Bancos.NL is a Trojan that logs keystrokes entered when the user acesses web addresses that contain certain text strings, mainly belonging to banking entities. Therefore, this Trojan obtains any confidential user data refered to those entities, such as user name, password, PIN, credit card number, etc.
Bancos.NL also steals the passwords stored by Outlook's Account Manager.
The log information is then sent to a web server in Internet.
Bancos.NL does not spread automatically using its own means. It needs an attacking user's intervention in order to reach the affected computer. The means of transmission used include, among others, floppy disks, CD-ROMs, e-mail messages with attached files, Internet downloads, FTP, IRC channels, peer-to-peer (P2P) file sharing networks, etc.