Last time the alert from 'Pirrat' in your Russian forum was a 'Suspicious file' false warning from 2 of 61 scan engines.
Please send the file to virustotal.com and provide a link with the result?
The Aptoide app is not installed on my Danish phone, so I hope your post get attention from others, who are able to analyze further.
I expect Nokia make sure to provide a clean version, if the Android update comes with the Aptoide Store pre-installed ... but there is no guarantee if you got the APK from elsewhere?
Are you facing any issues with the phone, or is it an alert you get after installing the Dr.Web anti-virus software?
Google distribute Over The Air updates for Nokia branded Android phones.
Google of course scan all files they distribute, using all the tools and technology they have.
Depending on phone variant (TA-????), mobile operator, and country, the firmware may come with a custom app store (and other local apps) which may use aptoide.com as backbone.
In my opinion you trust the anti-virus program and a random person in their forum too much. It is incompetent to claim a virus just because it has aptoide in the .apk file name.
I will never install any app that requires as many permissions as the Dr.Web anti-virus. VirusTotal Mobile (by FunnyCat) maybe, but only if had an old phone on Android 4 or 5 without security updates and without Play Protect, and I was forced to get apps from friends and unofficial places.
Modern Android versions are only vulnerable to virus if rooted...
Don't hold your breath while waiting for HMD to explain anything ;-)
Application file name com.aptoide.partners.id3_store.apk included in our OTA version 5.22A is not a virus. ID3 Store apps is an application required for one of our local user package. Due to the OTA package is released worldwide for Nokia 6, this apps will be included but it is activated only in the market where it is required.
The simple thought that HMD Nokia is to put a virus in a OTA SW package is, little to say, ridiculous.
C'mon people, this are Nokia phones after all.
I do not know what antivirus our colleague Pavel is using, but just the name of the file coming with a SW update says it all.
There are lots of android devices that have embedded files with content that is not being used, as some of them are made to work in specific environments by specific request. Do not forget that the devices are made to work worldwide.
What you should really do, in my humble opinion, is to contact the Dr.Web people and inform them that this is not a virus. You have a Moderator confirming this.