Say goodbye to your master boot record and home directory if you try to stop it
Source here."The unpacking code is monstrous and has many times the complexity of the anti-analysis code [containing] dozens of functions overlapping with each other and unnecessary jumps added to increase complexity. The result is a nightmare of a control flow graph with hundreds of nodes."
With the researchers and their tools tormented, Rombertik will capture web browser data before it hits HTTPS by injecting into Chrome, Firefox, or Internet Explorer and hooking API functions that handle plain text data.
It targets any and all websites, and spreads through an executable screensaver disguised as an Adobe PDF file.
This is another one that Windows users really, really, really don't want, or need.