Today > | 1 Medium vulnerabilities   -   You can now download lists of IOCs here!

Pig Butchering Alert: Fraudulent Trading App targeted iOS and Android users

Oct. 4, 2024, 12:42 p.m.

Description

A large-scale fraud campaign involving fake trading apps targeting Apple iOS and Android users across multiple regions has been uncovered. The apps, developed using the UniApp framework, were distributed through official app stores and phishing sites. Unlike conventional mobile trojans, these apps lack typical malicious features, instead creating a facade of legitimate trading platforms to defraud victims. The scam, known as pig butchering, involves cybercriminals luring victims into fraudulent investment schemes, often through social engineering tactics. Victims are tricked into funding bogus trading accounts, ultimately losing their money. The fraudulent apps have been classified under a single malware family dubbed UniShadowTrade, providing multi-language support and targeting victims globally.

Date

Published: Oct. 4, 2024, 10:27 a.m.

Created: Oct. 4, 2024, 10:27 a.m.

Modified: Oct. 4, 2024, 12:42 p.m.

Indicators

e817c2f94aefbcba5fbb46f406a21d2ca3b0173b261356b0270787855b4d3ae0

www.yupstocks.com

www.upstoxcalculator.com

http://www.yupstocks.com/h5/#/login

http://www.REDACTED.com/h5

http://a.gold-blockchain.cc/app/home/getH5

api.fxbrokers.cc

a.gold-blockchain.cc

gold-blockhain.cc

Attack Patterns

UniShadowTrade

GoldPickaxe

T1583.006

T1588.001

T1583.001

T1608.001

T1528

T1552.001

T1030

T1056.001

T1204.002

T1036

T1566

Additional Informations

Finance