A new module for TrickBot banking Trojan has been discovered in the wild that lets attackers leverage compromised systems to launch brute-force attacks against selected Windows systems. The module, dubbed “,” was discovered on January 30 and is said to be still in development. TrickBot began its life as a banking Trojan in 2016, facilitating financial theft and other kinds of malware, including the notorious Ryuk ransomware act as an info stealer. The malware authors behind TrickBot specialize in releasing new modules and versions of the Trojan in an attempt to expand and refine its capabilities.
Source: https://thehackernews.com/2020/03/trickbot-malware-rdp-bruteforce.html