To widespread their malicious programs quickly, cybercriminals always look for a medium with a vast user base. Currently, there is no better medium with a huge user base than Android.
Stay malware-free with reliable antivirus
Don't compromise your Data and Privacy. TotalAV is a top-notch antivirus program that handles various viruses, trojans, and other malware that may target your devices. It will safeguard your devices and enhance your system performance.
Over the last decade, Android has become a soft target for cyber attackers to carry out illicit activities. It is because Android is an open-source program, making it highly customizable, unlike iOS. It is easy for cybercriminals to infiltrate an Android device using malicious apps. The malware programs like Trojans, Adware, Spyware, Keyloggers, and more
To protect your Android devices from malware attacks, first, it is essential to know what are the latest types of malware that are creating havoc.
In this post, we will provide you with the latest Android virus list so that you can inform yourself and stay protected from them.
Latest Android Virus List
Cybercriminals download ordinary apps from Google Play, add malicious code to them, and then submit the modified versions to Google Play with a new name. The functionality indicated in the description of the apps may still be present, thus users may not even be aware that a vulnerability exists.
In 2024, the number of unique malware installation packages was 1,201,463, which is slightly less than in 2023. The change is small, showing that mobile threats are no longer growing quickly and may be staying at the same level.
Adware remained the most common mobile threat, followed by RiskTool apps, which often disguise themselves as useful utilities. Notably, Trojan Banker threats increased, signaling a shift toward more financially motivated attacks targeting mobile users’ banking and payment information.
Notable Malware Attacks
SparkCat (OCR Trojan) : a dangerous malware that can steal sensitive data from your smartphone gallery. Many people store important photos or screenshots there – like documents, bank details, or even seed phrases for crypto wallets – for convenience. The most alarming part is that this malware has reached official app stores, with nearly 250,000 infected apps downloaded from Google Play alone.
New distribution scheme for the Mamont banking Trojan, targeting users of Android devices in Russia. The attackers lured users with a variety of discounted products. The victim had to send a message to place an order. Some time later, the user received a phishing link to download malware disguised as a shipment tracking app.
NFC banking scam (SpyNote RAT), where the scammers employed phishing websites to spread malicious mods of the legitimate app NFCGate. These used a variety of pretexts to persuade the victim to place a bank card next to the back of their phone for an NFC connection. The card details were leaked to the fraudsters who then made small contactless payments or withdrew money at ATMs.
Top 10 Android Malware of 2024
| Threat Name | Category |
|---|---|
| Trojan.AndroidOS.Fakemoney | Trojan |
| DangerousObject.Multi.Generic | Generic Threat |
| Trojan.AndroidOS.Triada | Trojan |
| Trojan-Banker.AndroidOS.Mamont | Trojan-Banker |
| Trojan.AndroidOS.Boogr.gsh | Trojan |
| Trojan-Downloader.AndroidOS.Dwphon | Trojan-Downloader |
| Trojan-Spy.AndroidOS.SpyNote | Trojan-Spy |
| Trojan.AndroidOS.Fakeapp | Trojan |
| Trojan-Downloader.AndroidOS.Agent | Trojan-Downloader |
| Backdoor.AndroidOS.Tambir | Backdoor |
Android Malware Discovery in 2025
SuperCard X
This Android malware turns phones into malicious tap-to-pay machines. It uses NFC which enables your phone to read the data on a supporting payment card when it comes close enough. Rather than attacking people with accounts at a particular bank, it works against anyone with a payment card, increasing the attacker’s scope.
As per the report from Cleafy, SuperCard X’s developers have focused on making this software as stealthy as possible. Most antivirus programs for Android fail to spot it because it asks for as few privileges as possible on the phone, and it doesn’t include many of the features that other malware has.
Spylend
Spylend masquerades itself as a financial app named Finance Simplified (APK name “com.someca.count”) on the Google Play Store but engages in predatory lending, blackmail, and extortion aimed at Indian users.
By leveraging location-based targeting, the app displays a list of unauthorized loan apps that operate entirely within WebView, allowing attackers to bypass Play Store scrutiny as reported by Cyfirma.
