The source code of a top-of-the-line Android banking trojan has been leaked online and has since rapidly spread in the malware community, worrying researchers that a new wave of malware campaigns may be in the works.
This malware's name is Exobot, an Android banking trojan that was
first spotted at the end of 2016, and which its authors mysteriously abandoned by
putting its source code for sale in January this year.
In day to day operations, malware authors sell monthly or weekly access to their malware in what security researchers call MaaS (Malware-as-a-Service) or CaaS (Cybercrime-as-a-Service).
But when a malware author sells the malware's entire source code, this usually means the malware author is moving to something else and doesn't want to work on it anymore. Usually, that source code leaks online after enough people buy it.