With all the buzz around the PC ransomware WannaCry, it’s no surprise that a fake antivirus (FakeAV) has emerged on Google Play. Entitled WannaCry Ransomware Protector for Android, the bold claim it makes is right in its name. So how do we know this claim is false? Simple, there is no WannaCry Ransomware for mobile — at least not at the time of this writing. Furthermore, the fact that Google Play has already pulled it from the store supports our case.
To see this FakeAV in action, click through the slideshow below:
[gallery type="slideshow" size="large" ids="18485,18486,18487,18480,18481,18482,18483,18484,18498"]
As you can see, there isn’t much to it. After running a fake scan, it gains revenue through advertisements and through installs of more apps. Note that the apps shown to install are legitimate and found on Google Play. Other than making a false claim about protecting against the WannaCry ransomware, the app is harmless.