PWS:Win32/Sinowal is a multi-component trojan that communicates with remote servers to send sensitive information such as information about the affected computer and other credentials.

Windows Defender detects and removes this threat.

See the Win32/Sinowal family description for more information.

 

 

Windows Defender Antivirus detects and removes this threat.

 

This threat can steal your sensitive information, including your banking user names and passwords.

 

See the Win32/Sinowal family description for more information.

PWS:Win32/Sinowal.AR is a trojan that is specifically used to capture personal information, such as user names and passwords, and then send that information to a remote attacker.

PWS:Win32/Sinowal.gen!Y is a trojan that steals information about the affected computer. It sends the collected information to a remote server.

PWS:Win32/Sinowal.K is a data-stealing Trojan. It is dropped by PWS:Win32/Sinowal.E. For more information, see http://www.microsoft.com/security/encyclopedia/details.aspx?Name=PWS:Win32/Sinowal.E

PWS:Win32/Sinowal.M.dll is a data-stealing and backdoor Trojan. It is dropped by PWS:Win32/Sinowal.E. For more information, see http://www.microsoft.com/security/encyclopedia/details.aspx?Name=PWS:Win32/Sinowal.E

PWS:Win32/Sinowal.AGZ is a password-stealing Trojan that is downloaded and installed by Trojan:Win32/Agent!9E63.

PWS:Win32/Sinowal.gen!D is a component of the greater Win32/Sinowal family.

PWS:Win32/Sinowal.gen!C is a component of the greater Win32/Sinowal family.

PWS:Win32/Sinowal.gen!O is a component of the greater Win32/Sinowal family.

PWS:Win32/Sinowal.gen!M is the generic detection for a member of the Win32/Sinowal family. It drops other malware and steals online banking and FTP credentials.

This threat is classified as a Trojan - Password Stealer. Typically, a password stealing trojan installs a keystroke logger (commonly referred to as a keylogger) which records keystrokes and sends the recorded information to remote attackers. Some keyloggers monitor only keystrokes involved in specific types of web-based transactions. For example, a keylogger may include a component that monitors browser activity, only recording keystrokes when certain bank or ecommerce sites are accessed. Other types of password-stealing trojans include those that capture screenshots in an attempt to bypass graphic-based security measures. This threat is detected by the Microsoft antivirus engine. Technical details are not currently available.

 

More details are available in the Family description of Win32/Sinowal.