The most recent case was discovered this week by ESET security researchers. The malicious app, disguised as a Flash for Android package, was offered as an automatic download to users landing on the flash-update[.]info website. Users ended up on this site after being redirected from malicious adult sites, and via social media spam, they were told they needed an updated Flash Player to view the content of another site. Users who downloaded and installed this fake Flash app would be infected with a generic “malware downloader
Source: