New variant of the Oldboot family, dubbed as ‘Oldboot.B’, designed exactly as Oldboot.A, but new variant has advance stealth techniques. Malware has some hidden ELF binaries, that includes steganographically encrypted strings, executable codes and configuration file downloaded from C&C server, located at (IP is 61.160.248.67) Oldboot Trojan family is the most significant demonstration of this trend.” Researchers said. Android Antivirus software does not support the process memory scan in the Android platform.
Source: https://thehackernews.com/2014/04/most-sophisticated-android-bootkit.html