The malware is said to affect users in Spain and Turkey but it is good for people to know about it. It can target your bank app, crypto wallets and have access to information on your device.
It can know what you typed that displayed on the screen. It is said to even be an advanced keylogger, revealing your authenticator OTP. It will deceive you into providing your wallet seed phrase and many more.
It is good to read more about it:
https://www.threatfabric.com/blogs/exposing-crocodilus-new-device-takeover-malware-targeting-android-devicesim really aware about this in the last few months . in some hacker forum they talk about this, more like a rat tools but now on smartphone . I can tell these sophisticated banking trojans are becoming increasingly dangerous.
The most alarming aspect of Crocodilus is its ability to capture authentication codes and screen content in real-time. This essentially defeats the purpose of two-factor authentication, which many crypto users rely on for security.
While it's currently targeting users in Spain and Turkey, these malware families typically expand their reach quickly. The threat actors often refine their techniques in smaller markets before going global.
Yes, that's why it's not only just a key logger, it's what they call accessibility keylogger as it can capture anything and all events that you do in your mobile devices, including OTP code and sent it to their command and control.
Criminals are getting more sophisticated and they really used a lot of techniques that keeps evolving because they know that it's going to be worth to make this malware because of the potential to hit us and steal our hard earn money.