Welcome to the Virus Encyclopedia of Panda Security.
It sends phishing messages in order to obtain the passwords and the access keys of the user. It also steals confidential information about certain mexican banking entities and downloads the backdoor detected as Sdbot.LQZ from a certain website.
|First detected on:||Feb. 26, 2008|
|Detection updated on:||Feb. 28, 2008|
|Yes, using TruPrevent Technologies
Banetmex.A is a Trojan that sends phishing messages in order to obtain the passwords and the access keys of the user. In order to send the phishing, it uses the email addresses that it has obtained from the affected computer.
Additionally, on the one hand, it steals confidential information about certain mexican banking entities, redirecting users that visit them to a malicious website that imitates the original one, so that the users enter their banking data.
On the other, it downloads the backdoor detected as Sdbot.LQZ from a certain website. The variants belonging to this family are usually designed to prevent certain security programs from being run and control the affected computer remotely.
Banetmex.A does not spread automatically by its own means.
Banetmex.A is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.>