👋Introduction

freeMalwareDetection is a powerful, easily integrated SDK designed to enhance the security of your Android application by asynchronously scanning for malicious or suspicious applications in the background without impacting app performance. It provides robust protection against a wide range of threats—including SMS OTP stealers, ransomware, banking malware, spyware, and phishing apps—by allowing developers to define customizable blacklists and security policies. When a threat is found, the SDK delivers comprehensive details to help you address the issue and inform your users effectively.

Prioritizing user privacy and reliability, all scanning and evaluation processes occur entirely offline and on-device, ensuring no sensitive data is ever transmitted or stored externally. The SDK is natively compliant with Google Play review policies for a seamless rollout, while also offering optional advanced detection capabilities for developers who choose to implement the QUERY_ALL_PACKAGES permission.

freeMalwareDetection is currently supported for:

• Android

• Flutter

• React Native

• Kotlin Multiplatform

• Cordova

• Capacitor

Features

📌 In-App Malware Detection

Secure your Android app with quick, efficient threat scans. Detect SMS OTP Stealers, Ransomware, Fraudulent Apps, Spyware, Risky Apps, Copycats, Clipper Malware, Fake Security Apps, Keyloggers, Phishing Apps, Malware Droppers and Banking Malware.

🛜 Offline Processing – Everything Happens On-Device

All scanning and evaluation is performed directly on a device, ensuring complete functionality without the need for an internet connection. This approach enhances both reliability and privacy, as no data is transmitted or stored externally.

🛡️ Customizable Blacklists Easily define and manage multiple types of blacklists to tailor malware detection to your needs.

⚡ Asynchronous Scanning Perform malware scans in the background without affecting the app's performance.

🔍 Comprehensive Details Receive detailed information on detected threats to inform users effectively.

✅ Google Play Review Compliant

Malware detection generally complies with Google Play policies without any additional involvement. Optional improved detection capabilities utilizing QUERY_ALL_PACKAGES permission (optional feature) require further steps.

🚀 Easy Integration Simple integration process with robust documentation and support.

Everything you need to detect fraud & abuse malware

Infography

Main usage scenarios

a) Process Risky Apps in Your Business Logic (Without User Involvement)

Malware detection provides a list of suspicious apps, allowing your business logic to take appropriate action based on your objectives:

• 📊 User and device risk scoring – Assess potential threats based on detected apps.

• 🕵️ Study malware – Analyze malicious behavior to improve defenses.

• 🔒 Block some features – Restrict access to sensitive actions for security.

• ⚠️ Monitor and prevent new scams – Detect emerging fraud patterns targeting your business.

b) Display Malware Warning UI to Alert Users (With User Involvement)

1. Developer (during development): Define criteria for suspicious apps using blacklists and suspicious permission lists.

2. SDK (at runtime): The SDK scans the device for suspicious apps installed on the device.

3. Your app (at runtime): Display the malware warning UI to alert users and allow them to confirm the trustworthiness of the listed risky apps (or some of them).

4. User: Users can approve trusted apps or uninstall detected apps that seem malicious or potentially malicious.

5. SDK (at runtime): Approved apps are added to the whitelist to prevent future warnings about the same apps.