| Name: |
Trojan.Banker.CB |
| Category: |
Trojan |
| Advice: |
Remove |
| Risk: |
Severe Risk
Severe threats typically are remotely exploitable vulnerabilities, which can lead to system compromise. Successful exploitation does not normally require any interaction and exploits are in the wild. There exists a high possibility of potential system damage or security flaw. Attacker has complete control over your computer or install new software on your machine. |
| Description:
|
Trojan.Banker.CB is a password stealing Trojan for the Windows platform that targets particular online banking sites.
Trojan.Banker.CB monitors a users internet access to a predefined set of banking and financial websites while running in the background as a process, in an attempt to log user activity and send the stolen details to a predefined remote location.
Trojan.Banker.CB steals confidential information including the following:
INETCOMM Server Passwords
MS IE FTP Passwords
Outlook Account Manager Passwords
Email account details for HTTP, IMAP and POP3 accounts
Cached Internet Explorer FTP passwords
|
| Signatures:
|
process: windhost.exe: MD5 Hash: e9a02c34f4111297ff6...
process: osrwin32.exe: MD5 Hash: bf28c084364024d106e.. |
| Type: |
Trojan - A Trojan software is any software on a user's computer that the user is not aware or intentionally installed. Most Trojan software is designed to perform some sort of actions that could jeopardize the user's security or privacy. |
