Stay up to date

Stay up to date

Security Alert Mobile Application Security

Security alert | 6 new apps with Joker malware on Google Play

Picture of Roxane Suau
By Roxane Suau on August, 31 2020

Update September 2nd: The infected applications have now been deleted from Google Play, but are still installed on the devices of their users.

Joker is a malicious bot (categorized as Fleeceware) which main activity is to simulate clicks and intercept SMS to subscribe to unwanted paid premium services unbeknownst to users. By using as little code as possible and thoroughly hiding it, Joker generates a very discreet footprint that can be tricky to detect.

In the last year, the malware was found hiding in hundreds of apps. Today, Pradeo once again identified infected applications on Google Play (listed below), showing the store's struggle to prevent malicious activities on its platform. Altogether, the 6 apps account for nearly 200.000 installs. Users are advised to immediately delete them from their device to avoid fraudulent activities.


Applications details

Safety AppLock
Version: 6.5
Installs: 10.000+

Capture d’écran 2020-08-31 à 10.00.14

Convenient Scanner 2
Package: com.convenient.scanner.tb
Version: 14.0.4
Installs: 100.000+

Capture d’écran 2020-08-31 à 10.00.04

Push Message-Texting&SMS
Package: sms.pushmessage.messaging
Version: 4.13
Installs: 10.000+

Capture d’écran 2020-08-31 à 09.59.50

Emoji Wallpaper
Package: tw.hdwallpaperthemes.emoji.wallpaper
Version: 14.3
Installs: 10.000+

Capture d’écran 2020-08-31 à 09.59.40

Separate Doc Scanner
Package: sk.pdf.separatedoc.scanner
Version: 2.0.74
Installs: 50.000+

Capture d’écran 2020-08-31 à 09.59.24

Fingertip GameBox
Version: 3.0.7
Installs: 1000+

Capture d’écran 2020-08-31 à 09.59.09


For more information, write to


Get in touch with mobile security experts

Contact us