If you are one of the 500,000 users who have downloaded Guide for Pokemon Go, which is available on the Google Play Store, you absolutely need to delete it now.
Don't Miss: Super Bowl 2017 Ads
According to Softpedia, telemetry data shows that at least 6,000 users of the app had their phones rooted and under the control of a malware author.
Further research also showed that there was another version that players had downloaded, but it was later removed. There are nine other apps with the same trojan inside of it, all filed under different names on the Play Store. Most of these apps weren't installed more than 10,000 times though one did reach 100,000 times.
Whoever is creating the apps, they are extremely experienced and know how to make the most of the popularity.
According to analysis by Kaspersky, the trojan was detected under the generic name of HEUR:Trojan.AndroidOS.Ztorg.ad. It is extremely advanced and makes removal difficult. It was also extremely difficult
Researchers say the app uses a commercial packer, an application designed to scramble and hide code to prevent analysis by security researchers. It was also difficult because the trojan doesn't immediately ping back to its creators. Instead, it creates a random web of commands that makes it difficult.
"Victims of this Trojan may, at least at first, not even notice the increase in annoying and disruptive advertising, but the long term implications of infection could be far more sinister," says Roman Unuchek, Senior Malware Analyst, Kaspersky Lab. "Even though the app has now been removed from the store, there’s up to half a million people out there vulnerable to infection - and we hope this announcement will alert them to the need to take action," Unuchek also adds.