Originally launched as “Mestox Calculator” in March, the app frequently changed its name to avoid scrutiny. By presenting itself as a benign calculator tool, it successfully navigated Google Play’s security measures. Once downloaded, the app redirected users to a backend system that contained the wallet-draining malware known as MS Drainer.
Malicious App Targets Crypto Wallets
The deceptive application manipulated users into connecting their wallets and approving various permissions, enabling the attackers to expropriate funds. Notably, not every user fell victim; only those who linked their wallets or fit specific targeting criteria were compromised.
To “verify their wallet,” users were required to accept numerous permissions, effectively granting the attackers the ability to transfer the maximum amount of their specified assets. Check Point Research indicated that following over 10,000 downloads, the app has now been removed from the platform. This incident marks a worrying trend, as it is the first instance of a wallet-drainer application specifically targeting mobile users, raising significant concerns about the security of cryptocurrency holders.
Mobile Scams on the Rise
“Fake reviews and consistent branding contributed to the app achieving over 10,000 downloads by appearing prominently in search results,” noted Check Point Research.
This event underscores the escalating risk of mobile-centric scams within the cryptocurrency sector. Users are urged to exercise caution and thoroughly verify the legitimacy of applications before linking their wallets to unfamiliar platforms.
Related topics:
Four Japanese Banks Join Digital Currency Project for Cross-Border Payments
Hamster Kombat Token: Assessing the Value Behind the Buzz
Bitcoin Hits $65K as $5.8B Options Expiry Approaches
