Banker variant has two main payloads: accesses PStore to harvest passwords, and captures all information submitted via web forms. The malware was sent to Dutch ABN-AMRO users. KAV/KIS 6.0 was able to detect this sample as Trojan-Spy.Win32.cmb. The malware is Trojan.generic.com/Banker.Cmb and Trojan.com are Trojan.org/banker.com. The original post referred to Banker.ompomp.com malware referred to is Trojan-spy.com.org.”]
Source: https://securelist.com/more-info-on-banker-cmb/30310/