A concerted phishing campaign has been using emails purporting to be from the Permanent Mission of Norway. The emails were sent to 600 staffers and officials across the U.N., claiming that there was a problem with a supposed signed agreement attached to the mails. In turn, these downloaded and installed Emotet, which would then run in the background. The endgame however was to steal login credentials and install the TrickBot trojan, which can harvest various passwords and credentials.
Source: https://threatpost.com/un-weathers-emotet-trickbot-malware/151894/

