Compromised environment
Emulators
Emulators run your app in a virtual environment instead of a physical device — typical of bulk automation, analysis and abuse.
What it is
An emulator imitates an Android device in software (e.g. QEMU-based), enabling easy instrumentation, scripting and bulk execution.
How attackers use it
Attackers run apps at scale on emulators for abuse, fake sign-ups and automation, and to make analysis easier.
How Appsolid detects it
Property & device-file detection
Checks goldfish/ranchu/qemu-related system properties and emulator device files.
Clean exit on detection + report
On detection it reports an EMULATOR event and exits cleanly.
Honest scope: Legitimate testing on emulators exists, so it's opt-in and clean-exit by design.