“It is a mobile-banking Trojan and info-stealer that abuses Android”s in-built accessibility features to steal user data from financial applications, read user SMS messages and intercept SMS messages, allowing malware to bypass two-factor authentication,” the CERT-In advisory said.