Spyware Detail

Summary

See: www3.ca.com/securityadvisor/virusinfo/virus.aspx?ID=53476 Bancos is a generic detection for threats that primarily target Portuguese speaking customers of some Brazilian banks. The threat comes in the form of a Trojan that will try to capture the username and password and (sometimes even mouse clicks) of the victims and send the captured information via File Transfer Protocol (FTP) to the Trojan's author.

Alias

Win32/Bancos.2027520!PWS!Trojan[Computer Associates]
Win32.PSW.Bancos.K[Computer Associates]
Trojan Horse[Panda]
Win32/Bancos.Variant!PWS!Trojan[Computer Associates]
Win32.Gerenbrad[Computer Associates]
Trj/Bancos.H[Panda]
Win32/FakeMSN.a!Trojan[Computer Associates]
Win32.PSW.Fakemsn.B[Computer Associates]
Trj/Fakemsn.A[Panda]
TrojanSpy.Win32.Bancos.b[Kaspersky]
Trojan.Win32.VB.gw[Kaspersky]
Win32/Bancos!PWS!Trojan[Computer Associates]
Win32.PSW.Bancos.DY[Computer Associates]
Bck/Bancodor.M[Panda]
Trj/Bancos.O[Panda]
Win32/Bancos [Vet]
Troajn.Bancos
Trojan-Spy.Win32.Banker [Kasperksy]
PWS-Banker [McAfee]
Win32.PSW.Bancos.BDY [VET]
Win32/Bancos.AOF! [iRiS]
Trojan-Spy.Win32.Bancos.ha [Kaspersky]
PWS-Banker.gen.t [McAfee]
Troj/Bancos-EE [Sophos]
TrojanSpy.Win32.Bancos.b
TrojanSpy.Win32.Bancos.o
Win32.PSW.Bancos.AKT
Win32.PSW.Bancos.JJ
Win32.PSW.Bancos.JK
Win32.PSW.Bancos.JL
Win32.PSW.Bancos.JM
Win32.PSW.Bancos.JN!downloader
Win32.PSW.Bancos.JN
Win32.PSW.Bancos.JO
Win32.PSW.Bancos.JP
Win32.PSW.Bancos.JQ
Win32.PSW.Bancos.JR
Win32.PSW.Bancos.JS
Win32.PSW.Bancos.JT
Win32.PSW.Bancos.JU
Win32.PSW.Bancos.CF
Win32.PSW.Bancos.AA
Win32.PSW.Bancos.AB
Win32.PSW.Bancos.AC
Win32.PSW.Bancos.AD
Win32.PSW.Bancos.AE
Win32.PSW.Bancos.AF
Win32.PSW.Bancos.AG
Win32.PSW.Bancos.AH
Win32.PSW.Bancos.AK
Win32.PSW.Bancos.AL
Win32.PSW.Bancos.AM
Win32.PSW.Bancos.AN
Win32.PSW.Bancos.X
Win32.PSW.Bancos.Y
Win32.PSW.Bancos.Z
Win32.PSW.Bancos.J
Win32.PSW.Bancos.L
Win32.PSW.Bancos.M
Win32.PSW.Bancos.N
Win32.PSW.Bancos.O
Win32.PSW.Bancos.P
Win32.PSW.Bancos.Q
BAT.PSW.Bancos.D
Win32.PSW.Bancos.S
Win32.PSW.Bancos.U
Win32.PSW.Bancos.V
Win32.PSW.Bancos.W
Win32.PSW.Bancos.C
Win32.PSW.Bancos.D
Win32.PSW.Bancos.E
Win32.PSW.Bancos.F
Win32.PSW.Bancos.H
Win32.PSW.Bancos.I
Win32.PSW.Bancos.B
Win32.PSW.Bancos.AGM
TrojanSpy.Win32.Bancos.u
TrojanSpy.Win32.Bancos.ha
Downloader.Bancos
Win32/Bancos.HQ
Win32/Bancos.HV
Win32/Bancos.Variant!Trojan
Win32/Bancos.HM
Win32/Bancos.ME
Win32/Bancos.MN
Win32/Bancos.QC
Win32/Bancos.RK
Win32/Bancos.RH
Win32/Bancos.RR
Win32/Bancos.UU
Win32/Bancos.AEA
Win32/Bancos.EN
Win32/Bancos.EV
Win32/Bancos.ASA
Win32/Bancos.FC
Win32/Bancos.136192!Trojan
Win32/Bancos.AFP
Win32/Bancos.HF
Win32/Bancos.135168!Trojan
Win32/Bancos.HC
Win32/Bancos.LS
Win32/Bancos.OE
Win32/Bancos.SP
Win32/Bancos.QE
Win32/Bancos.RG
Win32/Bancos.RF
Win32/Bancos.RE
Win32/Bancos.RT
Win32/Bancos.MJ
Win32/Bancos.AHQ
Win32/Bancos.OL
Win32/Bancos.PD
Win32/Bancos.RI
Win32/Bancos.RD
Win32/Bancos.NU
Win32/Bancos.GJ
Win32/Bancos.ABS
Win32/Bancos.ABM
Win32/Bancos.AEG
Win32/Bancos.707762!Trojan
Win32/Bancos.AEF
Win32/Bancos!generic
Win32/Bancos.AEL
Win32/Bancos.ABP
Win32/Bancos.RU
Win32/Bancos.YY
Win32/Bancos.AHG
Win32/Bancos.735232!Trojan
Win32/Bancos.AFY
Win32/Bancos.ACW
Win32/Bancos.DV!PWS!Trojan
Win32/Bancos.AFA
Win32/Bancos.AAT
Win32/Bancos.OG
Win32/Bancos.JA
Win32/Bancos.704577!Trojan
Win32/Bancos.ADP
Win32/Bancos.AGK
Win32/Bancos.ABB!PWS!Trojan
Win32/Bancos.1268736!PWS!Trojan
Win32/Bancos.ADX
Win32/Bancos.MI
Win32/Bancos.QR
Win32/Bancos.OW
Win32/Bancos.OY!downloader
Win32/Bancos.OX
Win32/Bancos.RW
Win32/Bancos.OZ
Win32/Bancos.NZ
Win32/Bancos.OH
Win32/Bancos.OA
Win32/Bancos.PC
Win32/Bancos.ZI
Win32/Bancos.RA!downloader
Win32/Bancos.88576!Trojan
Win32/BancosDownloader.157184!Trojan
Win32/Bancos.24576!Downloader
Win32/Bancos!Downloader.D2_E.Variant
Win32/Bancos.AGN
Win32/Bancos.AGJ
Win32/Bancos!Downloader.D2_D.Variant
Win32/Bancos!Downloader.VB_PUXA
Win32/Bancos.AGF
Win32/Bancos.48640!Downloader
Win32/Bancos.ADQ
Win32/Bancos.VJ!PWS!Trojan
Win32/Bancos.PZ!downloader
Win32/Bancos!Downloader.VB_A.Variant
Win32/Bancos.GM!downloader
Win32/Bancos.IV
Dropper.Bancos

