SecurityHome.eu TrojanSpy:Win32/Bancos.TH!dll

Home / malware PDF

TrojanSpy:Win32/Bancos.TH!dll

First posted on 18 May 2010.
Source: SecurityHome
Aliases :
TrojanSpy:Win32/Bancos.TH!dll is also known as Win32/Spy.Banker.TNQ (ESET), Trojan-Banker.Win32.Banker (Ikarus), PWS.y!clf (McAfee), TSPY_BANKER.SMJ (Trend Micro).
Explanation :
TrojanSpy:Win32/Bancos.TH!dll is a password stealing trojan that targets specific online banking Web sites. Captured credentials are sent via SMTP e-mail to a specified address. It is usually installed as a Browser Helper Object (BHO) by TrojanSpy:Win32/Bancos.TH.
Top

TrojanSpy:Win32/Bancos.TH!dll is a password stealing trojan that targets specific online banking Web sites. Captured credentials are sent via SMTP e-mail to a specified address. It may monitor online banking activities related to Brazilian banking sites such as:
Nossa Caixa Net Banking (nossacaixa.com.br)

Bradesco Net Empresa (bradesco.com.br)
It is usually installed as a Browser Helper Object (BHO) by TrojanSpy:Win32/Bancos.TH.

Analysis by Francis Allan Tan Seng
Last update 18 May 2010

TOP

Malware :

Last 20

TrojanSpy:Win32/Bancos.TH!dll

Aliases :

Explanation :

Malware :

Family: