The origin of Faketoken malware dates back to 2014 when it was used as a banking trojan to illegally transfer funds from bank accounts. The malware intercepted text messages to extract OTPs. Now, the latest iteration of Faketoken is capable of sending SMS messages from a compromised device, according to popular antivirus maker Kaspersky.
I would recommend you to stop using modded apps of popular services just to save a few bucks. You could be potentially compromising your personal data by settling for these apps. If you prefer using app stores or websites other than Google Play, keep the option to install third-party apps disabled right after you install them.
