Malicious applications are really file explorers, this way they do not raise suspicion at the time of being installed from the Google Play Store. Initially they do not have the malware stored, but instead download it later once the application is installed on the phone, this way they can bypass the store's filters in order to publish the application.
Malware, called Sharkbot, is a Trojan that aims to steal banking data by showing fake login forms. When logging in, the data is sent to the criminals.
After some warnings from analysts, Google has already removed the applications from the Play Store, but this does not prevent users who installed it previously from being infected with the virus. These applications are X-File Manager and FileVoyager.
This situation reminds us to carefully check what we install on our devices, even if it comes from the official stores.
Fountain: Bleeping Computer