Home / malware TrojanSpy:Win32/Bancos.SB
First posted on 12 March 2010.
Source: SecurityHomeAliases :
TrojanSpy:Win32/Bancos.SB is also known as not-a-virus:PSWTool.Win32.MailPassView.eb (Kaspersky), TrojanSpy.Bancos.YAX (VirusBuster), DLOADER.Trojan (Dr.Web), Win32/PSWTool.MailPassView.138 (ESET), not-a-virus:PSWTool.Win32.MailPassView (Ikarus), Trj/Banbra.GON (Panda), HKTL_MAILPASSVIE (Trend Micro).
Explanation :
TrojanSpy:Win32/Bancos.SB is a component of Win32/Bancos - a family of password-stealing trojans that target online banking Web sites for banks located in Brazil. Captured credentials may be sent to the attacker via e-mail.
Top
TrojanSpy:Win32/Bancos.SB is a component of Win32/Bancos - a family of password-stealing trojans that target online banking Web sites for banks located in Brazil. Captured credentials may be sent to the attacker via e-mail. It may steal the following details from the infected computer and send it to a remote attacker: Outlook Express credentials Microsoft Outlook credentials Yahoo! Mail credentials A file detected as TrojanSpy:Win32/Bancos.SB may arrive as a dll and installed as a BHO (Browser Helper Object) in Internet Explorer.
Analysis by Francis Allan Tan SengLast update 12 March 2010
