Welcome to the Virus Encyclopedia of Panda Security.
It obtains confidential data from the affected computer and prevents users from accesing websites belonging to certain antivirus companies.
|First detected on:||Oct. 18, 2006|
|Detection updated on:||Oct. 30, 2006|
|Yes, using TruPrevent Technologies
Briz.R is a password stealer type Trojan that consists of several components that are consecutively downloaded from the Internet. Such components carry out the following actions:
- Obtain information from the computer, such as IP address, name, geographic area, etc.
- Prevent users and installed programs from accessing certain websites, which belong to several antivirus companies.
- Capture the data entered in websites containing forms accessed through Internet Explorer. This way, it obtains passwords for email accounts, banking entities and other online services.
- Monitor if the user accesses web addresses, which belong to certain banking entities.
- Redirect such websites to a certain web server, which hosts web pages that imitate the original ones. By doing this, it could be able to obtain confidential information, such as username and password.
- Install a web server that allows remote control of the affected computer.
Briz.R does not spread automatically using its own means. It needs an attacking user's intervention in order to reach the affected computer.
Briz.R is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.