It is designed to steal users' banking details belonging to a certain Brazilian banking entity. It reaches the computer in an email message which seems to have been sent by such banking entity.

Windows 2003/XP/2000/NT/ME/98/95

Dadobra.ASC is a Trojan designed to steal users' banking details belonging to certain Brazilian banking entities. In order to do so, it persuades users to install a program of a certain banking entity which supposedly offers more security when making Internet banking movements.

However, this is only a ruse to enter itself into the computer, as during the installation process, it downloads several files that monitor the network traffic and that are activated when users access the website of different Brazilian banking entities in order to steal the data entered in them.

Dadobra.ASC reaches the computer in an email message which seems to have been sent by a certain Brazilian banking entity.

Dadobra.ASC is easy to recognize, as it passes itself off as a legitimate program of a certain Brazilian banking entity which asks users to enter certain data regarding their banking account.

It reaches the computer in a file that has the following icon:

When it is run, a window is displayed recommending users to install a program which offers more security when making Internet banking movements:

If the button Confirm is pressed, a window is displayed where the user's banking data are required: