A new phishing campaign using fake shipping delivery lures users into installing STRRAT remote access trojan on unsuspecting victims’ devices. In terms of its functionality, STRRAT can perform the following: Log user keystrokes, facilitate remote control operation, grab passwords from web browsers, steal passwords from email clients or even run a pseudo-ransomware module to simulate an infection.

Source: https://www.bleepingcomputer.com/news/security/phishing-impersonates-shipping-giant-maersk-to-push-strrat-malware/