Welcome to the Virus Encyclopedia of Panda Security.
It redirects web pages belonging to several banking entities that imitate them. If the user gets tricked in and enters confidential data, it would fall into the hands of the Trojan's author. It usually reaches the computer when it is downloaded by Downloader.CYZ.>
|First detected on:||June 23, 2005|
|Detection updated on:||Aug. 31, 2005|
|Yes, using TruPrevent Technologies
Banker.VY is a password stealer type Trojan that redirects the web pages accessed by the user and belonging to several banking entities to other pages created by its author and hosted in the domain banks.wayser.net.
Such pages imitate the legitimate ones, so that if the user gets tricked in and enters confidential data (username, password, social security number, etc.), it would fall into the hands of the Trojan's author.
Banker.VY usually reaches the computer when it is downloaded by other Trojan, detected as Downloader.CYZ.
Banker.VY is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.