HomeBlockchainSecurityDiscovered Android app using malware to steal crypto

Discovered Android app using malware to steal crypto

A new Android app has been discovered that uses malware to steal crypto.

Considering that the address of a wallet is usually a long and hard to remember string, as well as tedious to type every time, when one uses their crypto wallet they often tend to copy and paste it somewhere, committing one of the most common mistakes of crypto owners.

Hackers know how to take advantage of these mistakes and a new Android app has been discovered that, pretending to be MetaMask, used a malware called ” Android/Clipper. C”.

Basically, this Android app was activated every time the user pasted his address on an online file, thus stealing the wallet’s credentials.

In addition, the Android app was able to replace the original addresses with those of the attacker: since some services obscure the address, it becomes virtually impossible to understand if the right private key has been pasted. The hacker’s addresses have been identified:

BTC address: 17M66AG2uQ5YZLFEMKGpzbzh4F1EsFWkmA

ETH address: 0xfbbb2EF692B5101f16d3632f836461904C761965

android app malware cryptoThe app was also discovered because the services offered by MetaMask are not available through apps but only through browser plug-ins. The app has been promptly removed from the Google store, even if it’s not the first time that the name of MetaMask has been used to create a malicious app, although never at this level of danger.

Alfredo de Candia
Alfredo de Candia
Android developer for over 8 years with a dozen of developed apps, Alfredo at age 21 has climbed Mount Fuji following the saying: "He who climbs Mount Fuji once in his life is a wise man, who climbs him twice is a Crazy". Among his app we find a Japanese database, a spam and virus database, the most complete database on Anime and Manga series birthdays and a shitcoin database. Sunday Miner, Alfredo has a passion for crypto and is a fan of EOS.