I've an android app published on google play.
I've had some problems with hackers and piracy in the past [people who decompile modify and recompile the app then publish it somewhere]

In order to reduce the problem, one of the measures I took was to ABORT the app case I detect it was installed from somewhere other than google play. The code is very simple

context.getPackageManager().getInstallerPackageName(context.getPackageName());

case it was installed from google play it returns com.android.vending

case something is returned i log the exception and abort the execution asking user to reinstall from google play

It works very fine, but recently some users were caught with com.google.android.packageinstaller

I've tried to search around but couldn't find a good explanation for WHAT IS THIS PACKAGE, is it a real google product? is there any official documentation showing it?

com.android.vending is the package name of Google Play Store. However, in Android, the apps installed outside from Google Play (from apk file) are installed through another system app embedded in every android phone. It is called Package Installer. com.google.android.packageinstaller represents the Package Installer system app, so you can completely say that users caught with com.google.android.packageinstaller are those who installed the app from an apk file, downloaded from anywhere else.