A new Android malware-as-a-service (MaaS) called Cellik is being advertised on underground cybercrime forums. The malware offers robust capabilities including the ability to embed itself in any app available on the Google Play Store. Cellik represents a significant threat as it allows cybercriminals to create malicious versions of legitimate applications from Google Play, potentially affecting a wide range of Android users. The malware-as-a-service model makes it accessible to less technically skilled attackers, increasing the potential for widespread distribution.