TrojanSpy:Win32/Banker.VB

Detected by Microsoft Defender Antivirus

Aliases: Win32/Banker.AOJ (CA) Win32/Spy.Banker.SAZ (ESET) Trojan.Win32.Delf.opo (Kaspersky) Generic PWS.y!rf (McAfee) W32/Atraps.RLE (Norman) Generic Rootkit (Panda) Mal/Banspy-F (Sophos) Trojan.Delf.DLCF (VirusBuster)

Summary

TrojanSpy:Win32/Banker.VB is a trojan that captures user-entered sensitive information such as online banking account credentials and access codes, personal information and other sensitive data. The trojan may monitor incoming e-mail messages.

Manual removal is not recommended for this threat. To detect and remove this threat and other malicious software that may have been installed, run a full-system scan with an up-to-date antivirus product such as Microsoft Security Essentials, or the Microsoft Safety Scanner. For more information about using antivirus software, see http://www.microsoft.com/security/antivirus/av.aspx.

TrojanSpy:Win32/Banker.VB attempts to steal sensitive and confidential information from affected users in order to perpetrate fraud. If you believe that your personal financial information may have been compromised, please refer to the following advisory for additional advice:

What to do if you are a victim of fraud

TrojanSpy:Win32/Banker.VB

Summary

What to do now

Technical information

Threat behavior

Installation

Payload

Prevention

Symptoms