Astaroth Trojan campaign targeting Brazil and European countries is exploiting the Avast antivirus and security software developed by GAS Tecnologia to steal information and load malicious modules. The new strain also uses the legitimate Windows BITSAdmin utility (designed to help create download or upload jobs and monitor their progress) to download malware payloads. The malware is distributed through spam campaigns just like previous versions, and the infection starts with a.7zip archive delivered to the target in the form of an e-mail message attachment.
Source: https://www.bleepingcomputer.com/news/security/new-astaroth-trojan-variant-exploits-anti-malware-software-to-steal-info/