), and Smser Type A (Trojan-Spy.AndroidOS.Smser.a). ZiTMO, a kind of Trojan Horse that generally one of the computer viruses that steal data in it is also capable of infecting Android smartphone devices when the Trojan is active. All incoming and sent SMSes are sent to a specific server.
17. SpyGold Type A (AndroidOS_SpyGold.A)
SpyGold Type A is also known as GoldDream (Android.GoldDream). It seems that stealing data from infected devices with remote control is the main purpose of this Android virus. This dangerous program looks like a game app and can open the back door and allow the attacker or maker to access the victim’s Android smartphone device and steal sensitive information from SMS.
18. Fokonge (Android.Fokonge)
This Android malware program is packaged into a repackaged application like a MOD version of a game application (modified, usually the game is facilitated with a lot of points, cheating, etc.), generally distributed from unauthorized websites (like warez blogs) which offer MOD version of various Android apps.
19. HippoSMS (Android.HippoSMS)
HippoSMS (Android.HippoSMS) is also known as Hippo only (Android.Hippo). This is one of the Android viruses that works almost the same as how SmsSniffer infects Android devices. All incoming and outgoing SMSes data will be sent remotely to a particular location, generally uploaded through a URL.
20. Lovetrap (Android.Lovetrap)
This is one of the Android viruses that is classified as a Trojan malware program. This dangerous Android virus works less or more similar to the other Android malware mentioned above. It works to send paid SMS silently, steal data, and detect the victim’s location through GPS. This Android malware program is unique compared to other malware which is at first it just sends one paid SMS to a certain number, then there will be a reply from that number that contains a list of other numbers, and will be sent a paid SMS one by one as well. But the incoming SMS will be received without a confirmation from the victim and even without appearing on the inbox.
That’s all the top 20 most dangerous android viruses. Keep in mind that most of above malware programs infect the Android devices by taking the momentum from the users’ negligence. So, it’s really recommended to download and install apps directly from the a credible Android Apps Store like Google Play Store. This way is necessary to avoid Android Viruses attacking your mobile devices.