Fake Cellik malware is a loud app from Google Play

The fake Cellik malware is a loud app from Google Play aimed at attacking Android users.

Disguising as a famous application is called a popular method of malware spread, where there are many malware that use it, and this malware is another step towards "ordered" disguise.

According to a report by the website Bleeping Computer, a research team from iVerify, a company that develops malware and mobile phone cyber detection tools, has detected a new malware. Cellik is sold on the black market under a rental model (MaaS or Malware-as-a-Service) for US $150 per month (THB 4,660.50) and US $900 (THB 27,962.98) for a lifetime plan. The malware is featured in the tool for creating installation files, or APK Builder that allows user hackers to select applications that need to be located on the official app store of an Android user. Google Play Store to create installation files emulate the chosen application at will.

In addition, this malware also has many capabilities, including secretly capturing screenshots and streaming back to real-time hackers, intervening in application notification systems to use it itself, accessing files on the machine to secretly send out to hackers (Exfiltration), Wipe Data, contacting the control server (C2 or Command and Control) via the Encrypted Channel. The malware also has a web browser that is invisible to the owner of the machine to allow hackers to use the Cookies files on the machine to access the website through the machine. The victim can secretly impersonate the victim and also have the ability to steal the victim's password by stacking the screen with a fake login screen.

# Welcome 2026 # Take care of yourself # Open budget # Includes IT matters # Trending