Sideloading apps on an Android device is often used as a way to bypass regional restrictions or to get updates faster. Sometimes it can be the only option when a desired app is not available via the Play Store for one reason or another. To ensure that the APKs you’re about to install are safe, it would be wise to scan them first for any potential threats. Fortunately, several reliable tools are available, and we’ve gathered some of them for you here.
Good to know: learn how to protect your phone from photo-stealing malware like SparkKitty.
Why You Should Scan APK Files
Sideloading apps works well on Android, but there are some disadvantages. For one, sideloading is not allowed on Android devices by default. You will need to allow installation from unknown sources in Settings before anything. On newer devices, this will entail turning Google’s Advanced Protection off.
In addition, you won’t be getting updates for these apps automatically. You have to remember to update the app manually once an update becomes available in your area.
A more serious disadvantage is the inherent security risk that sideloading represents. Because APK files don’t come from the Play Store, you can’t always be 100% sure that the app is as its developer intended it to be. In some cases, APK files are pirated to bypass some restrictions (such as in-app purchases) or, worse yet, injected with malware that will compromise your phone’s security.
One way to prevent these nasty viruses from infecting your phone is to download APKs from trusted sources only. Here are some suggestions on the best websites to download APK files safely.
Another way you can prevent malware from being loaded onto your phone is by scanning your APK files for viruses before installing. Below, you can find the best methods that can help you scan an APK.
Use Your Phone’s Built-in Scanning Feature(s)
Most modern Android phones come with built-in options that allow you to scan the apps installed on your phone for harmful behavior.
Open the Google Play Store app on your Android device, which is available by default (unless you’re using a Huawei phone or accidentally deleted the icon from view, you should be able to find it on your phone.)
Tap your Google account profile picture in the upper right corner and select Play Protect on the next screen.
Tap the Scan button to have Google scan your phone for any app-related issues.
To maximize efficiency for Play Protect, tap on the gear icon in the upper-right corner and toggle on the switch next to Improve harmful app detection (if it’s not already on).
You can also access Play Protect by going to Settings → Security and privacy → App security.
Smartphones from some manufacturers might have their own protection protocols in place. For instance, Samsung has its own alternative, which you can access by going to Settings → Device care.
To see the results of the Samsung scan (powered by McAfee), tap on the Check issues button.
At the same time, you can navigate to Diagnostics under Device care, and check to see if Samsung has found any security issues with the apps on your phone.
If you have a Motorola phone, these devices come with the Moto Secure suite, designed to protect and optimize your phone.
Tip: for more tips to increase your Android security, check our guide.
While useful to have, Google’s Play Protect is not 100% fullproof and might let a malicious app slip by. As an extra security precaution, you might also want to use an online scanning tool to verify your APKs.
VirusTotal
VirusTotal is an online tool that analyzes your APK files and helps to detect all kinds of viruses and malware that may be present. The service is easy to use: just upload your files to make sure they are bug-free. Additionally, you can copy-paste URLs in VirusTotal or use the search function to check IP addresses, domains, or file hash. Then, VirusTotal will run the file through various security vendors.
VirusTotal is also available as a mobile app, which can also scan the apps installed on your device, as well as individual files (in our testing, this option didn’t work) and links. It can be downloaded from the Google Play Store for free.
Internxt
An alternative opinion is Internxt, which lets you drag-and-drop files up to 1GB in size for scanning.
Powered by BitDefender, their scan will quickly tell you whether the file is clean or if it’s plagued by issues.
FYI: also get up to speed with tips on how to avoid malware when using WhatsApp.
Install an Antivirus App
If you regularly install APKs on your phone, it might be worth downloading a mobile antivirus app. Doing so can also help keep your device free from other threats.
I recommend using Malwarebytes, an app that has helped me successfully remove malware from my devices on several occasions in the past. Other options worth mentioning are BitDefender and Norton360.
Even as you’re taking steps to make sure the APKs you’re looking to install on your phone are safe, some malware, such as Brokewell, can quietly install malicious APKs on your device without your knowing. Read our post to learn how to protect yourself against such threats.
