There is a current trojan targeting Latin America (especially Colombia) that is stealing banking/financial information. It could be used for other spying as well. It is presently being distributed by email spam messages containing infected attachments.

Below are a few MDB and HDB malware signatures that will provide some protection to Latin Americans that use ClamWin/Clam Sentinel. Copy the signature(s) to separate MDB and HDB Notepad files and save them in the ClamWin db program data folder or add the signature(s) to an existing MDB and HDB file you may already have there. Do not save the filea with a .txt or .text on the end of the name. Save it as Sigfile.mdb and Sigfile.hdb (select file type All Files to prevent the .txt or .text at the end of the filename), otherwise ClamWin will be unable to recognize them as signatures. The signatures should last from a few days to a month. I suggest you keep them for about 3 weeks and then delete the two files from the ClamWin DB folder.

MDB Signatures
179200:6c2d8e56494a3b86e197db1c0498b5f6:Win.Trojan.Spy-072819.1811
700416:ccb364ad06b3fd1cbc63a9718fc59807:Win.Trojan.MSIL-072819.1809
1141248:9c17ec9a30d82bc24973b839ddae6f42:Win.Trojan.MSIL-072819.1804
640000:501bc5008ac21b54ac70fbcaa5a6ca35:Win.Trojan.MSIL-072819.1800
465920:7ce100a15a9f10ee51821c9d08c06487:Win.Trojan.MSIL-072819.1755

HDB Signatures
c38c4b22f46e83c63d85af1bc1dae826:40776:RTF.Trojan.Agent-0728193.1747
10bc5e7c51dddca5c962f5dfb5476778:40587:RTF.Trojan.Phish-072819.1744
4abda37b310e47c9ad5cef5048c8ea4e:12104:Doc.Trojan.Agent-072819.1741
d5cb6d49c3f7f4c02d6ccfff5bce685d:40790:RTF.Trojan.Agent-072819.1738
eda4b95db028ed853c5106f9767f0250:42916:RTF.Trojan.Agent-072819.1735