Sony’s controversial movie The Interview has already earned $18 million even despite being banned to show in cinemas. However, it turned out that if you try to download a pirated version of the movie, you run the risk to catch some mobile malware instead.

The Interview is the film that satirized the North Korean regime and became the reason for the recent cyber attack on Sony. Of course, this movie elicits lots of interest in South Korea. One of the local Android smartphone apps offers access to a pirated download of the movie, but the security researchers warn that it’s actually stealing people’s banking details instead.

The “download” of the movie contains an Android Trojan, which installs a two-stage banking Trojan onto mobile devices. The security researchers pointed out that the banking Trojan, which is hosted on Amazon Web Services, targets customers of some Korean banks and an international Citi Bank. Apparently, the malicious application transmits banking information from infected devices back to a Chinese mail server, and at least 20,000 devices have already downloaded it.

However, Amazon has denied that the Trojan was hosted on its cloud service, claiming that the company has a clear acceptable use policy. In other words, whenever Amazon has received a complaint of misuse of the services, it has moved swiftly to strictly enforce it. The company claimed that the activity being reported was not running on Amazon Web Services.

The inability for users to watch the movie legitimately has led people all over the world to turn to piracy. The statistics say that at least 200,000 people downloaded the movie from torrent trackers in 24 hours after it was released on YouTube, Google Play and Xbox Live in the United States.