The infamous Citadel malware resurges in a modified form, called Atmos. The new strain is currently targeting banks in France and it was also spotted being delivered with Teslacrypt. Malwarebytes dubbed it Atmos when they first came across it. Atmos is based on Citadel, which, in turn, evolved from ZeuS, and Atmos utilizes the same web injects that became infamous for. Citadel was not only capable of stealing money, but also personal data. Microsoft Digital Crimes Unit announced that it was working with the FBI and other law enforcement agencies to block the cyber crime ring behind Citadel.”]
Source: https://heimdalsecurity.com/blog/security-alert-citadel-trojan-resurfaces-atmos-zeus-legacy/