Welcome to the Virus Encyclopedia of Panda Security.
It is designed to steal users' banking details belonging to a certain Brazilian banking entity. It does not spread automatically using its own means.
|First detected on:||June 14, 2010|
|Detection updated on:||June 18, 2010|
Banbra.GSW is a Trojan designed to steal users' banking details belonging to a certain Brazilian banking entity. In order to do so, it passes itself off as an update of program of such banking entity which requires users to enter certain banking data, like the content of their coordinate card.
Banbra.GSW does not spread automatically using its own means. It needs an attacking user's intervention in order to reach the affected computer.
Banbra.GSW is easy to recognize, as it shows the symptoms below:
- It reaches the computer in a file with the icon of the affected bank is downloaded.
- When this file is run, a screen like the following is displayed imitating the real banking entity, requiring users to update a security module in order to avoid frauds:
- If users go on with the process, another screen is displayed similar to the main site of the affected banking entity:
None of the links of this page works, only the login section (inside the black square).