An adware campaign called Kemoge not only aggressively serves ads to Android devices, but also can open a backdoor and install malicious components leading to remote takeover of an Android device. Google has been busy removing apps from Google Play that are disguised as popular selections that are actually pushing what starts out as adware but eventually turns more malicious. The malware collects device information and sends it to the command and control server and then begins aggressively serving ads to the device, regardless of what the user is doing on the device.
Source: https://threatpost.com/kemoge-android-adware-campaign-can-lead-to-device-takeover/114946/