• Dapps:16.23K
  • Blockchains:78
  • Active users:66.47M
  • 30d volume:$303.26B
  • 30d transactions:$879.24M

Crocodilus: The Latest Threat to Android Devices in Mobile Banking

user avatar

by Giorgi Kostiuk

2 days ago

A new mobile banking malware, Crocodilus, has been identified on Android devices. It targets crypto wallets through social engineering tactics.

Crocodilus Threat and Features

Crocodilus, discovered by Threat Fabric experts, possesses all key features of modern banking malware. It supports overlay attacks, keylogging, remote access, and hidden remote control. Its uniqueness lies in device takeover and advanced credential theft, using a proprietary dropper to bypass Android 13+ restrictions.

Crocodilus malware operates on a modus operandi akin to contemporary device takeover banking Trojans, as analysts pointed out.

How Crocodilus Works

Once installed, Crocodilus requests the 'Accessibility Service' and connects to a command-and-control server for instructions. It was identified in Spain and Turkey, targeting crypto wallets. Crocodilus bypasses two-factor authentication by using a RAT command to capture screenshots from the Google Authenticator app.

Recommended Security Measures

Crocodilus is unique in coaxing users into providing sensitive information via social engineering. Users are advised to double-check apps before granting Accessibility Service permissions and never share seed phrases. If an app seems odd, it’s better to avoid it. Keeping apps updated can also help defend against such threats.

Crocodilus poses a serious threat to Android users, particularly those dealing with cryptocurrencies. It is crucial to follow security measures and remain vigilant about app activities.

0

Share

Other news

Top Cryptos for Quick Profit in 2025: Qubetics, Sonic, and Cronos CRO

An analysis of Qubetics, Sonic, and Cronos CRO as potential leaders for rapid growth in the crypto market by 2025.

user avatarGiorgi Kostiuk

a few seconds ago

Cryptos to Invest in April 2025: Qubetics, HNT, and ICP

Exploring the prospects of Qubetics, HNT, and ICP as cryptocurrencies for investment in April 2025.

user avatarGiorgi Kostiuk

a minute ago

BlackRock Approved by FCA for Crypto Asset Operations in the UK

BlackRock gains FCA approval to operate in crypto assets in the UK, opening new opportunities for European investors.

user avatarGiorgi Kostiuk

a minute ago

Crypto Stories: TRUMP and Arctic Pablo Coin – A New Wave of Opportunities

Success story of TRUMP Meme Coin inspires Arctic Pablo Coin with its unique approach and growth potential.

user avatarGiorgi Kostiuk

10 minutes ago

ARB Token Reclaim: Will Arbitrum's Strategy Change?

Arbitrum considers reclaiming 225 million ARB tokens, while Ethereum is close to a positive monthly closure. BlockDAG launches beta testing.

user avatarGiorgi Kostiuk

11 minutes ago

How BlockDAG, Sui, and Optimism Are Transforming the Crypto Market

An analysis of BlockDAG, improvements in Sui, and the growth of Optimism in the crypto world.

user avatarGiorgi Kostiuk

11 minutes ago

dapp expert logo
© 2020-2025. DappExpert. All rights reserved.
© 2020-2025. DappExpert. All rights reserved.

Important disclaimer: The information presented on the Dapp.Expert portal is intended solely for informational purposes and does not constitute an investment recommendation or a guide to action in the field of cryptocurrencies. The Dapp.Expert team is not responsible for any potential losses or missed profits associated with the use of materials published on the site. Before making investment decisions in cryptocurrencies, we recommend consulting a qualified financial advisor.