The Mazar bot is being sent to Android users via SMS and MMS messages and if the victim executes the APK, the bot roots the phone and gives the attacker extensive capabilities on the compromised device. The malware allows the attackers to spy on almost every activity capable on an Android device, including establishing a backdoor connection, sending premium SMS messages, reading texts sent to the device. Heimdal Security researchers said the attackers root access can also allow them to erase the phone. Researchers said last week this is the first time the malware had been spotted in active attacks.
Source: https://threatpost.com/mazar-bot-actively-targeting-android-devices/116240/