Looks like you get 1,000 downloads for $155
Here's the actual article at Check Point, not linked from the garbage article:
Turns out the malware is delivered in the RXDrioder SDK, which developers incorporated to get ad revenue, I guess.
Check Point claims that the app developers appear to have been hoodwinked into incorporating the SDK because they are independent of the SDK developer. Which may mean that these DL numbers are not as inflated as people think.
Fuck. If that's true, our app market really is driven by 12-year-old boys. Which is why my serious technical apps with years of development behind them are selling like 3 copies. And why Apple thinks innovation equals new emojis.