Phase 1 — Active Development

Crypsis App Detection Roadmap

Prepared for

A detection framework prepared for the Indian Cyber Crime Coordination Centre (I4C) to identify and shut down fraudulent Chinese loan applications distributed through the Google Play Store and social media.

0 Apps Identified
0 Detection Phases
0 Distribution Channels
Explore Roadmap
Roadmap

Detection Phases

Our systematic approach to identifying and combating fraudulent loan applications — from signature matching to fully automated detection.

01
Currently Active

Signature Matching

Identifying common code signatures, patterns, and identifiers shared across fraudulent loan apps to establish a detection baseline for I4C.

  • Permission pattern recognition
  • Developer metadata correlation
  • Detection via ad distribution mechanisms
  • Scam phone number & contact tracing
02
Upcoming

Extended Detection

Scaling our detection capabilities to identify more fraudulent apps using the signatures discovered in Phase 1, with human review for validation and accuracy.

  • Broad Play Store scanning
  • Human-in-the-loop review
  • Cross-referencing scam databases
  • Building a classifier training set
03
Upcoming

Automated 1-Click Review

Fully automated pipeline — one-click review and evidence extraction. No human intervention required for standard detections.

  • ML-powered classification engine
  • Automated evidence report generation
  • One-click takedown submissions
  • Real-time monitoring dashboard
04
Future

Ecosystem Protection

Proactive defence — continuous monitoring of app stores and social media for new scam app variants before they reach victims.

  • Predictive threat intelligence
  • API for third-party integrations
  • Social media ad monitoring
  • Law enforcement collaboration portal
Evidence

Distribution Channels

These scam apps are actively promoted through Instagram ads and fake customer care numbers. Below is photographic evidence of their distribution tactics.

Play Store listings of KubiSloan and CreditClimb scam apps showing fraudulent customer care numbers

Play Store Listings

KubiSloan & CreditClimb apps displaying fake customer care numbers to lure victims into scam calls.

Punji Cash fake loan app on iOS App Store

Cross-Platform Presence

Punji Cash scam app present on the iOS App Store — showing these operations target multiple platforms.

inVish, CashLoop, and Rupeeline scam apps on Play Store

Network of Scam Apps

inVish, CashLoop, and Rupeeline — all sharing the same customer care phone number, revealing a coordinated operation.

Instagram ad promoting FinVeer scam loan app

Instagram Distribution

Instagram accounts actively advertising fake loan apps like FinVeer (Tara Credit), promoting fraudulent customer care numbers.

Targets

Identified Applications

5 fraudulent loan applications currently live on the Google Play Store. APK samples are provided below for I4C's reference.

LoveFund

com.lovefund.lovefund

12.6 MB v1001
Malicious
Play Store Download APK

CreditClimb – Credit Improvement

com.creditclimb.improve.manage

15.6 MB v12
Malicious
Play Store Download APK

FinVeer - Credit Assistant

com.hunter.veer

448 KB v100
Malicious
Play Store Download APK

KubiSloan

com.geoper.mango.kubi

12.9 MB v102
Malicious
Play Store Download APK

CreditVue - Loan Guard

com.creditvue.loanguard.creditguard

5.1 MB v2
Malicious
Play Store Download APK
Recording

Scam Call Evidence

Live call recording made to one of the fraudulent customer care numbers advertised by these scam apps. This recording demonstrates their social engineering tactics.

Scam Call Recording

📞 Number: 8101529364 📅 Date: April 6, 2026

Call placed to the "customer care" number advertised on the KubiSloan Play Store listing. The recording exposes the social engineering tactics used by the scam operators.

0:00
0:00
Get in Touch

Contact Us

Reach out to the Crypsis team for more information about detected applications or to share leads on fraudulent apps.

Aryan Kalra

Crypsis — Founder

Email aryan@crypsis.in
Phone +91 9650784785