In December I attended a (really great!) Botconf 2014 conference. During that conference I gave a lightning talk about an interesting Android malware sample that (presumably) used Lua and Mono (hence, .NET) as a way of obfuscation. Very recently @tbiehn Tweeted to me a solution for a problem that I run into during the analysis.
more here...........http://maldr0id.blogspot.in/2015/03/android-malware-goes-mono-net-and-lua.html
more here...........http://maldr0id.blogspot.in/2015/03/android-malware-goes-mono-net-and-lua.html