FatBoyPanel
It is a Trojan Bankers specifically designed to target financial institutions in India. The malware is distributed through WhatsApp as APK files masquerading as legitimate government or banking applications. Once installed, these apps deceive users into disclosing sensitive financial and personal details.
Cybersecurity firm Zimperium, which discovered the malware, said that it removes its own icon so it becomes invisible. It disables Google Play Protect, gains permission to read SMS messages, and intercepts OTPs (one-time passwords).
Triada Trojan
The new version of Triada Trojan (Backdoor.AndroidOS.Triada.z) is embedded in the firmware of fake Android smartphones available from online marketplaces. It can attack any application running on the device. This gives the Trojan virtually unlimited capabilities, says Kaspersky.
It can control text messages and calls, steal crypto, download and run other applications, replace links in browsers, surreptitiously send messages in chat apps on your behalf, and hijack social media accounts.browsers, surreptitiously send messages in chat apps on your behalf, and hijack social media accounts.
Vultur: The Shape-Shifting Banking Malware
Vultur was first identified in 2021. Fast forward to 2024, and Vultur has evolved, morphing into an even larger threat as reported by the NCC group.
Once primarily a banking malware, Vultur has now gained new capabilities that give it greater control over your Android device. So, how does it find its way into your smartphone? The answer lies in social engineering. Cybercriminals are becoming savvier, masquerading Vultur as a seemingly harmless app – the trusted McAfee Security.
Once it has gained access, your device becomes a playground for these cyber outlaws. They can manipulate your device, pilfer your credentials, and mainly target your banking apps. So, the next time you’re downloading an app, bear in mind that appearances can be deceiving—or in this case, McAfee.
HiddenAds Malware: The Wolf in Sheep’s Clothing
Ever found yourself dealing with an app that just wouldn’t stop displaying aggressive ads, leaving you baffled as to which app is the culprit? Allow us to introduce you to the world of HiddenAds malware.
These sly little programs camouflage themselves as mobile games, infiltrate your device, and then, true to their name—they go into hiding. They either mimic the Google Play Store’s icon or become invisible altogether. Once they’ve settled in, they bombard you with ads, turning your device into a mobile billboard.
Joker Spyware
Joker is a spyware that gathers contact lists, SMS messages, and details about affected devices. Joker also has the capacity to register the device for premium services without the owner’s consent, monetising the malware infection.
List of known Android Malware Apps 2024
In the previous section, we got to know about the top 10 Android malware types. Now we will list out the top dangerous Android applications that carry or promotes that malware.
Here is the list of the known Android Malware Apps of 2024:
| Malware | App |
|---|---|
| HiddenAds | Agent Shooter (500,000 downloads) |
| Rubber Punch 3D (500,000 downloads) | |
| Rainbow Stretch (50,000 downloads) | |
| FakeApp | Eternal Maze (Yana Pospyelova) (50,000 downloads) |
| Jungle Jewels (Vaibhav Wable) (10,000 downloads) | |
| Stellar Secrets (Pepperstocks) | |
| Fire Fruits (Sandr Sevill) (10,000 downloads) | |
| Cowboy’s Frontier (Precipice Game Studios) (10,000 downloads) | |
| Enchanted Elixir (Acomadyi) (10,000 downloads) | |
| Joker | Easy Metal Detector (VIA APP) |
| Chat Messages (VIA APP) | |
| Cool Beauty Camera (Rounak Pariwar Digital Bazaar) | |
| Prank Fest – Prank sounds (ABHINAV KARN) |
It is essential to know that most of these apps are also available on Google Play Store. Unfortunately, because of a library of millions of apps, it is pretty challenging for Google to keep the Play Store free of malicious apps.
If your phone carries one or multiple apps from the above list, it is advised to immediately get rid of them and scan your system with a robust antimalware program.
Bottom Line
With the growing dependency on modern gadgets like smartphones, tablets, smart TVs, and more, the risk of cyberattacks is also expanding. It is essential to keep all your device protected from cyber attacks. For that, you require a robust security solution like MalwareFox. It is available for both Android and Windows devices.
I have Total AV and have been using it for 2 and a half years and haven’t had any Viruses and things I recommend it I give it 4and a half stars.