Malware framework dubbed Triout is being used by cybercriminals to turn legitimate Android apps into spyware with extensive surveillance capabilities. Legitimate apps when bundled with the malware framework gain capabilities to spy on infected devices by recording phone calls, and monitoring text messages, secretly stealing photos and videos. The malware is extremely stealthy, as the repackaged version of the Android app kept the appearance and feel of the original app and function exactly like it to trick its victims. But despite the powerful capabilities of the malware, the researchers found that the malware does not use obfuscation, which helped the researchers get full access to its source code.
Source: https://thehackernews.com/2018/08/android-malware-spyware.html