Botnet
DroidBot
According to Cleafy, DroidBot is a modern RAT that combines hidden VNC and overlay attack techniques with spyware-like capabilities, such as keylogging and user interface monitoring.
DroidBot is a Android botnet.
Background
Cleafy characterizes DroidBot as a contemporary RAT that blends hidden VNC and overlay attacks with spyware features like keylogging and UI monitoring. It also employs a dual-channel design, sending outbound data over MQTT while receiving inbound commands over HTTPS, which gives the operation added flexibility and resilience.
Source: Malpedia (Fraunhofer FKIE).