SecurityHome.eu TrojanDownloader:Win32/Banload.HT

Home / malware PDF

TrojanDownloader:Win32/Banload.HT

First posted on 11 June 2009.
Source: SecurityHome
Aliases :
TrojanDownloader:Win32/Banload.HT is also known as Also Known As:Win32/TrojanDownloader.Banload.OPV (ESET), PWS-Banker.dldr (McAfee).
Explanation :
TrojanDownloader:Win32/Banload.HT is the detection for malware that downloads and executes other malware from a remote server.

Symptoms
There are no common symptoms associated with this threat. Alert notifications from installed antivirus software may be the only symptom(s).

TrojanDownloader:Win32/Banload.HT is the detection for malware that downloads and executes other malware from a remote server.

Payload
Downloads other malwareTrojanDownloader:Win32/Banload.HT attempts to download files from the Web site 'sapiensautomacao.com.br'. The downloaded files are saved and run as the following in the root folder:
a1.exe - detected as TrojanSpy:Win32/Bancos.gen!C
a2.exe - detected as TrojanSpy:Win32/Bancos.NJ

Analysis by Shawn Wang
Last update 11 June 2009

TOP

Malware :

Last 20

TrojanDownloader:Win32/Banload.HT

Aliases :

Explanation :

Malware :

Family: