Banbra.DCY is a Trojan that steals users' confidential data when they enter login information in the online services of several banking entities, such as Banco Brasil, Itau, Caixa Economica and Unibanco.
When the user connects to the websites of those banks, the Trojan captures a screenshot of the area around the mouse pointer, and saves it to a video file with AVI format. These files are then sent to the authors of the Trojan, without the target user knowing, in order to use them for all types of online fraud activities.
Therefore, Banbra.DCY is able to collect data from online banking entities that use virtual keyboards for users to enter their details:
Banbra.DCY does not spread automatically using its own means. It needs an attacking user's intervention in order to reach the affected computer. The means of transmission used include, among others, floppy disks, CD-ROMs, email messages with attached files, Internet downloads, FTP, IRC channels, peer-to-peer (P2P) file sharing networks, etc.