Android malware known as Elibomi attacking taxpayers in different regions of South Asia especially India. This malware is famous because it steals the financial information of victims via phishing by pretending to be a tax-filling application. The malware is delivered using an SMS text phishing attack. The SMS message pretends to be from the Income Tax Department in India and uses the name of the targeted user to make the phishing attack more credible and increase the chances of infecting the device. Attackers are exposing stolen sensitive information on the internet stolen data includes phone numbers, email addresses, and other personally identifiable information.