VERY IMPORTANT

Over the past few months, a new malware loader called JasperLoader has emerged that targets Italy and other European countries with banking trojans such as Gootkit. Talos recently released a comprehensive analysis of the functionality associated with JasperLoader. Shortly after the publication of their analysis, the distribution activity associated with these campaigns halted. But after several weeks of relatively low volumes of activity, they discovered a new version of JasperLoader being spread. This new version features several changes and improvements from the initial version they analyzed. JasperLoader is typically used to infect systems with additional malware payloads which can be used to exfiltrate sensitive information, damage systems or otherwise negatively impact organizations.