Zagaban.H is a password stealer type Trojan that attempts to log several web addresses accessed by the user, mostly belonging to banking entities, and the keystrokes typed in them, which can be used to obtain sensitive information: passwords, account numbers, secret numbers, etc. This would pose a threat to the user's confidentiality.
Then, it sends the gathered data to a certain server in Internet.
Zagaban.H injects a DLL in the process of Internet Explorer, in order to carry out its actions.
Zagaban.H does not spread automatically using its own means. It needs an attacking user's intervention in order to reach the affected computer. The means of transmission used include, among others, floppy disks, CD-ROMs, email messages with attached files, Internet downloads, FTP, IRC channels, peer-to-peer (P2P) file sharing networks, etc.