Home / malware

PDF

TrojanSpy:Win32/Bancos.AZT

First posted on 28 September 2010.
Source: SecurityHome

Aliases :

TrojanSpy:Win32/Bancos.AZT is also known as W32/Trojan2.NESV (Authentium (Command)), Trojan-PSW.Win32.LdPinch.ankl (Kaspersky), W32/Smalldoor.PQIY (Norman), Trojan.PWS.LdPinch.AKTQ (VirusBuster), Trojan horse PSW.Ldpinch.ACDE (AVG), TR/PSW.LdPinch.ankl (Avira), Trojan.PWS.Stealer.origin (Dr.Web), Win32/Spy.Banbra.OEW (ESET), Trojan-PWS.Win32.Ldpinch (Ikarus), Generic PWS.y!cqm (McAfee), Trj/Nabload.DRR (Panda), Trojan.Win32.Generic.520998EC (Rising AV), Troj/PWS-BJR (Sophos), Trojan.Win32.Generic!BT (Sunbelt Software), TSPY_BANKER.ZAZ (Trend Micro).

Explanation :

TrojanSpy:Win32/Bancos.AZT is a trojan that steals sensitive information from the user's computer.
Top

TrojanSpy:Win32/Bancos.AZT is a trojan that steals sensitive information from the user's computer. Payload Steals sensitive information TrojanSpy:Win32/Bancos.AZT attempts to steal login information and contact details related to various email and Instant Messenger accounts. The trojan targets accounts used by Brazilian users, monitoring the websites they visit through Internet Explorer, as well as applications running on the infected computer. The following email and IM accounts are targeted by Bancos.AZT:

Hotmail

Gmail

BOL Mail (Brasil Online)

UOL Mail

Globomail

Windows Live Messenger

MSN

Analysis by Amir Fouda

Last update 28 September 2010

 

TOP