What is Crocodilus malware?
Crocodilus is the latest in a string of Android crypto malware built to steal your cryptoassets.
Crocodilus is a sophisticated piece of malware that steals digital assets from Android devices. Named after crocodile references scattered throughout its code, Crocodilus targets Android 13 devices or later. The Android wallet malware utilizes overlays, remote access and social engineering to take over your device and drain your crypto wallet.
Fraud prevention firm Threat Fabric discovered Crocodilus malware in March 2025 and published detailed research on the new virus. As of April 2025, users in Spain and Turkey are the primary targets. Threat Fabric predicts Crocodilus will expand globally in the coming months.
How Crocodilus infects Android devices
Crocodilus’ primary method of infection is still unknown, but it likely follows a path similar to other malware.
What