Attention: We have transitioned to a new AAD or Microsoft Entra ID from the week of May 20, 2024. In case your tenant requires admin consent, please refer to this document located at Overview of user and admin consent - Microsoft Entra ID | Microsoft Learn and grant access to App ID: 6ba09155-cb24-475b-b24f-b4e28fc74365 with graph permissions for Directory.Read.All and User.Read for continued access. While the app may appear unverified, you can confirm its legitimacy by verifying the App ID provided.
13 entries found.
Win32/Banker
Windows Defender detects and removes this threat.
This family of data-stealing trojans can capture your online banking details, such as your login credentials and account numbers. They can then send this information to a malicious hacker.
They can be installed on your PC when you open an email attachment that looks like a greeting card.
Most variants target Brazilian bank customers.
Alert level:
high
TrojanSpy:Win32/Bancos.OM
TrojanSpy:Win32/Bancos.OM is a detection for a trojan that steals user credentials from dialog boxes pertaining to online banking Web sites.
Alert level:
severe
TrojanSpy:Win32/Banker.VB
TrojanSpy:Win32/Banker.VB is a trojan that captures user-entered sensitive information such as online banking account credentials and access codes, personal information and other sensitive data. The trojan may monitor incoming e-mail messages.
Alert level:
severe
TrojanDownloader:Win32/Bancos.CP
TrojanDownloader:Win32/Bancos.CP is a trojan that downloads and executes arbitrary files and may attempt to delete components of a security application used by Brazilian banks to protect customers from Internet banking fraud.
Alert level:
severe
TrojanSpy:Win32/Bancos.SZ
TrojanSpy:Win32/Bancos.SZ is a password stealing trojan, that targets specific online banking web sites. Captured credentials may be sent via SMTP e-mail to a specified e-mail address.
Alert level:
severe
PWS:Win32/Banker
Alert level:
severe
PUA:Win32/Banker
Alert level:
severe
Trojan:Win32/Banker
Alert level:
severe
VirTool:Win32/Banker
Alert level:
severe
TrojanSpy:Win32/Banker
Windows Defender detects and removes this threat.
This threat can be downloaded by other Win32/Banload malware variants.
Alert level:
severe
TrojanProxy:Win32/Banker
Alert level:
severe
TrojanDropper:Win32/Banker
Alert level:
severe
TrojanDownloader:Win32/Banker
Alert level:
severe