It download malware that steals users' confidential information related to banking entities. It reaches the computer in an email message in Portuguese and which supposedly contains a murder of a woman in Brazil.

Windows XP/2000/NT/ME/98/95

Nabload.DSA is a Trojan that downloads to the computer a banker Trojan designed to steals users' confidential information related to certain Brazilian banking entities.

In order to do so, it modifies the HOSTS file, so that when users access any of the websites of the affected banks, they are redirected to others which could be malicious and that would allow its creator to obtains the passwords to access the banks.

Nabload.DSA reaches the computer in an email message in Portuguese inviting users to watch a video.

Nabload.DSA is easy to recognize, as it reaches the computer in an email message in Portuguese inviting users to download a video.

The message is like the following:

If users follow the link, no video will be displayed and a file which belongs to Nabload.DSA will be downloaded: