Malicious hacker finds a way to capitalize the current corona virus epidemic. They send fake phishing emails appear to be from government about a corona relief package.
This malicious document needs Macros to run, so it trick the user by showing the file is password protect and the user needs to enable macros, so the promised reward can be redeemed. Once the user enable the macro it download the latest version of the Zeus Sphinx Trojan.
This campaign is just one of many campaigns who exploit the COVID-19 pandemic by stealing sensitive information and infecting their targets with malware.