Riskware:Android/SmsPay.variant!Online

Classification

Riskware

Riskware

Android

Riskware:Android/Smspay.variant!Online

Summary

This detection from the F-Secure Security Cloud identifies Android apps with code or behavior similar to Riskware:Android/SmsPay. SmsPay variants are typically repackaged or trojanized apps, which are legitimate programs that have been recompiled with additional components and then redistributed.

Removal

Automatic action

Once the scan is complete, the F-Secure security product will ask if you want to uninstall the file, move it to the quarantine or keep it installed on your device.

Find out more
Knowledge Base

Find the latest advice in our Community Knowledge Base.

Product Manual

See the manual for your F-Secure product on the Help Center.

Contact Support

Chat with or call an expert for help.

Submit a sample

Submit a file or URL for further analysis.

Technical Details

About Security Cloud

F-Secure's Security Cloud is an online service that tracks the security reputation of common programs, files and websites. If a questionable program or file is found during a scan, your F-Secure security product will send a query to the Security Cloud to get its most recent reputation rating. The product will then use that information (and if needed, further analysis) to choose whether to block, quarantine or remove the program or file.

The Security Cloud rating for the identified app indicates that it has code similar to Riskware:Android/SmsPay. SmsPay variants are repackaged legitimate apps that contain an additional module to send and receive SMS messages. While not malicious in itself, such functionality is also commonly misused by Android malware to silently send premium-rate or spam SMS messages.

The app's SMS-sending behavior may result in unexpectedly high phone charges if the user is unaware of the app's capabilities. This behavior may also be legally questionable, depending on the jurisdiction and if it is done without the user's knowledge or consent.

While apps with this behavior may be legitimately used by the device's authorized user, they are classified by security programs as riskware because in the hands of unauthorized users, they can also be used to cause damage to the user's data or the device.

If you are confident that you are aware of the risks involved in using the app and consent to its use, you may choose to keep the app installed on your device.

Date Created: -

Date Last Modified: -