I’m not entirely sure how an on-demand scan (which is the primary check) can be effective in scanning an .apk.
This would effectively have to be installed on a mobile phone and it actions monitored and why I suggested sending the .apk to Avast and the labs team to do that.
The Behaviour check in VT is still apparently running, but that does raise a point - Crowdsourced IDS rules