The Zeus Sphinx banking trojan is back after being off the scene for nearly three years. The malware is spreading via coronavirus-themed email sent to victims in the U.S., Canada and Australia. In the latest campaigns, the emails tell targets that they need to fill out an attached form to receive government relief from the government. Sphinx’s core capability is to harvest online account credentials for online banking sites (and some other services) The malware variant is only slightly different than previous samples seen in older samples.
Source: https://threatpost.com/zeus-sphinx-banking-trojan-covid-19/154274/