Android malware infects devices to take full control for various illicit purposes like:-

Stealing sensitive information
Generating unauthorized financial transactions
Enabling remote attacks

By gaining complete control, threat actors can exploit the device for their illicit activities, posing significant threats to:-

User privacy
User security

Cybersecurity analysts at McAfee Mobile Research recently found an Android backdoor, “Android/Xamalicious,” using the Xamarin framework to infect devices and take full control.

Android Malware Gain Device Control

It employs social engineering for accessibility privileges and communicates with the C2 server. Second-stage payload dynamically injected as assembly DLL, which takes full control for:-

Ad fraud
App installs
Financially motivated actions

Researchers identified the link to the ad-fraud app “Cash Magnet,” revealing financial motivation. Xamarin usage allows long-term activity, hiding malicious code in the APK build process.