You're in: Panda Security > Home Users > security-info > about-malware > encyclopedia > overview
Active Scan. Scan your PC free
Panda Security Product Line 2012

Virus Encyclopedia

Welcome to the Virus Encyclopedia of Panda Security.

Nabload.DSA

Threat LevelModerate threatDamageHighDistributionNot widespread
Common name:Nabload.DSA
Technical name:Trj/Nabload.DSA
Threat level:Low
Type:Trojan
Effects:  

It download malware that steals users' confidential information related to banking entities. It reaches the computer in an email message in Portuguese and which supposedly contains a murder of a woman in Brazil.

Affected platforms:

Windows XP/2000/NT/ME/98/95

First detected on:July 21, 2010
Detection updated on:July 27, 2010
StatisticsNo

Brief Description 

    

Nabload.DSA is a Trojan that downloads to the computer a banker Trojan designed to steals users' confidential information related to certain Brazilian banking entities.

In order to do so, it modifies the HOSTS file, so that when users access any of the websites of the affected banks, they are redirected to others which could be malicious and that would allow its creator to obtains the passwords to access the banks.

Nabload.DSA reaches the computer in an email message in Portuguese inviting users to watch a video.

Visible Symptoms 

    

Nabload.DSA is easy to recognize, as it reaches the computer in an email message in Portuguese inviting users to download a video.

The message is like the following:

Message in which Nabload.DSA reaches the computer

If users follow the link, no video will be displayed and a file which belongs to Nabload.DSA will be downloaded:

File belonging to Nabload.DSA