Home / malwarePDF  

TrojanDownloader:Win32/Banload.MN


First posted on 24 May 2010.
Source: SecurityHome

Aliases :

TrojanDownloader:Win32/Banload.MN is also known as Win-Trojan/Banload.413696.AI (AhnLab), W32/Banker.FHIO (Norman), TR/Spy.Banker.Gen (Avira), Win32/Banload.OQ (CA), Win32/TrojanDownloader.Banload.OJQ (ESET), PWS-Banker!fgy (McAfee), Mal/Banload-E (Sophos), TROJ_BANLOAD.DIG (Trend Micro).

Explanation :

TrojanDownloader:Win32/Banload.MN is a trojan that downloads and runs other malware. These downloaded malware are usually members of the Win32/Banker or Win32/Bancos families; trojans that steal banking credentials and other sensitive data, and send it back to a remote attacker.
Top

TrojanDownloader:Win32/Banload.MN is a trojan that downloads and runs other malware. These downloaded malware are usually members of the Win32/Banker or Win32/Bancos families; trojans that steal banking credentials and other sensitive data, and send it back to a remote attacker. When run it tries to download various files from the following domains: blogdafesta2010.com lh3.ggpht.com

Analysis by Marian Radu

Last update 24 May 2010

 

TOP