Cybercriminals are taking advantage of the growing popularity of the Cockroach Janta Party (CJP) to trick Android users into downloading harmful apps, according to a cybersecurity start-up in Mumbai. A 33-page report from May 22 points out a fake Android app posing as the official CJP app,which carries serious malware risks that could compromise user data.
The report explains how the scam app asks for sensitive permissions like SMS, contacts,and storage,which are often targeted by spyware and banking malware. This kind of unauthorized access can lead to stolen one-time passwords (OTPs), user activity monitoring, and the capture of personal credentials. The findings show that the app has no ties to CJP and is instead banking on its appeal to Gen Z users.
Forensic analysis of the app,called cockroach.janta.party, showed behaviors typical of spyware and Remote Access Trojans (RATs). These include excessive permission requests and links to a command-and-control setup. The report mentions that the app has spread through WhatsApp chains,Telegram groups, and multiple websites .
During the investigation, researchers received APK file named “Cockroach Janta Party.apk” They were curious and installed it on Android device. “Immediately after installation, the application began requesting a large number of dangerous permissions,including access to SMS messages,contacts,call logs, camera,storage,and most critically,the accessibility service,” said Santhosh Kumar,a researcher at TraceX Labs. The suspicious nature of these requests raised immediate concerns about app's legitimacy.
TraceX Labs used a mix of manual testing, static analysis,and reverse engineering to break down the APK. Analyzing the AndroidManifest.xml file revealed multiple dangerous permissions and suspicious services . Further digging into the Smali files uncovered malicious modules aimed at stealing call history.
Cybersecurity expert N. Ashwin warned that the rise of the CJP movement has created ripe environment for cybercriminals targeting younger audiences with social engineering tactics. “Attackers use curiosity, meme culture, and politically viral content to lure users into downloading harmful APKs,” he said.
Kiran Singh Rajpurohit,another security researcher at TraceX Labs,pointed out trend of using politically charged content to spread malicious software. “Users should steer clear of unofficial APK files because attackers may exploit those trends to distribute spyware or banking malware,” he cautioned.
The report suggests that Abhijeet Dipke,the founder of CJP,should warn supporters that app is not connected to him and that the organization has been impersonated. This step could help shield users from potential threats linked to the fake application.
