Welcome to the Virus Encyclopedia of Panda Security.
It steals user names, passwords and account numbers in the traffic generated in the affected computer and several online banks.
|First detected on:||June 29, 2004|
|Detection updated on:||Oct. 11, 2005|
|Yes, using TruPrevent Technologies
Bankhook.A is a Trojan that installs itself in the affected computer by taking advantage of several vulnerabilities.
Bankhook.A is a DLL (Dynamic Link Library) that registers itself in order to ensure it is run whenever the browser Internet Explorer is launched.
Bankhook.A searches for several text strings associated to different online banks in the HTTPS traffic generated in the affected computer. If successful, Bankhook.A steals users confidential information such as user name, passwords, account number, credit card number, etc.
Then, Bankhook.A sends these data to a remote computer in a script.
Our experts in the PandaLabs are currently studying this Trojan. As new characteristics are discovered, the information on this page will be updated.
Bankhook.A is difficult to recoginze, as it does not display any messages or warnings that indicate it has reached the computer.