A malware campaign targeting organizations in Latin America infects targets with the TOITOIN banking Trojan. The multi-stage attacks start with phishing and uses custom modules that are designed for “injecting harmful code into remote processes, circumventing User Account Control via COM Elevation Moniker, and evading detection by Sandboxes through clever techniques like system reboots and parent process checks.” More info here https://www.zscaler.com/blogs/security-research/toitoin-trojan-analyzing-new-multi-stage-attack-targeting-latam-region