The Locker virus can easily be identified by its blatant malicious behavior. Windows appear on the top of the home screen that prevents users from being able to use their phones. Virus will then keep the contact information of the users and use it to extort money. Virus mainly disguises itself as system applications, like Android Update, Voice Assistant, and Adobe Flash Player. The worst-hit areas of the virus in China are shown in Figure 1 below. There are about 3,000 users infected on daily basis.”]
Source: https://securityaffairs.co/wordpress/53194/malware/analysis-mobile-locker-virus.html