The malware known as Android.banker.A2f8a is being distributed through a fake Flash Player app on third-party stores, Quick Heal said in a statement.
After downloading the app, the trojan keeps checking for the installed apps on the victim's device and particularly looks for the 232 banking and cryptocurrency apps, it added.
Once any of the targeted apps is found on the device, the app shows fake notifications disguised as coming from the targeted app and asks users to log in with their credentials and ultimately, tricks them by stealing their login ID and password.
He also advised users to install reliable mobile security solutions that can detect and block malicious apps before they infect device and steal sensitive data.
Disclaimer: No Business Standard Journalist was involved in creation of this content