Android File Manager apps in the Google Play Store used as vectors for SharkBot malware

Multiple file managers listed on the Google Play Store are being used as methods to deliver malware to Android phones and tablets.

According to a new report by Bitdefender, the method these apps use in order to infect smart devices with malware is to be completely harmless upon submission and the initial download and install of the app. The malware itself is injected after it's installed and runs via a remote connection. Since they're file managers, the dangerous permissions needed for the Sharkbot banking trojan were less likely to be noticed.

The Sharkbot malware targets banking information by impersonating login forms over legitimate ones found in banking apps. The infected apps, including X-File Manager and FileVoyager, are no longer available for download via the Play Store. In order to avoid other apps on the Play Store that could be infected, you should enable the Play Protect service that automatically uninstalls apps as they're discovered to be malicious.

Further coverage: Bitdefender BleepingComputer