The Exobot Android banking trojan was first spotted at the end of 2016 when its authors were advertising it on the dark web. It implements various features of most common banking Trojan such as intercepting SMS messages. In January, the authors decided to stop working at the malware and offered for sale its source code. Researchers from Bleeping Computer confirmed to have received a copy of the source code from an unknown individual and shared it with malware researchers from ESET and ThreatFabric in order to verify its authenticity.”]
Source: https://securityaffairs.co/wordpress/74678/malware/exobot-source-code-leaked.html