The new remote access Trojan allows remote attackers to take total control over infected Android devices and also comes with banking Trojan capabilities like the use of SMS control, and contact list harvesting. The author claims to be using the Trojan for private operations for at least two years before renting it out for anyone interested from the past two months at $2000 for 1 month usage, $7000 for 6 months and up to $12,000 for 12 months. It uses some interesting techniques to evade detection from antivirus solutions and prevent its analysis, like using the device accelerometer sensor to measure movements.
Source: https://thehackernews.com/2019/08/cerberus-android-banking-trojan.html