![]() |
|
|
|
|
|||||||
| Forums | Portal | Register | Forum Rules | FAQ | Contribute | Members List | Arcade | Search | Today's Posts | Mark Forums Read |
| Malware Advisories (RSS) Malware Security Advisories Via RSS |
|
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Troj_zbot.op | iBot | Malware Advisories (RSS) | 0 | 07-17-2008 07:50 PM |
| Troj_zbot.nj | iBot | Malware Advisories (RSS) | 0 | 07-09-2008 09:10 PM |
| Troj_zbot.mz | iBot | Malware Advisories (RSS) | 0 | 06-30-2008 10:10 AM |
| Troj_zbot.lm | iBot | Malware Advisories (RSS) | 0 | 06-27-2008 01:10 AM |
| Troj_zbot.mh | iBot | Malware Advisories (RSS) | 0 | 06-18-2008 06:20 AM |
|
|
Submit Tools | LinkBack | Thread Tools | Search this Thread | Display Modes |
|
#1
|
||||
|
||||
|
Troj_zbot.ox
This Trojan arrives on a system as a file dropped by other malware or as a downloaded file from a certain Web site.
When executed, it attempts to steal sensitive online banking information. When a user attempts to access any of the monitored sites in the configuration file, it captures user input (specifically those entered in the input boxes designed for user names and passwords) and saves it in %System%\wsnpoem\VIDEO.DLL. (Note: %System% is the Windows system folder, which is usually C:\WINNT\System32 on Windows NT and 2000, or C:\Windows\System32 on Windows XP and Server 2003.) This routine risks the exposure of the user's account information, which may then lead to the unauthorized use of the stolen data. More... |
||||
| Google The UNIX and Linux Forums |
| Forum Sponsor | ||
|
|
| Thread Tools | Search this Thread |
| Display Modes | |
|
|