From Google's perspective it is malicious code - it exploits a vulnerability in the OS that allows you to root the device without so much as a wham-bam-thank-you-ma'am. Of course, in case you hadn't heard, Google closed the vulnerability in a kernel update, and hired the guy that wrote Towelroot to boot.
Sent from my rooted, debloated, deodexed Sinclair ZX-80 running CM -0.001 using Tapatalk