Ash.B is a keylogger type Trojan that logs keystrokes entered when the user accesses certain web pages belonging to companies in different production branches, such as banking, telecommunications, news, computers, etc. It also logs accesses to certain websites, belonging to several banking companies and web pages secured with the HTTPS protocol.
Ash.B ends processes belonging to antispyware and security programs, and also deletes several executable files related to those from the hard drive, which prevents them from working properly.
This Trojan also gathers e-mail addresses, which it searches for in files with certain extensions.
Ash.B does not spread automatically using its own means. It needs an attacking user's intervention in order to reach the affected computer. The means of transmission used include, among others, floppy disks, CD-ROMs, e-mail messages with attached files, Internet downloads, FTP, IRC channels, peer-to-peer (P2P) file sharing networks, etc.