"Gauss," as Kaspersky Lab researchers have dubbed the malware, was devised by the same "factory" or "factories" responsible for the Stuxnet worm used to disrupt Iran's nuclear program, as well as the Flame and Duqu Trojans.
With the ability to monitor and steal data from several banks, the suggestion is that this malware monitors financial transactions related to terrorism. In addition to doing who knows what with a chunk of the payload that will likely never be decrypted, it installs a random custom font.