Home / malware TrojanSpy:Win32/Bancos.AKV
First posted on 20 March 2014.
Source: MicrosoftAliases :
There are no other names known for TrojanSpy:Win32/Bancos.AKV.
Explanation :
Threat behavior
Installation
TrojanSpy:Win32/Bancos.AKV creates the following files on your PC:
- c:\documents and settings\administrator\application data\v125.txt
Payload
Contacts remote hosts
TrojanSpy:Win32/Bancos.AKV can contact the following remote hosts:
- bit.ly using port 80
- mssql.maurosouza9899.kinghost.net using port 1039
Commonly, malware contacts a remote host to:This malware description was produced and published using automated analysis of file SHA1 e400fb28f5032fa361675c28d37111dcb1ce46cb.Symptoms
- Confirm Internet connectivity
- Report a new infection to its author
- Receive configuration or other data
- Download and run files (including updates and other malware)
- Receive instruction from a remote hacker
- Upload information taken from your PC
System changes
The following could indicate that you have this threat on your PC:
- You have these files:
c:\documents and settings\administrator\application data\v125.txtLast update 20 March 2014