See Also

Trojan.Bancos

Category

Backdoor:  A secret or undocumented means of getting into a computer system, or software that uses such a means to penetrate a system. Some software has a backdoor placed by the programmer to allow them to gain access to troubleshoot or change the program. Software that is classified as a "backdoor" is designed to exploit a vulnerability in a system, and open it to future access by an attacker.

Password Capture:  A variant of the Key Logger that captures passwords as they are entered or transmitted. Some password capture trojans impersonate the login prompt, asking the user to provide their password.

Trojan:  Any program with a hidden intent. Trojans are one of the leading causes of breaking into machines. If you pull down a program from a chat room, new group, or even from unsolicited e-mail, then the program is likely trojaned with some subversive purpose. The word Trojan can be used as a verb: To trojan a program is to add subversive functionality to an existing program. For example, a trojaned login program might be programmed to accept a certain password for any user's account that the hacker can use to log back into the system at any time. Rootkits often contain a suite of such trojaned programs.



Variants

Bancos AKP · Bancos ZZZ · Bancos ZZY · Bancos ZZJ · Bancos ZZK · Bancos ZZL · Bancos ZZM · Bancos ZZN · Bancos ZZO · Bancos ZZP · Bancos ZZQ · Bancos ZZR · Bancos ZZS · Bancos ZZT · Bancos ZZU · Bancos ZZV · Bancos ZZW · Bancos ZZX · Bancos ZZI · Bancos ZZH · Bancos ZZA · Bancos ZZB · Bancos ZZC · Bancos ZZD · Bancos ZZE · Bancos ZZF · Bancos ZZG · Bancos AAA · Bancos ABC · Bancos IAA · Bancos IAJ · Bancos IAP · Banker CNQ · Bancos IBA · Bancos IBC · Bancos IBH · Bancos ICF · Bancos ICJ · Bancos ICS ·

View Full Details