Sinowal.BS is a Trojan that harvests information from the affected computer, such as security certificates, and passwords and other data stored in Protected Storage, as well as in the email clients Ak-Mail, Eudora and The Bat, among others.
Sinowal.BS also downloads files from several websites and then runs them.
Additionally, it obtains other information such as IP address, name, geographic area, opened ports, etc.
Then, it publishes the gathered data in a certain server.
Sinowal.BS does not spread automatically using its own means. It needs an attacking user's intervention in order to reach the affected computer. The means of transmission used include, among others, floppy disks, CD-ROMs, email messages with attached files, Internet downloads, FTP, IRC channels, peer-to-peer (P2P) file sharing networks, etc.