Welcome to the Virus Encyclopedia of Panda Security.
It obtains data from different Brazilian banking entities and Hotmail. In order to do so, when the website of any of these services is accessed, it displays a website identical to the original and specially created by the Trojan, in order to deceive users. It reaches the computer in a file that has the icon of two turtles.
|First detected on:||June 6, 2007|
|Detection updated on:||June 7, 2007|
|Yes, using TruPrevent Technologies
BankFake.F is a password stealer type Trojan that obtains affected users' access data to certain Brazilian banking entities.
When users access any of them, BankFake.F closes the webiste and opens another one with the image of the original file, created by the Trojan. Users follow the usual process to log in, where their banking data is requested, thinking it is the original website of the bank.
Not only it affects banking entities but also the Hotmail website, from which it obtains the email address and the password of the affected user.
BankFake.F reaches the computer in a file that has the icon of two turtles. However, it does not spread automatically by its own means.
BankFake.F is easy to recognize, as it reaches the computer in a file with the following icon:
Then, it connects to a website where the photo of a woman is displayed.