A banking trojan, detected by ESET as Win32/Brolux.A, is targeting Japanese internet banking users. It is spreading through at least two vulnerabilities: a Flash vulnerability leaked in the Hacking Team hack and the so-called unicorn bug. Both exploits are (still) distributed through an adult website and try to install a signed malicious binary designed to steal personal information from the victim. The phishing page asks for login information, as well as answers to security questions. The page tries to use two trusted institutions in Japan: the Public Prosecutors Office and the Financial Services Agency.”]
Source: https://informationsecuritybuzz.com/articles/brolux-trojan-targeting-japanese-online-bankers/