Spelevo exploit kit’s operators have added a new infection vector as part of their attacks, attempting to social engineer potential targets into downloading and executing addition malware payloads from decoy adult sites. The new social engineering tactic was first spotted by security researcher Kafeine back in early March 2019 and it has been used as a delivery platform for the infamous IceD and Dridex banking trojans as Cisco Talos found in June, and to drop Maze Ransomware payloads as researcher nao_sec discovered.
Source: https://www.bleepingcomputer.com/news/security/exploit-kit-starts-pushing-malware-via-fake-adult-sites/