← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
Crypto malware in patched wallets targeting Android and iOS devices | WeLiveSecurity
WHITE mohdrennis 2022-03-25 Modified: 2022-04-24
190
IOCs
HIGH VOLUME
ESET Research has uncovered a sophisticated scheme that distributes trojanized Android and iOS apps posing as cryptocurrency wallets, which it believes could be used to steal users’ funds. and is mainly targeting Chinese users.
distributionjaxx libertyandroidgoogle playtelegramtrust walletapp storeeset researchmetamaskbitpiefacebookalliancepatchedgeneralpanda
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
Indicators of Compromise (39 / 190 total)
All FileHash-MD5 FileHash-SHA1 FileHash-SHA256 URL domain hostname
TYPEINDICATORDESCRIPTIONCREATED
FileHash-SHA256 0056027fbc4643d24282b35f53e03ac1e4c090aa22f2f88b1d8cbd590c51f399 SHA256 of e525248d78d931af92e2f5376f1979a029fa4157 2022-03-25
FileHash-SHA256 039544846724670dae731389eb6e799e17b085ddd6d4670536803c5c3ceb7496 2022-03-25
FileHash-SHA256 0b60c44749b43147d40547b438b8ccb50717b319ef20d938ab59f0079d1ba57c 2022-03-25
FileHash-SHA256 0ed22309bf79221b5c099285c4cde8bab43ba088890a14707cc68bc7a8ba15ae 2022-03-25
FileHash-SHA256 127e4da1614e42b541338c0faacd7c656655c9c0228f7d00ec9e13507fa0f9e9 2022-03-25
FileHash-SHA256 15c1532960ae3caa8408c160755944bd3abc12e8903d4d5130a364ef2274d758 2022-03-25
FileHash-SHA256 19f0f9bf72c071959395633a2c0c6eb54e31b6c4521311c333fa292d9e0b0f1d 2022-03-25
FileHash-SHA256 1d7d0d75319bfff0c2e2e268f0054caabd9f79783608292c2a6c61fabe079960 2022-03-25
FileHash-SHA256 1fe95756455fdde54794c1dddfb39968f1c9360e44bf6b8ce9cef9a6beda4ee1 2022-03-25
FileHash-SHA256 206123f2d992cd236e6db1413bcfe4ce9d74721d509a0512cf70d62d466b690d 2022-03-25
FileHash-SHA256 2816b84774235dfe2fbfcc2af5b2a9be3ab3a218fa1c58a8a21e7973e640eb85 2022-03-25
FileHash-SHA256 3069a2eed380d98aae822a9b792927b498234c37e6813193b5881922992bafee 2022-03-25
FileHash-SHA256 3f82ba5ab3c3e9b9ddeaa7c33c670ce806a5e72d409c813ff7328434e2054e6d 2022-03-25
FileHash-SHA256 4736eca0030c86d1afa2c01558ed31151c3a72ba24d9ed278341ab3df71467e5 SHA256 of 4c8de212e49386e701db212564389241ce4a7e5a 2022-03-25
FileHash-SHA256 49937230abb29118bda0f24ebefd9f887857814c9b4dc064aed52a9a3c278d53 2022-03-25
FileHash-SHA256 553209aeea2515f4a7d76ce0111dd240aead97fac149acc3d161c36b89b729d8 2022-03-25
FileHash-SHA256 58106983a575df14291ac501221e5f7ccd6ce2239cbfec089a7596eebe3dfa9c 2022-03-25
FileHash-SHA256 5da813fec32e937e5f2ae82c57842fded71f0671e1d8e6fd50ff8521d183f809 2022-03-25
FileHash-SHA256 731f1952142cffe3dbdd6ccd5221aec6ec91679308f0a9d46b812b62ec861aef SHA256 of 4a4c98d6e758536a20442a2fa9d81220fb73b56b 2022-03-25
FileHash-SHA256 8adcd1c8313c421d36eb6c4df948d9c40578a145764e545f5ac536dc95ed2069 2022-03-25
FileHash-SHA256 8c8f65a70677c675ee2af2c70dd439410de3c3d0736ffc20d1ab7f1da3f47956 2022-03-25
FileHash-SHA256 8e63ce669a7865b867c2d33cbcb69677e3ce51c3fbab131171c8017e41f4ec5a 2022-03-25
FileHash-SHA256 9017ef4a85ac85373d0f718f05f4a5c441f17ae1fd9a7bfd18521e560e6ab39e 2022-03-25
FileHash-SHA256 a092c7dd0e9def1c87fb8819cb91b4ece26b140e60e5ad637768113733541c2b 2022-03-25
FileHash-SHA256 a427759de6fe25e1b8894994a226c4517bb5c97cf893ec4b50cbd7a340f34152 2022-03-25
FileHash-SHA256 a4d875c13b46bc744d18bb6668f17ea67bff85b26cf0d46100736bd62db649ae 2022-03-25
FileHash-SHA256 a58b9c7763727c81d40f2b42ccca0d34750cdf84fc20985699a6e28a4a85094f 2022-03-25
FileHash-SHA256 a6e6a4c80906d60cbea4643ac97235b308f5ef35c5ab54b38bf63280f6a127d4 2022-03-25
FileHash-SHA256 a99aa5412ea12cb7c2c1e21c1896f38108d7f6e24c9fdd7d04498592cf804369 2022-03-25
FileHash-SHA256 bd626c5bd36e9206c48d0118b76d7f6f002ffcf2cf5f1b672d6d626ee09836bd 2022-03-25
FileHash-SHA256 caad41986c5d74f8f923d258d82796632d069c5569503bfb16e7b036945f5290 2022-03-25
FileHash-SHA256 cb9757b7d76b9837cfc153a1ba9d1ac821d2dbdb09ed877082b0d041c22d66e9 2022-03-25
FileHash-SHA256 cd896a7816768a770305f3c2c07bcc81abdf1f18b9f3c2b48b4494704a3b61b7 2022-03-25
FileHash-SHA256 db9e9cf514e9f4f6b50937f49863379e23fe55b430ffb0db068ae8ed2ca0eee8 2022-03-25
FileHash-SHA256 e1bf431dc0ebb670b743012638669a7ce3d42ce34f8f676b1512601cd8a6dbf0 2022-03-25
FileHash-SHA256 e95bf884f1ae27c030c56e95969c00200b22531dc2c794975d668f1dd0aeeddd 2022-03-25
FileHash-SHA256 eb5eb7e345e4c48f86fb18abc0883d61e956a24d5a9a4b488c2fdd91f789033a 2022-03-25
FileHash-SHA256 f87cc7b548a3ad8d694e963013d2d0370fe6d37fc2024fbe624844489b4c428d 2022-03-25
FileHash-SHA256 fd88d8e01db36e5be354456f1fb9560ce9a3328eefbf77d5560f3bdda1856c80 SHA256 of 5b0363f1cb0db00b7449abe0b1e5e455a6a69070 2022-03-25
References (1)
↗ https://www.welivesecurity.com/2022/03/24/crypto-malware-patched-wallets-targeting-android-ios-devices/