Welcome to the Virus Encyclopedia of Panda Security.
Nabload.DSA uses social engineering techniques in order to be distributed and make users fall into the trap. In this case, the message in which it reaches the computer makes reference to the murder of a woman in Brazil, Eliza Samudio, which took place in July 2010.
Additionally, Nabload.DSA download to the computer a banker Trojan, designed to steals users' confidential information related to certain Brazilian banking entities.
In order to do so, when users try to access the website of the affected banks, they are redirected to others that could be malicious and that could allow its author to obtain the passwords to access the banks.
Nabload.DSA creates the following files:
Nabload.DSA modifies the HOSTS file, in such a way that when users access certain websites, mostly related to Brazilian banking entities, they are redirected to others that could be malicious.
Nabload.DSA creates the following entries in the Windows Registry:
Nabload.DSA reaches the computer in an email message in Portuguese inviting users to watch a video. The message is like the following:
The message has the following characteristics:
Nabload.DSA is 230,400 bytes in size.