Welcome to the Virus Encyclopedia of Panda Security.
It monitors Internet traffic generated when the user accesses several online banking entities in order to log usernames and passwords for accessing them. It does not spread automatically by its own means.
|First detected on:||Nov. 27, 2006|
|Detection updated on:||Nov. 27, 2006|
|Yes, using TruPrevent Technologies
Banker.FLO is a Trojan that monitors Internet traffic generated when the user accesses web pages related to certain Brazilian online banking entities.
When the user accesses any of these websites, it captures the keystrokes typed by the user. By doing this, it logs usernames and passwords for accessing those banking entities.
Then, it sends the gathered information to its author.
Banker.FLO does not spread automatically using its own means. It needs an attacking user's intervention in order to reach the affected computer. The means of transmission used include, among others, floppy disks, CD-ROMs, email messages with attached files, Internet downloads, FTP, IRC channels, peer-to-peer (P2P) file sharing networks, etc.
Banker.FLO is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.